Set common messages to GDM, KDM and SDDM in allow_user_list function

1 files changed, 104 insertions, 115 deletions

diff --git a/po/msec.pot b/po/msec.pot
index b8c2d6f..fb6382c 100644
--- a/po/msec.pot
+++ b/po/msec.pot
@@ -5,7 +5,7 @@
 msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
-"POT-Creation-Date: 2014-05-11 22:07+CEST\n"
+"POT-Creation-Date: 2016-10-23 09:15+CEST\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
 "Language-Team: LANGUAGE <LL@li.org>\n"
@@ -27,66 +27,66 @@ msgstr ""
 msgid "Disabled"
 msgstr ""
 
-#: ../src/msec/config.py:211 ../src/msec/config.py:423
+#: ../src/msec/config.py:222 ../src/msec/config.py:434
 msgid "Unable to load configuration file %s: %s"
 msgstr ""
 
-#: ../src/msec/config.py:225 ../src/msec/config.py:334
-#: ../src/msec/config.py:442
+#: ../src/msec/config.py:236 ../src/msec/config.py:345
+#: ../src/msec/config.py:453
 msgid "Bad config option: %s"
 msgstr ""
 
-#: ../src/msec/config.py:260 ../src/msec/config.py:373
-#: ../src/msec/config.py:468
+#: ../src/msec/config.py:271 ../src/msec/config.py:384
+#: ../src/msec/config.py:479
 msgid "Unable to save %s: %s"
 msgstr ""
 
-#: ../src/msec/config.py:319
+#: ../src/msec/config.py:330
 msgid "loading exceptions file %s: %s"
 msgstr ""
 
-#: ../src/msec/config.py:320
+#: ../src/msec/config.py:331
 msgid "No exceptions loaded"
 msgstr ""
 
 #: ../src/msec/help.py:14
-msgid "Allow local users to connect to X server. Accepted arguments: yes (all connections are allowed), local (only local connection), no (no connection)."
+msgid "Enable checking for changes in firewall settings."
 msgstr ""
 
 #: ../src/msec/help.py:16
-msgid "Enable checking for files/directories writable by everybody."
+msgid "Fix owner and group of unowned files to use nobody/nogroup."
 msgstr ""
 
 #: ../src/msec/help.py:18
-msgid "Enable checking for empty passwords in /etc/shadow (man shadow(5))."
+msgid "Use secure location for temporary files. If this parameter is set to 'yes', user home directory will be used for temporary files. Otherwise, /tmp will be used."
 msgstr ""
 
 #: ../src/msec/help.py:20
-msgid "Log syslog messages on console terminal 12."
+msgid "Allow autologin."
 msgstr ""
 
 #: ../src/msec/help.py:22
-msgid "Send mail reports even if no changes were detected."
+msgid "Set the password minimum length and minimum number of digit and minimum number of capitalized letters, using length,ndigits,nupper format."
 msgstr ""
 
 #: ../src/msec/help.py:24
-msgid "Defines the base security level, on top of which the current configuration is based."
+msgid "Enable checking for additions/removals of sgid files."
 msgstr ""
 
 #: ../src/msec/help.py:26
-msgid "Accept broadcasted ICMP echo."
+msgid "Enforce MSEC file directory permissions on system startup. If this parameter is set to 'enforce', system permissions will be enforced automatically, according to system security settings."
 msgstr ""
 
 #: ../src/msec/help.py:28
-msgid "Enable verification for changes in the installed RPM packages. This will notify you when new packages are installed or removed."
+msgid "Enable verification of integrity of installed RPM packages. This will notify you if checksums of the installed files were changed, showing separate results for binary and configuration files."
 msgstr ""
 
 #: ../src/msec/help.py:30
-msgid "Enable periodic permission checking for files specified in msec policy."
+msgid "Set the password history length to prevent password reuse. This is not supported by pam_tcb."
 msgstr ""
 
 #: ../src/msec/help.py:32
-msgid "Ignore changes in process IDs when checking for open network ports."
+msgid "Set umask option for mounting vfat and ntfs partitions. If umask is '-1', default system umask is used."
 msgstr ""
 
 #: ../src/msec/help.py:34
@@ -94,71 +94,71 @@ msgid "Allow X server to accept connections from network on tcp port 6000."
 msgstr ""
 
