WebSVN – ALCASAR – Diff – /alcasar.sh

 #!/bin/bash
-#  $Id: alcasar.sh 2206 2017-05-06 17:58:56Z richard $
+#  $Id: alcasar.sh 2211 2017-05-08 16:39:43Z richard $
 # alcasar.sh
 # ALCASAR Install script -  CopyLeft ALCASAR Team [Rexy + 3abtux + Steweb + Crox + ...]
 # Ce programme est un logiciel libre ; This software is free and open source
 ##################################################################
 msec()
+{
 # Apply fileserver security level
-$SED "s?BASE_LEVEL=.*?BASE_LEVEL=fileserver?g" /etc/security/msec/security.conf
+[ -e /etc/security/msec/security.conf.default ] || cp /etc/security/msec/security.conf /etc/security/msec/security.conf.default
-# Disable Magic SysReq Keys
-$SED "s?^ALLOW_REBOOT=.*?ALLOW_REBOOT=no?g" /etc/security/msec/level.fileserver
+echo "BASE_LEVEL=fileserver" > /etc/security/msec/security.conf
 # Set permissions monitoring and enforcement
 cat <<EOF > /etc/security/msec/perm.local
 /var/log/firefwall/                     root.apache     750
 /var/log/firewall/*                     root.apache     640
 /etc/raddb/ldap.attrmap                 root.radius     640
 /etc/raddb/hints                        root.radius     640
 /etc/raddb/huntgroups                   root.radius     640
 /etc/raddb/attrs.access_reject          root.radius     640
 /etc/raddb/attrs.accounting_response    root.radius     640
-/etc/raddb/acct_users                   root.raidus     640
+/etc/raddb/acct_users                   root.radius     640
 /etc/raddb/preproxy_users               root.radius     640
 /etc/raddb/modules/ldap                 radius.apache   660
 /etc/raddb/sites-available/alcasar      radius.apache   660
 /etc/pki/*                              root.apache     750
-/var/log/netflow/porttracker            apache.apache   770
+/var/log/netflow/porttracker            root.apache     770
-/var/log/netflow/porttracker/*          apache.apache   770
+/var/log/netflow/porttracker/*          root.apache     660
 EOF
-# apply now
+# apply now hourly & daily checks
 /usr/sbin/msec
+/etc/cron.weekly/msec
 } # END msec()
 ##################################################################
 ##		Fonction "post_install"			##

Subversion Repositories ALCASAR

(root)/alcasar.sh @ 2681 – Rev 2206 → 2211