NܜidZddlZddlZddlZddlZddlZddlZddlZddlZddl m Z m Z m Z ejdd ddl Z d Zd Zd Zd Zd Zd ZdZdZdZdZdZdZdZdZdZdZ dZ!dZ"dZ#dZ$GddZ%GddZ&d4d Z'd4d!Z(d4d"Z)d#a*d5d$Z+d%Z,d&Z-d'Z.d(Z/d)Z0d*Z1d+Z2d,Z3d-Z4d.Z5d/Z6d0Z7d1Z8d2Z9e:d3k(re9yy#e$redej dYwxYw)6u AEI System Operational Audit — Automated Health Check 53 checks across remote (AWS), local (WSL2), and aei-webserv2 servers. Read-only — no uploads, no writes, no file modifications. Phases: 1 Remote Services (1-5) — httpd, mysqld, crond, postfix, python3.6 2 Remote Cron Health (6-11) — scheduler cron, retry queue, ticketcron, PDF cleanup 3 Remote Disk & Storage (12-15)— disk free, log sizes, uploads size 4 Remote Security (16-19) — known exposures, SSL, PHP extensions 5 Remote Photo API (20-25) — upload.php, getimagelisting, fetch_image, delete endpoints 6 Remote Database (26-28) — connection, meter_files, jobs table 7 Local Services (29-33) — apache, mariadb, fail2ban, cron, /mnt/dropbox 8 Local Firewall (34-38) — ipset, fail2ban, jail count, HTTP, SSL 9 Local Cron Health (39-42) — DB sync, process_queue, backups, disk 10 Cross-System (43-44) — scheduler login, photo API 11 aei-webserv2 Health (45-51) — apache, mysql, endpoints, DB, dropbox mount Usage: python3 audit/system_audit.py # Full audit (both servers) python3 audit/system_audit.py --remote-only # Remote only python3 audit/system_audit.py --local-only # Local only python3 audit/system_audit.py --json # JSON output python3 audit/system_audit.py --warn-only # Only WARN + FAIL Prerequisites: - pip3 install requests paramiko - SSH key at /root/.ssh/aei_production.pem - Network access to aeihawaii.com and upload.aeihawaii.com N)datetime timedeltatimezoneignorezUnverified HTTPS request)messagezERROR: pip3 install requestsz/root/.ssh/aei_production.pemJulianz 18.225.0.90 schedularzM1gif9!6mandhdesign_schedularzhttps://aeihawaii.com/photoapiz)https://aeihawaii.com/scheduler/login.phpzhttps://upload.aeihawaii.comz//var/www/vhosts/aeihawaii.com/httpdocs/photoapiz0/var/www/vhosts/aeihawaii.com/httpdocs/schedulerz aei@89806849aeiuserz192.168.141.21955222z/var/www/html/upload upload_userzP@55w02d778899 Schedularc$eZdZdZdZdZdZdZdZy)ColorszzzzzzN) __name__ __module__ __qualname__PASSFAILWARNINFORESETBOLD./var/www/html/AEI_REMOTE/audit/system_audit.pyrrPs D D D D E DrrceZdZdZddZdZy)ResultzSingle check result.cJ||_||_||_||_||_y)Nstepnamestatusdetailphase)selfr"r#r$r%r&s r__init__zResult.