Changes between Version 3 and Version 4 of web-app-security

Timestamp:

Sep 28, 2017, 5:29:57 PM (7 years ago)

Author:

Jamie McClelland

Comment:

--

web-app-security

@@ -3 +3 @@
 == Monitoring of compromised sites ==
 
-Nagios runs of `wp core integrity-check`
+[In process, see #13159]
+
+The monitor script mf-monitor-webapps executes the script mf-check-webapps and triggers a Nagios warning if it finds any web app sites that fail the test.
+
+== Search server for compromised sites ==
+
+The script `mf-check-webapps` searches the given server for any web app that has been compromised.
+
+It finds web apps by searching for the files `/home/members/*/sites/*/.red/web-app-security/{drupal,wordpress}-core`.
+
+If it finds either file, it runs a check to see if the specified web app has been compromised.
+
+In normal mode, it outputs each site that has checked and the status of the site. In quiet mode, this output is supressed.
+
+Once the run is complete, it either:
+
+ * Returns no output and the exit code 0 to indicate that no sites show signs of compromise
+ * One line with a comma separate list of site names that are compromised and the exit code 1 to indicate a compromise
+ * Error output and the exit code 255 to indicate an error prevented the script from running properly.
 
 == Control Panel Installation ==
@@ -26 +44 @@
 [Note: when fully implemented, users can enable via the control panel.]
 
-An admin can enable this protection by creating a directory in a sites hidden .red directory (e.g. /home/members/mayfirst/sites/mayfirst.org/.red): web-app-auto-upgrade and place one or more files in it.
+An admin can enable this protection by creating a directory in a sites hidden .red directory (e.g. /home/members/mayfirst/sites/mayfirst.org/.red): web-app-security and place one or more files in it.
 
 To indicate that you want to have your web application automatically upgraded, please create a file or files with the following names to indicate what you want upgraded.