Browse Source

Alter permissions when adding and removing users

Bob Mottram 8 years ago
parent
commit
4b81fde030
2 changed files with 8 additions and 0 deletions
  1. 4
    0
      src/freedombone-adduser
  2. 4
    0
      src/freedombone-rmuser

+ 4
- 0
src/freedombone-adduser View File

75
 MINIMUM_PASSWORD_LENGTH=$(cat /usr/share/${PROJECT_NAME}/utils/${PROJECT_NAME}-utils-passwords | grep 'MINIMUM_PASSWORD_LENGTH=' | head -n 1 | awk -F '=' '{print $2}')
75
 MINIMUM_PASSWORD_LENGTH=$(cat /usr/share/${PROJECT_NAME}/utils/${PROJECT_NAME}-utils-passwords | grep 'MINIMUM_PASSWORD_LENGTH=' | head -n 1 | awk -F '=' '{print $2}')
76
 
76
 
77
 NEW_USER_PASSWORD="$(openssl rand -base64 30 | cut -c1-${MINIMUM_PASSWORD_LENGTH})"
77
 NEW_USER_PASSWORD="$(openssl rand -base64 30 | cut -c1-${MINIMUM_PASSWORD_LENGTH})"
78
+chmod 700 /etc/shadow
79
+chmod 700 /etc/gshadow
78
 useradd -m -p "$NEW_USER_PASSWORD" -s /bin/bash $ADD_USERNAME
80
 useradd -m -p "$NEW_USER_PASSWORD" -s /bin/bash $ADD_USERNAME
79
 adduser $ADD_USERNAME sasl
81
 adduser $ADD_USERNAME sasl
82
+chmod 0000 /etc/shadow
83
+chmod 0000 /etc/gshadow
80
 
84
 
81
 if [ ! -d /home/$ADD_USERNAME ]; then
85
 if [ ! -d /home/$ADD_USERNAME ]; then
82
     echo $'Home directory was not created'
86
     echo $'Home directory was not created'

+ 4
- 0
src/freedombone-rmuser View File

136
     fi
136
     fi
137
 done
137
 done
138
 
138
 
139
+chmod 700 /etc/shadow
140
+chmod 700 /etc/gshadow
139
 userdel -r $REMOVE_USERNAME
141
 userdel -r $REMOVE_USERNAME
142
+chmod 0000 /etc/shadow
143
+chmod 0000 /etc/gshadow
140
 
144
 
141
 if [ -d /home/$REMOVE_USERNAME ]; then
145
 if [ -d /home/$REMOVE_USERNAME ]; then
142
     rm -rf /home/$REMOVE_USERNAME
146
     rm -rf /home/$REMOVE_USERNAME