summaryrefslogtreecommitdiff
path: root/scripts/system
AgeCommit message (Collapse)Author
2009-12-02Pass more info to login scriptsStephen Hemminger
Pass status to login update() which might be useful to handle case when node is deleted.
2009-07-30Fix 4766: can't set login banners "Can't locate Vyatta/Login/Banner.pm"Stig Thormodsrud
2009-07-17Make telnet management smarterStephen Hemminger
Bug 4591 Consolidate check for telnet login Don't remove /etc/securetty edit it (cherry picked from commit c6c477f2ffb0f2fd4cf12882f22c2c44ab57cc46)
2009-07-17Fix generation of syslog host targetsStephen Hemminger
Bug 4494 (cherry picked from commit 7dc1c900184a629975b2e22e79c5dc44c494448e)
2009-07-17Handle deletion of radius (or other) serverStephen Hemminger
The login class manager must be called if login type is deleted. Also skip updating if no changes to that login type. (cherry picked from commit 1151679260e673f69bdb637fec7773b574f3c7b0)
2009-07-17Change API for login modulesStephen Hemminger
The login modules aren't really objects (if Perl really had objects), so just use dynamic invoke of update routine. (cherry picked from commit 37ba59896d4c9ac5c914d1901d86ed7e7d844871)
2009-07-17Make Radius server workStephen Hemminger
Translate radius-server to Vyatta::Login::RadiusServer (cherry picked from commit bf86040fef55fdb644b3670a9e1ec093e67df828)
2009-06-17Merged from Jenner.Bob Gilligan
2009-06-01Change how system login update worksStephen Hemminger
Use a wrapper script in vyatta_update_login.pl and per login method objects for the update.
2009-05-31Fix bug preventing 'vyatta' user login.Stig Thormodsrud
2009-05-27Print error message on failure to create group/userStephen Hemminger
Bug 4448
2009-05-06Reindent syslog scriptStephen Hemminger
2009-05-06Allow specifying 'protocols' for syslog facilityStephen Hemminger
Since quagga uses local7, make it a real facility. Allow local7 for compatiablity. Bug 4263
2009-05-05Split up system login scriptsStephen Hemminger
1. User and Radius separate scripts 2. Tacacs (incomplete) moved to separate package
2009-04-10Fix file syslog targetStephen Hemminger
The new code was requiring full pathname, but old version was using /var/log/user/<filename> so make new code work like old code.
2009-04-09Resolve problems with syslog.confStephen Hemminger
Default fallback code was broken Change to blocked out region for Vyatta config.
2009-04-08Rewrite existing syslog configuration updateStephen Hemminger
Do most of the work in the rewritten vyatta_update_syslog code. Handle multiple facilities for same target without causing duplicate log messages. Never restart syslog daemon, just reload it and only if the configuration has changed.
2009-03-26Revert "Split login authentication configuration into three scripts"Stephen Hemminger
This reverts commit fd605ab5d4ce4aa4015089042afd90f6e5c6ba59.
2009-03-23Split login authentication configuration into three scriptsStephen Hemminger
Getting cumbersome with one big script.
2009-03-23Fix bare file handle warningStephen Hemminger
2009-03-11Fix perlcritic warning about bare file handleStephen Hemminger
Use 3 arg open.
2009-03-03Fix perlcritic warningsStephen Hemminger
Use of global loop variable, and open syntax.
2008-11-21Convert to Vyatta::Config hierarchyStephen Hemminger
2008-11-14Speed up addition of users to systemStephen Hemminger
On boot, there is no reason to add or modify a user account if already exists in the system with same groups and settings.
2008-11-12add basic tacacs+ supportRobert Bays
2008-10-29Bugfix: 3841Bob Gilligan
Add admin level users to "disk" group so that they can execute RAID commands.
