ovh/the-bastion
1
1
Fork 0
mirror of https://github.com/ovh/the-bastion.git synced 2025-01-01 13:01:53 +08:00
Code Issues Projects Releases Packages Wiki Activity

enh: check_collisions: allow usage of /dev/null

Browse source
This commit is contained in:
Stéphane Lesimple 2023-10-02 08:26:47 +00:00 committed by Stéphane Lesimple
parent 0eb61f26f2
commit 0353557939
1 changed files with 8 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
bin/admin/check_uid_gid_collisions.pl
View file

@ -34,7 +34,7 @@ if (!$masterGroupFile || !$masterPasswdFile || !$outputFile) {
die "Usage: $0 --master-passwd PATH --master-group PATH --output FILE [--local-passwd PATH --local-group PATH]\n";
}
if (-e $outputFile) {
if (-e $outputFile && !-c $outputFile) {
die "Output file '$outputFile' already exists!\n";
}
@ -161,7 +161,9 @@ if [ -n "$proclist" ]; then
for pid in $proclist; do
pscmd="$pscmd -p $pid"
done
echo
echo "The following processes/daemons will need to be killed before swapping the UIDs/GIDs:"
echo
$pscmd
echo
echo "If you want to stop them manually, you may abort now (CTRL+C) and do so."
@ -174,12 +176,17 @@ sgidfiles=$(mktemp)
trap "rm -f $suidfiles $sgidfiles" EXIT
find $fslist -xdev -ignore_readdir_race -perm /4000 -type f -print0 > "$suidfiles"
find $fslist -xdev -ignore_readdir_race -perm /2000 -type f -print0 > "$sgidfiles"
echo "Starting work"
echo
EOF2
echo
echo "Restoring SUID/SGID flags where needed..."
xargs -r0 chmod -v u+s -- < "$suidfiles"
xargs -r0 chmod -v g+s -- < "$sgidfiles"
echo
echo 'UID/GID swapping done, please reboot now.'
echo
EOF3
close($fh);