Raspi2-3_GenImage Files · bootstrap.d/30-security.sh · Collaboration Tremplin des Sciences

Merge branch 'fpytloun-master'

Filip Pytloun - - Load All Authors

Fichier de la dernière révision:

r56:ea1f8911cd69


                r62:2120d5c52161

Download file

             30-security.sh
        
                    30 lines
            
             | 783 B
            
                | application/x-sh
            
             |
                BashLexer
            
             / bootstrap.d / 30-security.sh
          
                    Historique
                
                 |
                  Source
                 | Brut
                 |Copy content
                 |Copy permalink

        Filip Pytloun
    
Refactor: split bootstrap actions and allow custom

              r56
            
      #

      # Setup users and security settings

      #

      . ./functions.sh

      # Generate crypt(3) password string

      ENCRYPTED_PASSWORD=`mkpasswd -m sha-512 ${PASSWORD}`

      # Set up default user

      if [ "$ENABLE_USER" = true ] ; then

        chroot_exec adduser --gecos pi --add_extra_groups --disabled-password pi

        chroot_exec usermod -a -G sudo -p "${ENCRYPTED_PASSWORD}" pi

      fi

      # Set up root password or not

      if [ "$ENABLE_ROOT" = true ]; then

        chroot_exec usermod -p "${ENCRYPTED_PASSWORD}" root

        if [ "$ENABLE_ROOT_SSH" = true ]; then

          sed -i 's|[#]*PermitRootLogin.*|PermitRootLogin yes|g' $R/etc/ssh/sshd_config

        fi

      else

        chroot_exec usermod -p \'!\' root

      fi

      # Enable serial console systemd style

      if [ "$ENABLE_CONSOLE" = true ] ; then

        chroot_exec systemctl enable serial-getty\@ttyAMA0.service

      fi

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Dépôts
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

Filip Pytloun Refactor: split bootstrap actions and allow custom	r56	#
		# Setup users and security settings
		#

		. ./functions.sh

		# Generate crypt(3) password string
		ENCRYPTED_PASSWORD=`mkpasswd -m sha-512 ${PASSWORD}`

		# Set up default user
		if [ "$ENABLE_USER" = true ] ; then
		chroot_exec adduser --gecos pi --add_extra_groups --disabled-password pi
		chroot_exec usermod -a -G sudo -p "${ENCRYPTED_PASSWORD}" pi
		fi

		# Set up root password or not
		if [ "$ENABLE_ROOT" = true ]; then
		chroot_exec usermod -p "${ENCRYPTED_PASSWORD}" root

		if [ "$ENABLE_ROOT_SSH" = true ]; then
		sed -i 's\|[#]PermitRootLogin.\|PermitRootLogin yes\|g' $R/etc/ssh/sshd_config
		fi
		else
		chroot_exec usermod -p \'!\' root
		fi

		# Enable serial console systemd style
		if [ "$ENABLE_CONSOLE" = true ] ; then
		chroot_exec systemctl enable serial-getty\@ttyAMA0.service
		fi