PublicMirrors/vps-audit
1
0
Fork 0
mirror of https://github.com/vernu/vps-audit.git synced 2025-02-09 03:37:47 +03:00
Code Issues Actions Packages Projects Releases Wiki Activity

add docker commands to check if Fail2ban or CrowdSec containers are running

Browse Source
This commit is contained in:
alvarosaavedrau 2025-01-11 20:33:31 +01:00
parent 52bbc23605
commit 8efad6a94c
1 changed files with 12 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
vps-audit.sh
View File

@ -213,11 +213,23 @@ if dpkg -l | grep -q "fail2ban"; then
systemctl is-active fail2ban >/dev/null 2>&1 && IPS_ACTIVE=1
fi
# Check docker container running fail2ban
if docker ps -a | awk '{print $2}' | grep "fail2ban"; then
IPS_INSTALLED=1
docker ps | grep -q "fail2ban" && IPS_ACTIVE=1
fi
if dpkg -l | grep -q "crowdsec"; then
IPS_INSTALLED=1
systemctl is-active crowdsec >/dev/null 2>&1 && IPS_ACTIVE=1
fi
# Check docker container running crowdsec
if docker ps -a | awk '{print $2}' | grep "crowdsec"; then
IPS_INSTALLED=1
docker ps | grep -q "crowdsec" && IPS_ACTIVE=1
fi
case "$IPS_INSTALLED$IPS_ACTIVE" in
"11") check_security "Intrusion Prevention" "PASS" "Fail2ban or CrowdSec is installed and running" ;;
"10") check_security "Intrusion Prevention" "WARN" "Fail2ban or CrowdSec is installed but not running" ;;