diff options
author | Daniel Kahn Gillmor <dkg@fifthhorseman.net> | 2009-08-01 13:32:08 -0400 |
---|---|---|
committer | Daniel Kahn Gillmor <dkg@fifthhorseman.net> | 2009-08-01 13:32:08 -0400 |
commit | cd341f153d21960fa9727de48c6f6a6b2c9bc684 (patch) | |
tree | 4dfc92d91a749d0ddb48c3f0463dd219e3314e2f /src/share/common | |
parent | cb632251263ede89aca882f953fcb28dde88593b (diff) |
switch to using new checkperms script.
Diffstat (limited to 'src/share/common')
-rw-r--r-- | src/share/common | 48 |
1 files changed, 1 insertions, 47 deletions
diff --git a/src/share/common b/src/share/common index cad2572..87a30be 100644 --- a/src/share/common +++ b/src/share/common @@ -411,15 +411,6 @@ test_gpg_expire() { check_key_file_permissions() { local uname local path - local stat - local access - local gAccess - local oAccess - - # function to check that the given permission corresponds to writability - is_write() { - [ "$1" = "w" ] - } uname="$1" path="$2" @@ -429,44 +420,7 @@ check_key_file_permissions() { return 0 fi log debug "checking path permission '$path'..." - - # rewrite path if it points to a symlink - if [ -h "$path" ] ; then - path=$(readlink -f "$path") - log debug "checking path symlink '$path'..." - fi - - # return 255 if cannot stat file - if ! stat=$(ls -ld "$path" 2>/dev/null) ; then - log error "could not stat path '$path'." - return 255 - fi - - owner=$(echo "$stat" | awk '{ print $3 }') - gAccess=$(echo "$stat" | cut -c6) - oAccess=$(echo "$stat" | cut -c9) - - # return 1 if path has invalid owner - if [ "$owner" != "$uname" -a "$owner" != 'root' ] ; then - log error "improper ownership on path '$path':" - log error " $owner != ($uname|root)" - return 1 - fi - - # return 2 if path has group or other writability - if is_write "$gAccess" || is_write "$oAccess" ; then - log error "improper group or other writability on path '$path':" - log error " group: $gAccess, other: $oAccess" - return 2 - fi - - # return zero if all clear, or go to next path - if [ "$path" = '/' ] ; then - log debug "path ok." - return 0 - else - check_key_file_permissions "$uname" $(dirname "$path") - fi + "${SYSSHAREDIR}/checkperms" "$uname" "$path" } # return a list of all users on the system |