 #: ../src/msec/help.py:36
-msgid "Enable checking for known rootkits using chkrootkit."
+msgid "Enable sectools checks. This check will run all sectool checks for a security level configuration. The security level to be used during this test is determined by the CHECK_SECTOOL_LEVELS variable."
 msgstr ""
 
 #: ../src/msec/help.py:38
-msgid "Enable msec to enforce file permissions to the values specified in the msec security policy."
+msgid "Log journal messages on console terminal 12."
 msgstr ""
 
 #: ../src/msec/help.py:40
-msgid "Enable sectools checks. This check will run all sectool checks for a security level configuration. The security level to be used during this test is determined by the CHECK_SECTOOL_LEVELS variable."
+msgid "Enable msec to enforce file permissions to the values specified in the msec security policy."
 msgstr ""
 
 #: ../src/msec/help.py:42
-msgid "Set shell commands history size. A value of -1 means unlimited."
+msgid "Patterns to exclude from disk checks. This parameter is parsed as a regex (7), so you may use complex expressions."
 msgstr ""
 
 #: ../src/msec/help.py:44
-msgid "Allow system reboot and shutdown to local users."
+msgid "Allow to export display when passing from the root account to the other users. See pam_xauth(8) for more details."
 msgstr ""
 
 #: ../src/msec/help.py:46
-msgid "Enable checking for changes in firewall settings."
+msgid "Enable checking for additions/removals of suid root files."
 msgstr ""
 
 #: ../src/msec/help.py:48
-msgid "Enable checking for additions/removals of suid root files."
+msgid "Allow root access without password for the members of the wheel group."
 msgstr ""
 
 #: ../src/msec/help.py:50
-msgid "Include current directory into user PATH by default"
+msgid "Set the user umask."
 msgstr ""
 
 #: ../src/msec/help.py:52
-msgid "Enable crontab and at for users. Put allowed users in /etc/cron.allow and /etc/at.allow (see man at(1) and crontab(1))."
+msgid "Enable periodic security check results to terminal."
 msgstr ""
 
 #: ../src/msec/help.py:54
-msgid "Set the shell timeout. A value of zero means no timeout."
+msgid "Ignore changes in process IDs when checking for open network ports."
 msgstr ""
 
 #: ../src/msec/help.py:56
-msgid "Enable password-related checks, such as empty passwords and strange super-user accounts."
+msgid "Run security checks when machine is running on battery power."
 msgstr ""
 
 #: ../src/msec/help.py:58
-msgid "Set the password history length to prevent password reuse. This is not supported by pam_tcb."
+msgid "Enable permission checking on users' files that should not be owned by someone else, or writable."
 msgstr ""
 
 #: ../src/msec/help.py:60
-msgid "Set the user umask."
+msgid "Allow display managers (kdm and gdm) to display list of local users."
 msgstr ""
 
 #: ../src/msec/help.py:62
-msgid "Enable checking for dangerous options in users' .rhosts/.shosts files."
+msgid "Creates the symlink /etc/security/msec/server to point to /etc/security/msec/server.SERVER_LEVEL. The /etc/security/msec/server is used by chkconfig --add to decide to add a service if it is present in the file during the installation of packages. By default, two presets are provided: local (which only enables local services) and remote (which also enables some remote services considered safe). Note that the allowed services must be placed manually into the server.SERVER_LEVEL files when necessary."
 msgstr ""
 
 #: ../src/msec/help.py:64
-msgid "User email to receive security notifications."
+msgid "Send mail reports even if no changes were detected."
 msgstr ""
 
 #: ../src/msec/help.py:66
-msgid "Allow autologin."
+msgid "Activate ethernet cards promiscuity check."
 msgstr ""
 
 #: ../src/msec/help.py:68
-msgid "Allow only users in wheel group to su to root."
+msgid "User email to receive security notifications."
 msgstr ""
 
 #: ../src/msec/help.py:70
@@ -166,163 +166,163 @@ msgid "Enable daily security checks."
 msgstr ""
 
 #: ../src/msec/help.py:72
-msgid "Use secure location for temporary files. If this parameter is set to 'yes', user home directory will be used for temporary files. Otherwise, /tmp will be used."
+msgid "Defines the sectool level to use during the periodic security check. You may use the sectool-gui application to select individual tests for each level. If this variable is not defined, the default level defined in sectool configuration will be used."
 msgstr ""
 
 #: ../src/msec/help.py:74
-msgid "Allow direct root login on terminal."
+msgid "Accept ICMP echo."
 msgstr ""
 
