| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- fix "check states were not saved if their value did not change (thus
reverting it to default on disk)"
- fix emebedding (no transcience when embedded)
- fix "value get chop()-ed until it disapear and is reset to default"
- log which security level is set and not only the switch
killing latest remanent parts of christian "yeah baby, i'm piggy"
work:
- functions and checks listing :
o rename get_functions() as list_functions() and
get_default_checks() as list_checks(); this is both
more homogenous and enable one to separate them from the
get_(check|function)_(value|default) function group
o regroup them
o over simplify list_functions(): leave functions listing to msec
(aka /usr/share/msec/level.<LEVEL>, assuming share/msec.py is
always up to date, just don't care reparsing python code (this is
plain stupid); if we cannot rely on msec, on who could we :-) ?
o this allow to simplify msec gui so that we do not exclude stuff
already excluded
- remove config_check(), config_funtion(): replace them by:
o set_check() and set_function() to store new values in data
structure
o apply_checks() and apply_functions() to save these new values,
thus writing config files once and not twice the functions &
checks count
|
|
|
|
|
|
| |
check and forgot to remove it from /var/lib/msec/security.conf like
CHECK_SUID_GROUP => CHECK_SGID, but hopefully, he'll fix msec
|
|
|
|
|
| |
- use formatAlaTeX() to have nicer tooltips
|
|
|
|
|
|
|
|
| |
- put the same help label on top of each msec options notebook pages
and consolidate it
- use gtkpack_ instead of gtkpack so that we can tell gtk+ that label
must neither fill nor expand, only the packtable should
|
| |
|
| |
|
|
|
|
|
| |
we should really use the camille/deush help system though.
|
|
|
|
|
|
| |
- display sorted options (hey pixel, note that the last diff trunk with
execessive () was not detected by perl_checker :-( )
|
|
|
|
|
| |
exported by our
|
| |
|
|
|
|
|
| |
package!!)
|
|
|
|
|
|
| |
make explanations provided by log and not anymore by standalone,
thus preventing using standalone in drakx (which is bad)
|
|
|
|
|
|
| |
nobody will uses it so it's useless to load drakx with it.
also use common cli options managment
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- security::msec :
o consolidate get_function_value() and get_value into get_value()
o really apply changes, aka save them :
* config_check() : use substInFile and setVarsInSh
* config_function() : use substInFile and append_to_file
* kill stupid and bogus config_option()
o don't overwrite previous changes, aka reread them :
* fix checks and functions current value loading
* fix checks and functions default loading
- security::main :
o simplify ui creation, make it more readable
o kill offuscating basic_secadmin_check(), basic_secadmin_entry(),
network_generate_page(), system_generate_page() and checks_generate_page()
o increase default height because of stupid "add_with_viewport" in
ugtk::createScrolledWindow
o consolidate network and system functions managment, they're all the same for
msec, splitting is only a draksec "feature"; all go in %options_values
- draksec :
o let standalone module configure standalone mode
o security::main already take care of initializing gtk
o security::main already take care of exiting
o don't play with embedded mode special variables
it overall looks better but big cleanups're still possible for mdk9.1
|
| |
|
| |
|
|
|
|
|
| |
(so that 'use strict' works)
|
|
|
|
|
|
| |
=> allows to remove the somewhat mythical
$::isEmbedded = ($::XID, $::CCPID) = "@ARGV" =~ /--embedded (\w+) (\w+)/
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
| |
with nice help from Pixel for the tough Perl part
- move 'use standalone' up in all standalone apps,
to comply to 'explanations'
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
| |
otherwise you need re-sourcing.
|
| |
|
| |
|
| |
|
|
|
|
| |
instead of CLASS)
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|