ambiser
/
btrbk
mirror of https://github.com/digint/btrbk
9
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

ssh_filter_btrbk: no fail if either $LOGNAME or $SSH_CLIENT are not set; added log_cmd() function; use relative path for "logger" command; cosmetics

pull/44/head
Axel Burri 2015-07-08 18:05:39 +02:00
parent f8c64c4f27
commit bab8f1771b
1 changed files with 10 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
ssh_filter_btrbk.sh
View File

@ -10,20 +10,23 @@ if [ "$#" -ge 1 ] && [ "$1" = "-l" ]; then
enable_log=1
fi
reject_and_die()
log_cmd()
{
if [ -n "$enable_log" ]; then
/usr/bin/logger -p auth.err -t ssh_filter_btrbk.sh "$LOGNAME $SSH_CLIENT REJECT: $SSH_ORIGINAL_COMMAND"
logger -p $1 -t ssh_filter_btrbk.sh "$2 (Name: ${LOGNAME:-<unknown>}; Remote: ${SSH_CLIENT:-<unknown>}): $SSH_ORIGINAL_COMMAND"
fi
/bin/echo "ERROR: ssh command rejected" 1>&2;
exit 1;
}
reject_and_die()
{
log_cmd "auth.err" "btrbk REJECT"
/bin/echo "ERROR: ssh command rejected" 1>&2
exit 1
}
run_cmd()
{
if [ -n "$enable_log" ]; then
/usr/bin/logger -p auth.info -t ssh_filter_btrbk.sh "$LOGNAME $SSH_CLIENT ALLOW: $SSH_ORIGINAL_COMMAND"
fi
log_cmd "auth.info" "btrbk ACCEPT"
$SSH_ORIGINAL_COMMAND
}