{"id":77,"date":"2017-04-20T17:50:12","date_gmt":"2017-04-20T17:50:12","guid":{"rendered":"http:\/\/news.innerfire.net\/?p=77"},"modified":"2018-07-25T15:32:38","modified_gmt":"2018-07-25T15:32:38","slug":"apache-config-validater","status":"publish","type":"post","link":"https:\/\/news.innerfire.net\/?p=77","title":{"rendered":"Apache config validater."},"content":{"rendered":"

This is an Apache config sanitizer, it checks to make sure there are no orphaned files in the Debian style sites-available\/sites-enabled type setup and checks to make sure each virtual host has a valid DNS.<\/p>\n

\r\n#!\/bin\/bash\r\n# Apache config sanitizer.. Checks to make sure all sites are correctly configured \r\n# for DNS and checks for orphaned config files.\r\n#\r\n# By Gerhard Mack <gmack@innerfire.net>\r\n\r\nfunction getipaddress {\r\n        if [[ "${1}" == 4 ]]\r\n        then\r\n                getent ahostsv4 "${2}" | grep STREAM | head -n 1 | cut -d ' ' -f 1\r\n                return\r\n        fi\r\n\r\n        if [[ "${1}" == 6 ]]\r\n        then\r\n                getent ahostsv6 "${2}" | grep STREAM | head -n 1 | cut -d ' ' -f 1\r\n                return\r\n        fi\r\n}\r\n\r\nwhile read line\r\ndo\r\n        name="$(basename $line)"\r\n\r\n        #Ignore common standard files\r\n        if [[ "${name}" == "000-default-le-ssl.conf" ]]\r\n        then\r\n                continue\r\n        fi\r\n\r\n        if [[ "${name}" == "default-ssl.conf" ]]\r\n        then\r\n                continue\r\n        fi\r\n\r\n        if [[ "${name}" == "000-default.conf" ]]\r\n        then\r\n                continue\r\n        fi\r\n\r\n        if [[ ! -e "\/etc\/apache2\/sites-enabled\/${name}" ]]\r\n        then\r\n                echo orphaned file: ${line}\r\n        fi\r\ndone <<< "$(find \/etc\/apache2\/sites-available\/ -name '*.conf')"\r\n\r\nwhile read line\r\ndo\r\n        array=( $line )\r\n\r\n        if [[ "${line:0:1}" == [0-9] ]]\r\n        then\r\n                VIP=$(echo ${array[0]} | cut -d: -f1 )\r\n                IPV=4\r\n                continue\r\n        fi\r\n\r\n        if [[ "${line:0:1}" == "[" ]]\r\n        then\r\n                 VIP=$(echo ${array[0]} | cut -d\\] -f1 | cut -d \\[ -f2)\r\n                 IPV=6\r\n                 continue\r\n        fi\r\n\r\n        if [[ "${line:0:1}" == "*" ]] \r\n        then\r\n                 continue\r\n        fi\r\n\r\n        if [[ "${array[0]}" == "port" ]]\r\n        then\r\n                 VHOST="${array[3]}"\r\n\r\n                 IP=$(getipaddress ${IPV} ${VHOST})\r\n\r\n                 if [[ -z "${IP}" ]]\r\n                 then\r\n                         echo ${VHOST} does not resolve. \\(should be \\"${VIP}\\"\\)\r\n                         continue\r\n                 fi\r\n\r\n                 if [[ "${IP}" == "::ffff:"* ]]\r\n                 then\r\n                          echo ${VHOST} does not have an IPv6 address. \\(should be \\"${VIP}\\"\\)\r\n                          continue\r\n                 fi\r\n\r\n                 if [[ "$IP" != "$VIP" ]]\r\n                 then\r\n                          echo vhost ${VHOST} points to \\"${IP}\\" \\(should be \\"${VIP}\\"\\)\r\n                 fi\r\n                 \r\n                 continue\r\n         fi\r\n\r\n         if [[ "$array[0]" == "alias[0]" ]]\r\n         then\r\n                 VALIAS="${array[1]}"\r\n                 IP=$(getipaddress ${IPV} ${VALIAS})\r\n\r\n         if [[ -z $IP ]] ; then\r\n                 echo ${VHOST} alias ${VALIAS} does not resolve. \\(should be \\"${VIP}\\"\\)\r\n                 continue\r\n         fi\r\n\r\n         if [[ ${IP} == "::ffff:"* ]]\r\n         then\r\n                 echo ${VHOST} alias ${VALIAS} does not have an IPv6 address. \\(should be \\"${VIP}\\"\\)\r\n                 continue\r\n         fi\r\n\r\n         if [[ "$IP" != "$VIP" ]] ; then\r\n                echo vhost ${VHOST} alias $VALIAS points to \\"${IP}\\" \\(should be \\"${VIP}\\"\\)\r\n         fi\r\n\r\n         continue\r\n         fi\r\ndone <<< "$(apachectl -S)"\r\n<\/pre>\n
 <\/p>\n","protected":false},"excerpt":{"rendered":"
This is an Apache config sanitizer, it checks to make sure there are no orphaned files in the Debian style sites-available\/sites-enabled type setup and checks to make sure each virtual host has a valid DNS. #!\/bin\/bash # Apache config sanitizer.. Checks to make sure all sites are correctly configured # for DNS and checks for […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-77","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"_links":{"self":[{"href":"https:\/\/news.innerfire.net\/index.php?rest_route=\/wp\/v2\/posts\/77","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/news.innerfire.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news.innerfire.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news.innerfire.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news.innerfire.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=77"}],"version-history":[{"count":17,"href":"https:\/\/news.innerfire.net\/index.php?rest_route=\/wp\/v2\/posts\/77\/revisions"}],"predecessor-version":[{"id":106,"href":"https:\/\/news.innerfire.net\/index.php?rest_route=\/wp\/v2\/posts\/77\/revisions\/106"}],"wp:attachment":[{"href":"https:\/\/news.innerfire.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=77"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news.innerfire.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=77"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news.innerfire.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=77"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}