 #: ../src/msec/help.py:76
-msgid "Enable checking for changes in system users."
+msgid "Enable checking for unowned files."
 msgstr ""
 
 #: ../src/msec/help.py:78
-msgid "Enable checking for unowned files."
+msgid "Define the default retention period for logs, in weeks. Some countries require that the log files should be kept for 12 months, other do not have such strict requirements. This variable defines the number of past log files that should be kept by logrotate on the system."
 msgstr ""
 
 #: ../src/msec/help.py:80
-msgid "Enable IP spoofing protection."
+msgid "Allow remote root login via sshd. If yes, login is allowed. If without-password, only public-key authentication logins are allowed. See sshd_config(5) man page for more information."
 msgstr ""
 
 #: ../src/msec/help.py:82
-msgid "Allow display managers (kdm and gdm) to display list of local users."
+msgid "Enforce MSEC settings on system startup"
 msgstr ""
 
 #: ../src/msec/help.py:84
-msgid "Enable name resolution spoofing protection."
+msgid "Enable checking for known rootkits using chkrootkit."
 msgstr ""
 
 #: ../src/msec/help.py:86
-msgid "Enforce MSEC file directory permissions on system startup. If this parameter is set to 'enforce', system permissions will be enforced automatically, according to system security settings."
+msgid "Enable checking for changes in system groups."
 msgstr ""
 
 #: ../src/msec/help.py:88
-msgid "Enables logging of periodic checks to system log."
+msgid "Enable crontab and at for users. Put allowed users in /etc/cron.allow and /etc/at.allow (see man at(1) and crontab(1))."
 msgstr ""
 
 #: ../src/msec/help.py:90
-msgid "Enable permission checking on users' files that should not be owned by someone else, or writable."
+msgid "Allow full access to network services controlled by tcp_wrapper (see hosts.deny(5)). If yes, all services are allowed. If local, only connections to local services are authorized. If no, the services must be authorized manually in /etc/hosts.allow (see hosts.allow(5))."
 msgstr ""
 
 #: ../src/msec/help.py:92
-msgid "Creates the symlink /etc/security/msec/server to point to /etc/security/msec/server.SERVER_LEVEL. The /etc/security/msec/server is used by chkconfig --add to decide to add a service if it is present in the file during the installation of packages. By default, two presets are provided: local (which only enables local services) and remote (which also enables some remote services considered safe). Note that the allowed services must be placed manually into the server.SERVER_LEVEL files when necessary."
+msgid "Set shell commands history size. A value of -1 means unlimited."
 msgstr ""
 
 #: ../src/msec/help.py:94
-msgid "Use password to authenticate users. Take EXTREME care when disabling passwords, as it will leave the machine vulnerable."
+msgid "Send security check results by email."
 msgstr ""
 
 #: ../src/msec/help.py:96
-msgid "Enable checking for changes in system groups."
+msgid "Allow users in wheel group to use sudo. If this option is set to 'yes', the users in wheel group are allowed to use sudo and run commands as root by using their passwords. If this option to set to 'without-password', the users can use sudo without being asked for their password. WARNING: using sudo without any password makes your system very vulnerable, and you should only use this setting if you know what you are doing!"
 msgstr ""
 
 #: ../src/msec/help.py:98
-msgid "Set umask option for mounting vfat and ntfs partitions. If umask is '-1', default system umask is used."
+msgid "Enable name resolution spoofing protection."
 msgstr ""
 
 #: ../src/msec/help.py:100
-msgid "Show security notifications in system tray using libnotify."
+msgid "Allow system reboot and shutdown to local users."
 msgstr ""
 
 #: ../src/msec/help.py:102
-msgid "Enable checking for open network ports."
+msgid "Enable checking for files/directories writable by everybody."
 msgstr ""
 
 #: ../src/msec/help.py:104
-msgid "Run security checks when machine is running on battery power."
+msgid "Allow direct root login on terminal."
 msgstr ""
 
 #: ../src/msec/help.py:106
-msgid "Perform hourly security check for changes in system configuration."
+msgid "Enable checksum verification for suid files."
 msgstr ""
 
 #: ../src/msec/help.py:108
-msgid "Allow remote root login via sshd. If yes, login is allowed. If without-password, only public-key authentication logins are allowed. See sshd_config(5) man page for more information."
+msgid "Defines the base security level, on top of which the current configuration is based."
 msgstr ""
 
