##################################################
# 
#  cfagent.conf
#
#  This is a simple file for getting started with
#  cfengine. It is harmless. If you get cfengine
#  running with this file, you can build on it.
#
##################################################

###
#
# BEGIN cfagent.conf (Only hard classes in this file )
#
###

control:

	Syslog = ( on )  # enable syslog logging

	actionsequence = ( checktimezone files processes shellcommands )

	domain         = ( __DOMAIN )
	timezone       = ( __TIMEZONE )

	smtpserver     = ( __HOST.__DOMAIN )  # used by cfexecd
	sysadm         = ( root@__HOST.__DOMAIN )  # where to mail output

    schedule       = ( Min00_05 )       # run once an hour

######################################################################

files:

	# Check some important files

	/etc/passwd mode=644 owner=root action=warnall

	# Do a tripwire check on binaries!

	/usr/bin               # Scan /usr/bin dir

		owner=root,daemon  # all files must be owned by root or daemon
		checksum=md5       # use md5 or sha
		recurse=inf        # all subdirs
		action=warnall

#####################################################################

processes:

	"cfservd"  restart __CFWORKDIR/bin/cfservd

	"cfenvd"   restart "__CFWORKDIR/bin/cfenvd -H"

	"cfexecd$" restart __CFWORKDIR/bin/cfexecd

######################################################################

shellcommands:

      "/bin/echo 'Cfengine successfully executed.' && /bin/echo 'Replace me with something useful.'"


###
#
# END cfagent.conf
#
###