drakx/perl-install/security, branch topic/KA9_0

s/package draksec::libsafe/package security::libsafe/

2002-09-19T09:27:03+00:00

anyway nobody uses that one

- factorize @sec_levels and %sec_levels for get_default() and

2002-09-18T09:03:23+00:00

  get_seclevel_list()
- use them in get_default()
- get_value() : don't assume a space between "function_name" and
  "(parameters)"

fix wait_message doesn't display

2002-09-18T09:01:36+00:00

remove brackets on function values loading

2002-09-18T08:00:26+00:00

run msec after setting changes

2002-09-18T07:30:17+00:00

respect msec syntax

2002-09-18T07:27:06+00:00

"kill quart of draksec code" patch aka make it really working aka "happy fred" :

2002-09-18T06:22:29+00:00

- security::msec :
  o consolidate get_function_value() and get_value into get_value()
  o really apply changes, aka save them :
    * config_check() : use substInFile and setVarsInSh
    * config_function() : use substInFile and append_to_file
    * kill stupid and bogus config_option()
  o don't overwrite previous changes, aka reread them :
    * fix checks and functions current value loading
    * fix checks and functions default loading

- security::main :
  o simplify ui creation, make it more readable
  o kill offuscating basic_secadmin_check(), basic_secadmin_entry(),
    network_generate_page(), system_generate_page() and checks_generate_page()
  o increase default height because of stupid "add_with_viewport" in
    ugtk::createScrolledWindow
  o consolidate network and system functions managment, they're all the same for
    msec, splitting is only a draksec "feature";  all go in %options_values

- draksec :
  o let standalone module configure standalone mode
  o security::main already take care of initializing gtk
  o security::main already take care of exiting
  o don't play with embedded mode special variables

it overall looks better but big cleanups're still possible for mdk9.1

- security::msec :

2002-09-17T14:44:15+00:00

  o config_check: use MDK::Common to set option rather
    than overwriting config file
  o remove all stupid prefix that just ofuscate code
    whereas it's always set to  '',
    $::prefix will be a lot better
  o s/shift @_/shift/
  o kill config_option()
  o simplify get_default()
  o get_secure_level() : replace if cascade by an array
  o set_secure_level() :
    * replace if cascade by an hash
    * default to runlevel 3 if undefined
  o get_functions() : simplify by merging code paths
- security::main :
  o security::libsafe is unneeded
  o don't pass useless prefix
  o begin to read default values

- msec::config_check: use MDK::Common to set option rather

2002-09-17T14:21:52+00:00

  than overwriting config file
- remove all stupid prefix that just ofuscate code
  whereas it's always set to  '',
  $::prefix will be a lot better

- security::main: kill duplicated 'use strict'

2002-09-17T09:10:20+00:00

- no ignore choice for periodic checks
- save functions in /etc/security/msec/level.local
  and not security.conf
- "from mseclib import" is useless
- fix functions saving (an object method invocation
  takes class name as argument)