__init__Zs%     rcv|j|j|j|j|jdS)Nr!r!)r's rto_dictzResult.to_dictas/IIIIkkkkZZ   rN)r+)rrr__doc__r(r*rrrrrXs rrc\ tjddtddddddtdt|g dd| }|j j |jj |jfS#tj$rYy t$r}d t|d fcYd }~Sd }~wwxYw)z%Run command on remote server via SSH.sshz-i-oConnectTimeout=10StrictHostKeyChecking=no BatchMode=yes@Tcapture_outputtexttimeoutr+zSSH command timed outrr+rN) subprocessrunSSH_KEYSSH_USERSSH_HOSTstdoutstripstderr returncodeTimeoutExpired Exceptionstrcmdr7resultes rssh_cmdrIjs  D'4)< -t_z8* %s , dG   }}""$fmm&9&9&;V=N=NNN  $ $.- 3q61}$A3A66B+ B+ B& B+&B+c& tj|ddd|}|jj|jj|j fS#tj $rYyt$r}dt|dfcYd}~Sd}~wwxYw)zRun command locally.T)shellr5r6r7)r+zCommand timed outrr+rN) r9r:r>r?r@rArBrCrDrEs r local_cmdrMys tDtW }}""$fmm&9&9&;V=N=NNN  $ $*) 3q61}s$AAB0B8 B B Bc\ tjddtddddddtdt|g dd| }|j j |jj |jfS#tj$rYy t$r}d t|d fcYd }~Sd }~wwxYw)z6Run command on aei-webserv2 (192.168.141.219) via SSH.r.z-pr/r0r1r2r3Tr4r8r+rN) r9r:LOCAL_SSH_PORTLOCAL_SSH_USERLOCAL_SSH_HOSTr>r?r@rArBrCrDrEs rlocal_server_ssh_cmdrRs  D. & -t_q 0 13 8 dG  }}""$fmm&9&9&;V=N=NNN  $ $.- 3q61}rJFc try|r|jdk(rytjtjtj tj dj|jtj}|jrd|jnd}td||jdtjd|jd d |j| y) zPrint a formatted result line.Nr)rrrSKIP — r+z [4sz] >2. ) _quiet_moder$rrrrrgetrr%printr"r#)r warn_onlycolor detail_strs r print_resultr`sQXX' V[[ V[[  c!((FLL! ()xx5 #RJ CwqxxmFLL>AFF2;b UVrcntrytdtj|tjy)zPrint phase header.N )rYr[rrr)r#s r print_phasercs' Bv{{mD6&,, 01rc`|j}|sytjd|tj}|rWt |j d}|j dj }ddddddd }||j|dzS t |dz S#t$rYywxYw) z3Parse du/df output to MB. Handles K, M, G suffixes.rz^([\d.]+)([KMGTP]?)$rgMbP?ii@)r+KMGTP) r?rematch IGNORECASEfloatgroupupperrZ ValueError)size_strmvalunit multipliers r parse_size_mbrxs~~H  ((BMMBAAGGAJwwqz!%adzZ Z^^D!,,,X%% s B!! B-,B-c  tdd}t|d\}}}|dk7r9d|vr5tgddD]#\}}|jt ||d d d %y |j d  fd}|d}|j xrt|dkD} |jt dd| rdnd | r|dndd |d}|j xrt|dkD} |jt dd| rdnd | r|dndd |d}|j xrt|dkD} |jt dd| rdnd | r|dndd |d}|j xrt|dkD} |jt dd| rdnd | r|dndd |d} d| v} |jt dd | rdnd | r| nd!d y )"z,Checks 1-5: Core services running on remote.u!Phase 1 — Remote Services (1-5)aJecho '===HTTPD==='; ps aux | grep httpd | grep -v grep | wc -l; echo '===MYSQL==='; ps aux | grep mysqld | grep -v grep | wc -l; echo '===CROND==='; ps aux | grep crond | grep -v grep | wc -l; echo '===POSTFIX==='; ps aux | grep 'postfix/master' | grep -v grep | wc -l; echo '===PYTHON==='; /usr/local/bin/python3.6 --version 2>&1r7r timed out)z Apache httpdz MySQL mysqldcrondPostfixz Python 3.6rrzSSH connection failedzRemote ServicesN===ctD]B\}}|j|k(s|dztks,|dzjcSyNrr+ enumerater?lenr#issectionss rsectionz&phase_remote_services..sectionTh' /DAqwwyD QUS]%:A,,.. /rHTTPDzApache httpd runningr processes not runningMYSQLrezMySQL mysqld runningCRONDz crond runningPOSTFIXzPostfix runningPYTHONz3.6zPython 3.6 availablez not found)rcrIrappendrsplitisdigitint) resultsrFouterrrcrr#rcountokpyverrs @rphase_remote_servicesrs34 23+LCb Qw;#% !cefg `GAt NN6!T63JL]^ _ `yyH G E  +SZ!