summaryrefslogtreecommitdiffstats
path: root/perl-install/security
Commit message (Collapse)AuthorAgeFilesLines
* - set_help is deprecatedPascal Rigaux2003-02-131-5/+5
| | | | | | | - it is replaced by interactive_help_id on each ask_* - many set_help do not have any correspondance in help.pm (drakxid-*), those are commented for now
* new data structure enables to do further cleanups and to spot old bugs (akaThierry Vignaud2003-02-051-46/+35
| | | | | | | | | | | | | | | | | security::msec is readable at last): - put all file names & separators for regexps in the object - (load_defaults, load_values) thus we can use indirect call to get right values - (load_values) fix "returning 'undef' option" (this trival bug did not have any side effect but fixing it is cleaner - kill debugging statements - generalize some comments - (reload) introduce this method so that we can later reload default values when the user change the security level the only bug we left is that on each saving, we add a empty line to config files...
* perl_checker fixThierry Vignaud2003-02-041-1/+0
|
* - fix get_check_default() and get_function_default() descriptionThierry Vignaud2003-02-041-56/+59
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - fix "check states were not saved if their value did not change (thus reverting it to default on disk)" - fix emebedding (no transcience when embedded) - fix "value get chop()-ed until it disapear and is reset to default" - log which security level is set and not only the switch killing latest remanent parts of christian "yeah baby, i'm piggy" work: - functions and checks listing : o rename get_functions() as list_functions() and get_default_checks() as list_checks(); this is both more homogenous and enable one to separate them from the get_(check|function)_(value|default) function group o regroup them o over simplify list_functions(): leave functions listing to msec (aka /usr/share/msec/level.<LEVEL>, assuming share/msec.py is always up to date, just don't care reparsing python code (this is plain stupid); if we cannot rely on msec, on who could we :-) ? o this allow to simplify msec gui so that we do not exclude stuff already excluded - remove config_check(), config_funtion(): replace them by: o set_check() and set_function() to store new values in data structure o apply_checks() and apply_functions() to save these new values, thus writing config files once and not twice the functions & checks count
* - consolidate file namesThierry Vignaud2003-02-031-75/+87
| | | | | | | | | | | | | | - remove unused variables - rename get_(default|value as load_(default|value)s and alter them so that config file are read only one time instead of one per option; data is stocked in package variable - thus get_default_checks() is quite a lot faster - alter get_(check|function)_(value|default) to use new data structure - fix check default reading - group default values reading and current values reading what's left: do the same thing for writing tomorow
* - msec was altered to produce help suitable for formatAlaTeX()Thierry Vignaud2003-02-031-0/+33
| | | | | - use formatAlaTeX() to have nicer tooltips
* auto-generated from msec/share/draksec_help.py libmsec and moved fromThierry Vignaud2003-02-031-0/+139
| | | | | | | msec to here so that draksec help'll get translated all changes must be done in soft/msec/share/libmsec.py !!!
* English proofreading (first pass)Pablo Saratxaga2003-01-211-2/+2
|
* replace occurences of "$foo ? $foo : $bar" with "$foo || $bar"Pascal Rigaux2003-01-161-2/+2
|
* deprecates security::libsafePascal Rigaux2002-12-291-0/+28
|
* - move any::choose_security_level() to security::level::level_choose()Pascal Rigaux2002-12-292-18/+40
| | | | | | - move any::config_security_user() to security::various::config_security_user() - move any::config_libsafe() and security::libsafe::config_libsafe() to security::various::config_libsafe()
* move draksec's gui into the standalone program,Thierry Vignaud2002-12-131-243/+0
| | | | | | nobody will uses it so it's useless to load drakx with it. also use common cli options managment
* remove unused variables or rename them with an underscore (eg: $o becomes $_o)Pascal Rigaux2002-12-041-2/+2
|
* syntax changes to make perl_checker happyPascal Rigaux2002-12-041-1/+1
|
* syntax changes to make perl_checker happyPascal Rigaux2002-12-041-1/+1
|
* share common optionsMystery Man 5802002-12-041-5/+7
|
* - fix obvious pixel typo (s/if/if_/)Mystery Man 5802002-12-041-61/+7
| | | | | | | - no need to maintain dummy documentation about something which is called only in one place - simplify
* fix typoPascal Rigaux2002-12-031-1/+1
|
* simplify (esp. use cat_)Pascal Rigaux2002-12-031-20/+2
|
* (get_value): cleanupPascal Rigaux2002-12-031-34/+20
|
* - gtk2 portThierry Vignaud2002-12-021-46/+48
| | | | | - perl_checker fixes
* simplifyThierry Vignaud2002-11-201-1/+1
|
* cleanupsThierry Vignaud2002-11-201-3/+2
|
* - fix duplication of sec level setting:Thierry Vignaud2002-11-193-39/+59
| | | | | | | | | | | | | merge any::get_secure_level() with secure::msec::get_secure_level() - move security level functions from secure::msec to secure::level - uses secure::level in install_steps - fix duplication of security level labels - draksec: use same strings in drakx, got nice translations - get_default_checks(): make it more readable
* previous example in perldoc was buggy;Thierry Vignaud2002-11-191-14/+21
| | | | | put one that really works
* update copyright yearsThierry Vignaud2002-11-181-1/+1
|
* - use run_program rather than raw systemThierry Vignaud2002-11-151-16/+26
| | | | | | | | | | - kill useless show_msec_help() - kill commented remanant code of help buttons - add tooltip with default values on combos & entries - log about security administrator changes only when we do some - factorize some code into new_editable_combo() and set_default_tip()
* - kill unused myexit()Thierry Vignaud2002-11-141-4/+2
| | | | | - perl_checker fixes
* - perl_checker fixesThierry Vignaud2002-11-141-17/+19
| | | | | | - clean code - simplify config_function()
* add/remove some spaces to make perl_checker happyPascal Rigaux2002-11-121-1/+1
|
* fix _() -> N() conversionThierry Vignaud2002-11-121-1/+1
|
* - replace ... =~ 'foo' with ... =~ /foo/Pascal Rigaux2002-11-112-3/+3
| | | | | - remove unneeded parentheses for things like ... if (...)