 #: ../src/msec/help.py:110
-msgid "Enable logging of strange network packets."
+msgid "Enable password-related checks, such as empty passwords and strange super-user accounts."
 msgstr ""
 
 #: ../src/msec/help.py:112
-msgid "Define the default retention period for logs, in weeks. Some countries require that the log files should be kept for 12 months, other do not have such strict requirements. This variable defines the number of past log files that should be kept by logrotate on the system."
+msgid "Accept broadcasted ICMP echo."
 msgstr ""
 
 #: ../src/msec/help.py:114
-msgid "Ask for root password when going to single user level (man sulogin(8))."
+msgid "Enable checking for empty passwords in /etc/shadow (man shadow(5))."
 msgstr ""
 
 #: ../src/msec/help.py:116
-msgid "Allow root access without password for the members of the wheel group."
+msgid "Set the root umask."
 msgstr ""
 
 #: ../src/msec/help.py:118
-msgid "Fix owner and group of unowned files to use nobody/nogroup."
+msgid "Ask for root password when going to single user level (man sulogin(8))."
 msgstr ""
 
 #: ../src/msec/help.py:120
-msgid "Send security check results by email."
+msgid "Show security notifications in system tray using libnotify."
 msgstr ""
 
 #: ../src/msec/help.py:122
-msgid "Allow to export display when passing from the root account to the other users. See pam_xauth(8) for more details."
+msgid "Enable checking for dangerous options in users' .rhosts/.shosts files."
 msgstr ""
 
 #: ../src/msec/help.py:124
-msgid "Allow users in wheel group to use sudo. If this option is set to 'yes', the users in wheel group are allowed to use sudo and run commands as root by using their passwords. If this option to set to 'without-password', the users can use sudo without being asked for their password. WARNING: using sudo without any password makes your system very vulnerable, and you should only use this setting if you know what you are doing!"
+msgid "Enable periodic permission checking for files specified in msec policy."
 msgstr ""
 
 #: ../src/msec/help.py:126
-msgid "Enable checksum verification for suid files."
+msgid "Enable IP spoofing protection."
 msgstr ""
 
 #: ../src/msec/help.py:128
-msgid "Accept ICMP echo."
+msgid "Enable logging of strange network packets."
 msgstr ""
 
 #: ../src/msec/help.py:130
-msgid "Set the password minimum length and minimum number of digit and minimum number of capitalized letters, using length,ndigits,nupper format."
+msgid "Accept bogus IPv4 error messages."
 msgstr ""
 
 #: ../src/msec/help.py:132
-msgid "Allow full access to network services controlled by tcp_wrapper (see hosts.deny(5)). If yes, all services are allowed. If local, only connections to local services are authorized. If no, the services must be authorized manually in /etc/hosts.allow (see hosts.allow(5))."
+msgid "Enable checking for open network ports."
 msgstr ""
 
 #: ../src/msec/help.py:134
-msgid "Enable verification of integrity of installed RPM packages. This will notify you if checksums of the installed files were changed, showing separate results for binary and configuration files."
+msgid "Include current directory into user PATH by default"
 msgstr ""
 
 #: ../src/msec/help.py:136
-msgid "Patterns to exclude from disk checks. This parameter is parsed as a regex (7), so you may use complex expressions."
+msgid "Enable verification for changes in the installed RPM packages. This will notify you when new packages are installed or removed."
 msgstr ""
 
 #: ../src/msec/help.py:138
-msgid "Defines the sectool level to use during the periodic security check. You may use the sectool-gui application to select individual tests for each level. If this variable is not defined, the default level defined in sectool configuration will be used."
+msgid "Use password to authenticate users. Take EXTREME care when disabling passwords, as it will leave the machine vulnerable."
 msgstr ""
 
 #: ../src/msec/help.py:140
-msgid "Set the root umask."
+msgid "Enable checking for changes in system users."
 msgstr ""
 
 #: ../src/msec/help.py:142
-msgid "Enforce MSEC settings on system startup"
+msgid "Allow local users to connect to X server. Accepted arguments: yes (all connections are allowed), local (only local connection), no (no connection)."
 msgstr ""
 
 #: ../src/msec/help.py:144
-msgid "Enable periodic security check results to terminal."
+msgid "Allow only users in wheel group to su to root."
 msgstr ""
 
 #: ../src/msec/help.py:146
-msgid "Accept bogus IPv4 error messages."
+msgid "Enables logging of periodic checks to system log."
 msgstr ""
 
