diff options
author | Christian Breunig <christian@breunig.cc> | 2024-06-30 07:35:25 +0200 |
---|---|---|
committer | Christian Breunig <christian@breunig.cc> | 2024-06-30 22:12:57 +0200 |
commit | 72a704d2e2b06bfedc4f1ee841814f983fc34baa (patch) | |
tree | faa4cf1ea5fb58d414f426622ce255256e4a3ec6 /src/opt/vyatta/bin | |
parent | 7d91768a746a000bf26d737eb1612536d0454ad1 (diff) | |
download | vyos-1x-72a704d2e2b06bfedc4f1ee841814f983fc34baa.tar.gz vyos-1x-72a704d2e2b06bfedc4f1ee841814f983fc34baa.zip |
T6527: add legacy Vyatta interpreter files still in use
Diffstat (limited to 'src/opt/vyatta/bin')
-rwxr-xr-x | src/opt/vyatta/bin/restricted-shell | 11 | ||||
-rwxr-xr-x | src/opt/vyatta/bin/vyatta-op-cmd-wrapper | 6 |
2 files changed, 17 insertions, 0 deletions
diff --git a/src/opt/vyatta/bin/restricted-shell b/src/opt/vyatta/bin/restricted-shell new file mode 100755 index 000000000..ffcbb53b7 --- /dev/null +++ b/src/opt/vyatta/bin/restricted-shell @@ -0,0 +1,11 @@ +#!/bin/bash + +if [ $# != 0 ]; then + echo "Remote command execution is not allowed for operator level users" + args=($@) + args_str=$(IFS=" " ; echo "${args[*]}") + logger "Operator level user $USER attempted remote command execution: $args_str" + exit 1 +fi + +exec vbash diff --git a/src/opt/vyatta/bin/vyatta-op-cmd-wrapper b/src/opt/vyatta/bin/vyatta-op-cmd-wrapper new file mode 100755 index 000000000..a89211b2b --- /dev/null +++ b/src/opt/vyatta/bin/vyatta-op-cmd-wrapper @@ -0,0 +1,6 @@ +#!/bin/vbash +shopt -s expand_aliases +source /etc/default/vyatta +source /etc/bash_completion.d/vyatta-op +_vyatta_op_init +_vyatta_op_run "$@" |