#!/bin/sh ################################################################################################ # File name fw_upgrade # # Created by ITUS # # Original version from firmware 1.51 sp1 # # VERSION NUMBER 1.51 - 8.0 # # Last Modified date 15th April 2016 # # Changes - roadrunnere42 - Now allows full web filter listing, but this version must have 4 # # additional files changed for it to work, code has also been revisited and shortened# # ramdrive removed and now use the shields tmpfs which is in ram # # usr/lib/lua/luci.model/cbi/e2guardion.lua # # etc/config/e2guardion # # etc/init.d/dnsmasq # # etc/itus/write-categories.sh # # Changes - roadrunnere42 - forgot to uncomment webfilter and one snort rule my mistake testing# # Changes - roadrunnere42 - Checks for duplicate rules and removes, tidy code and bug fixes # # removed drug rule because www.shallalist.de sit is too up and down causing script # # to stall. # # Changes - roadrunnere42 - Only new snort rules are added to the list instead of rewritting # # the whole list, complete new snort list download ever 14 days. Malicious and # # ads list, downloaded in memory and duplicate ip's are removed before writting. # # Drug rules are now updated in memory from http://www.shallalist.de and added to # # original from Itus, only updated if selected in gui. # # # # Changes - Hans run webfilter based on ads/malicious settings in UCI # # Perform DNSMASQ restart / SNORT restart only in case of updates # # Changes - Hans correction in line 17 based on Wisywig error # # Changes - Hans added rules function calls into scripts # # Changes - roadrunnere42 added ramdisk and checks to see if files exist before removing # # Changes - user8446 added option switches to curl commands as follows: added -1 to force # # connections =/> TLS1.0 for IPS, -m to exit if connection drops or host is down to keep script# # from hanging for all curl commands # # # # When changing the script please update WHAT YOU CHANGED OR ADDED, ADD 1 TO THE VERSION # # NUMBER AND DATE CHANGED. # # This will make it easied to time to come to identiy what your you have and who did what. # ################################################################################################ #set -x update_snort_rules() { if [[ -f /etc/snort/rules/test.file ]] ; then snorted="1" ; else sort -u /etc/snort/rules/snort.rules ; touch /etc/snort/rules/test.file ; fi curl -k -1 -m 40 -o /tmp/ramdisk/botcc.portgrouped.rules https://rules.emergingthreats.net/open/snort-edge/rules/emerging-botcc.portgrouped.rules curl -k -1 -m 40 -o /tmp/ramdisk/botcc.rules https://rules.emergingthreats.net/open/snort-edge/rules/emerging-botcc.rules curl -k -1 -m 40 -o /tmp/ramdisk/ciarmy.rules https://rules.emergingthreats.net/open/snort-edge/rules/emerging-ciarmy.rules curl -k -1 -m 40 -o /tmp/ramdisk/compromised.rules https://rules.emergingthreats.net/open/snort-edge/rules/emerging-compromised.rules curl -k -1 -m 40 -o /tmp/ramdisk/dshield.rules https://rules.emergingthreats.net/open/snort-edge/rules/emerging-dshield.rules curl -k -1 -m 40 -o /tmp/ramdisk/emerging-exploit.rules https://rules.emergingthreats.net/open/snort-edge/rules/emerging-exploit.rules curl -k -1 -m 40 -o /tmp/ramdisk/emerging-malware.rules https://rules.emergingthreats.net/open/snort-edge/rules/emerging-malware.rules curl -k -1 -m 40 -o /tmp/ramdisk/emerging-mobile_malware.rules https://rules.emergingthreats.net/open/snort-edge/rules/emerging-mobile_malware.rules curl -k -1 -m 40 -o /tmp/ramdisk/emerging-user_agents.rules https://rules.emergingthreats.net/open/snort-edge/rules/emerging-user_agents.rules curl -k -1 -m 40 -o /tmp/ramdisk/emerging-web_client.rules https://rules.emergingthreats.net/open/snort-edge/rules/emerging-web_client.rules curl -k -1 -m 40 -o /tmp/ramdisk/emerging-worm.rules https://rules.emergingthreats.net/open/snort-edge/rules/emerging-worm.rules curl -k -1 -m 40 -o /tmp/ramdisk/emerging-current_events.rules https://rules.emergingthreats.net/open/snort-edge/rules/emerging-current_events.rules #curl -k -1 -m 40 -o /tmp/ramdisk/emerging-trojan.rules https://rules.emergingthreats.net/open/snort-edge/rules/emerging-trojan.rules #curl -k -1 -m 40 -o /tmp/ramdisk/drop.rules https://rules.emergingthreats.net/open/snort-edge/rules/emerging-drop.rules # curl -k -1 -m 40 -o /tmp/ramdisk/emerging-web_specific_apps.rules https://rules.emergingthreats.net/open/snort-edge/rules/emerging-web_specific_apps.rules # curl -k -1 -m 40 -o /tmp/ramdisk/emerging-scan.rules https://rules.emergingthreats.net/open/snort-edge/rules/emerging-scan.rules echo "working on snort rules please wait... may take upto a minute" cat /tmp/ramdisk/*.rules > /tmp/ramdisk/alert.list sed -i 's/alert /drop /' /tmp/ramdisk/alert.list sed '/^\#/d' /tmp/ramdisk/alert.list >> /tmp/ramdisk/temp.rules sed '/^$/d' /tmp/ramdisk/temp.rules | sort | uniq > /tmp/ramdisk/snort.rules echo " Removing snort rules that ITUSnewtwork decided were causing people problems accessing web site's." sed -i '/sid:2002802/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2019237/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2018194/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2012251/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2100527/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2100649/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2009080/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2009205/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2009206/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2009207/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2009208/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2008975/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2010515/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2003099/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2101201/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2001689/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2011695/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2013359/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2013358/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2013357/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2013355/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2013354/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2013353/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2013360/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2100648/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2009080/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2101390/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2012086/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2100650/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2011803/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2012510/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2001219/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2003068/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2002995/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2011347/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2102925/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2012263/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2012848/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2001046/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2003055/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2002993/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2002992/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2001353/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2009205/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2009206/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2009207/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2009208/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2001046/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2016950/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2019509/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2011507/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2010514/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2010516/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2010518/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2010520/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2010522/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2010525/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2010527/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2012056/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2012075/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2012119/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2012205/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2012272/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2012398/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2010931/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2011764/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2103088/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2103192/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2103134/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2101852/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2015526/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2009151/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2012997/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2101201/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2016672/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2000538/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2000540/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2011367/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2012251/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2100528/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2007994/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2008066/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2012180/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2102925/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2100628/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2010697/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2013479/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2001046/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2011803/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2009768/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2019490/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2011347/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2011037/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2103133/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2103132/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2017005/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2006445/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2003927/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2010908/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2014020/s/^/#/' /tmp/ramdisk/snort.rules