 #: ../src/msec/help.py:148
-msgid "Enable checking for additions/removals of sgid files."
+msgid "Perform hourly security check for changes in system configuration."
 msgstr ""
 
 #: ../src/msec/help.py:150
-msgid "Activate ethernet cards promiscuity check."
+msgid "Set the shell timeout. A value of zero means no timeout."
 msgstr ""
 
 #: ../src/msec/libmsec.py:265
@@ -1084,111 +1084,100 @@ msgstr ""
 msgid "Forbidding Ctrl-Alt-Del from console"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:395
-msgid "Allowing list of users in KDM"
-msgstr ""
-
-#: ../src/msec/plugins/msec.py:402
-msgid "Allowing list of users in GDM"
+#: ../src/msec/plugins/msec.py:397 ../src/msec/plugins/msec.py:404
+#: ../src/msec/plugins/msec.py:408
+msgid "Allowing list of users in {}"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:407
-msgid "Forbidding list of users in KDM"
+#: ../src/msec/plugins/msec.py:413 ../src/msec/plugins/msec.py:420
+msgid "Forbidding list of users in {}"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:414
-msgid "Forbidding list of users in GDM"
+#: ../src/msec/plugins/msec.py:424
+msgid "Forbidding showing last user in {}"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:425
+#: ../src/msec/plugins/msec.py:435
 msgid "Allowing autologin"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:428
+#: ../src/msec/plugins/msec.py:438
 msgid "Forbidding autologin"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:433
-msgid "Activating password in boot loader"
-msgstr ""
-
 #: ../src/msec/plugins/msec.py:447
-msgid "Removing password in boot loader"
-msgstr ""
-
-#: ../src/msec/plugins/msec.py:462
 msgid "Enabling log on console"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:466
+#: ../src/msec/plugins/msec.py:451
 msgid "Disabling log on console"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:483
+#: ../src/msec/plugins/msec.py:469
 msgid "Authorizing all services"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:487
+#: ../src/msec/plugins/msec.py:473
 msgid "Disabling all services"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:491
+#: ../src/msec/plugins/msec.py:477
 msgid "Disabling non local services"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:503
+#: ../src/msec/plugins/msec.py:489
 msgid "Enabling sulogin in single user runlevel"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:507
+#: ../src/msec/plugins/msec.py:493
 msgid "Disabling sulogin in single user runlevel"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:518
+#: ../src/msec/plugins/msec.py:504
 msgid "Enabling msec periodic runs"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:522
+#: ../src/msec/plugins/msec.py:508
 msgid "Disabling msec periodic runs"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:535
+#: ../src/msec/plugins/msec.py:521
 msgid "Enabling crontab and at"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:542
+#: ../src/msec/plugins/msec.py:528
 msgid "Disabling crontab and at"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:554
+#: ../src/msec/plugins/msec.py:540
 msgid "Allowing export display from root"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:558
+#: ../src/msec/plugins/msec.py:544
 msgid "Forbidding export display from root"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:585
+#: ../src/msec/plugins/msec.py:571
 msgid "Allowing direct root login"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:608
+#: ../src/msec/plugins/msec.py:594
 msgid "Forbidding direct root login"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:630
+#: ../src/msec/plugins/msec.py:616
 msgid "Using secure location for temporary files"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:632
+#: ../src/msec/plugins/msec.py:618
 msgid "Not using secure location for temporary files"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:652
+#: ../src/msec/plugins/msec.py:638
 msgid "Allowing including current directory in path"
 msgstr ""
 
-#: ../src/msec/plugins/msec.py:655
+#: ../src/msec/plugins/msec.py:641
 msgid "Not allowing including current directory in path"
 msgstr ""
 
@@ -1315,14 +1304,14 @@ msgstr ""
 msgid "MSEC: audit script $script failed"
 msgstr ""
 #
-# File: ../cron-sh/security.sh, line: 127
+# File: ../cron-sh/security.sh, line: 128
 #, sh-format
 msgid ""
 "MSEC has performed Security Check on ${REPORT_HOSTNAME} on ${REPORT_DATE}. "
 "Detailed results are available in ${MAIL_LOG_TODAY}"
 msgstr ""
 #
-# File: ../cron-sh/security.sh, line: 138
+# File: ../cron-sh/security.sh, line: 139
 #, sh-format
 msgid ""
 "MSEC has performed Diff Check on ${REPORT_HOSTNAME} on ${REPORT_DATE}. "