mirror of
https://github.com/telekom-security/tpotce.git
synced 2025-07-01 12:32:12 +00:00
prevent cockpit root login
This commit is contained in:
t3chn0m4g3
parent
39ac35935b
commit
8fc5f4a418
1 changed files with 3 additions and 0 deletions
|
|
@ -670,6 +670,9 @@ sed -i 's#ListenStream=9090#ListenStream=64294#' /lib/systemd/system/cockpit.soc
|
|||
sed -i '/^port/Id' /etc/ssh/sshd_config
|
||||
echo "Port 64295" >> /etc/ssh/sshd_config
|
||||
|
||||
# Do not allow root login for cockpit
|
||||
sed -i '2i\auth requisite pam_succeed_if.so uid >= 1000' /etc/pam.d/cockpit
|
||||
|
||||
# Let's make sure only myCONF_TPOT_FLAVOR images will be downloaded and started
|
||||
case $myCONF_TPOT_FLAVOR in
|
||||
STANDARD)
|
||||
|
|
|
|||
Loading…
Reference in a new issue