Fix: Move baseline storage to toolkit directory
Issue: Baseline was stored in /var/lib/suspicious-login-monitor/ which is outside the toolkit directory structure. When toolkit is deleted, baseline data would remain on system. Changes: - Changed BASELINE_DIR from /var/lib/suspicious-login-monitor to $TOOLKIT_ROOT/data/suspicious-login-monitor - Migrated existing baseline.dat to new location - Removed old /var/lib/suspicious-login-monitor directory Result: All toolkit data now contained within toolkit directory. When toolkit is deleted, baseline is removed automatically. Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
This commit is contained in:
cschantz
@@ -49,8 +49,8 @@ PANEL_EVENTS="$TMP_DIR/panel_events_$$.txt"
|
||||
SUDO_EVENTS="$TMP_DIR/sudo_events_$$.txt"
|
||||
SUSPICIOUS_IPS="$TMP_DIR/suspicious_ips_$$.txt"
|
||||
|
||||
# Baseline storage (persistent across runs)
|
||||
BASELINE_DIR="/var/lib/suspicious-login-monitor"
|
||||
# Baseline storage (persistent across runs, within toolkit directory)
|
||||
BASELINE_DIR="$TOOLKIT_ROOT/data/suspicious-login-monitor"
|
||||
BASELINE_FILE="$BASELINE_DIR/baseline.dat"
|
||||
mkdir -p "$BASELINE_DIR" 2>/dev/null
|
||||
|
||||
|
||||
Reference in New Issue
Block a user