sed -i '/sid:2017479/s/^/#/' /tmp/ramdisk/snort.rules if [[ "$system_restarted" = "1" ]] ; then echo "Shield has been restarted so using a fresh copy of snort rules" mv /tmp/ramdisk/snort.rules /etc/snort/rules/snort.rules else value=$(cat "/sbin/counter") if [[ "$value" -le "14" ]] ; then echo "It's been " $value "days since last full update, will automatically do full update when it's been 14 days" grep -Fxvf /etc/snort/rules/snort.rules /tmp/ramdisk/snort.rules > /etc/snort/rules/snort.rules echo $((value+1)) >/sbin/counter # update counter by adding 1 else # It's been 14 days so using a fresh copy of the snort rules echo " It's been more than 14 days, so using fresh copy of rules" mv /tmp/ramdisk/snort.rules /etc/snort/rules/snort.rules echo 1 > /sbin/counter # set counter to 1 fi fi do_snort_restart=1 } ########################################################################################## update_ads_rules() { echo " starting Downloading ads rules" if [[ -f /tmp/ramdisk/snort.rules/ads.tmp ]] ; then rm -r /tmp/ramdisk/ads.tmp ; fi curl -m 40 -s -d mimetype=plaintext -d hostformat=unixhosts http://pgl.yoyo.org/adservers/serverlist.php? | sort >> /tmp/ramdisk/ads.tmp curl -m 40 -s http://winhelp2002.mvps.org/hosts.txt | grep -v "#" | grep -v "127.0.0.1" | sed '/^$/d' | sed 's/\ /\\ /g' | awk '{print $2}' | sed -e '1,3d' | sort >> /tmp/ramdisk/ads.tmp #curl -m 40 -s http://someonewhocares.org/hosts/hosts | grep -v "#" | sed '/^$/d' | sed 's/\ /\\ /g' | grep -v '^\\' | grep -v '\\$' | awk '{print $2}' | grep -v '^\\' | grep -v '\\$' | sort >> /tmp/ramdisk/ads.tmp curl -m 40 -s http://sysctl.org/cameleon/hosts | grep -v "#" | sed '/^$/d' | sed 's/\ /\\ /g' | grep -v '^\\' | grep -v '\\$' | awk '{print $3}' | grep -v '^\\' | grep -v '\\$' | sort >> /tmp/ramdisk/ads.tmp curl -m 40 -s http://ohow to check if web site is downptimate.dl.sourceforge.net/project/adzhosts/HOSTS.txt | grep -v "#" | sed '/^$/d' | sed 's/\ /\\ /g' | grep -v '^\\' | grep -v '\\$' | awk '{print $2}' | grep -v '^\\' | grep -v '\\$' | sort >> /tmp/ramdisk/ads.tmp curl -m 40 -s https://hosts.neocities.org/ -k | grep -v "#" | sed '/^$/d' | sed 's/\ /\\ /g' | awk '{print $2}' | grep -v '^\\' | grep -v '\\$' | sort >> /tmp/ramdisk/ads.tmp sleep 1 echo "Working on ads rules, this is sorting and deleting duplicate rules please wait..... may take upto 2 minutes" echo " " echo " Number of lines in new ads rule downloads" wc -l /tmp/ramdisk/ads.tmp cat /tmp/ramdisk/ads.tmp | sed '/^$/d' | sed 's/^/address=\//g' | sed -e 's/$/\/10.10.10.11/' | sort -u >> /tmp/ramdisk/ads.tmp1 echo " Number of lines following sorting and deleting duplicate rules" wc -l /tmp/ramdisk/ads.tmp1 mv /tmp/ramdisk/ads.tmp1 /etc/itus/lists/ads chmod 655 /etc/itus/lists/ads echo " " } ############################################################################################ update_malicious_rules() { # if the malicious.tmp file is present remove it,this just saves confusion if script crashes and reruns. if [[ -f /tmp/ramdisk/malicious.tmp ]] ; then rm -r /tmp/ramdisk/malicious.tmp 2>/dev/null ; fi ### Malware Updates ### curl -m 40 -s http://www.malwaredomainlist.com/hostslist/hosts.txt | grep -v "#" | sed '/^$/d' | sed 's/\ /\\ /g' | awk '{print $3}' | grep -v '^\\' | grep -v '\\$' | sort >> /tmp/ramdisk/malicious.tmp curl -m 40 -s http://mirror1.malwaredomains.com/files/justdomains | grep -v "#" | sed '/^$/d' | sed 's/\ /\\ /g' | sort >> /tmp/ramdisk/malicious.tmp curl -m 40 -s https://s3.amazonaws.com/lists.disconnect.me/simple_malvertising.txt -k | grep -v "#" | sed '/^$/d' | sed 's/\ /\\ /g' | sort >> /tmp/ramdisk/malicious.tmp curl -m 40 -s https://hosts.neocities.org/ -k | grep -v "#" | sed '/^$/d' | sed 's/\ /\\ /g' | awk '{print $2}' | grep -v '^\\' | grep -v '\\$' | sort >> /tmp/ramdisk/malicious.tmp sleep 1 echo " " echo " Working on malicious rules, sorting and deleting duplicate rules is underway please wait..... may take upto 2 minutes" echo " Number of lines in new malicious rule downloads" wc -l /tmp/ramdisk/malicious.tmp cat /tmp/ramdisk/malicious.tmp | sed '/^$/d' | sed 's/^/address=\//g' | sed -e 's/$/\/10.10.10.11/' | sort -u >> /tmp/ramdisk/malicious.tmp1 echo " Number of lines following sorting and deleting duplicate rules" wc -l /tmp/ramdisk/malicious.tmp1 mv /tmp/ramdisk/malicious.tmp1 /etc/itus/lists/malicious echo " " sleep 1 chmod 655 /etc/itus/lists/malicious } ########################################################################################## update_web_filter_rules() { ########################################################################################## FILTERS=`grep content_ /etc/config/e2guardian | grep \'1\' | cut -d "_" -f 2 | cut -d ' ' -f 1` #copy list of web filter from /etc/config/e2guardian to ramdisk so they can be changed to match what is in shallalist # ie blasphemy is in ITUS list but in shallalist.de list it's called called religion echo "$FILTERS" > /tmp/ramdisk/FILTERS if [ ! -s /tmp/ramdisk/FILTERS ] ; then wget -N http://www.shallalist.de/Downloads/shallalist.tar.gz -O /tmp/ramdisk/shallalist.tar.gz if [[ "$?" != 0 ]] ; then echo "There has been a problem downloading file" else echo "Success in downloading new web filter rules" cd /tmp/ramdisk for filter in $(cat /tmp/ramdisk/FILTERS) do if [ "$filter" == "ads" -o "$filter" == "malicious" ] ; then continue fi tar -zxvf /tmp/ramdisk/shallalist.tar.gz "BL/${filter}/domains" if [ -f /tmp/ramdisk/BL/${filter}/domains ] ; then echo "working on rules please wait may... take upto a minute" sed -i 's/^/address=\//g' /tmp/ramdisk/BL/${filter}/domains sed -i -e 's/$/\/10.10.10.11/' /tmp/ramdisk/BL/${filter}/domains if [ "$filter" == "porn" ] ; then awk 'FNR==NR{a[$0];next}!($0 in a)' /etc/itus/lists/porn /tmp/ramdisk/BL/${filter}/domains >> /tmp/ramdisk/${filter} else grep -Fxvf /etc/itus/lists/${filter} /tmp/ramdisk/BL/${filter}/domains >> /tmp/ramdisk/${filter} fi # check to see if an new drug rules have been add and if not skip writing to file if [ $(cat /tmp/ramdisk/${filter} | wc -l) -gt 0 ] ; then # Stripe out duplicate drug listens echo "Number of ip's BEFORE sorting" wc -l /etc/itus/lists/${filter} sort -u /tmp/ramdisk/${filter} > /tmp/ramdisk/tmp.tmp1 sed '/^$/d' /tmp/ramdisk/tmp.tmp1 >> /etc/itus/lists/${filter} echo "Number of ip's AFTER sorting" wc -l /etc/itus/lists/${filter} fi fi done fi fi } ########################################################################################## # Prevent DNSMASQ/SNORT restart unless updates are needed do_dnsmasq_restart=0 # 0 = no restart, 1 = restart do_snort_restart=0 # 0 = no restart, 1 = restart ########################################################################################## # check to see if there is a mount point in /tmp/restart-var and if there isn't it will # create one, this is used the first time you run this script on the shield to create the # mount point. if [ ! -d "/tmp/restart-var" ] ; then mkdir /tmp/restart-var echo 1 > /sbin/counter system_restarted="1" fi ########################################################################################## # To prevent the snort rules from updating put # in front (# update_snort_rules) update_snort_rules sleep 1 ########################################################################################## # Update ads rules # Managed via LUCI>SERVICES>Web Filter > Content filter - Ads if [ $(uci get e2guardian.e2guardian.content_ads) = 1 ] ; then echo "Updating ADS rules" update_ads_rules sleep 1 do_dnsmasq_restart=1 fi ########################################################################################## # Update malicious sites rules # Managed via LUCI>SERVICES>Web Filter > Content filter - Malicious if [ $(uci get e2guardian.e2guardian.content_malicious) = 1 ] ; then echo "Updating MALICIOUS rules" update_malicious_rules sleep 1 do_dnsmasq_restart=1 fi ########################################################################################## # renane the original Itusnetwork web filter files to match new download rules ########################################################################################## if [[ -f "/etc/itus/lists/blasphemy" ]] ; then mv "/etc/itus/lists/blasphemy /etc/itus/lists/religion" ; fi if [[ -f "/etc/itus/lists/gambling" ]] ; then mv "/etc/itus/lists/gambling /etc/itus/lists/gamble" ; fi if [[ -f "/etc/itus/lists/proxies" ]] ; then mv "/etc/itus/lists/proxies /etc/itus/lists/spyware" ; fi if [[ -f "/etc/itus/lists/racism" ]] ; then mv "/etc/itus/lists/racism /etc/itus/lists/redirector" ; fi if [[ -f "/etc/itus/lists/social" ]] ; then mv "/etc/itus/lists/social /etc/itus/lists/downloads" ; fi echo "Updating rules" update_web_filter_rules do_dnsmasq_restart=1 ########################################################################################## # restart DNSMASQ if [ $do_dnsmasq_restart = 1 ] ; then echo "Restarting DNSMASQ service" /etc/init.d/dnsmasq restart echo "Restarted DNSMASQ" sleep 1 fi ########################################################################################## # restart SNORT if [ $do_snort_restart = 1 ] ; then echo "Restarting SNORT service" sleep 1 /etc/init.d/snort restart echo "Restarted SNORT" sleep 1 fi ########################################################################################## # update last-update date date > /.do_date ########################################################################################## if [[ -d "/tmp/ramdisk" ]] ; then rm -r /tmp/ramdisk/* 2>/dev/null ; fi echo " Please ignore the error with PID as these are normal" exit 0