Authentication-Results: mail-b.sr.ht; dkim=pass header.d=secluded.site header.i=@secluded.site Received: from mx.nixnet.email (mx.nixnet.email [94.16.121.167]) by mail-b.sr.ht (Postfix) with ESMTPS id EF07311EE5E for <~whereswaldon/arbor-dev@lists.sr.ht>; Thu, 21 Jul 2022 03:10:54 +0000 (UTC) Received: from [127.0.0.1] (localhost [127.0.0.1]) by mx.nixnet.email (Postfix) with ESMTPSA id 504D5202874; Wed, 20 Jul 2022 23:10:39 -0400 (EDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=secluded.site; s=202002021149; t=1658373039; h=from:from:reply-to:subject:subject:to:to:cc:cc; bh=1Dg8nTJrqcrtaLNumG2JjMEO0c39MB/oG35vFKqdzMM=; b=QLaETXUMFpzgyWHrZoestFW4PxIm1Pf7M+rGWYKV9bgUDiyWehCX7qThwRYI2IY4MaIAbM IKiEKf9yVfERaI6p0Lgur6BnKlvhJPUV0/s3nmr4uVDXJ/rNE/WaQr0n9Gc+Ng85LTCUyG O3Q4REDSDwYfFIb+onMQWiuoCfDAq8s= From: Amolith To: ~whereswaldon/arbor-dev@lists.sr.ht Cc: Amolith Subject: [PATCH 11/12] Small changes to User target & normalising logs Date: Wed, 20 Jul 2022 23:10:00 -0400 Message-Id: <20220721031001.97027-12-amolith@secluded.site> X-Mailer: git-send-email 2.37.1 In-Reply-To: <20220721031001.97027-1-amolith@secluded.site> References: <20220721031001.97027-1-amolith@secluded.site> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit For the useradd command, shell is not usually set by default or it defaults to /bin/sh. Signed-off-by: Amolith --- setup.go | 15 ++++++++++----- 1 file changed, 10 insertions(+), 5 deletions(-) diff --git a/setup.go b/setup.go index f67f6c1..b12e45c 100644 --- a/setup.go +++ b/setup.go @@ -34,13 +34,19 @@ func Deploy() error { return nil } - +// Create default system user "user" with SSH credentials from root user and +// arbor-relay user with minimal permissions func Users() error { - fmt.Println("Running target users") + log.Println("Running target users") // Cleanup the old user if it exists. This just deletes the *user*, all data will still be intact. sh.Run("userdel", "user") - err := sh.Run("useradd", "-g", "sudo", "-m", "-d", "/home/user", "user") + err := sh.Run("useradd", "-g", "sudo", "-m", "-d", "/home/user", "-s", "/bin/bash", "user") + if err != nil { + return err + } + + err = sh.Run("useradd", "-m", "-d", "/home/user", "-s", "/bin/bash", "arbor-relay") if err != nil { return err } @@ -140,8 +146,7 @@ func Apt() error { } func Firewall() error { - fmt.Println("running target firewall") - + log.Println("Running target firewall") err := sh.Run("ufw", "default", "deny", "outgoing") if err != nil { -- 2.37.1