Rivoreo Source Code Repositories
src.rivoreo.one / security / yeslogin / d30bae09fbe8317f26627cf729eaec90a4fe3c64 / setup.sh
  1. 145964c Additionally check user name 'server' by WHR · 7 months ago
  2. bb95b2b Check current status of 'basic.target' for systemd availability by WHR · 7 months ago
  3. 5bc631b Start an infinite loop from replacement /sbin/init, to repeatly remove read and write permission bits from /dev/shm, and remount /dev/shm as read-only by WHR · 8 months ago
  4. e7388c2 Try to mount procfs as necessary from replacement /sbin/init by WHR · 11 months ago
  5. 276f032 Try to make the file system for '/' writable, from replacement /sbin/init by WHR · 11 months ago
  6. 052bdc5 Add some more paths to list of suspicious regular files by WHR · 12 months ago
  7. 0deaea5 Remove 2 more service control scripts when instructed to remove cloud-init by WHR · 12 months ago
  8. 22c4f09 Additionally check user names 'dixi' and 'tutu' by WHR · 1 year ago
  9. 60f9aa3 Unset sudoers(5) option 'requiretty' as a part of Sudo I/O logging configuration by WHR · 1 year, 1 month ago
  10. 11252ee Remove watchdog device nodes if watchdog(8) isn't installed, from replacement /sbin/init by WHR · 1 year, 1 month ago
  11. 97cebc3 Correct a potential compatibility issue of end-of-options marker usage by WHR · 1 year, 1 month ago
  12. 8316805 Correct escaping in command substitution by WHR · 1 year, 4 months ago
  13. d790b30 Mask mount /dev/shm directory from /sbin/init wrapper by WHR · 1 year, 5 months ago
  14. f8cb0cf Check user names 'iksi' and '.syslogs' by WHR · 1 year, 7 months ago
  15. 1599538 Check multiple clauses in chmod(1) wrapper by WHR · 1 year, 7 months ago
  16. 31479de Rename original chmod(1) to modmod instead by WHR · 1 year, 7 months ago
  17. a738df0 Optionally replace chmod(1) to reject potentially dangerous recursive operations by WHR · 1 year, 7 months ago
  18. f594ced Make sure target file ends with a new line before appending lines to it by WHR · 1 year, 7 months ago
  19. 23859bc Add a directory name for checking; fix typo by WHR · 1 year, 7 months ago
  20. 1485e3c Check a fixed list of suspicious regular files by WHR · 1 year, 7 months ago
  21. c64137f Check user account 'dudu' by WHR · 1 year, 7 months ago
  22. a7bc62f Optionally remove cloud-init by WHR · 1 year, 7 months ago
  23. 7378ab9 Check a fixed list of suspicious systemd unit files, and automatically remove them by WHR · 1 year, 7 months ago
  24. 92aec39 Check user names 'ad1tz' and 'systemd' in addition to 'pischi' by WHR · 1 year, 7 months ago
  25. ac748fd Check a fixed list of suspicious directories by WHR · 1 year, 7 months ago
  26. 1174655 If tar(1) looks like already being replaced, make it immutable by WHR · 1 year, 8 months ago
  27. 4fe1825 Also check and remove /www/server/panel/script/log_cleanup.py by WHR · 1 year, 8 months ago
  28. 9dce2a5 Add end-of-options marker for some commands as necessary by WHR · 1 year, 8 months ago
  29. e2e08ef Detect and remove BT clear plugin as it may remove important log files by WHR · 1 year, 8 months ago
  30. 051a9be Check and warn about the potentially malicious 'pischi' user account by WHR · 1 year, 8 months ago
  31. c132e3e Drop previous crontab content if contains error by WHR · 1 year, 8 months ago
  32. cfd54ed Fallback to chflags(1) to make replaced chattr(1) and lsattr(1) immutable by WHR · 1 year, 10 months ago
  33. 349a260 Don't consider empty /usr/bin/chattr and /usr/bin/lsattr for backup by WHR · 1 year, 10 months ago
  34. f9fc15e Fix typo in bindfiles.service by WHR · 1 year, 11 months ago
