Hi greg
the following will check the passwd file for root level users and the second attached file checks many system areas for security problems.
HTH
Paula
-----------------CUT HERE-------------------
#! /bin/sh
##############################################################
# PJFC 11/1999
#
# Script to check the /etc/passwd file for users with
# root level access (0 in field 3)
# two delivery options are given, a mail to and a cat to a file
#############################################################
cd /sysadmin
rm /sysadmin/rootalert
for id in `awk 'FS=":" {if(($3 == 0 && $1 != "root" )) \
print $1}' /etc/passwd`
do
# mail -s "Root access alert" paula@avro.co.uk << EOF
cat << EOF >> rootalert
*******************************************************
*
* ALERT! Login ID `echo ${id}` has ROOT UID
* `date "+detected On Date :%D Time :%r"`
*
*******************************************************
EOF
done
-----------------CUT HERE-------------------
If you can spell SysAdmin then you is one - anon
