##// END OF EJS Templates
fixes...
fixes fixes and further shellcheck.net improvements

Fichier de la dernière révision:

r420:0a810af45a73
r420:0a810af45a73
Show More
30-security.sh
29 lines | 829 B | application/x-sh | BashLexer
#
# Setup users and security settings
#
# Load utility functions
. ./functions.sh
# Generate crypt(3) password string
ENCRYPTED_PASSWORD=$(mkpasswd -m sha-512 "${PASSWORD}")
ENCRYPTED_USER_PASSWORD=$(mkpasswd -m sha-512 "${USER_PASSWORD}")
# Setup default user
if [ "$ENABLE_USER" = true ] ; then
chroot_exec adduser --gecos "$USER_NAME" --add_extra_groups --disabled-password "$USER_NAME"
chroot_exec usermod -a -G sudo -p "${ENCRYPTED_USER_PASSWORD}" "$USER_NAME"
fi
# Setup root password or not
if [ "$ENABLE_ROOT" = true ] ; then
chroot_exec usermod -p "${ENCRYPTED_PASSWORD}" root
else
# Set no root password to disable root login
chroot_exec usermod -p \'!\' root
fi
# Enable serial console systemd style
if [ "$ENABLE_CONSOLE" = true ] ; then
chroot_exec systemctl enable serial-getty\@ttyAMA0.service
fi