^B NN6!3rVv24UG:.-IZ\] G E  +SZ!^B NN6!3rVv24UG:.-IZ\] G E  +SZ!^B NN6!_f24UG:.-IZ\] I E  +SZ!^B NN6!."&24UG:.-IZ\] H E %B NN6!3rVv#%%;8IKLrc B tdd}t|d\}}}|dk7r7d|vr3tddD]#}|jt |d |d d d %y |j dfd}|d}|r |j }|dd|dd|d} t j} t j| jd| d} | | z jdz } | dkr#|jt ddd| ddd n"|jt ddd| ddd n|jt ddd dd |d} | r | j }|dd|dd|d} t j} t j| jd| d} | | z jdz } | d kr#|jt d!d"d| ddd n"|jt d!d"d| dd#d n|jt d!d"d dd |d%}|r |j }|dd|dd|d} t j} t j| jd| d} | | z jdz } | dkr#|jt d&d'd| ddd n"|jt d&d'd| ddd n|jt d&d'ddd |d(}|r"|jt d)d*d|d dd n|jt d)d*dd+d |d,} t|}|dk(r|jt dd-dd.d n!|jt dd-d|d/d |d1} t|}|dkr"|jt d2d3d|d4d y |jt d2d3d|d5d y #ttf$r(|jt dddd|d dd YwxYw#ttf$r"|jt d!d"dd$d YPwxYw#ttf$r"|jt d&d'dd$d YwxYw#t$r"|jt dd-dd0d Y)wxYw#t$r!|jt d2d3dd6d Yy wxYw)7z+Checks 6-11: Cron jobs running on schedule.u%Phase 2 — Remote Cron Health (6-11)aecho '===SCHEDULER_CRON==='; sudo grep -a 'scheduler/cron' /var/log/cron 2>/dev/null | tail -1; echo '===RETRY_QUEUE==='; sudo grep -a 'process_retry_queue' /var/log/cron 2>/dev/null | tail -1; echo '===TICKETCRON==='; sudo grep -a 'ticketcron' /var/log/cron 2>/dev/null | tail -1; echo '===PDF_CLEANUP==='; crontab -l 2>/dev/null | grep -iE 'pdf|cleanup|tmp' || echo ''; echo '===FAILED_QUEUE==='; find /var/www/vhosts/aeihawaii.com/httpdocs/photoapi/queue/failed/ -type f -mtime +7 2>/dev/null | wc -l; echo '===QUEUE_SIZE==='; ls /var/www/vhosts/aeihawaii.com/httpdocs/photoapi/queue/ 2>/dev/null | grep -v failed | grep -c '.json' 2>/dev/null || echo '0'rzr{rr| z Cron check r SSH failedz Remote CronNrctD]B\}}|j|k(s|dztks,|dzjcSyrrrs rrz"phase_remote_cron..sectionrrSCHEDULER_CRON rrez%Y %b %d %H:%M:%S< zscheduler/cron last ranr.0fz min agorz min ago (>10 min) parse error: zno cron log entry found RETRY_QUEUEzprocess_retry_queue.py last ranz min ago (>20 min)z parse error TICKETCRONzticketcron last ran PDF_CLEANUP zPDF cleanup cron existsznot found in Julian's crontab FAILED_QUEUEzNo stale failed queue itemsznone >7 days oldz items >7 days oldcould not check QUEUE_SIZE zRetry queue sizez itemsz items (>10)z0 items)rcrIrangerrrrnowstrptimeyear total_secondsrr IndexErrorr)rrFrrrrr cron_linepartsts_strr cron_timeage_min retry_line ticket_linepdf_cron failed_oldr queue_sizers @rphase_remote_cronrs78 K3+LCb Qw;#%q" ^A NN6!