Hi Giancarlo, I would like to thank your background (: Yes the important files is included @changelist and it's sha256, but as firewall rules has modifications during all time, another nodes need be updated. So, it's because of this I run the script every 5 min and I sync it using SCP.
* My script runs independent of daily scripts * and the hash is md5. Thank you @misc . 2014-08-01 9:22 GMT-03:00 Giancarlo Razzolini <grazzol...@gmail.com>: > On 01-08-2014 09:07, sven falempin wrote: > > doh ! > > this is done in daily/security > > look at /etc/changelist > It's not md5, it's sha256. md5 should not be used anymore. But what > Romeo does is to run a script from cron every 5 minutes. Daily runs, > obviously, daily. It's not suited for the task at hand. But if you ask > me, I don't like this reactive approach. I use git repo with hooks to > apply changes as they are pushed to the central repository. But that's > the nicest about *unix. There are lots of ways of doing things. You can > copy things manually, create scripts to semi-automate things, use > version control, use puppet and friends, etc. It's all about what you > are most comfortably with. > > Cheers, > > -- > Giancarlo Razzolini > GPG: 4096R/77B981BC
