Changeset 544
- Timestamp:
- 05/19/08 14:23:19 (7 months ago)
- Location:
- cdd-utils/trunk
- Files:
-
- 4 modified
- 1 moved
-
bin/cryptpw (moved) (moved from cdd-utils/trunk/bin/md5pw) (2 diffs)
-
debian/changelog (modified) (1 diff)
-
lib/common.sh (modified) (1 diff)
-
lib/server.sh (modified) (2 diffs)
-
lib/suites.sh (modified) (2 diffs)
Legend:
- Unmodified
- Added
- Removed
-
cdd-utils/trunk/bin/cryptpw
r542 r544 2 2 3 3 use strict; 4 5 use Crypt::PasswdMD5 qw(unix_md5_crypt); 6 use Crypt::SmbHash qw(lmhash nthash); 4 7 5 use Crypt::PasswdMD5 qw(unix_md5_crypt);6 8 my @salt = ( '.', '/', 0 .. 9, 'A' .. 'Z', 'a' .. 'z' ); 7 9 8 # this takes password as argument: good for simple example, bad for 9 # security (perldoc -q password) 10 my $password = shift || die "usage: $0 password"; 10 my $type = shift || die "usage: $0 type password"; 11 my $password = shift || die "usage: $0 type password"; 11 12 12 my %encrypted;13 my $encrypted; 13 14 14 # generate traditional (weak!) DES password, and more modern md5 15 $encrypted{md5} = unix_md5_crypt( $password, gensalt(8) ); 15 if ( $type eq "md5" ) { 16 $encrypted = unix_md5_crypt( $password, gensalt(8) ); 17 } 18 if ( $type eq "lm" ) { 19 $encrypted = lmhash($password); 20 } 21 if ( $type eq "nt" ) { 22 $encrypted = nthash($password); 23 } 16 24 17 print "$encrypted {md5}\n";25 print "$encrypted\n"; 18 26 19 27 # uses global @salt to construct salt string of requested length … … 27 35 28 36 return $salt; 37 29 38 } 30 -
cdd-utils/trunk/debian/changelog
r543 r544 17 17 * Remove cdrom APT sources 18 18 * Use squirrelmail via SSL 19 * Added md5pw script20 * Encrypt webmin password on the fly19 * Added cryptpw script 20 * Encrypt passwords when changing the manager account 21 21 22 22 -- Free Ekanayaka <free@64studio.com> Thu, 08 May 2008 21:55:32 +0200 -
cdd-utils/trunk/lib/common.sh
r541 r544 49 49 sed -i -e "\|^$key| d" $cfg 50 50 } 51 ldap_set () { 52 dn="$1" 53 key="$2" 54 val="$3" 55 echo -e "dn: $dn\nchangetype: modify\nreplace: $key\n$key: $val"| ldapmodify -x -D cn=admin,dc=nodomain -w admin > /dev/null 56 } 51 57 is_ubuntu () { 52 58 -
cdd-utils/trunk/lib/server.sh
r543 r544 199 199 } 200 200 201 # Webmin202 webmin () { 203 204 password=$1 205 if nullstr $password; then warning "No password given"; return; fi206 207 # Do not run with SSL 208 cfg=/etc/webmin/miniserv.conf209 if ! exists $cfg; then warning $cfg not found; return; fi210 sed -i -e's/^ssl=1/ssl=0/g' $cfg201 # Set the password for the manager account modifying Unix and Samba LDAP entry and 202 # the webmin one 203 manager () { 204 205 password="$1" 206 if nullstr "$password"; then warning "No password given"; return; fi 207 208 md5=$(cryptpw md5 "$password") 209 nt=$(cryptpw nt "$password") 210 lm=$(cryptpw lm "$password") 211 211 212 212 # Add manager as webmin user … … 214 214 key='manager' 215 215 sep=':' 216 val=$ (md5pw $password)216 val=$md5 217 217 if ! exists $cfg; then warning $cfg not found; return; fi 218 218 add_key $key $sep $cfg 219 219 set_key $key $sep $val $cfg 220 221 # Modify LDAP entry 222 dn="uid=manager,ou=People,dc=nodomain" 223 ldap_set "$dn" "userPassword" "$password" 224 ldap_set "$dn" "sambaLMPassword" "$lm" 225 ldap_set "$dn" "sambaNTPassword" "$nt" 226 227 } 228 229 # Webmin 230 webmin () { 231 232 # Do not run with SSL 233 cfg=/etc/webmin/miniserv.conf 234 if ! exists $cfg; then warning $cfg not found; return; fi 235 sed -i -e's/^ssl=1/ssl=0/g' $cfg 220 236 221 237 # Set manager privileges -
cdd-utils/trunk/lib/suites.sh
r543 r544 18 18 cdd-config squirrelmail ares 19 19 cdd-config samba 20 cdd-config webmin manager20 cdd-config webmin 21 21 cdd-config nfs server 22 22 cdd-config squid … … 25 25 cdd-config dnsmasq 26 26 cdd-config monit 27 cdd-config manager manager 27 28 } 28 29