  35. a0de195 Optionally bind mount important system files to protect them by WHR · 1 year, 11 months ago
  36. 1c536d2 Make failed to start procd(8) via systemd(1) a non-fatal error by WHR · 1 year, 12 months ago
  37. 5939334 Make modified inclusive sudoers files immutable by WHR · 2 years ago
  38. cc9ce50 Use function append_uniq_line to add set PATH line into .profile and .bash_profile by WHR · 2 years, 1 month ago
  39. b48b7e5 Check HOME environment variable by WHR · 2 years, 1 month ago
  40. 62be90e Skip replacing /sbin/init on non-Linux platforms; set proper SELinux security context for newly replaced /sbin/init by WHR · 2 years, 1 month ago
  41. a5abda9 Exclude some specific users from Sudo I/O logging to avoid flooding the logs by WHR · 2 years, 1 month ago
  42. 55547ff Warn if newly created immutable /usr/tmpDSK wasn't actually immutable by WHR · 2 years, 1 month ago
  43. 3dfbcf6 Reorder perl wrapper code before any chflags call by WHR · 2 years, 1 month ago
  44. 51770ba chmod(1) /usr/share/fileflags/functions only when it was just created by setup.sh by WHR · 2 years, 1 month ago
  45. 11bf8c0 Make an immutable /usr/tmpDSK file preventively if /tmp was suspected being mounted with 'noexec'; fix failure to modify /etc/cron.daily/logrotate may inadvertently destroy the file by WHR · 2 years, 1 month ago
  46. 0990b40 Export REAL_PERL to environment from existing perl wrapper for the bundled chflags implementation by WHR · 2 years, 1 month ago
  47. daeb39c Add install_program function to unify actions that needed for installing executable files from source directory by WHR · 2 years, 1 month ago
  48. e24b843 Fix usage of bundled chflags(1) by WHR · 2 years, 1 month ago
  49. 3f49427 Overwrite existing configuration files only on '--reinstall-config-files'; allow re-run with '--harden' by WHR · 2 years, 1 month ago
  50. daaaec5 Make backup reboot command immutable on hardening by WHR · 2 years, 1 month ago
  51. 5f82e6f Optionally harden installed files by WHR · 2 years, 1 month ago
  52. bfb0e4b Check the working directory in beginning of setup.sh by WHR · 2 years, 1 month ago
  53. 9d176bb Trash /usr/tmpDSK via the associated loop device; make /usr/tmpDSK immutable immediately after truncating by WHR · 2 years, 1 month ago
  54. f643f08 Try to get real perl path from previously installed perl wrapper by WHR · 2 years, 1 month ago
  55. 632ca11 Suppress dd(1) statistics by WHR · 2 years, 1 month ago
  56. 615b8a0 Detect and continue with previous cattr backup on '--replace-chattr' by WHR · 2 years, 1 month ago
  57. d452b99 Fix a logical error in function append_or_set_words by WHR · 2 years, 1 month ago
  58. dd72196 Skip adding Sudo options if they already exist in sudoers(5) by WHR · 2 years, 1 month ago
  59. d7d1ada Don't add duplicated lines into .bashrc and .profile by WHR · 2 years, 1 month ago
  60. 791d13a Fix kernel name of 'Linux' by WHR · 2 years, 1 month ago
  61. 2021eb3 Don't remove lattr by WHR · 2 years, 1 month ago
  62. 4a7a0ab Don't truncate /usr/tmpDSK if it is already empty by WHR · 2 years, 1 month ago
  63. 1690920 Add a variant of fake reboot command that reminds users the correct way of rebooting/halting the system by WHR · 2 years, 1 month ago
  64. 6894e98 procd is available for Linux only by WHR · 2 years, 1 month ago
  65. 688cb88 Write fixed PATH into .profile, and .bash_profile if exists by WHR · 2 years, 1 month ago
  66. 50608d5 Don't print result of 'systemctl is-enabled' by WHR · 2 years, 1 month ago
  67. 07f9c7e Check availability of sudo(1); set LD_PRELOAD for fake root shell under a specific condition; fix typo by WHR · 2 years, 1 month ago
  68. fb5b152 Correctly recognize and mention '--remove-utempter' by WHR · 2 years, 1 month ago
  69. 753dba1 Warn if fakeroot-ng(1) internally references /dev/shm by WHR · 2 years, 1 month ago
  70. e6eb560 Detect GNU more reliably by WHR · 2 years, 1 month ago
  71. 7e7cb2f Try to use multiple available methods to set file flags by WHR · 2 years, 2 months ago
  72. 1fe83b4 Optionally remove utempter helper to prevent script(1) from writing utmpx records by WHR · 2 years, 2 months ago
  73. 7c4d4fe Reject unknown options by WHR · 2 years, 2 months ago
  74. ef442e5 Correctly detect already replaced chattr(1) and lsattr(1) by WHR · 2 years, 2 months ago
  75. 1fb4878 Adjust warning messages for user bashrc file by WHR · 2 years, 2 months ago
  76. 4aad38c Hint the custom chflags(1) to use original perl(1) executable by WHR · 2 years, 2 months ago
  77. 5a339b0 Optionally install an Unix-shell-based chflags(1) implementation for Linux by WHR · 2 years, 2 months ago
  78. 67b87e3 Ignore chmod(1) of /var/log/shd.log failure as it could already being made append-only by a previous setup by WHR · 2 years, 2 months ago
  79. 802886a Optionally replace /sbin/init to reject uses of sysvinit-style runlevel control command on systemd-based system by WHR · 2 years, 2 months ago
  80. 93a2761 'chmod 0' for securetmp mask files by WHR · 2 years, 3 months ago
  81. 1ca8ce4 Correct sed(1) command for editing /etc/fstab by WHR · 2 years, 4 months ago
  82. 4985bea Make replaced tar(1) immutable by WHR · 2 years, 4 months ago
  83. e06ccb6 Check bashrc by WHR · 2 years, 5 months ago
  84. 770a0b2 Detect and deactivate cPanel securetmp service as it will break fakeroot-ng(1) by WHR · 2 years, 5 months ago
  85. 3c5afc0 Try to detect and correct inappropriate PATH variable in setup.sh by WHR · 2 years, 7 months ago
  86. cf82955 Minor fix for 'replace tar' action by WHR · 2 years, 9 months ago
  87. acd4a15 Fix [(1) may getting multiple pathes from shell path name expansion by WHR · 2 years, 9 months ago
  88. 5235db1 Optionally replace tar(1) to reject deprecated usages by WHR · 2 years, 9 months ago
  89. f408854 Set PATH in crontab when installing update-blacklist by WHR · 2 years, 11 months ago
  90. 476dd78 Add help/usage message to setup.sh by WHR · 2 years, 12 months ago
  91. 1fea188 Add option to install update-blacklist and associated cron command by WHR · 2 years, 12 months ago
  92. b36c762 Configure sudo(1) to preseve some environment variables when configuring sudo I/O logging; check /dev/shm guarding in global bashrc by WHR · 2 years, 12 months ago
  93. d74e963 Add optional procd by WHR · 3 years ago
  94. 9d4e8b1 Use dd(1) to actually try to read(2) from the file to test readability of it, as '[ -r' is sometimes unreliable by WHR · 3 years, 1 month ago
  95. 04b0869 Add option '--configure-sudo-io-logging' to setup.sh by WHR · 3 years, 1 month ago
  96. 7e95181 Add 2 options to setup.sh for optionally replacing some commands by WHR · 3 years, 1 month ago
  97. 74bd1e2 Disable systemd-tmpfiles-clean if applicable by WHR · 3 years, 1 month ago
  98. f988fc2 Check fakeroot-ng(1) availability; make perl wrapper immutable by WHR · 3 years, 1 month ago
  99. 62bcca8 Avoid printing error messages from shdrc when it is read by unprivileged shell under fakeroot-ng(1) by WHR · 3 years, 3 months ago
  100. 03cea14 Fix variable SFTP_SERVER_PROGRAM may containing space to provide options which breaks sed(1) by WHR · 3 years, 3 months ago