{1#%6 m\ ] ^yyH()I zOO%Eaz58*AeAhZ8F,,.C ))SXXJax*@BUVIY557"7SV-W_H`bopqva)>7SV-WiHjlyz{ va!6@Y[hij}%Hva!:FHSbMS`abva!:FDcerst(JlJ A: NN6"&CVM_ano p NN6"&CVPUwVhMikxy z &JYJ B; NN6"&8&UG6BRTab c NN6"&8&UG-XabeceXfWgHhjwx y z$J' p NN6!%FR]`mn o p$J' c NN6!%:FMS`a b c( lvb"?IZ\ijkl Yvb"4fiWXYsd=B/dev/null | awk 'NR==2{print $4}' echo '===MAILLOG===' du -sh /var/log/maillog 2>/dev/null | awk '{print $1}' echo '===UPLOADS===' du -sh /var/www/vhosts/aeihawaii.com/httpdocs/scheduler/uploads/ 2>/dev/null | awk '{print $1}' echo '===TMP_FREE===' df -BG /tmp 2>/dev/null | awk 'NR==2{print $4}' r{rr|rz Disk check rrz Remote DiskNrctD]B\}}|j|k(s|dztks,|dzjcSyrrrs rrz"phase_remote_disk..sectionrr DISK_FREErir+2zDisk free > 50GBrrzGB freerrzGB free (<50GB)zGB free (<20GB)rMAILLOGrf zMaillog size < 1GB0z (>=1GB)UPLOADSzscheduler/uploads/ sizeunknownTMP_FREErrzz/tmp free > 1GBGBz GB (<1GB)) rcrIrrrrreplacerorrrx)rrFrrrrr disk_freegbmaillogml_mbuploadstmp_freers @rphase_remote_diskrts;< C3+LCb Qw;#%r2 ^A NN6!{1#%6 m\ ] ^yyH $,,S"5I k 9  8 NN6"&8&RHGBTVcd e 2X NN6"&8&RHOB\^kl m NN6"&8&RHOB\^kl m i G ' "E t|vb"63P]^_vb"67)8@TVcdei G NN6"7AUIWdefz"**33Hi 8_ 7 NN6"&7Bs82P]^ _ NN6"&7Bs89AUWde f- kvb"4f i[>Y[hijk. ivb"3V}XJ=WYfghis+ A=G='2H."H.=*H+*H+.*IIc Ptdd}t|d\}}}|dk7r7d|vr3tddD]#}|jt |d|d d d %y |j d fd}|d}|dk(r|jt ddddd n|jt ddd dd |d}|dk(r|jt ddddd n|jt ddd dd |d} | rd| vr | j ddd} t j| d} | t jtjjd z j} | dkDr"|jt d d!d| d"d nE| dkDr"|jt d d!d#| d$d n|jt d d!d d%d n|jt d d!d#d(d |d)jd*j d*} hd+}| Dchc]1}|j!s|j!j#3}}||z }|s7|jt d,d-dd.j%t'|d y |jt d,d-d d/d.j%t'|d y #ttf$r(|jt d d!d#d&| d d'd YwxYwcc}w)0z/Checks 16-19: Known security exposures and SSL.u#Phase 4 — Remote Security (16-19)a echo '===SLSQL===' [ -f /var/www/vhosts/aeihawaii.com/httpdocs/photoapi/sl.sql ] && echo 'EXISTS' || echo 'GONE' echo '===MYSQLDBNE===' [ -d /var/www/vhosts/aeihawaii.com/httpdocs/mysqldbne ] && echo 'EXISTS' || echo 'GONE' echo '===SSL===' echo | openssl s_client -servername aeihawaii.com -connect aeihawaii.com:443 2>/dev/null | openssl x509 -noout -enddate 2>/dev/null echo '===PHP_EXT===' php -m 2>/dev/null | grep -iE '^(mysqli|curl|gd|json|mbstring)$' | sort | tr '\n' ',' rr{rr|rzSecurity check rrzRemote SecurityNrctD]B\}}|j|k(s|dztks,|dzjcSyrrrs rrz&phase_remote_security..sectionrrSLSQLGONEzphotoapi/sl.sql removedrz not presentu.STILL EXISTS — publicly accessible SQL dump! MYSQLDBNEzmysqldbne/ removedu#STILL EXISTS — old DB admin tool!SSL