新增基线扫描项'57确保可疑数据包都被记录'

2023-11-16 15:25:24 +08:00 · 2023-11-16 15:25:24 +08:00 · b960a07b08
parent 64aa8e3944
commit b960a07b08
2 changed files with 94 additions and 0 deletions
--- a/data/BaseLine/LocalServices/TestingDepartmentPrivateUseCases/57/57确保可疑数据包都被记录.py
+++ b/data/BaseLine/LocalServices/TestingDepartmentPrivateUseCases/57/57确保可疑数据包都被记录.py
@ -0,0 +1,72 @@
 import os
 import sys
 ################################
 # 常量
 # for get_env_lang()
 STR_GET_ENV_LANG_ZH     = "语言环境为中文"
 STR_GET_ENV_LANG_EN     = "语言环境为英文"
 STR_GET_ENV_LANG_UNKNOW = "语言环境未知"
 ################################
 # 环境检查函数
 def get_env_lang():
 #    lang = os.getenv("LANG")
 #    if lang.startswith("zh"):
 #        return STR_GET_ENV_LANG_ZH
 #    elif lang.startswith("en"):
 #        return STR_GET_ENV_LANG_EN
 #    else:
 #        return STR_GET_ENV_LANG_UNKNOW
 #
    if arg_lang == "zh":
        return STR_GET_ENV_LANG_ZH
    elif arg_lang == "en":
        return STR_GET_ENV_LANG_EN
    else:
        return STR_GET_ENV_LANG_UNKNOW
 def is_root():
    if os.geteuid() == 0:
        print(STR_IS_ROOT_TRUE)
        return True
    else:
        print(STR_IS_ROOT_FALSE)
        return False
 ################################
 # 辅助函数
 def l_print(zh_str, en_str) :
    if STR_GET_ENV_LANG_ZH == get_env_lang() :
        print(zh_str);
    else :
        print(en_str);
 ################################
 # 功能函数
 def log_martians():
    output1 = os.popen('sysctl net.ipv4.conf.all.log_martians  2>&1').read().strip() 
    output2 = os.popen('sysctl net.ipv4.conf.default.log_martians  2>&1').read().strip()  
    output3 = os.popen('grep "net\.ipv4\.conf\.all\.log_martians" /etc/sysctl.conf /etc/sysctl.d/*  2>&1').read().strip() 
    if "net.ipv4.conf.all.log_martians = 1" in output1 and "net.ipv4.conf.default.log_martians = 1" in output2 and "net.ipv4.conf.all.log_martians = 1" in output3:
       l_print("[OK] 测试通过",
                 "[OK] pass")
    else:
       l_print("[ERROR] 测试未通过",
                "[ERROR] fail")
 ################################
 # main
 if __name__ == "__main__":
    if len(sys.argv)>1:
        arg_lang = sys.argv[1]
    else:
        arg_lang = 'zh'
    log_martians()
    exit(0)
--- a/data/BaseLine/LocalServices/TestingDepartmentPrivateUseCases/57/57确保可疑数据包都被记录.yaml
+++ b/data/BaseLine/LocalServices/TestingDepartmentPrivateUseCases/57/57确保可疑数据包都被记录.yaml
@ -0,0 +1,22 @@
 FormatVer: 20230623
 Id: log_martians
 Belong: baseline
 SiteInfo:
    Name: 57确保可疑数据包都被记录
 Power : "root"
 SiteRequests:
    Implement:
        ImArray:
            - Inter : python3
              InterArgs :
              Exec : 57确保可疑数据包都被记录.py
              Args :
        Inter:
            - "[ERROR]"
        Condition: None
 RepairArgs:
    - Inter : python3
      InterArgs :
      Exec :
      Args :
      RepairPower: #root # root权限或者普通用户权限