aboutsummaryrefslogtreecommitdiffstats
path: root/init-sh
diff options
context:
space:
mode:
authorYoann Vandoorselaere <yoann@mandriva.com>1999-12-09 16:44:11 +0000
committerYoann Vandoorselaere <yoann@mandriva.com>1999-12-09 16:44:11 +0000
commit9422e4962af0d43308cfae95ab8e7370ee035525 (patch)
tree02af58f7f20cf67116317f6911e6b9555385367b /init-sh
parente32553ef75d82fb7ec8c85a559d7ab4d10e6529f (diff)
downloadmsec-9422e4962af0d43308cfae95ab8e7370ee035525.tar
msec-9422e4962af0d43308cfae95ab8e7370ee035525.tar.gz
msec-9422e4962af0d43308cfae95ab8e7370ee035525.tar.bz2
msec-9422e4962af0d43308cfae95ab8e7370ee035525.tar.xz
msec-9422e4962af0d43308cfae95ab8e7370ee035525.zip
*** empty log message ***
Diffstat (limited to 'init-sh')
-rwxr-xr-xinit-sh/level0.sh5
-rwxr-xr-xinit-sh/level1.sh12
-rwxr-xr-xinit-sh/level2.sh5
-rw-r--r--init-sh/lib.sh3
4 files changed, 22 insertions, 3 deletions
diff --git a/init-sh/level0.sh b/init-sh/level0.sh
index a0cd43c..1e0a7f1 100755
--- a/init-sh/level0.sh
+++ b/init-sh/level0.sh
@@ -65,6 +65,11 @@ echo "Adding \"non secure\" PATH variable :"
AddRules "PATH=\$PATH:/usr/X11R6/bin:/usr/games:." /etc/profile quiet
AddRules "export PATH SECURE_LEVEL" /etc/profile
+# Xserver
+echo "Allowing users to connect X server from everywhere :"
+AddRules "/usr/X11R6/bin/xhost +" /etc/X11/xdm/Xsession quiet
+AddRules "/usr/X11R6/bin/xhost +" /etc/X11/xinit/xinitrc
+
# Group
echo -n "Adding \"${DRAKX_USERS}\" to audio group :"
for user in ${DRAKX_USERS}; do
diff --git a/init-sh/level1.sh b/init-sh/level1.sh
index a0cd43c..861a34c 100755
--- a/init-sh/level1.sh
+++ b/init-sh/level1.sh
@@ -44,9 +44,9 @@ echo -e "\t- Check passwd file integrity : no."
AddRules "CHECK_PASSWD=no" /etc/security/msec/security.conf quiet
echo -e "\t- Check shadow file integrity : no."
AddRules "CHECK_SHADOW=no" /etc/security/msec/security.conf quiet
-echo -e "\t- Security warning on tty : \"no\" :"
+echo -e "\t- Security warning on tty : no."
AddRules "TTY_WARN=no" /etc/security/msec/security.conf quiet
-echo -e "\t- Security warning in syslog : \"no\" :"
+echo -e "\t- Security warning in syslog : no."
AddRules "SYSLOG_WARN=no" /etc/security/msec/security.conf
# end security check
@@ -65,6 +65,14 @@ echo "Adding \"non secure\" PATH variable :"
AddRules "PATH=\$PATH:/usr/X11R6/bin:/usr/games:." /etc/profile quiet
AddRules "export PATH SECURE_LEVEL" /etc/profile
+
+# Xserver
+echo "Allowing users to connect X server from localhost :"
+AddRules "/usr/X11R6/bin/xhost + localhost" /etc/X11/xdm/Xsession quiet
+AddRules "/usr/X11R6/bin/xhost + localhost" /etc/X11/xinit/xinitrc
+
+###
+
# Group
echo -n "Adding \"${DRAKX_USERS}\" to audio group :"
for user in ${DRAKX_USERS}; do
diff --git a/init-sh/level2.sh b/init-sh/level2.sh
index 20f3298..d387b13 100755
--- a/init-sh/level2.sh
+++ b/init-sh/level2.sh
@@ -65,6 +65,11 @@ echo "Adding \"normal\" PATH variable :"
AddRules "PATH=\$PATH:/usr/X11R6/bin:/usr/games" /etc/profile quiet
AddRules "export PATH SECURE_LEVEL" /etc/profile
+# Xserver
+echo "Allowing users to connect X server from localhost :"
+AddRules "/usr/X11R6/bin/xhost + localhost" /etc/X11/xdm/Xsession quiet
+AddRules "/usr/X11R6/bin/xhost + localhost" /etc/X11/xinit/xinitrc
+
# Group
echo -n "Adding \"${DRAKX_USERS}\" to audio group :"
for user in ${DRAKX_USERS}; do
diff --git a/init-sh/lib.sh b/init-sh/lib.sh
index ec14be3..7c90b05 100644
--- a/init-sh/lib.sh
+++ b/init-sh/lib.sh
@@ -171,9 +171,10 @@ CleanRules /etc/lilo.conf
CleanRules /etc/rc.d/rc.firewall
CleanRules /etc/crontab
CleanRules /etc/security/msec/security.users
+CleanRules /etc/X11/xdm/Xsession
+CleanRules /etc/X11/xinit/xinitrc
echo -e "\nStarting to reconfigure the system : "
-
# For all secure level
echo "Setting spoofing protection : "
AddRules "echo 1 > /proc/sys/net/ipv4/conf/all/rp_filter" /etc/rc.d/rc.firewall