Blame | Last modification | View Log | RSS feed
#!/bin/bash## Issue warning e-mails if SSL certificates expire, using certwatch.# See the certwatch.cron(5) man page for details on how to configure.#[ -r /etc/sysconfig/certwatch ] && . /etc/sysconfig/certwatch# Use configured httpd binaryhttpd=${HTTPD-/usr/sbin/httpd}# Sanity checkstest -z "${NOCERTWATCH}" || exit 0test -x ${httpd} || exit 0test -x /usr/bin/certwatch || exit 0test -r /etc/httpd/conf/httpd.conf || exit 0test -x /usr/sbin/sendmail || exit 0test -x /etc/httpd/modules/mod_ssl.so || exit 0test -x /bin/sort || exit 0set -o pipefail # pick up exit code of httpd not sortcerts=`${httpd} ${OPTIONS} -t -DDUMP_CERTS 2>/dev/null | /bin/sort -u`RETVAL=$?test $RETVAL -eq 0 || exit 0for c in $certs; do# Check whether a warning message is needed, then issue one if so./usr/bin/certwatch $CERTWATCH_OPTS -q "$c" &&/usr/bin/certwatch $CERTWATCH_OPTS "$c" | /usr/sbin/sendmail -oem -oi -t 2>/dev/nulldone