ambiser
/
btrbk
mirror of https://github.com/digint/btrbk
9
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

ssh_filter_btrbk: no fail if either $LOGNAME or $SSH_CLIENT are not set; added log_cmd() function; use relative path for "logger" command; cosmetics

pull/44/head
Axel Burri 2015-07-08 18:05:39 +02:00
parent f8c64c4f27
commit bab8f1771b
1 changed files with 10 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
ssh_filter_btrbk.sh
View File

@ -10,20 +10,23 @@ if [ "$#" -ge 1 ] && [ "$1" = "-l" ]; then
enable_log=1 enable_log=1
fi fi
reject_and_die() log_cmd()
{ {
if [ -n "$enable_log" ]; then if [ -n "$enable_log" ]; then
/usr/bin/logger -p auth.err -t ssh_filter_btrbk.sh "$LOGNAME $SSH_CLIENT REJECT: $SSH_ORIGINAL_COMMAND" logger -p $1 -t ssh_filter_btrbk.sh "$2 (Name: ${LOGNAME:-<unknown>}; Remote: ${SSH_CLIENT:-<unknown>}): $SSH_ORIGINAL_COMMAND"
fi fi
/bin/echo "ERROR: ssh command rejected" 1>&2; }
exit 1;
reject_and_die()
{
log_cmd "auth.err" "btrbk REJECT"
/bin/echo "ERROR: ssh command rejected" 1>&2
exit 1
} }
run_cmd() run_cmd()
{ {
if [ -n "$enable_log" ]; then log_cmd "auth.info" "btrbk ACCEPT"
/usr/bin/logger -p auth.info -t ssh_filter_btrbk.sh "$LOGNAME $SSH_CLIENT ALLOW: $SSH_ORIGINAL_COMMAND"
fi
$SSH_ORIGINAL_COMMAND $SSH_ORIGINAL_COMMAND
} }