diff options
author | Wojciech Polak <polak@gnu.org> | 2003-01-30 10:41:20 +0000 |
---|---|---|
committer | Wojciech Polak <polak@gnu.org> | 2003-01-30 10:41:20 +0000 |
commit | b9c0940090b169dc9f7940f93a76073b7da76af8 (patch) | |
tree | 7f7c98ba54829a35a3f5104c7493a6d593df7378 /examples | |
download | anubis-b9c0940090b169dc9f7940f93a76073b7da76af8.tar.gz anubis-b9c0940090b169dc9f7940f93a76073b7da76af8.tar.bz2 |
Initial revision
Diffstat (limited to 'examples')
-rw-r--r-- | examples/.cvsignore | 2 | ||||
-rw-r--r-- | examples/1anubisrc | 128 | ||||
-rw-r--r-- | examples/2anubisrc | 39 | ||||
-rw-r--r-- | examples/Makefile.am | 29 | ||||
-rw-r--r-- | examples/pam/.cvsignore | 2 | ||||
-rw-r--r-- | examples/pam/Makefile.am | 28 | ||||
-rw-r--r-- | examples/pam/anubis | 60 | ||||
-rw-r--r-- | examples/pam/anubis.allow | 18 | ||||
-rw-r--r-- | examples/pam/anubis.deny | 15 |
9 files changed, 321 insertions, 0 deletions
diff --git a/examples/.cvsignore b/examples/.cvsignore new file mode 100644 index 0000000..282522d --- /dev/null +++ b/examples/.cvsignore @@ -0,0 +1,2 @@ +Makefile +Makefile.in diff --git a/examples/1anubisrc b/examples/1anubisrc new file mode 100644 index 0000000..49a81be --- /dev/null +++ b/examples/1anubisrc @@ -0,0 +1,128 @@ +# +# A sample user configuration file. Copy this file to your HOME directory +# as the `.anubisrc' file. To protect your passwords in this configuration +# file, use the 0600 (u=rw,g=,o=) permissions, otherwise GNU Anubis won't +# accept this file. Hash-marked comments (#) and white lines are ignored. +# + +# +# The "CONTROL" section. +# User configuration file. +# + +---BEGIN CONTROL--- +# logfile = FILE-NAME +# loglevel = NONE-FAILS-ALL +# remote-mta = HOST[:PORT] +# local-mta = FILE-NAME [ARGS] +# esmtp-auth = USERNAME:PASSWORD +# socks-proxy = HOST[:PORT] +# socks-v4 = YES-OR-NO +# socks-auth = USERNAME:PASSWORD +# ssl = YES-OR-NO +# oneway-ssl = YES-OR-NO +# cert = FILE NAME +# key = FILE-NAME +# cafile = FILE-NAME +---END--- + +# +# The "ALL" section. +# User configuration file only. +# + +---BEGIN ALL--- +# add = HEADER-LINE +# remove = HEADER-LINE (a regular expression) +# modify = OLD-HEADER-LINE >> NEW-HEADER-LINE +# signature-file-append = YES-OR-NO +# body-append = FILE-NAME +# body-clear-append = FILE-NAME +# gpg-passphrase = PASSPHRASE +# gpg-encrypt = GPG-KEY(S) +# gpg-sign = PASSPHRASE or `yes' if `gpg-passphrase' is already specified. +# rot13-subject = YES-OR-NO +# rot13-body = YES-OR-NO +# rm-rrt = EMAIL-ADDRESS +# rm-post = NEWS-GROUP +# rm-gpg = GPG-KEY +# rm-header = HEADER-LINE +# rm-lt = TIME +# rm-rlt = YES-OR-NO +# external-body-processor = FILE-NAME [ARGS] +---END--- + +# +# The Rule System (The "RULE" section) +# User configuration file only. Examples: +# + +---BEGIN RULE--- + +# Process the (E)SMTP commands. + +if command =^mail from: <?root@localhost>? + test +fi + +# Process a message header lines. +# The Trigger's rules: + +rule =^gpg-encrypt + gpg-encrypt = GPG-KEY(S) +done + +rule =^gpg-sign + gpg-passphrase = PASSPHRASE + gpg-sign = yes +done + +rule : perlre =^gpg-dynamic:(.*) + add = X-GPG-Comment: Encrypted for \1 + gpg-encrypt = \1 +done + +# +# +# + +if header =^To:.*<?friend1@somewhere.net>? + modify =^Reply-To: >> Reply-To: mybox@myisp.net + add = X-Comment: GNU's Not Unix! +fi + +if header =^To:.