Modify 2.1 for compatibility.

bin/hardening/2.1_tmp_partition.sh

@@ -1,7 +1,7 @@
 #!/bin/bash
 
 #
-# harbian audit Debian 7/8/9 Hardening
+# harbian audit Debian 7/8/9 or CentOS Hardening
 # Modify by: Samson-W (sccxboy@gmail.com)
 #
 
@@ -17,7 +17,6 @@ HARDENING_LEVEL=2
 # Quick factoring as many script use the same logic
 PARTITION="/tmp"
 TMPMOUNTNAME="tmp.mount"
-TMPMOUNTO="/usr/share/systemd/tmp.mount"
 
 # This function will be called if the script status is on enabled / audit mode
 audit () {
@@ -37,25 +36,20 @@ audit () {
 		fi
 	else
     	warn "$PARTITION is not partition in /etc/fstab, check tmp.mount service"
-		if [ -e $TMPMOUNTO ]; then
-			if [ $(systemctl | grep -c "tmp.mount[[:space:]]*loaded[[:space:]]active[[:space:]]mounted") -eq 1 ]; then
-		 		ok "$TMPMOUNTNAME service is active!"
-        			is_mounted "$PARTITION"
-        			if [ $FNRET -gt 0 ]; then
-        				warn "$PARTITION is not mounted"
-            			FNRET=3
-        			else
-        				ok "$PARTITION is mounted"
-            			FNRET=0
-				fi
-			else
-    			crit "$TMPMOUNTNAME service is not active!"
-				FNRET=4
+		if [ $(systemctl | grep -c "tmp.mount[[:space:]]*loaded[[:space:]]active[[:space:]]mounted") -eq 1 ]; then
+	 		ok "$TMPMOUNTNAME service is active!"
+       		is_mounted "$PARTITION"
+			if [ $FNRET -gt 0 ]; then
+       			warn "$PARTITION is not mounted"
+           		FNRET=3
+        	else
+       			ok "$PARTITION is mounted"
+          		FNRET=0
 			fi
 		else
-    		crit "$TMPMOUNTO is not exist!"
-			FNRET=1
-		fi	
+    		crit "$TMPMOUNTNAME service is not active!"
+			FNRET=4			
+		fi
 	fi
 }
 
@@ -72,7 +66,7 @@ apply () {
         $SUDO_CMD systemctl daemon-reload
         $SUDO_CMD systemctl start "$TMPMOUNTNAME"
 	elif [ $FNRET = 4 ]; then
-        $SUDO_CMD systemctl enable "$TMPMOUNTO"
+        $SUDO_CMD systemctl enable "$TMPMOUNTNAME"
 	    $SUDO_CMD systemctl daemon-reload 
 	    $SUDO_CMD systemctl start "$TMPMOUNTNAME"
 	fi