crans/scripts
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

[firewall4] Les apprentis ont accès à adm depuis zamok

Browse source 
Comme c'est le cas depuis n'importe quel autre serveur.
This commit is contained in:
Valentin Samir 2013-10-24 17:15:56 +02:00
parent d99bdc7601
commit 6b94ef91d4
1 changed files with 2 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

4
gestion/gen_confs/firewall4.py
View file

@ -1070,8 +1070,8 @@ class firewall_zamok(firewall_base):
try: self.add(table, chain, '-m owner --uid-owner %d -j ACCEPT' % pwd.getpwnam(user)[2]) try: self.add(table, chain, '-m owner --uid-owner %d -j ACCEPT' % pwd.getpwnam(user)[2])
except KeyError: print "Utilisateur %s inconnu" % user except KeyError: print "Utilisateur %s inconnu" % user
for nounou in self.conn.search(u"droits=%s" % lc_ldap.attributs.nounou): for adh in self.conn.search(u"(|(droits=%s)(droits=%s))" % (lc_ldap.attributs.nounou, lc_ldap.attributs.apprenti)):
self.add(table, chain, '-m owner --uid-owner %s -j RETURN' % nounou['uidNumber'][0]) self.add(table, chain, '-m owner --uid-owner %s -j RETURN' % adh['uidNumber'][0])
# Rien d'autre ne passe # Rien d'autre ne passe
self.add(table, chain, '-j REJECT --reject-with icmp-net-prohibited') self.add(table, chain, '-j REJECT --reject-with icmp-net-prohibited')