Remove the default user account
This commit is contained in:
Bob Mottram
parent
9c037a1556
commit
d5241e7469
|
|
@ -235,7 +235,7 @@ ENCRYPT_BACKUPS="yes"
|
||||||
#list of encryption protocols
|
#list of encryption protocols
|
||||||
SSL_PROTOCOLS="TLSv1 TLSv1.1 TLSv1.2"
|
SSL_PROTOCOLS="TLSv1 TLSv1.1 TLSv1.2"
|
||||||
|
|
||||||
# list of ciphers to use
|
# list of ciphers to use. See bettercrypto.org recommendations
|
||||||
SSL_CIPHERS="EDH+CAMELLIA:EDH+aRSA:EECDH+aRSA+AESGCM:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH:+CAMELLIA256:+AES256:+CAMELLIA128:+AES128:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!ECDSA:CAMELLIA256-SHA:AES256-SHA:CAMELLIA128-SHA:AES128-SHA"
|
SSL_CIPHERS="EDH+CAMELLIA:EDH+aRSA:EECDH+aRSA+AESGCM:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH:+CAMELLIA256:+AES256:+CAMELLIA128:+AES128:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!ECDSA:CAMELLIA256-SHA:AES256-SHA:CAMELLIA128-SHA:AES128-SHA"
|
||||||
|
|
||||||
export DEBIAN_FRONTEND=noninteractive
|
export DEBIAN_FRONTEND=noninteractive
|
||||||
|
|
@ -302,6 +302,15 @@ function argument_checks {
|
||||||
exit 30
|
exit 30
|
||||||
fi
|
fi
|
||||||
fi
|
fi
|
||||||
|
# make sure you don't use the default user account
|
||||||
|
if [[ $MY_USERNAME == "debian" ]]; then
|
||||||
|
echo 'Do not use the default debian user account. Create a different user with: adduser [username]'
|
||||||
|
exit 68
|
||||||
|
fi
|
||||||
|
# remove the default debian user to prevent it from becoming an attack vector
|
||||||
|
if [ -d /home/debian ]; then
|
||||||
|
userdel -r debian
|
||||||
|
fi
|
||||||
}
|
}
|
||||||
|
|
||||||
function change_login_message {
|
function change_login_message {
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue