Fix ssh group membership.
We now use split SSH configuration files, so the user was never a member of the ssh group on newly installed systems. This change don't modify the SSH configuration of new systems since evolinux-ssh members' are already allowed to connect by SSH.
This commit is contained in:
parent
95108897b0
commit
99741826f6
|
@ -363,14 +363,12 @@ create_www_account() {
|
|||
lxc-attach -n php"${php_version}" -- /usr/sbin/adduser --disabled-password --home "$HOME_DIR_USER"/www --no-create-home --shell /bin/false --gecos "WWW $in_login" www-"$in_login" --uid "$www_uid" --ingroup "$in_login" --force-badname >/dev/null
|
||||
done
|
||||
|
||||
if grep -qE '^AllowGroups' /etc/ssh/sshd_config; then
|
||||
if ! grep -qE "^AllowGroups(\\s+\\S+)*(\\s+$SSH_GROUP)" /etc/ssh/sshd_config; then
|
||||
sed -i "s/^AllowGroups .*/& $SSH_GROUP/" /etc/ssh/sshd_config
|
||||
groupadd --force $SSH_GROUP
|
||||
fi
|
||||
usermod -a -G $SSH_GROUP "$in_login"
|
||||
elif grep -qE '^AllowUsers' /etc/ssh/sshd_config; then
|
||||
if grep -qE '^AllowUsers' /etc/ssh/sshd_config; then
|
||||
sed -i "s/^AllowUsers .*/& $in_login/" /etc/ssh/sshd_config
|
||||
else
|
||||
if getent group "$SSH_GROUP" 1>/dev/null 2>&1; then
|
||||
usermod --append --groups "$SSH_GROUP" "$in_login"
|
||||
fi
|
||||
fi
|
||||
/etc/init.d/ssh reload
|
||||
|
||||
|
|
Loading…
Reference in a new issue