Add my name to Author as a contributor.

2013-06-04 17:40:02 -04:00 · 2013-06-04 17:40:02 -04:00 · 9949d52e4b
commit 9949d52e4b
parent 653c4c227c
1 changed files with 172 additions and 0 deletions
--- a/check_sha512.sh
+++ b/check_sha512.sh
@ -0,0 +1,172 @@
+#!/bin/bash
+
+################################################################################
+#                                                                              #
+#  Copyright (C) 2012 Jack-Benny Persson <jack-benny@cyberinfo.se>             #
+#                                                                              #
+#   This program is free software; you can redistribute it and/or modify       #
+#   it under the terms of the GNU General Public License as published by       #
+#   the Free Software Foundation; either version 2 of the License, or          #
+#   (at your option) any later version.                                        #
+#                                                                              #
+#   This program is distributed in the hope that it will be useful,            #
+#   but WITHOUT ANY WARRANTY; without even the implied warranty of             #
+#   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the              #
+#   GNU General Public License for more details.                               #
+#                                                                              #
+#   You should have received a copy of the GNU General Public License          #
+#   along with this program; if not, write to the Free Software                #
+#   Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA  #
+#                                                                              #
+################################################################################
+
+###############################################################################
+#                                                                             # 
+# Nagios plugin to monitor a single files SHA512 sum. In case of mismatch     #
+# the plugin exit with a CRICITAL error code. This behavior can be changed    #
+# with the --warning argument.                                                # 
+# Written in Bash (and uses sed & awk).                                       #
+#                                                                             #
+###############################################################################
+
+
+VERSION="1.1"
+AUTHOR="(c) 2012 Jack-Benny Persson (jack-benny@cyberinfo.se), modified for SHA512 by Ryan Loudfoot (elyrith@gmail.com)"
+
+# Exit codes
+STATE_OK=0
+STATE_WARNING=1
+STATE_CRITICAL=2
+STATE_UNKNOWN=3
+
+shopt -s extglob
+
+#### Functions ####
+
+# Print version information
+print_version()
+{
+	printf "\n\n$0 - $VERSION\n"
+}
+
+#Print help information
+print_help()
+{
+	print_version
+	printf "$AUTHOR\n"
+	printf "Monitor the SHA512 checksum of a single file\n"
+/bin/cat <<EOT
+
+Options:
+-h
+   Print detailed help screen
+-V
+   Print version information
+
+--warning
+   Issue a warning state instead of a critical state in case of a SHA512 failure
+   Default is critical
+
+--file /path/to/file
+   Set which file to monitor
+ 
+--sha512 sha512checksum
+   Set the SHA512 checksum for the file set by --file
+
+EOT
+}
+
+
+# Parse command line options
+while [[ -n "$1" ]]; do 
+   case "$1" in
+
+       -h | --help)
+           print_help
+           exit $STATE_OK
+           ;;
+
+       -V | --version)
+           print_version
+           exit $STATE_OK
+           ;;
+
+       -\?)
+	   print_help
+           exit $STATE_OK
+           ;;
+
+       --warning)
+           warning="yes"
+	   shift 1
+	   ;;
+
+       --file)
+	   if [[ -z "$2" ]]; then
+		printf "\nOption $1 requires an argument\n | Option $1 requires an argument"
+		print_help
+		exit $STATE_UNKNOWN
+	   fi
+		file=$2
+           shift 2
+           ;;
+
+       --sha512)
+           if [[ -z "$2" ]]; then
+                printf "\nOption $1 requires an argument\n | Option $1 requires an argument"
+		print_help
+                exit $STATE_UNKNOWN
+           fi
+                sha512=$2
+           shift 2
+           ;;
+
+	*)
+           printf "\nInvalid option $1 | Invalid option $1"
+           print_help
+           exit $STATE_UNKNOWN
+           ;;
+
+
+   esac
+done
+
+### Check if we provided a file and a SHA512 sum ###
+
+if [[ -z "$file" ]]; then
+	# No file specified
+	printf "\nNo file specified | No file specified"
+	print_help
+	exit $STATE_UNKNOWN
+fi
+
+if [[ -z "$sha512" ]]; then
+	# No SHA512 sum specified
+	printf "\nNo SHA512 sum specified | No SHA512 sum specified"
+	print_help
+	exit $STATE_UNKNOWN
+fi
+
+
+### MAIN ###
+
+#Get the current checksum of the file
+filesum=`sha512sum ${file} | awk '{print $1}'`
+
+#Compare the SHA512 on the file against the sum we provided
+if [[ "$filesum" == "$sha512" ]]; then
+	printf "SHA512 OK - $file\n | SHA512 is $sha512" 
+	exit $STATE_OK
+
+#See if we wanted a warning instead of a critical
+elif [[ "$warning" == "yes" ]]; then
+		printf "SHA512 WARNING - $file\n | SHA512 does not match on file $file"
+		exit $STATE_WARNING
+#Critical
+else	
+
+  printf "SHA512 CRITICAL - $file\n | SHA512 does not match on file $file"
+  exit $STATE_CRITICAL
+fi
+
+exit 3