I messaged erSitzt and he said he wasn't working on it anymore so I decided to do it.
I hacked together an audit script using admin_pc_add_2.php from Open-AudIT and a Mac agent for OCS Inventory which can be found
http://codejanitor.com/wp/2006/02/16/oc ... 0-released.
Before you run it, search the file for "CHANGEME" and replace all occurances with the suitable info for you.
I tried to put in comments where it seems necessary. But here's a warning that I'm not a PHP coder and I'm sure there's better ways to do it.
Mac Audit 0.0001: http://k-thx.com/~scott/mac_audit.zip
This zip contains the main audit.php script, the 2 scripts I used to make it, and the expect script (read below about it).
- Code: Select all
Usage:
php audit.php
or
php audit.php xmlprofile.spx
For the first option you run it on the remote machine you want to audit. The second option can be run from any machine.
This script will get all the info from System Profiler and populate the Open-Audit database.
Currently, lots of hardware is left out. I have no need for all of it so it isn't included right now. Feel free to modify it and add in whatever you want. It isn't very hard once you understand how it works; it's just tedious.
The next problem is running this script on all your Macs without a lot of manual work. The solution I came up with is this:
1. Enable SSH on all Macs
2. Add an admin user with the same name/pass on all Macs
3. Host audit.php on a local webserver
4. Use expect (apt-get install expect on ubuntu/debian) to execute the script on all machines
Here are some resources on expect or another great tool called tentakel (need to use SSH keys):
http://blog.platinumsolutions.com/node/135http://www.cyberciti.biz/tips/execute-c ... rt-ii.htmlHere is the script I use:
- Code: Select all
#!/usr/bin/expect -f
proc doWork {host} {
spawn ssh user@$host "curl http://url/audit.txt > audit.php;php audit.php;rm audit.php"
expect -timeout 5 -nocase "password: "
send "password"
send "\n"
send "exit\n"
expect -re "Connection.*closed\."
wait
}
set fp [open macs.txt r]
while {[gets $fp line] > -1} {
set host [string trim $line]
if {![string match "#*" $host] &&
[string length $host]} {
doWork $host
}
}
close $fp
macs.txt is just a list of IPs. Add audit.exp to a cronjob and you're good to go.
Someone may want to integrate this into open-audit somehow.
I'm probably forgetting some stuff so ask away.
by glampe » Tue Sep 19, 2006 7:25 am 