notAfter==r%b %d %H:%M:%S %Y %ZtzinforzSSL cert > 30 days days leftr days left (<30)EXPIREDrrzcould not check SSLPHP_EXT,>gdcurljsonmysqlimbstringzPHP extensions present, z missing: )rcrIrrrrrrrrutcrdaysrrrrstripr?lowerjoinsorted)rrFrrrrrslsqldbnessl_linedate_strexpiry days_leftextsexpectedrHfoundmissingrs @rphase_remote_securityrs'56 C3+LCb Qw;#%r2 fA NN6!qc%:FLRcd e fyyH G E vb";V]Tefgvb";VEuxIJ K ; D v~vb"6 O`abvb"6@egxyzu~HK8+ y~~c1-a0H&&x1GHF(,,x||"<"D"DD"D"QQWWI2~vb*>9+U_H`bstuQvb*>9+UeHfhyz{vb*> Sdef vb"6@UWhij 9  $ $S ) / / 4D;H(, :1 QWWY__  :E :G vb":FDIIfUZmD\^opqvb":FiPTPYPYZ`ahZiPjOkDlnA BJ' y NN6"&:FmT\]`^`TaSbDcevw x y ;sCK)9L# L#)3L L c " td tjtdddidd} |j }|j t dd d d |jd d  tjtdtdddd} |j }|j t ddd d |jdd  tjtdtdddd}|jd vr,|j t d!d"d d |jd n+|j t d!d"dd |jd  tjtd#d$d%ddd} |j }|jd&dur|j t d'd(d d)d n|j t d'd(dd*d  tjtd+d$d%gd,dd} |j }|jd&dur|j t d-d.d d)d n|j t d-d.dd*d  tjd0d$d%ddd1} |j }|jd&dur|j t d2d3d d)d n|j t d2d3dd*d yy#t$rl|jdk(r-|j t dd dd |jdd n,|j t dd dd |jdd YwxYw#tj$r5}|j t dd dt|ddd Yd}~8d}~wwxYw#t$r0|j t dddd |jdd YwxYw#tj$r5}|j t dddt|ddd Yd}~Zd}~wwxYw#tj$r5}|j t d!d"dt|ddd Yd}~d}~wwxYw#t$r0|j t d'd(dd |jdd YwxYw#tj$r5}|j t d'd(dt|ddd Yd}~d}~wwxYw#t$r0|j t d-d.d d |jd/d YwxYw#tj$r5}|j t d-d.dt|ddd Yd}~d}~wwxYw#t$r/|j t d2d3d d |jd/d YywxYw#tj$r4}|j t d2d3dt|ddd Yd}~yd}~wwxYw)4z4Checks 20-25: Photo API endpoints respond correctly.u$Phase 5 — Remote Photo API (20-25) /upload.php auth_token invalid_testrzTrr7verifyrzupload.php returns JSONrHTTP z, JSON responsezRemote Photo APIrz but not JSONr , not JSONNPz/getimagelisting.phpr)r job_id)datar7r zgetimagelisting.php respondsz, JSONz/fetch_image.phpznonexistent.jpg)r filename)paramsr7r )rizfetch_image.php respondsz /delete.php bad_tokenztest.jpgsuccesszdelete.php rejects bad authzrejected invalid tokenzaccepted invalid token!z/delete_image.php)r  filenamesz!delete_image.php rejects bad authz, non-JSON rejectionz:https://upload.aeihawaii.com/upload/delete_local_photo.phpFz'delete_local_photo.php rejects bad auth) rcrequestspostREMOTE_API_BASErrr status_coderrRequestExceptionrD AUTH_TOKENrZ)rresprrHs rphase_remote_photo_apir%ss67g}}0 <#/"@%'6 a99;D NN6"&?$)$*:*:);?"KM_a b l}}00DE1;s"K%'6 ]99;D NN6"&Df$)$*:*:);6"BDVX Y h||//?@2PR S NN6"&@&$)$*:*:);"<>PR S k}}0 <1<*"U%'6 ]99;Dxx "$.vb*G&>@R TUvb*G&?AS UVq}}00AB1@R TUvb*Mv&?AS UVw||X2=:#V$&u6 g99;Dxx "$.vb*SU[&>@R TUvb*SU[&?AS UVUm a3&vb*CV(-d.>.>-?}&MOa cdvb*CV(-d.>.