rdalverny/ssh-audit-report.sh

## ssh-audit-report.sh
#!/bin/bash
# Wrapper for automated audits,
# using https://github.com/arthepsy/ssh-audit
#

set -euo pipefail

SSHAUDIT="ssh-audit.py"
OPTIONS="--batch --no-colors"
CMD="${SSHAUDIT} ${OPTIONS} $*"
OUTPUT=$(./${CMD})

WARN=$(echo "${OUTPUT}" |grep -c "\[warn\]")
FAIL=$(echo "${OUTPUT}" |grep -c "\[fail\]")
REC=$(echo "${OUTPUT}" |grep -c "(rec)")

echo "$OUTPUT"
echo
echo "Summary:"
echo " * ${FAIL} errors"
echo " * ${WARN} warnings"
echo " * ${REC} recommandations"
echo "Command: ${CMD}"

if [[ "${WARN}" != "0" && "${FAIL}" != "0" ]]; then
    echo "Result: FAIL"
    echo "Status: 2"
    exit 2
fi

echo "Result: OK"
echo "Status: 0"
exit 0
	#!/bin/bash
	# Wrapper for automated audits,
	# using https://github.com/arthepsy/ssh-audit
	#

	set -euo pipefail

	SSHAUDIT="ssh-audit.py"
	OPTIONS="--batch --no-colors"
	CMD="${SSHAUDIT} ${OPTIONS} $*"
	OUTPUT=$(./${CMD})

	WARN=$(echo "${OUTPUT}" \|grep -c "\[warn\]")
	FAIL=$(echo "${OUTPUT}" \|grep -c "\[fail\]")
	REC=$(echo "${OUTPUT}" \|grep -c "(rec)")

	echo "$OUTPUT"
	echo
	echo "Summary:"
	echo " * ${FAIL} errors"
	echo " * ${WARN} warnings"
	echo " * ${REC} recommandations"
	echo "Command: ${CMD}"

	if [[ "${WARN}" != "0" && "${FAIL}" != "0" ]]; then
	echo "Result: FAIL"
	echo "Status: 2"
	exit 2
	fi

	echo "Result: OK"
	echo "Status: 0"
	exit 0