summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorChristian Poessinger <christian@poessinger.com>2021-01-20 20:27:19 +0100
committerChristian Poessinger <christian@poessinger.com>2021-01-20 20:27:21 +0100
commitf872acf5df6320e8ea50ec532f8a0caa05a21217 (patch)
tree51fa3f026729726bf6c564d3bccd86d12e959d46
parent3568e45dca8ad810abd0ea6ddda686e98bbb80b1 (diff)
downloadvyos-1x-f872acf5df6320e8ea50ec532f8a0caa05a21217.tar.gz
vyos-1x-f872acf5df6320e8ea50ec532f8a0caa05a21217.zip
Debian: add openvpn user via postinstall
Migrated from vyatta-cfg-system.
-rw-r--r--debian/vyos-1x.postinst5
1 files changed, 5 insertions, 0 deletions
diff --git a/debian/vyos-1x.postinst b/debian/vyos-1x.postinst
index 0597fbc66..5fadddc86 100644
--- a/debian/vyos-1x.postinst
+++ b/debian/vyos-1x.postinst
@@ -20,6 +20,11 @@ if ! grep -q '^minion' /etc/passwd; then
adduser --quiet minion users
fi
+# OpenVPN should get its own user
+if ! grep -q '^openvpn' /etc/passwd; then
+ adduser --quiet --firstuid 100 --system --group --shell /usr/sbin/nologin openvpn
+fi
+
# Add RADIUS operator user for RADIUS authenticated users to map to
if ! grep -q '^radius_user' /etc/passwd; then
adduser --quiet --firstuid 1001 --disabled-login --ingroup users --gecos "radius user" --shell /bin/vbash radius_user