>-?z&JL^ `a  a  $ $gvb";VSVCR[Rdeffg ] NN6"&Df$)$*:*:);:"FHZ\ ] ]  $ $lvb"@&#a&QTRT+Wijkkl  $ $hvb"$$U A T*WA V )A1MM!MM!!N)4*N$$N),5O%!O($O%%O((P0;*P++P03Q;*Q66Q;>5R73R:6R77R::T *S==T5T>:U=T>>UV *VV  5WWWWX*X  Xc< tddtdtdtdtdtdtdtdtdtd}t |d \}}}|j d  fd }|d }|j d k(r|jtdddddn!|jtddd|ddd|d} t|}|jtddd|ddd|d} t| }|jtddd|dddy#t$r$|jtddd|dddYcwxYw#t$r$|jtddd| dddYywxYw)z$Checks 26-28: Database connectivity.u#Phase 6 — Remote Database (26-28)z' echo '===SELECT1===' mysql -u  -p'' zC -N -e "SELECT 1;" 2>&1 echo '===METER_FILES===' mysql -u zT -N -e "SELECT COUNT(*) FROM meter_files;" 2>&1 echo '===JOBS===' mysql -u z- -N -e "SELECT COUNT(*) FROM jobs;" 2>&1 rzr{rctD]B\}}|j|k(s|dztks,|dzjcSyrrrs rrz&phase_remote_database..sectionrrSELECT11zMySQL connection worksrz SELECT 1 OKzRemote DatabaserNr METER_FILESzmeter_files table accessibler rowsJOBSzjobs table accessible) rcDB_USERDB_PASSDB_NAMErIrr?rrrrr) rrFrrrrsel1mfrjobsrs @rphase_remote_databaser8ts56Yd7)2gY/Yd7)2gY/Yd7)2gY/ C3+LCbyyH 9 D zz|svb":FMSdefvb":FD"IO`ab  BgBvb"@&USTIUZJ[]nop 6?DbD vb"96eAYeCTVghi gvb"@&"Sb'Sdefg bvb"9649N_`abs$-D>-E.>*E+*E+.*FFc tdtd\}}}|j}|jxrt |dkD}|j t dd|rdnd|r|dnd d td \}}}|j}|jxrt |dkD}|j t d d |rdnd|r|dnd d td\}}}|j}|jxrt |dkD}|j t dd|rdnd|r|dnd d td\}}}|j}|jxrt |dkD}|j t dd|rdnd|r|dnd d td\}}}|dk(xr|jdk7}|j t dd|rdnd|rdndd y)z,Checks 29-33: Core services on local server.u"Phase 7 — Local Services (29-33)zDpgrep -c apache2 2>/dev/null || pgrep -c httpd 2>/dev/null || echo 0rzApache runningrrrrzLocal ServiceszFpgrep -c mariadbd 2>/dev/null || pgrep -c mysqld 2>/dev/null || echo 0rzMariaDB runningz'pgrep -c fail2ban 2>/dev/null || echo 0zfail2ban runningz#pgrep -c cron 2>/dev/null || echo 0 z cron runningz9[ -d /mnt/dropbox ] && ls /mnt/dropbox/ | head -3 | wc -lr!z/mnt/dropbox/ accessiblemounted and readablenot accessibleN)rcrMr?rrrr)rr_rrrs rphase_local_servicesrAs45abJCB IIKE  +SZ!^B NN6"."&24UG:.-IY[\cdJCB IIKE  +SZ!^B NN6"/2624UG:.-IY[\DEJCB IIKE  +SZ!^B NN6"0B&F24UG:.-IY[\@AJCB IIKE  +SZ!^B NN6"nf24UG:.-IY[\VWJCB q 'SYY[C'B NN6"8B&F460&1z is in set"zAWS IP in trusted_whitelistrrz whitelistedu! NOT in ipset — sync will fail!zLocal FirewallzQsudo fail2ban-client status 2>/dev/null | grep 'Jail list' | sed 's/.*://;s/ //g'rFNrzsudo fail2ban-client status z 2>/dev/null | grep T#zAWS IP not banned in fail2banzchecked z jailsz BANNED in: rr$zfail2ban jail countrrz jails (expected ~22)r7r %zupload.aeihawaii.com respondsrrzecho | openssl s_client -servername upload.aeihawaii.com -connect localhost:443 2>/dev/null | openssl x509 -noout -enddate 2>/dev/nullrrrrr&zLocal SSL cert > 30 daysrrrrrrr)rcrMAWS_IPrrrr?rrrrZ LOCAL_URLr!r"rDrrrrrrrrrr)rrr@rrjjailsbanned banned_injailj_out jail_countr$rHrrrs rphase_local_firewallrRs?