Gecko [ touzafair.com ]

Name	Size	Permission
authorized_users.list	143 B	-rw-r-----
check-autobackup.sh	6.68 KB	-rwxr-xr-x
check-cagefs-status.sh	2.04 KB	-rwxr-xr-x
check-cpanel-update.sh	1.85 KB	-rwxr-xr-x
check-litespeed-version.sh	2.87 KB	-rwxr-xr-x
check-lscache-version.sh	3.84 KB	-rwxr-xr-x
check-mail-filter-avlb.sh	2.18 KB	-rwxr-xr-x
check-outmailip-rbl.py	3.99 KB	-rwxr-xr-x
check-rpmdb-integrity.sh	1.63 KB	-rwxr-xr-x
check-unexpected-systemd-servi...	8.07 KB	-rwxr-xr-x
check_backup.sh	6.35 KB	-rwxr-xr-x
check_cl_license	950 B	-rwxr-xr-x
check_cplicense.sh	268 B	-rwxr-xr-x
check_cpshell	949 B	-rwxr-xr-x
check_csf	3.72 KB	-rwxr-xr-x
check_cwaf.sh	2.44 KB	-rwxr-xr-x
check_execve_filter.list	370 B	-rw-r-----
check_execve_privileges.sh	2.51 KB	-rwxr-x---
check_eximq.sh	3.16 KB	-rwxr-xr-x
check_extra_accts.py	4.18 KB	-rwxr-xr-x
check_http_full_stack.conf	144 B	-rw-r--r--
check_http_full_stack.py	4.3 KB	-rwxr-xr-x
check_if_ips.py	4.15 KB	-rwxr-xr-x
check_if_ips_tcp.py	4.71 KB	-rwxr-xr-x
check_ip_update_log.sh	540 B	-rwxr-xr-x
check_ip_usage.py	6.67 KB	-rwxr-xr-x
check_kernelcare.sh	2.13 KB	-rwxr-xr-x
check_lfd_logs.conf	471 B	-rw-r--r--
check_logfiles.conf	595 B	-rw-r--r--
check_logfiles.pl	206.82 KB	-rwxr-xr-x
check_logfiles_innodbcounter.c...	1002 B	-rw-r--r--
check_mailip.py	3.83 KB	-rwxr-xr-x
check_mem.pl	12.85 KB	-rwxr-xr-x
check_mysqld_msize.sh	666 B	-rwxr-xr-x
check_nc_cp_backup_process.sh	8.75 KB	-rwxr-xr-x
check_ncsslplugin.py	1.89 KB	-rwxr-xr-x
check_ntp_client	11.78 KB	-rwxr-xr-x
check_openport.sh	7.59 KB	-rwxr-xr-x
check_pem_worker.pl	929 B	-rwxr-xr-x
check_pgactivity	294.21 KB	-rwxr-xr-x
check_plans.py	7.59 KB	-rwxr-xr-x
check_puppet	16.14 KB	-rwxr-xr-x
check_quota_on.sh	902 B	-rwxr-xr-x
check_ro_fs.py	3.43 KB	-rwxr-xr-x
check_service.sh	9.34 KB	-rwxr-xr-x
check_software_updates	31.68 KB	-rwxr-xr-x
check_spamd	6.7 KB	-rwxr-xr-x
check_stalled_procs.py	4.42 KB	-rwxr-xr-x
check_suid_status.sh	295 B	-rwxr-xr-x
check_suspicious_files_status....	1.42 KB	-rwxr-xr-x
check_unauthorized_user.sh	17.16 KB	-rwxr-xr-x
replcheck_param.pl	5.48 KB	-rwxr-xr-x
systemd_scopes_whitelist	10 B	-rw-r--r--
systemd_services_folders	70 B	-rw-r--r--
systemd_services_whitelist	6.67 KB	-rw-r-----
systemd_targets_whitelist	12 B	-rw-r--r--
test.eml	3.26 KB	-rwxr-xr-x

Code Editor : check_extra_accts.py

#!/usr/libexec/platform-python
#
# written by Vladimir Burov, vladimir.burov@namecheap.com
# version: 1.0-3 2017/12/05
# short description: checking accounts that may still in the system after not proper removing by cPanel
# link to documentation: TO-2944
# RPM package: nc-check-excess-accounts
#
# update: RPM package: nc-nrpe-check_extra_accts

import configparser
import argparse
import re
import os
import pwd
import sys
from subprocess import Popen, PIPE