* add or remove spaces where need to please perl_checkerPascal Rigaux2002-11-112-6/+7
|
* - use "foreach" instead of "for" in list contextPascal Rigaux2002-11-111-2/+2
| | | | | - use "for" instead of "foreach" when used a la C
* various small syntax enhancements to please perl_checkerPascal Rigaux2002-11-111-2/+2
|
* replace "_" with "N" and "__" with "N_"Pascal Rigaux2002-11-061-17/+17
| | | | | | | | | | | | | | | | | | | rationale: - currently, we use _("xxx") as a shorthand for gettext("xxx"). It also used to call xgettext with --keyword=_ - alas, function &_ is global and not by package (notice esp. that _ is not exported in common.pm) - this lead to big ugly pb with packages defining their own &_, overriding common.pm's &_ - a fix is to set @::textdomains to add a new domain (the default being "libDrakX") but relying on the global "_" is still dangerous!
* remember to factorize this with rpmdrake's wait messages in my_gtkThierry Vignaud2002-09-241-0/+1
|
* ignore_list is uselessThierry Vignaud2002-09-241-2/+1
|
* remove "bogus periodic check 2" from periodic checks pageThierry Vignaud2002-09-241-2/+1
|
* let simplifyThierry Vignaud2002-09-241-2/+1
|
* s/package draksec::libsafe/package security::libsafe/Thierry Vignaud2002-09-191-1/+1
| | | | | anyway nobody uses that one
* - factorize @sec_levels and %sec_levels for get_default() andThierry Vignaud2002-09-181-9/+7
| | | | | | | | get_seclevel_list() - use them in get_default() - get_value() : don't assume a space between "function_name" and "(parameters)"
* fix wait_message doesn't displayThierry Vignaud2002-09-181-2/+4
|
* remove brackets on function values loadingThierry Vignaud2002-09-181-4/+8
|
* run msec after setting changesThierry Vignaud2002-09-181-1/+5
|
* respect msec syntaxThierry Vignaud2002-09-181-1/+1
|
* "kill quart of draksec code" patch aka make it really working aka "happy fred" :Thierry Vignaud2002-09-182-216/+119
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - security::msec : o consolidate get_function_value() and get_value into get_value() o really apply changes, aka save them : * config_check() : use substInFile and setVarsInSh * config_function() : use substInFile and append_to_file * kill stupid and bogus config_option() o don't overwrite previous changes, aka reread them : * fix checks and functions current value loading * fix checks and functions default loading - security::main : o simplify ui creation, make it more readable o kill offuscating basic_secadmin_check(), basic_secadmin_entry(), network_generate_page(), system_generate_page() and checks_generate_page() o increase default height because of stupid "add_with_viewport" in ugtk::createScrolledWindow o consolidate network and system functions managment, they're all the same for msec, splitting is only a draksec "feature"; all go in %options_values - draksec : o let standalone module configure standalone mode o security::main already take care of initializing gtk o security::main already take care of exiting o don't play with embedded mode special variables it overall looks better but big cleanups're still possible for mdk9.1
* - security::msec :Thierry Vignaud2002-09-172-19/+17
| | | | | | | | | | | | | | | | | | | | | o config_check: use MDK::Common to set option rather than overwriting config file o remove all stupid prefix that just ofuscate code whereas it's always set to '', $::prefix will be a lot better o s/shift @_/shift/ o kill config_option() o simplify get_default() o get_secure_level() : replace if cascade by an array o set_secure_level() : * replace if cascade by an hash * default to runlevel 3 if undefined o get_functions() : simplify by merging code paths - security::main : o security::libsafe is unneeded o don't pass useless prefix o begin to read default values
* - msec::config_check: use MDK::Common to set option ratherThierry Vignaud2002-09-172-138/+99
| | | | | | | | than overwriting config file - remove all stupid prefix that just ofuscate code whereas it's always set to '', $::prefix will be a lot better
* - security::main: kill duplicated 'use strict'Thierry Vignaud2002-09-172-5/+4
| | | | | | | | | | - no ignore choice for periodic checks - save functions in /etc/security/msec/level.local and not security.conf - "from mseclib import" is useless - fix functions saving (an object method invocation takes class name as argument)