initial commit of file from CVS for smeserver-password on Sat Sep 7 19:58:28 AEST 2024

2024-09-07 19:58:28 +10:00
parent 4def4760b4
commit 6fe7d0eb87
44 changed files with 4329 additions and 2 deletions
--- a/root/etc/e-smith/events/actions/user-chage-passwd
+++ b/root/etc/e-smith/events/actions/user-chage-passwd
@@ -0,0 +1,84 @@
+#! /usr/bin/perl
+
+#----------------------------------------------------------------------
+# copyright (C) 2001 e-smith, inc.
+#               
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#               
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#               
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307  USA
+# 
+# Technical support for this program is available from e-smith, inc.
+# Please visit our web site www.e-smith.com for details.
+#----------------------------------------------------------------------
+
+use strict;
+use Errno;
+use esmith::AccountsDB;
+use esmith::ConfigDB;
+
+my $adb = esmith::AccountsDB->open_ro() || die "Couldnt' open AccountsDB\n";
+my $db = esmith::ConfigDB->open()  || die "Couldnt' open ConfigDB\n";
+
+my $pwdaging = $db->get('passwordaging');
+my $pwdage = $pwdaging->prop('PwdAge');
+my $pwdwarn = $pwdaging->prop('PwdWarn');
+my $isactive = $pwdaging->prop('Active') || 'no';
+my $lockaccount = $pwdaging->prop('LockAccount') || 'no';
+my $resetdate = $pwdaging->prop('DateReset') || 'no';
+
+
+
+my @accounts = $adb->get('admin');
+push @accounts, $adb->users;
+
+    foreach my $account (@accounts)
+    {
+
+        next unless (($account->prop('PasswordSet') || 'no') eq 'yes');
+
+        my $name = $account->key;
+
+        if (!($name eq 'admin'))
+        {
+       		if ((($account->prop('PasswordAge') || 'no') eq 'yes') && $isactive eq 'yes')
+        	{
+		# check if DateReset is set
+			if ($resetdate eq 'yes')
+			{
+			#ok set chage -d parameter to today
+			system "chage -M $pwdage -W $pwdwarn -d `date +%F`  $name";
+			}
+			else
+			{
+			system "chage -M $pwdage -W $pwdwarn $name";
+			}
+		}
+		else
+		{
+		system "chage -M 99999 -W7 $name";
+		}
+        }
+    }
+
+# now set DateReset to 'no'
+
+my $key = $db->get('passwordaging' );
+if ( !$key) {
+	$db->set_value('passwordaging','configuration');
+	$key = $db->get('passwordaging' );
+}
+
+$key->set_prop('DateReset', 'no');
+
+exit 0;
+
--- a/root/etc/e-smith/events/actions/user-passwd-expiration
+++ b/root/etc/e-smith/events/actions/user-passwd-expiration
@@ -0,0 +1,132 @@
+#!/usr/bin/perl -w
+# modified on 23/05/2008
+# direct access to /etc/shadow file
+# thanks to Jeremy D. Zawodny, <jzawodn@wcnet.org>
+# for his Acctinfo.pm (getpwnams and ChopDec functions)
+# http://jeremy.zawodny.com/perl/AcctInfo/index.html
+
+package esmith;
+use strict;
+use Errno;
+use esmith::AccountsDB;
+use Date::Format;
+use Date::Parse;
+use Text::Template;
+
+my $adb = esmith::AccountsDB->open_ro() or die "Couldnt' open AccountsDB\n";
+my $db = esmith::ConfigDB->open() or die "Couldnt' open ConfigDB\n";
+my @accounts = $adb->get('admin');
+
+push @accounts, $adb->users;
+
+# get information about password ageing
+my $pwdaging = $db->get('passwordaging');
+my $pwdage = $pwdaging->prop('PwdAge');
+my $pwdwarn = $pwdaging->prop('PwdWarn');
+my $isactive = $pwdaging->prop('Active') || 'no';
+my $lockaccount = $pwdaging->prop('LockAccount') || 'no';
+
+# date/time parameters
+my @lt = localtime(time);
+my $template = '%s';
+my $today = time() / 86400; # Today's date.
+$today = &ChopDec($today); # no decimals 
+
+# system parameters
+my $domain = $db->get_value("DomainName") || 'localhost';
+my $interface = $db->get('InternalInterface');
+my $ipaddress = $interface->prop('IPAddress');
+
+# who is sending mail? :-)
+my $sender = "admin\@$domain";
+
+# mail body template for user
+my $templates = '/etc/e-smith/templates';
+my $source = '/usr/lib/e-smith-passexpire/passExpire.tmpl';
+
+-f "${templates}-custom${source}" and $templates .= "-custom";
+
+if ($isactive eq 'yes') {
+        foreach my $account (@accounts)
+                {
+                next unless (($account->prop('PasswordSet') || 'no') eq 'yes');
+                my $name = $account->key;
+                if (!($name eq 'admin'))  
+                {
+                        next unless (($account->prop('PasswordAge') || 'no') eq 'yes');
+                        my @pw = split(/:/ , &getpwnams($name));
+                        my $lastchange = $pw[2]; # Date of last change.
+                        # Calculate days until expiration.
+                        my $age = $today - $lastchange;
+                        my $realaging = $pwdage - $pwdwarn;
+                        my $days =  $pwdage - $age;
+                        my $time2warn = $age - $realaging;
+                        if ($time2warn >= 0) {
+
+                                if ($days < 0) {
+                                        $days = -1 * $days;
+                                }
+                                my $t = new Text::Template(TYPE => 'FILE', SOURCE => "${templates}${source}");
+
+                                open(QMAIL, "|/var/qmail/bin/qmail-inject -f$sender $name") || die "Could not send mail via qmail-inject!\n";
+
+                                print QMAIL $t->fill_in( HASH => {
+                                        conf    => \$db,
+                                        user    => $name,
+                                        ip              => $ipaddress,
+                                        number  => $days, 
+                                });
+
+                                close QMAIL;
+                                # if time2warn >= pwdwarn then send email to admin too
+                                if ($time2warn >= $pwdwarn) {
+
+                                        #message to admin is hardcoded in english; not so bad..
+
+                                        my $t1 = "To: admin\n";
+                                        $t1 .= "From: \"Administrator\" <admin\@$domain>\n";
+                                        $t1 .= "Subject: Password for user $name expired\n\n";
+                                        $t1 .= "This is an automatically generated mail message\n\n";
+                                        $t1 .= "Dear Admin,\n password for user $name has expired since $days days\n";
+                                        $t1 .= "Regards";
+
+                                        open(QMAIL, "|/var/qmail/bin/qmail-inject -f$sender admin") || die "Could not send mail via qmail-inject!\n";
+
+                                        print QMAIL $t1;
+                                        close QMAIL;
+
+                                        # if $lockaccount eq yes, call signal-event to lock the account
+                                        if ($lockaccount eq 'yes'){
+                                        system "/sbin/e-smith/signal-event user-lock $name";
+                                        }
+                                }
+                        }
+                }
+        }
+}
+
+exit 0;
+
+sub getpwnams {
+  my $name = $_[0];
+  my $line;
+  $name .= ":";
+  open(SHADOW, "/etc/shadow");
+  while(<SHADOW>) {
+    last if (/^$name/);
+  } # end while
+  close(SHADOW);
+  $line = $_;
+  chop($line);
+  return($line);
+}
+
+sub ChopDec {
+  my $num = $_[0];
+  if ($num =~ /\./) {
+    $num =~ /(.*)\.(.*)/;
+    $num = $1;
+  } # end if
+  return $num;
+}
+