VERSION = '1.0-3 2017/12/05'
CONFIG = ['/usr/share/nc_nagios/check_extra_accts/check_extra_accts_ignore.conf']
DESCRIPTION = "Checking accounts that left in the system after incorrect removing from cPanel.\n" \
              "Config: %s\nVersion %s %s" % (CONFIG[0], VERSION, "vladimir.burov@namecheap.com")
CONFIG = ['/usr/share/nc_nagios/check_extra_accts/check_extra_accts_ignore.conf', '/usr/share/nc_nagios/check_extra_accts/check_extra_accts_regex_ignore.conf']
HOSTNAME = os.uname()[1]
CPANELACCTSCMD = '/usr/sbin/whmapi1 listaccts want=user\,unix_startdate|grep "user:"|awk "{print\$2}"'
SYSTEMACCTSCMD = 'cat /etc/passwd|awk -F: "{print\$1}"|sort'

if __name__ == "__main__":
    parser = argparse.ArgumentParser(formatter_class=argparse.RawDescriptionHelpFormatter, description=DESCRIPTION)
    parser.add_argument("-v", "--verbose", default=False, action="store_true", help="more verbose output")
    args = parser.parse_args()
    config = configparser.ConfigParser(allow_no_value=True)
    config.read(CONFIG)
    exclude = [u[0] for u in config.items('default')]
    re_exclude = [r[0] for r in config.items('regex')]
    for pattern in filter(lambda p: not p == 'default', config.sections()):
        if re.match(pattern, HOSTNAME):
            for u in config.items(pattern):
                exclude.append(u[0])

systemaccts = Popen(SYSTEMACCTSCMD, stdout=PIPE, encoding="utf8", shell=True).stdout.read().rstrip().split('\n')
    cpanelaccts = Popen(CPANELACCTSCMD, stdout=PIPE, encoding="utf8", shell=True).stdout.read().rstrip().split('\n')
    cpanelhomedirs = [os.path.expanduser('~'+u) for u in cpanelaccts]
    nouserhome = []
    cpanelhomesownroot = []
    for homedir in cpanelhomedirs:
        homedir_uid = os.stat(homedir).st_uid
        try:
            if pwd.getpwuid(homedir_uid).pw_name == 'root':
                cpanelhomesownroot.append(homedir)
        except KeyError:
            nouserhome.append(homedir)
    var_cpanel_users = os.listdir('/var/cpanel/users')
    if args.verbose:
        print("Exclude: %s" % (' '.join(exclude)))
        print("RE Exclude: %s" % (' '.join(re_exclude)))
        print("System: %s" % (' '.join(systemaccts)))
        print("cPanel: %s" % (' '.join(cpanelaccts)))
        print("/var/cpanel/users: %s" % (' '.join(var_cpanel_users)))
    excess = [a for a in systemaccts if a not in cpanelaccts and a not in exclude]
    if re_exclude:
        big_re = re.compile('|'.join(re_exclude))
        if filter(big_re.match, excess):
            excess = list(set(excess) - set((filter(big_re.match, excess))))
    excess_var_cpanel_users = [a for a in var_cpanel_users if a not in cpanelaccts and a not in exclude
                               and not a == 'system']
    warn = []
    if excess:
        warn.append("Extra accounts: %s;" % (' '.join(excess)))
        if args.verbose:
            print("Extra: %s" % (' '.join(excess)))
    if excess_var_cpanel_users:
        warn.append("Extra /var/cpanel/users/<file>: %s;" % (' '.join(excess_var_cpanel_users)))
        if args.verbose:
            print("Cpanel account do not exist but /var/cpanel/users/<file> exists: %s"\
                  % (' '.join(excess_var_cpanel_users)))
    if cpanelhomesownroot:
        warn.append("Acct home owned by root: %s;" % (' '.join(cpanelhomesownroot)))
        if args.verbose:
            print("cPanel account home is owned by root: %s" % (' '.join(cpanelhomesownroot)))
    if nouserhome:
        warn.append("Acct home owned by nouser: %s;" % (' '.join(nouserhome)))
        if args.verbose:
            print("cPanel account home is owned by nouser: %s" % (' '.join(nouserhome)))
    if warn:
        print("CRITICAL - %s" % ' '.join(warn))
        sys.exit(2)
    else:
        print("OK - There's no extra accounts")
        sys.exit(0)

${this.title}

Code Editor : check_extra_accts.py