# # (c) 2002 Linux-Consulting.com All Rights Reserved... # Released under GPL # # # Latest Version: # -------------- # http://www.Linux-Consulting.com/AutomatedAdmin # # /opt/Scripts/Update.patches.txt # # --------------------------------------------------------------------- # Each ClientHost checks these Files to update against the MasterServer # --------------------------------------------------------------------- # # # 03-Jan-02 amo Date-of-Birth -- Release # # # # Server BUILD process # ==================== # - install from cdrom # - apply distro patches # - apply in-house patches # - add to backup strategy # - release to users # # ------------------------------------------------------------------- # # Update.Version 2002.00.00.00 # # Cdrom install ( Install.cdrom.pl -- toms root-boot + installer ) # # echo "2002.00.00.00" > /opt/Master/version.txt # # ------------------------------------------------------------------- # # Update.Requirement 2002.00.00.00 # -- requires CDROM install first # # # Update.Version 2002.01.00.00 # ------------- # Apply Distro/Security Patches ( Patches.Distro.pl - exists ) # # mount MasterServer:/opt/patches /mnt/test # /mnt/test/Patches.Distro.pl -apply # # echo "2002.01.00.00" >> /opt/Master/version.txt # # ------------------------------------------------------------------- # # Update.Requirement 2002.01.00.00 # -- Requires Distro Paatches first # # # Update.Version 2002.01.00.11 # ------------- # Apply in-house Patches ( Patch.inhouse.pl -- exists in various scripts ) # mv /home /opt/home # ln -s /.autofs/home /home # # mv /var/spool/mail /var/spool/mail.distro # ln -s /.autofs/mail /var/spool/mail # # mv /var/spool/cron /var/spool/cron.distro # ln -s /etc/cron /var/spool/cron # mkdir /etc/cron # # rename binaries -- since rootkits uses these commands to install itself # { su,tar,make,gcc,lynx,wget,netscape, .. } # # save copies of files that will be overwritten # ( also can be in Configuration.tgz ) # # cp Master/../Configuration.tgz /opt/Patches # cd / ; tar zxvfp /opt/Patches/Configuration.tgz # # - reboot # # # Tighten Security as Needed # -------------------------- # http://www.Linux-Sec.net # # # echo "2002.01.00.11" >> /opt/Master/version.txt # # ------------------------------------------------------------------- # # Update.Requirement 2002.01.00.11 # -- Requires In-House patches to be applied # # ================ # MAINTENANCE-MODE Patch Level # ================ Update.Version 2002.01.03.00 ( Patch.pl -- exists -- testing/enhancing it ) # # which MasterServers # which machines, which distros # lock files even if different # # Master File for Updates # ======================== # # Codes: ( not implemented in Update.pl yet ) # ----- # 0 == Just tell them that the files are different # 1 == Update if different # 2 == Save a copy before overwriting it # 3 == patch it vs copying # # 10 == Unconditionally, just do this set of commands # # # FileName and TargetFilename does NOT have to be the same # --------------------------------------------------------- # # Clients and Servers files might be different # copy Master:/etc/exports.client clients:/etc/hosts # # Only HomeServer will compare against exports. # copy Master:/etc/exports.HomeServer HomeServer:/etc/hosts # # ---- --------------------------- ----------------------------------- # Code ; FileName ; Target_FileName ; commands to modify on target machine # ---- --------------------------- ----------------------------------- # # 1 ; /etc/aliases ; /etc/aliases ; /usr/sbin/newaliases # # 1 ; /etc/exports.client ; /etc/exports ; cd /etc/rc.d/init.d ; ( nfs stop ; nfs start ) # # requires newaliases to be run # ------------------- 1 ; /etc/aliases # 0 ; /etc/passwd # root passwd is always different # ; /etc/shadow # # requires named to restart # ; /etc/named.conf # # /etc/resolv.conf.clients ( clients compared against this version ) 1 ; /etc/resolv.conf 1 ; /etc/host.conf 1 ; /etc/hosts # # requires inetd to restart # 1 ; /etc/hosts.allow 1 ; /etc/hosts.deny # # requires crond to restart 1 ; /etc/cron/root # # requires ntp to restart 1 ; /etc/ntp.conf # # # requires sendmail to restart # /etc/sendmail.cf # /etc/mail/* # # # requires autofs to restart # /etc/exports # /etc/exports.clients ( clients compared against this version ) # /etc/auto.home # /etc/auto.master # # # echo "2002.01.03.00" >> /opt/Master/version.txt # # Next Patch File ??? -- dont know what that is yet... # # ------------------------------------------------------------------- # # Servers get changed from FileServers to WebServer or EmailServers # - different patch files is needed # # users get added and users get deleted as the company changes # - we only need to upgrade to current /etc/passwd file # # # Update.pl should log the version number into /var/log/Update.log/patch_level.txt # # # Backup your Working System # -------------------------- # http://www.Linux-Backup.net # # # end of file