crans/crans_bcfg2
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
crans_bcfg2/Rules/rules.xml
Pierre-Elliott Bécue 6d01211957 [Rules] Ménage, et augmentation de granularité. 
Ignore-this: 34e1c207cf2f4538c566c780aeabcc99
Parce que j'en ai marre de me péter les yeux avec rules.xml

darcs-hash:20130118054038-afe24-8e2302b4bdce37c8a2ba4930ca88c8502c03ee4c.gz
2013-01-18 06:40:38 +01:00

47 lines
2.2 KiB
XML
Raw Blame History

<Rules priority="1">
<Group name="users">
<Path name="/etc/crans/secrets" type="directory" owner="respbats" group="adm" perms="0550"/>
</Group>
<Group name="vo">
<Path name="/etc/crans/secrets" type="directory" owner="respbats" group="adm" perms="0550"/>
</Group>
<!-- XXX: kludge pour facture.py -->
<Group name="rouge">
<Path name="/etc/crans/secrets" type="directory" owner="intranet" group="adm" perms="0550"/>
</Group>
<Group name="mail-mx-main">
<Action name="postfix-to-sasl" timing="post" when="modified" status="check" command="adduser postfix sasl"/>
<Action name="postfix-link-sasl" timing="post" when="modified" status="check" command="ln -sf /var/spool/postfix/var/run/saslauthd /var/run/saslauthd"/>
</Group>
<Group name="users" negate="true">
<Group name="vo" negate="true">
<Path name="/etc/crans/secrets" type="directory" owner="root" group="adm" perms="0550"/>
</Group>
</Group>
<Path name="/usr/scripts" type="directory" owner="root" group="adm" perms="775"/>
<!-- Suppression du groupe adm de /etc/group pour forcer sudo à regarder dans la base -->
<Action name="del-adm"
timing="post" when="modified" status="check"
command="! grep -q '^adm:' /etc/group ||
{ a=$(mktemp) &amp;&amp;
awk -F':' '$1 != &quot;adm&quot;' /etc/group > $a &amp;&amp;
mv $a /etc/group &amp;&amp;
rm -f $a &amp;&amp;
grpconv; }"/>
<Action name="ln-attendre-vert" timing="post" when="modified" status="check"
command="ln -s /etc/init.d/attendre-vert /etc/rcS.d/S41attendre-vert" />
<Path name="/usr/lib/pymodules/python2.6/MoinMoin/script/export/dump_proxy.py" type="symlink" to="/usr/scripts/wiki/dump_proxy.py" />
<Path name="/etc/logcheck/cracking.ignore.d/local-crans" type="symlink" to="/etc/logcheck/ignore.d.server/local-crans"/>
<Path name="/etc/logcheck/cracking.ignore.d/local-ignore" type="symlink" to="/etc/logcheck/ignore.d.server/local-ignore"/>
<Path name="/etc/logcheck/violations.ignore.d/local-crans" type="symlink" to="/etc/logcheck/ignore.d.server/local-crans"/>
<Path name="/etc/logcheck/violations.ignore.d/local-ignore" type="symlink" to="/etc/logcheck/ignore.d.server/local-ignore"/>
</Rules>
Reference in a new issue View git blame Copy permalink