-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy path96-files.sh
72 lines (59 loc) · 2.76 KB
/
96-files.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
CopyFile /etc/fail2ban/jail.local
CopyFile /etc/nsswitch.conf
CopyFile /etc/profile.d/homepath.sh
CopyFile /etc/sudoers.d/bmalyn 440
CopyFile /etc/sysctl.d/90-override.conf
CopyFile /etc/udev/rules.d/51-garmin-usb.rules
CopyFile /etc/udev/rules.d/60-cm-rgb.rules
CopyFile /etc/zsh/zshenv
GetPackageOriginalFile util-linux /etc/pam.d/login > /dev/null
GetPackageOriginalFile shadow /etc/pam.d/passwd > /dev/null
GetPackageOriginalFile openssh /etc/pam.d/sshd > /dev/null
cat <<EOF | aug
ins 01 after "/files/etc/pam.d/login/*[type = 'auth'][module = 'system-local-login']"
set /files/etc/pam.d/login/01/type auth
set /files/etc/pam.d/login/01/control optional
set /files/etc/pam.d/login/01/module pam_gnome_keyring.so
ins 02 after "/files/etc/pam.d/login/*[type = 'session'][module = 'system-local-login']"
set /files/etc/pam.d/login/02/type session
set /files/etc/pam.d/login/02/control optional
set /files/etc/pam.d/login/02/module pam_gnome_keyring.so
set /files/etc/pam.d/login/02/argument auto_start
ins 03 after "/files/etc/pam.d/passwd/*[type = 'password'][module = 'system-auth']"
set /files/etc/pam.d/passwd/03/type password
set /files/etc/pam.d/passwd/03/control optional
set /files/etc/pam.d/passwd/03/module pam_gnome_keyring.so
ins 04 before "/files/etc/pam.d/sshd/*[type = 'auth'][module = 'system-remote-login']"
set /files/etc/pam.d/sshd/04/type auth
set /files/etc/pam.d/sshd/04/control required
set /files/etc/pam.d/sshd/04/module pam_google_authenticator.so
set /files/etc/pam.d/sshd/04/argument no_increment_hotp
save
EOF
f="$(GetPackageOriginalFile pam /etc/security/faillock.conf)"
sed -ri "s/^# (deny)/\1/g" "$f"
set_variable "deny" "=" "10" "$f"
f="$(GetPackageOriginalFile pacman /etc/makepkg.conf)"
sed -ri "s/^#(MAKEFLAGS)/\1/g" "$f"
set_variable "MAKEFLAGS" "=" '"-j$(nproc)"' "$f"
set_variable "INTEGRITY_CHECK" "=" "(sha256 sha512 b2)" "$f"
f="$(GetPackageOriginalFile pacman /etc/pacman.conf)"
sed -ri "s/^#(Color)/\1\nILoveCandy\nDisableDownloadTimeout/g" "$f"
sed -ri "s/^#(VerbosePkgLists|ParallelDownloads)/\1/g" "$f"
sed -ri "s#(\[core\])#[sway-hidpi]\nServer = https://sway-hidpi.bmalyn.com/\n\n\1#g" "$f"
sed -ri "s#(\[(core|extra)\])#\1\nInclude = /etc/pacman.d/pacserve#g" "$f"
cat >> "$(GetPackageOriginalFile openssh /etc/ssh/sshd_config)" <<EOF
StreamLocalBindUnlink yes
EOF
cat >> "$(GetPackageOriginalFile vim-runtime /etc/vimrc)" <<EOF
set mouse=
set ttymouse=
EOF
f="$(GetPackageOriginalFile reflector /etc/xdg/reflector/reflector.conf)"
sed -ri "s/^# (--country).*/\1 US/g" "$f"
sed -ri "s/^(--sort).*/\1 score/g" "$f"
cat >> "$(GetPackageOriginalFile zeronet-conservancy /etc/zeronet.conf)" <<EOF
fileserver_port = $ZERONET_FILESERVER_PORT
EOF
# These are just the default files, that we don't modify
GetPackageOriginalFile pambase /etc/pam.d/system-auth > /dev/null