aboutsummaryrefslogtreecommitdiffstats
path: root/share
Commit message (Collapse)AuthorAgeFilesLines
* help draksec::set_default_tip->formatAlaTeX() to have nicer tooltipsThierry Vignaud2003-02-031-1/+1
|
* enforce gi policy for modules (it's the standalone tools job to provide a goodThierry Vignaud2003-02-031-1/+0
| | | | | @INC)
* let this statement be more preciseThierry Vignaud2003-02-031-1/+1
|
* - produce a perl module that pass strict mode checkingThierry Vignaud2003-02-031-3/+16
| | | | | | | | | - explain perl from where to find translation functions - "typo fix" to please emacs::php-mode - cron checking help (aka set_security_conf() help) was not managed the same way other msec stuff, so let introduce some regexps (python fsck, perl rulez!)
* fix mseclib man page and draksec help (parsers drop first two bytes... :-()Thierry Vignaud2003-02-031-2/+2
|
* - add the drakesec help targetThierry Vignaud2003-01-201-6/+10
| | | | | - sanitize make rules through std macros to ease creating new rules
* help generator for draksec guiThierry Vignaud2003-01-201-0/+53
|
* password_aging: chage is l10n now so use LC_ALL=C before calling it.Frederic Lepied2002-11-201-2/+2
|
* allow_reboot: X-\*-Core => X-:\*-CoreFrederic Lepied2002-09-171-2/+2
|
* - allow_user_list handles Selected when not changing security level.Frederic Lepied2002-09-171-18/+38
| | | | | - allow_reboot handles Root when not changing security level.
* allow_user_list: lookup ShowUsers in the X-*-Greeter section of kdmrc.Frederic Lepied2002-09-051-2/+2
|
* removed debug outputFrederic Lepied2002-09-051-1/+0
|
* CHECK_SUID_GROUP => CHECK_SGIDFrederic Lepied2002-09-033-3/+3
|
* writeable => writableFrederic Lepied2002-08-303-3/+4
|
* clean generated filesFrederic Lepied2002-08-301-1/+1
|
* call function with no argument in commit_changes.Frederic Lepied2002-08-291-1/+3
|
* added MAIL_EMPTY_CONTENTFrederic Lepied2002-08-251-0/+1
|
* enhanced get_shell_variable to be able to specify a region to do the search.Frederic Lepied2002-08-251-2/+23
|
* allow_reboot: used section X-:0-Core instead of X-:*-Greeter for kdmrc.Frederic Lepied2002-08-251-3/+6
| | | | | password_history: create /etc/security/opasswd if it doesn't exist.
* added missing "not"Frederic Lepied2002-08-191-1/+1
|
* replace 0 => no and 1 => yes.Frederic Lepied2002-08-111-35/+38
| | | | | call password_history according to the levels.
* corrected without_passwordFrederic Lepied2002-08-111-1/+1
|
* added without_passwordFrederic Lepied2002-08-111-0/+1
|
* password_length use system-auth instead of passwd pam file.Frederic Lepied2002-08-111-17/+148
| | | | | new function: password_history.
* do not change non local files/directories.Frederic Lepied2002-08-111-5/+51
|
* correct the test for processing level.local.Frederic Lepied2002-07-311-1/+1
|
* added level.*Frederic Lepied2002-07-301-0/+1
|
* added fields to describe how arguments are used (to be used by shadow.py)Frederic Lepied2002-07-301-6/+61
|
* added print and nolocal optionsFrederic Lepied2002-07-301-11/+15
|
* added print_changes and get_translationFrederic Lepied2002-07-301-1/+26
|
* added rules for level.*Frederic Lepied2002-07-301-1/+5
|
* fixed typo in allow_root_loginFrederic Lepied2002-07-291-1/+1
|
* (set_zero_one_variable): corrected bug when the variable doesn't exist beforeFrederic Lepied2002-07-281-1/+3
| | | | | setting it.
* added 0.30 changesFrederic Lepied2002-07-271-0/+6
|
* finalized no security lowering feature.Frederic Lepied2002-07-271-28/+68
|
* corrected last argument processing.Frederic Lepied2002-07-271-2/+2
|
* corrected splitted functions.Frederic Lepied2002-07-271-2/+7
|
* * (more functions): don't lower security when not changing secure level.Frederic Lepied2002-07-271-154/+424
|
* * (set_zero_one_variable): factorize sysctl.conf manipulation functions.Frederic Lepied2002-07-241-60/+137
| | | | | | | | | | | | | | * (accept_broadcasted_icmp_echo): split from accept_icmp_echo. * (set_umask): factorize set_root_umask and set_user_umask. * (enable_dns_spoofing_protection): split from enable_ip_spoofing_protection. * (allow_remote_root_login): split from allow_root_login. * (allow_autologin set_umask set_zero_one_variable allow_remote_root_login): don't lower security when not changing security level. * (allow_xserver_to_listen): split from allow_x_connections for better granularity. * (enable_ip_spoofing_protection): when disabling ip spoofing protection put back net.ipv4.conf.all.rp_filter to 0 (David Harris).
* call splitted function with the same args.Frederic Lepied2002-07-241-4/+13
|
* * (ConfigFile.get_match): return the whole line if replace is None.Frederic Lepied2002-07-241-3/+6
|
* if sysctl.conf is modified reload its content with sysctl but do not restartFrederic Lepied2002-07-061-1/+1
| | | | | network.
* allow_root_login: corrected regexp to avoid adding the string at every run.Frederic Lepied2002-07-041-2/+2
|
* insert changes when no match is found for logindefs and sshd_config.Frederic Lepied2002-07-041-3/+3
|
* pass -c to Perms.py if the level is given on the command line.Frederic Lepied2002-06-271-1/+2
|
* if we don't change the security level, try not to lower the securityFrederic Lepied2002-06-271-6/+13
| | | | | if the user has changed it manually (added -c option).
* corrected typoChristian Belisle2002-06-041-1/+1
|
* report more complete error messages.Frederic Lepied2002-05-312-10/+10
|
* check that the root is running the processFrederic Lepied2002-05-311-0/+5
|
* corrected typoFrederic Lepied2002-05-291-1/+1
|