diff options
Diffstat (limited to 'lib/prtverify/30_system_users.awk')
-rw-r--r-- | lib/prtverify/30_system_users.awk | 29 |
1 files changed, 29 insertions, 0 deletions
diff --git a/lib/prtverify/30_system_users.awk b/lib/prtverify/30_system_users.awk new file mode 100644 index 0000000..5211a87 --- /dev/null +++ b/lib/prtverify/30_system_users.awk @@ -0,0 +1,29 @@ +# +# 30_system_users.awk +# +# Version 0.1.1 2006-07-14 +# Jürgen Daubert <jue at jue dot li> + + +loglevel_ok(ERROR+INFO) && FILENAME ~ FOOTPRINT { + + split($2, au, "/") + warned = 0 + + if (loglevel_ok(ERROR)) { + + if (au[1] ~ /[1-9][0-9]*/) { + perror(ERROR, "invalid user: " $2 " -> " $3) + warned = 1 + } + + if (au[2] ~ /[1-9][0-9]*/) + perror(ERROR, "invalid group: " $2 " -> " $3) + } + + if (! warned && loglevel_ok(INFO) && $3 ~ /^(lib|sbin|usr)\//) { + if (au[1] !~ /root/) + perror(INFO, "file not owned by root: " $2 " -> " $3) + } +} + |