2010-05-19 10:58:23 +02:00
|
|
|
config() {
|
|
|
|
NEW="$1"
|
|
|
|
OLD="$(dirname $NEW)/$(basename $NEW .new)"
|
|
|
|
# If there's no config file by that name, mv it over:
|
|
|
|
if [ ! -r $OLD ]; then
|
|
|
|
mv $NEW $OLD
|
|
|
|
elif [ "$(cat $OLD | md5sum)" = "$(cat $NEW | md5sum)" ]; then # toss the redundant copy
|
|
|
|
rm $NEW
|
|
|
|
fi
|
|
|
|
# Otherwise, we leave the .new copy for the admin to consider...
|
|
|
|
}
|
|
|
|
|
2020-02-15 03:42:28 +01:00
|
|
|
# See if we need to backup an existing login.defs:
|
|
|
|
if [ -r etc/login.defs ]; then
|
|
|
|
# First, check for PAM:
|
|
|
|
if [ -r etc/pam.d/login.new ]; then
|
|
|
|
# If there's an existing /etc/login.defs that contains an obsolete option
|
|
|
|
# intended for a non-pam system, rename it to back it up and allow the
|
|
|
|
# pam-enabled login.defs to be installed automatically:
|
|
|
|
if grep -q "^LASTLOG_ENAB" etc/login.defs 1> /dev/null 2> /dev/null ; then
|
|
|
|
mv etc/login.defs etc/login.defs.non-pam.backup
|
|
|
|
fi
|
|
|
|
else # Same thing, but in reverse for a non-pam system:
|
|
|
|
if ! grep -q "^LASTLOG_ENAB" etc/login.defs 1> /dev/null 2> /dev/null ; then
|
|
|
|
mv etc/login.defs etc/login.defs.pam.backup
|
|
|
|
fi
|
2020-02-07 23:32:38 +01:00
|
|
|
fi
|
|
|
|
fi
|
|
|
|
|
2018-11-17 04:03:49 +01:00
|
|
|
config etc/default/useradd.new
|
2010-05-19 10:58:23 +02:00
|
|
|
config etc/login.defs.new
|
|
|
|
config var/log/faillog.new
|
|
|
|
rm -f var/log/faillog.new
|
2020-02-07 23:32:38 +01:00
|
|
|
if [ -r etc/login.access.new ]; then
|
|
|
|
config etc/login.access.new
|
|
|
|
fi
|
2020-02-15 03:42:28 +01:00
|
|
|
for configfile in chage.new chgpasswd.new chpasswd.new groupadd.new groupdel.new groupmems.new groupmod.new newusers.new other.new passwd.new postlogin.new system-auth.new useradd.new userdel.new usermod.new ; do
|
2020-02-07 23:32:38 +01:00
|
|
|
if [ -r etc/pam.d/$configfile ]; then
|
|
|
|
config etc/pam.d/$configfile
|
|
|
|
fi
|
|
|
|
done
|