Raspi2-3_GenImage Files · bootstrap.d/30-security.sh · Collaboration Tremplin des Sciences

-using --verbose and debug while creating cryptfs to give a hint by default...

-using --verbose and debug while creating cryptfs to give a hint by default -Added KERNEL_DHKEY,KERNEL_BTRFS,KERNEL_NSPAN,KERNEL_POEHAT options - support new cryptsetup version replacing legacy stuff. -Split cryptfs cipher and hash into seperate vars -reworked 14-fstab.sh to replace legacy dropbear cryptsetup stuff - some bullseye apt fix relpacing bullseye with testing - README updates also adding Kernel source hints and some RPI4 text

Unknown - - Load All Authors

Fichier de la dernière révision:

r501:3c3d6ac60789


                r696:2f2cf24844e7

pull

Download file

             30-security.sh
        
                    24 lines
            
             | 687 B
            
                | application/x-sh
            
             |
                BashLexer
            
             / bootstrap.d / 30-security.sh
          
                    Historique
                
                 |
                  Annotation
                 | Brut
                 |Copy content
                 |Copy permalink

      #

      # Setup users and security settings

      #

      # Load utility functions

      . ./functions.sh

      # Generate crypt(3) password string

      ENCRYPTED_PASSWORD=$(mkpasswd -m sha-512 "${PASSWORD}")

      ENCRYPTED_USER_PASSWORD=$(mkpasswd -m sha-512 "${USER_PASSWORD}")

      # Setup default user

      if [ "$ENABLE_USER" = true ] ; then

        chroot_exec adduser --gecos "$USER_NAME" --add_extra_groups --disabled-password "$USER_NAME"

        chroot_exec usermod -a -G sudo -p "${ENCRYPTED_USER_PASSWORD}" "$USER_NAME"

      fi

      # Setup root password or not

      if [ "$ENABLE_ROOT" = true ] ; then

        chroot_exec usermod -p "${ENCRYPTED_PASSWORD}" root

      else

        # Set no root password to disable root login

        chroot_exec usermod -p \'!\' root

      fi

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Dépôts
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				#
				# Setup users and security settings
				#

				# Load utility functions
				. ./functions.sh

				# Generate crypt(3) password string
				ENCRYPTED_PASSWORD=$(mkpasswd -m sha-512 "${PASSWORD}")
				ENCRYPTED_USER_PASSWORD=$(mkpasswd -m sha-512 "${USER_PASSWORD}")

				# Setup default user
				if [ "$ENABLE_USER" = true ] ; then
				chroot_exec adduser --gecos "$USER_NAME" --add_extra_groups --disabled-password "$USER_NAME"
				chroot_exec usermod -a -G sudo -p "${ENCRYPTED_USER_PASSWORD}" "$USER_NAME"
				fi

				# Setup root password or not
				if [ "$ENABLE_ROOT" = true ] ; then
				chroot_exec usermod -p "${ENCRYPTED_PASSWORD}" root
				else
				# Set no root password to disable root login
				chroot_exec usermod -p \'!\' root
				fi