wok-6.x rev 165
Modified e17 config file
| author | Christophe Lincoln <pankso@slitaz.org> |
|---|---|
| date | Mon Jan 28 21:25:08 2008 +0100 (2008-01-28) |
| parents | 76785db15d2c |
| children | ec8fbf5f79c3 |
| files | enlightenment/receipt enlightenment/stuff/etc/enlightenment/sysactions.conf |
line diff
1.1 --- a/enlightenment/receipt Mon Jan 28 21:00:10 2008 +0100 1.2 +++ b/enlightenment/receipt Mon Jan 28 21:25:08 2008 +0100 1.3 @@ -29,7 +29,9 @@ 1.4 genpkg_rules() 1.5 { 1.6 mkdir -p $fs/usr/share/locale 1.7 - cp -a $_pkg/etc $fs 1.8 + # Use a modified sysactions.conf 1.9 + cp -a stuff/etc $fs 1.10 + 1.11 cp -a $_pkg/usr/bin $fs/usr 1.12 cp -a $_pkg/usr/lib $fs/usr 1.13 cp -a $_pkg/usr/share/enlightenment $fs/usr/share
2.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000 2.2 +++ b/enlightenment/stuff/etc/enlightenment/sysactions.conf Mon Jan 28 21:25:08 2008 +0100 2.3 @@ -0,0 +1,73 @@ 2.4 +# ENLIGHTENMENT SYSTEM ACTIONS CONFIGURATION 2.5 +# 2.6 +# This is a system configuration for allowing or denying certain users or 2.7 +# groups to be able to do certain actions that involve system restricted 2.8 +# actions such as halt, reboot, suspend, hibernate etc. 2.9 +# 2.10 +# This file is read in order from top to bottom - the first rule to MATCH 2.11 +# will be used for a user or a group, and nothing after that is read. 2.12 +# 2.13 +# You must put all the ACTION definitons BEFORE user and group rule matches. 2.14 +# Any action definitons after a rule match has been found will be ignored. 2.15 +# This allows actions to be re-defined for different user groups, so matches 2.16 +# so the command for an action can change for matches to the rules later on. 2.17 +# 2.18 +# Any user or group NOT matched by an allow or a deny will be ALLOWED to 2.19 +# perform the action by default (system administrators should be aware of 2.20 +# this and implement whatever policies they see fit). Generally speaking 2.21 +# a user of a workstation, desktop or laptop is intended to have such abilities 2.22 +# to perform these actions, thus the default of allow. For multi-user systems 2.23 +# the system administrator is considerd capable enough to restrict what they 2.24 +# see they need to. 2.25 +# 2.26 +# A WARNING to admins: do NOT allow access for users to this system remotely 2.27 +# UNLESS you fully trust them or you have locked down permissions to halt/reboot 2.28 +# suspend etc. here first. You have been warned. 2.29 +# 2.30 +# FORMAT: 2.31 +# 2.32 +# action: halt /sbin/shutdown -h now 2.33 +# action: reboot /sbin/shutdown -r now 2.34 +# action: suspend /etc/acpi/sleep.sh force 2.35 +# action: hibernate /etc/acpi/hibernate.sh force 2.36 +# 2.37 +# user: username allow: halt reboot suspend hibernate 2.38 +# group: groupname deny: * 2.39 +# group: * deny: * 2.40 +# user: * allow: suspend 2.41 +# user: billy allow: halt reboot 2.42 +# group: staff deny: halt suspend hibernate 2.43 +# 2.44 +# etc. 2.45 +# 2.46 +# user and group name can use glob matches (* == all for example) like the 2.47 +# shell. as can action names allowed or denied. 2.48 + 2.49 +action: halt /sbin/halt 2.50 +action: reboot /sbin/reboot 2.51 +#action: suspend /etc/acpi/sleep.sh force 2.52 +#action: hibernate /etc/acpi/hibernate.sh force 2.53 + 2.54 +# root is allowed to do anything - but it needs to be here explicitly anyway 2.55 +user: root allow: * 2.56 +# members of operator, staff and admin groups should be able to do all 2.57 +group: operator allow: * 2.58 +group: staff allow: * 2.59 +group: admin allow: * 2.60 +group: sys allow: * 2.61 +# common "user" groups for "console users" on desktops/laptops 2.62 +group: dialout allow: * 2.63 +group: disk allow: * 2.64 +group: adm allow: * 2.65 +group: cdrom allow: * 2.66 +group: floppy allow: * 2.67 +group: audio allow: * 2.68 +group: dip allow: * 2.69 +group: plugdev allow: * 2.70 +# put in a list of other users and groups here that are allowed or denied etc. 2.71 +# e.g. 2.72 +# user: myuser allow: * 2.73 +# user: another allow: suspend hibernate 2.74 +# deny everyone else by default 2.75 +user: * deny: * 2.76 +user: hacker allow: *