Raspi2-3_GenImage Files · bootstrap.d/30-security.sh · Collaboration Tremplin des Sciences

+fix: Auto stash before cherrypick of "Merge pull request #8 from drtyhlpr/master"

Unknown - - Load All Authors

Fichier de la dernière révision:

r382:68c10636851d


                r419:fae814b4a5bd

Download file

             30-security.sh
        
                    29 lines
            
             | 829 B
            
                | application/x-sh
            
             |
                BashLexer
            
             / bootstrap.d / 30-security.sh
          
                    Historique
                
                 |
                  Source
                 | Brut
                 |Copy content
                 |Copy permalink

        Filip Pytloun
    
Refactor: split bootstrap actions and allow custom

              r56
            
      #

      # Setup users and security settings

      #

        Jan Wagner
    
spliting more files, fix-uboot, fix-fbturbo, fix-locale

              r67
            
      # Load utility functions

        Filip Pytloun
    
Refactor: split bootstrap actions and allow custom

              r56
            
      . ./functions.sh

      # Generate crypt(3) password string

        burnbabyburn
    
enhancment thx to spellcheck.net

              r312
            
      ENCRYPTED_PASSWORD=$(mkpasswd -m sha-512 "${PASSWORD}")

      ENCRYPTED_USER_PASSWORD=$(mkpasswd -m sha-512 "${USER_PASSWORD}")

        Filip Pytloun
    
Refactor: split bootstrap actions and allow custom

              r56
            
        Jan Wagner
    
comment-cleanup, net-cleanup, size-calc-fix, split-more, menuconfig

              r71
            
      # Setup default user

        Filip Pytloun
    
Refactor: split bootstrap actions and allow custom

              r56
            
      if [ "$ENABLE_USER" = true ] ; then

        Unknown
    
fixes and shellcheck

              r382
            
        chroot_exec adduser --gecos "$USER_NAME" --add_extra_groups --disabled-password "$USER_NAME"

        chroot_exec usermod -a -G sudo -p "${ENCRYPTED_USER_PASSWORD}" "$USER_NAME"

        Filip Pytloun
    
Refactor: split bootstrap actions and allow custom

              r56
            
      fi

        Jan Wagner
    
comment-cleanup, net-cleanup, size-calc-fix, split-more, menuconfig

              r71
            
      # Setup root password or not

        Jan Wagner
    
Added: KERNEL_SRCDIR, path-checks, code-cleanup

              r72
            
      if [ "$ENABLE_ROOT" = true ] ; then

        Filip Pytloun
    
Refactor: split bootstrap actions and allow custom

              r56
            
        chroot_exec usermod -p "${ENCRYPTED_PASSWORD}" root

      else

        Jan Wagner
    
code cleanup and even more spliting

              r70
            
        # Set no root password to disable root login

        Filip Pytloun
    
Refactor: split bootstrap actions and allow custom

              r56
            
        chroot_exec usermod -p \'!\' root

      fi

      # Enable serial console systemd style

      if [ "$ENABLE_CONSOLE" = true ] ; then

        chroot_exec systemctl enable serial-getty\@ttyAMA0.service

      fi

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Dépôts
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

Filip Pytloun Refactor: split bootstrap actions and allow custom	r56	#
		# Setup users and security settings
		#

Jan Wagner spliting more files, fix-uboot, fix-fbturbo, fix-locale	r67	# Load utility functions
Filip Pytloun Refactor: split bootstrap actions and allow custom	r56	. ./functions.sh

		# Generate crypt(3) password string
burnbabyburn enhancment thx to spellcheck.net	r312	ENCRYPTED_PASSWORD=$(mkpasswd -m sha-512 "${PASSWORD}")
		ENCRYPTED_USER_PASSWORD=$(mkpasswd -m sha-512 "${USER_PASSWORD}")
Filip Pytloun Refactor: split bootstrap actions and allow custom	r56
Jan Wagner comment-cleanup, net-cleanup, size-calc-fix, split-more, menuconfig	r71	# Setup default user
Filip Pytloun Refactor: split bootstrap actions and allow custom	r56	if [ "$ENABLE_USER" = true ] ; then
Unknown fixes and shellcheck	r382	chroot_exec adduser --gecos "$USER_NAME" --add_extra_groups --disabled-password "$USER_NAME"
		chroot_exec usermod -a -G sudo -p "${ENCRYPTED_USER_PASSWORD}" "$USER_NAME"
Filip Pytloun Refactor: split bootstrap actions and allow custom	r56	fi

Jan Wagner comment-cleanup, net-cleanup, size-calc-fix, split-more, menuconfig	r71	# Setup root password or not
Jan Wagner Added: KERNEL_SRCDIR, path-checks, code-cleanup	r72	if [ "$ENABLE_ROOT" = true ] ; then
Filip Pytloun Refactor: split bootstrap actions and allow custom	r56	chroot_exec usermod -p "${ENCRYPTED_PASSWORD}" root
		else
Jan Wagner code cleanup and even more spliting	r70	# Set no root password to disable root login
Filip Pytloun Refactor: split bootstrap actions and allow custom	r56	chroot_exec usermod -p \'!\' root
		fi

		# Enable serial console systemd style
		if [ "$ENABLE_CONSOLE" = true ] ; then
		chroot_exec systemctl enable serial-getty\@ttyAMA0.service
		fi