@?xuMNJCB  B NN6";rVv57VHL1xGh=i*,- npJCB # # <1!'')QWWY tfDXY_X` ab q! U?F   T " # vb"A6 (U F;=MO P vb"A6 +DIIi,@+ABDTV WUJRvb"7J||Ir%@vb"A6 %d&6&6%78:JL M 5JCBc yyya(+113H&&x1GHF(,,x||"<"D"DD"D"QQWWI2~vb*Df)2 :&>@P RSQvb*Df)2 3C&DFV XYvb*DfiYijkYS vb"vb"A6!!fSbk+;= > >>,J' y NN6"&@&MZ]^a_aZbYcJdfvw x ys8=L%L%AL*C%M5*M2=*M--M253N+*N+c tdtd\}}}|r<|jtdddtj j |dnTtd\}}}|r%|jtdddd |d d dn|jtdddd dtd \}}}|r"|jtdddd|dn:td\}}}|jtdddd|rd|d dndzdtd\}}}|rZ|dk(rUd|vrtj j |n|jd d }|jtddd|dn|jtdddddtd\}}}|jdd} t|}|dk\r#|jtddd|d d!dy |d"k\r#|jtddd|d d#dy |jtddd$|d d%dy #t$r$|jtdddd&|dYy wxYw)'z2Checks 39-42: Local cron jobs, disk, and database.u%Phase 9 — Local Cron Health (39-42)zfind /var/www/html/map_dropbox/logs/ -name 'sync*.log' -mtime -1 2>/dev/null | head -1 || find /var/log/ -name '*database*sync*' -mtime -1 2>/dev/null | head -1'zdaily_database_sync ran <24hrz Local CronzJgrep -a 'map_dropbox\|database_sync' /var/log/syslog 2>/dev/null | tail -1rz last log: Nrzno recent log foundz.pgrep -f 'process_queue' 2>/dev/null | head -1(zprocess_queue.sh runningzPID z=grep -a 'process_queue' /var/log/syslog 2>/dev/null | tail -1znot currently runningu — last: r+zfind /var/www/SQL_backups/ -name '*.sql*' -mtime -1 2>/dev/null | head -1 || ls -lt /var/www/SQL_backups/ 2>/dev/null | head -2 | tail -1r/)zDB backup < 24h oldzno recent backup foundz df -BG / | awk 'NR==2{print $4}'rir*zLocal disk free > 50GBrrrz GB (<50GB)rz GB (<20GB)r) rcrMrrospathbasenamer?rrorr)rrr@rout2r[rrs rphase_local_cronr]s78 QJCB vb"@&"''JZJZ[^J_amnolm a  NN6"&DfPZ[_`cac[dZeNfhtu v NN6"&DfNceqr sKLJCB vb"JCB C$I p 9  8 NN6"&>2c(RT Wcd e 2X NN6"&>2c(R\H]_kl m NN6"&>2c(R\H]_kl m pvb":FmT]S^D_amnops2I8'I "I*I0/I0c td tjtdd}|jdk(r,|j t dddd |jd n+|j t ddd d |jd  tjtddtidd} |j}|j t dddd |jd y #tj$r4}|j t ddd t|d dd Yd }~d }~wwxYw#t$r/|j t ddd d |jdd Yy wxYw#tj$r4}|j t ddd t|d dd Yd }~y d }~wwxYw)z(Checks 43-44: Cross-server connectivity.u.Phase 10 — Cross-System Connectivity (43-44)rzTrFr+zScheduler login page respondsrrz Cross-SystemrrNrr r r ,zPhoto API responds (JSON)r)rcrrZREMOTE_SCHEDULER_URLr!rrr"rDrr r#rrr)rr$rHrs rphase_cross_systemrbKs@A <||0"TJ   s " NN6"&Ev$)$*:*:);"; < << Y NN6"&A6$)$*:*:);:"FX Y Y  $ $<vb"=v!!fSbk>; < </dev/null || echo 0; echo '===MYSQL==='; pgrep -c mysqld 2>/dev/null || pgrep -c mariadbd 2>/dev/null || echo 0; echo '===UPLOAD_PHP==='; [ -f zb/uploadlocallat_kuldeep.php ] && echo 'EXISTS' || echo 'MISSING'; echo '===DELETE_LOCAL==='; [ -f z^/delete_local_photo.php ] && echo 'EXISTS' || echo 'MISSING'; echo '===CHECK_PHOTOS==='; [ -f z\/check_photos.php ] && echo 'EXISTS' || echo 'MISSING'; echo '===LOCAL_PHOTOS==='; mysql -u r'r(zo -N -e 'SELECT COUNT(*) FROM local_photos;' 2>&1; echo '===DROPBOX==='; ls /mnt/dropbox/ 2>&1 | head -3 | wc -lrr{rr|zConnection refusedzNo route-4zwebserv2 check rzSSH to z failed: Nrzwebserv2 HealthrctD]B\}}|j|k(s|dztks,|dzjcSyrrrs rrz&phase_webserv2_health..sectionrrAPACHEzApache running (webserv2)rrrr.zMySQL running (webserv2) UPLOAD_PHPEXISTS/z!uploadlocallat_kuldeep.php existspresentMISSING DELETE_LOCAL0zdelete_local_photo.php exists CHECK_PHOTOS1zcheck_photos.php exists LOCAL_PHOTOSrzlocal_photos table accessiblerr/rDROPBOXF3z"/mnt/dropbox accessible (webserv2)r>r?)rcWEBSERV2_UPLOAD_DIRWEBSERV2_DB_USERWEBSERV2_DB_PASSWEBSERV2_DB_NAMErRrrrrQrrrrr) rrFrrrrrrrr$lpdropboxrs @rphase_webserv2_healthr{ns?:;  $$%#$%#$%$%T*:);2>N=OP2 2 (R8LCb QwK3&*>#*EWZIZr2 eA NN6!qc%:F$+N+;9S"XJ"OQbd e e yyH H E  +SZ!^B NN6"9R6V24UG:.-IZ\] G E  +SZ!^B NN6"8B&F24UG:.-IZ\]\ "F 8 B NN6"AR6U['))y:KMN^ $F 8 B NN6"=vQW'))y:KMN^ $F 8 B NN6"726'))y:KMN  BhBvb"A6eTUYV[K\^opq i GG  QY NN6"BbFV\460zmain..>1188v+=Q>c3@K|]}|jdk(sdyw)rrNrrs rrzmain.. rrc3@K|]}|jdk(sdyw)rrNrrs rrzmain..!rrc3@K|]}|jdk(sdyw)rTrNrrs rrzmain.."rrr)totalpasswarnfailskip) timestampelapsed_secondssummaryrre)indentz zSummary:rz checks in z.1frz zPASS: zWARN: zFAIL: z SKIP: r+rz zFailed checks:rrWrXrUz Warnings:r),argparseArgumentParser add_argument parse_argsrrYtimer[rrrrrstrftime remote_only local_onlyrr`r]rrrr%r8rArRr]rbr{sumr isoformatroundr*dumpsrrrr$r"r#r%sysexit) parserargsr start_timer\elapsed pass_count warn_count fail_count skip_countroutputs rmainrs  $ $1O PF  Cgh |Bcd JK   HLLN334GHIJK    ' ) __ & ( 5 7 ??g&yyRS\ 0Q/ 0 '"yyRS\ 0Q/ 0 '"yyRS\ 0Q/ 0 g&yyRS\ 0Q/ 0 w'yyRS\ 0Q/ 0 g&yyRS\ 0Q/ 0   W%yyRS\ 0Q/ 0 W%yyRS\ 0Q/ 0 !yyRS\ 0Q/ 0   DOO7#yyRS\ 0Q/ 0   g&yyRS\ 0Q/ 0iikJ&G>>>J>>>J>>>J>>>J LE yy!113$Wa0"""" .55 5   djj*+ :,  6;;-x ~Qug[QT UVWX V[[M |FLL> VJ< ~R VJ< ~?-78J<(B@ A > D ^FLL>B C G88v%D 2affXU188*EF G >$.. D Yv||n= > G88v%D 2affXU188*EF G HH*q.Q(a(36s[ __main__)r)F);r,rrrYrlr9rrwarningsrrrfilterwarningsr ImportErrorr[rr;r<r=rIr2r3r4r rarJREMOTE_PHOTOAPIREMOTE_SCHEDULERr#rPrQrOrurvrwrxrrrIrMrRrYr`rcrxrrrrr%r8rArRr]rbr{rrrrrrs@  22*DE *      !2B * CE  ", #  $     W2 (<L@rYlAiJGBVlw`,b`$aPClN4pp