aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* security_check.sh and diff_check.sh installed 644 to prevent direct execution.Frederic Lepied2002-08-251-0/+1
|
* let hosts.{allow,deny} be readable by everyone (to allow all the daemons toFrederic Lepied2002-08-252-4/+4
| | | | | access them).
* emptiness is tested in Maillog nowFrederic Lepied2002-08-251-4/+0
|
* implement MAIL_EMPTY_CONTENTFrederic Lepied2002-08-251-2/+16
|
* documented daily mailing of security checksFrederic Lepied2002-08-251-0/+5
|
* added MAIL_EMPTY_CONTENTFrederic Lepied2002-08-251-0/+1
|
* enhanced get_shell_variable to be able to specify a region to do the search.Frederic Lepied2002-08-251-2/+23
|
* allow_reboot: used section X-:0-Core instead of X-:*-Greeter for kdmrc.Frederic Lepied2002-08-251-3/+6
| | | | | password_history: create /etc/security/opasswd if it doesn't exist.
* Generated by cvs2cl the 19_AugV0_33_1mdkFrederic Lepied2002-08-191-0/+16
|
* 0.33-1mdkFrederic Lepied2002-08-191-1/+4
|
* use $(RPM_BUILD_ROOT) instead of $RPM_BUILD_ROOTFrederic Lepied2002-08-191-13/+13
|
* corrected wordingFrederic Lepied2002-08-192-19/+19
|
* added missing "not"Frederic Lepied2002-08-191-1/+1
|
* Generated by cvs2cl the 11_AugV0_32_1mdkFrederic Lepied2002-08-111-243/+292
|
* 0.32-1mdkFrederic Lepied2002-08-111-3/+11
|
* corrected the compilation of the python part.Frederic Lepied2002-08-111-1/+1
|
* replace 0 => no and 1 => yes.Frederic Lepied2002-08-111-35/+38
| | | | | call password_history according to the levels.
* corrected without_passwordFrederic Lepied2002-08-111-1/+1
|
* added without_passwordFrederic Lepied2002-08-111-0/+1
|
* password_length use system-auth instead of passwd pam file.Frederic Lepied2002-08-111-17/+148
| | | | | new function: password_history.
* do not change non local files/directories.Frederic Lepied2002-08-111-5/+51
|
* documented password history and root logins.Frederic Lepied2002-08-111-0/+4
|
* document optionsFrederic Lepied2002-08-111-1/+21
|
* 0.31.1-1mdkFrederic Lepied2002-07-311-1/+4
|
* correct the test for processing level.local.Frederic Lepied2002-07-311-1/+1
|
* Generated by cvs2cl the 30_JulV0_31_1mdkFrederic Lepied2002-07-301-0/+25
|
* 0.31-1mdkFrederic Lepied2002-07-301-2/+16
|
* added level.*Frederic Lepied2002-07-301-0/+1
|
* added fields to describe how arguments are used (to be used by shadow.py)Frederic Lepied2002-07-301-6/+61
|
* added print and nolocal optionsFrederic Lepied2002-07-301-11/+15
|
* added print_changes and get_translationFrederic Lepied2002-07-301-1/+26
|
* added rules for level.*Frederic Lepied2002-07-301-1/+5
|
* Generated by cvs2cl the 29_JulV0_30_2_1mdkFrederic Lepied2002-07-291-0/+8
|
* 0.30.2-1mdkFrederic Lepied2002-07-291-1/+4
|
* fixed typo in allow_root_loginFrederic Lepied2002-07-291-1/+1
|
* Generated by cvs2cl the 28_JulV0_30_1_1mdkFrederic Lepied2002-07-281-0/+9
|
* 0.30.1-1mdkFrederic Lepied2002-07-281-1/+4
|
* (set_zero_one_variable): corrected bug when the variable doesn't exist beforeFrederic Lepied2002-07-281-1/+3
| | | | | setting it.
* Generated by cvs2cl the 27_JulV0_30_1mdkFrederic Lepied2002-07-271-2/+14
|
* 0.30Frederic Lepied2002-07-271-1/+11
|
* added 0.30 changesFrederic Lepied2002-07-271-0/+6
|
* finalized no security lowering feature.Frederic Lepied2002-07-271-28/+68
|
* Generated by cvs2cl the 27_juiFrederic Lepied2002-07-271-0/+58
|
* corrected last argument processing.Frederic Lepied2002-07-271-2/+2
|
* corrected splitted functions.Frederic Lepied2002-07-271-2/+7
|
* descibed differences between interactive and non-interactive calls.Frederic Lepied2002-07-271-9/+24
| | | | | added a paragraph on the logs.
* * (more functions): don't lower security when not changing secure level.Frederic Lepied2002-07-271-154/+424
|
* * describe file permissions according to the levels.Frederic Lepied2002-07-241-3/+21
| | | | | * correct description of X server security.
* * use TTY_WARN instead of TTYLOG_WARN (David Harris).Frederic Lepied2002-07-241-2/+2
|
* * (set_zero_one_variable): factorize sysctl.conf manipulation functions.Frederic Lepied2002-07-241-60/+137
| | | | | | | | | | | | | | * (accept_broadcasted_icmp_echo): split from accept_icmp_echo. * (set_umask): factorize set_root_umask and set_user_umask. * (enable_dns_spoofing_protection): split from enable_ip_spoofing_protection. * (allow_remote_root_login): split from allow_root_login. * (allow_autologin set_umask set_zero_one_variable allow_remote_root_login): don't lower security when not changing security level. * (allow_xserver_to_listen): split from allow_x_connections for better granularity. * (enable_ip_spoofing_protection): when disabling ip spoofing protection put back net.ipv4.conf.all.rp_filter to 0 (David Harris).