2008-10-10Fix Bug 3751 configuring multiple global syslog facilities overwrites ↵Mohit Mehta
previous ones in /etc/syslog.conf - multiple nodes configured under 'system syslog global' are appended to syslog.conf - default '*.notice -/var/log/messages' is removed from syslog.conf if any node is configured under 'system syslog global' and is put back when nothing configured under 'system syslog global' - syslog process only restarted once after making all changes in config - added commit checks at 'system syslog <>' level nodes to specify facility
2008-09-29Bugfix: 3492Bob Gilligan
Add "admin" and "operator" level users to the "dip" group so that they can execute CLI commands that bring up and take down PPP connections.
2008-08-10- servers being used for dns forwarding written to dnsmasq.conf with more ↵Mohit Mehta
info in comments - tighten check for updating resolv.conf for domain-names received from dhcp-server
2008-08-08tighten the checks for checking the existence or removal or nameserversMohit Mehta
2008-08-08tighten regex pattern to get dhclient resolv filesMohit Mehta
2008-06-26=> Modified vyatta_update_resolv.pl to update (i.e. add and remove) ↵Mohit Mehta
'name-server' and 'domain-name-server' options in /etc/resolv.conf received by a dhcp client for an interface => Modified name-server/node.def so as to have the name-server set by our CLI on the top of /etc/resolv.conf to take priority over name-servers received from dhcp client
2008-06-07wrong option to useraddStephen Hemminger
Manpage for useradd is incorrect, the option is -N not -n.
2008-06-06Put vyatta users in the users groupStephen Hemminger
Change to use -n option to useradd: A group having the same name as the user being added to the system will be created by default (when -g is not specified). This option will turn off this behavior. When this option is used, users by default will be placed in whatever group is specified in the GROUP variable of /etc/default/useradd. If no default group is defined, group 100 (users) will be used.
2008-05-30Allow any user to be in config fileStephen Hemminger
Root (which uses bash) must be allowed, and probably want to allow others as well. Better to add full shell support later
2008-05-29Rework how user accounts are managedStephen Hemminger
Rewrite the scripts that manage user accounts to: 1) use Posix standard useradd, userdel scripts rather than modifying passwd/group files directly. 2) add home-directory field to account management 3) support adding accounts to additional groups Note: this code should now also work with NIS since it has no direct access to /etc/passwd.
2008-05-29re-indent login scriptStephen Hemminger
Run script through perltidy to cleanup indentation
2008-05-29Add GPL licenseStephen Hemminger
Put GPL license on this script
2008-03-10fix for bug 2083: add radius authentication support.An-Cheng Huang
2008-03-10Update to GPLv2Stephen Hemminger
Replace references to VPL 1.0 with GPLv2
2008-02-29put operator in operator groupStephen Hemminger
This is part of other permission fixes, it puts operators into a group that can then be used for access control.
2008-02-26add operator and admin to linux group admStephen Hemminger
Add operator to group adm to allow reading log files without sudo. This group is used allow reading files in /var/log so the operational mode show log commands don't need sudo.
2008-02-21fix for bug 2764: rename user levelAn-Cheng Huang
2008-01-17fix bug 2631 - add new users to vtysh.confTom Grennan
2007-12-26Treat 'system domain-name $(@)' and 'system domain-search domain $(@)' as ↵Marat Nepomnyashy
mutually exclusive. Generate an error message and refuse commit if both are specified. Bug 2256 fix.
2007-12-18Rewrite '/etc/resolv.conf' each time config at 'system domain-search domain ↵Marat Nepomnyashy
$(@)' changes to update the 'search' params. Bug 2113 fix.
2007-12-04* change "user group" to "user level".An-Cheng Huang
* "admin" => "users", "quaggavty", "vyattacfg", "sudo". * "users" => "users", "quaggavty" * use "sudo" group for sudo permissions. * don't add "root" to /etc/group.
2007-11-15users added through our CLI now use "vbash" (from vyatta-bash package).An-Cheng Huang
2007-11-02remove workaround for broken "default:".An-Cheng Huang
2007-11-01temporary workaround until "default:" works in CLI backend.An-Cheng Huang