diff options
| author | Christian Belisle <cbelisle@mandriva.com> | 2002-07-30 21:10:41 +0000 |
|---|---|---|
| committer | Christian Belisle <cbelisle@mandriva.com> | 2002-07-30 21:10:41 +0000 |
| commit | a11d38c7d0b234e392e21c69e4f558e3860f90bc (patch) | |
| tree | 973ae3e72cfb00841e510a63ad58ffe095faf7d8 /perl-install/security | |
| parent | fb625e71e7d8e8d86da175a13fb8d6ef0d7285c6 (diff) | |
| download | drakx-a11d38c7d0b234e392e21c69e4f558e3860f90bc.tar drakx-a11d38c7d0b234e392e21c69e4f558e3860f90bc.tar.gz drakx-a11d38c7d0b234e392e21c69e4f558e3860f90bc.tar.bz2 drakx-a11d38c7d0b234e392e21c69e4f558e3860f90bc.tar.xz drakx-a11d38c7d0b234e392e21c69e4f558e3860f90bc.zip | |
-complete re-write of draksec. The main functions will go in this file.
Diffstat (limited to 'perl-install/security')
| -rw-r--r-- | perl-install/security/main.pm | 69 |
1 files changed, 69 insertions, 0 deletions
diff --git a/perl-install/security/main.pm b/perl-install/security/main.pm new file mode 100644 index 000000000..3d413edbd --- /dev/null +++ b/perl-install/security/main.pm @@ -0,0 +1,69 @@ +package security::main; + +use diagnostics; +use strict; + +use common; +use log; + +use security::msec; +use security::libsafe; + +sub basic_page { + my ($prefix, $in) = @_; + my $security = security::msec::get_secure_level(''); + my $libsafe = security::libsafe::config_libsafe(''); + my $sec_user = security::msec::config_security_user(''); + my $signal = 9; + + if(security::msec::choose_security_level($in, \$security, \$libsafe, \$sec_user, \$signal)) { + log::l("[draksec] Setting libsafe activation variable to $libsafe"); + security::libsafe::config_libsafe('', $libsafe); + + log::l("[draksec] Setting security administrator contact to $sec_user"); + security::msec::config_security_user('', $sec_user); + +# my $w = $in->wait_message('', _("Setting security level")); +# $in->suspend; + $ENV{LILO_PASSWORD} = ''; # make it non interactive + log::l("[draksec] Setting security level to $security"); + system "/usr/sbin/msec", $security; +# $in->resume; + } + $signal; +} + +sub functions_page { + my ($prefix, $in) = @_; + my $signal = 9; + my $security = security::msec::get_secure_level(''); + my %functions = security::msec::get_options('', $security); + my $key = ''; + + if(security::msec::choose_options($in, \%functions, \$signal, $security)) { + foreach $key (keys %functions) { + security::msec::set_option('', $key, $functions{$key}); + } + } + $signal; +} + +sub main { + my ($prefix, $in) = @_; + my $signal = 0; + + while ($signal != 9) { + # signal 0 = basic page + # signal 1 = first advanced page (functions) + # signal 2 = checks page + # signal 3 = permissions page + # signal 4 = firewall page + # signal 5 = users page + # signal 9 = quit + + if ($signal == 0) { $signal = basic_page($prefix, $in); } + elsif ($signal == 1) { $signal = functions_page($prefix, $in); } + } +} + +1; |