*<?friend2@somewhere.org>? + modify =^(.*)(login@)(.*) >> \1\2\3.ORG +fi + +if header : perlre =^X-Mailer: (.*) + add = X-Comment: \1 rocks! + modify =^X-Mailer: >> X-Mailer: The lousy mailer \1 +fi + +if header : scase =^Subject: (.*) != ^Subject: URGENT + add = X-Comment: This message is not URGENT (\1). +fi + +if header =^Subject: rot13-body + rot13-body = yes +fi + +if header =^Subject: gpg-encrypt + gpg-encrypt = GPG-KEY(S) +fi + +if header =^Subject: gpg-sign + gpg-sign = PASSPHRASE +fi + +if header =^Subject: signature-file + signature-file-append = yes +fi + +if header =^Subject: rm-rrt + rm-rrt = EMAIL-ADDRESS +fi + +---END--- + diff --git a/examples/2anubisrc b/examples/2anubisrc new file mode 100644 index 0000000..7ee1249 --- /dev/null +++ b/examples/2anubisrc @@ -0,0 +1,39 @@ +# +# A sample system configuration file. Copy this file to `/etc/anubisrc'. +# To protect your passwords in this configuration file, use the 0600 +# (u=rw,g=,o=) permissions, otherwise GNU Anubis won't accept this file. +# Hash-marked comments (#) and white lines are ignored. +# + +# +# The "CONTROL" section. +# A system configuration file. +# + +---BEGIN CONTROL--- +# bind = [HOST:]PORT +# remote-mta = HOST[:PORT] +# local-mta = FILE-NAME [ARGS] +# termlevel = NORMAL-VERBOSE-DEBUG-SILENT +# esmtp-auth = USERNAME:PASSWORD +# socks-proxy = HOST[:PORT] +# socks-v4 = YES-OR-NO +# socks-auth = USERNAME:PASSWORD +# ssl = YES-OR-NO +# oneway-ssl = YES-OR-NO +# cert = FILE-NAME +# key = FILE-NAME +# cafile = FILE-NAME +# allow-local-mta = YES-OR-NO +# user-notprivileged = USERNAME +---END--- + +# +# The "TRANSLATION" section. +# A system configuration file only. +# + +#---BEGIN TRANSLATION--- +#translate = [USER@]ADDRESS into = USERNAME +#---END--- + diff --git a/examples/Makefile.am b/examples/Makefile.am new file mode 100644 index 0000000..dee927d --- /dev/null +++ b/examples/Makefile.am @@ -0,0 +1,29 @@ +## +## examples/Makefile.am +## +## This file is part of GNU Anubis. +## Copyright (C) 2001, 2002, 2003 The Anubis Team. +## +## GNU Anubis is free software; you can redistribute it and/or modify +## it under the terms of the GNU General Public License as published by +## the Free Software Foundation; either version 2 of the License, or +## (at your option) any later version. +## +## GNU Anubis is distributed in the hope that it will be useful, +## but WITHOUT ANY WARRANTY; without even the implied warranty of +## MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +## GNU General Public License for more details. +## +## You should have received a copy of the GNU General Public License +## along with GNU Anubis; if not, write to the Free Software +## Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA +## +## GNU Anubis is released under the GPL with the additional exemption that +## compiling, linking, and/or using OpenSSL is allowed. +## + +EXTRA_DIST = 1anubisrc 2anubisrc +SUBDIRS = pam + +## EOF + diff --git a/examples/pam/.cvsignore b/examples/pam/.cvsignore new file mode 100644 index 0000000..282522d --- /dev/null +++ b/examples/pam/.cvsignore @@ -0,0 +1,2 @@ +Makefile +Makefile.in diff --git a/examples/pam/Makefile.am b/examples/pam/Makefile.am new file mode 100644 index 0000000..48bc70e --- /dev/null +++ b/examples/pam/Makefile.am @@ -0,0 +1,28 @@ +## +## pam/Makefile.am +## +## This file is part of GNU Anubis. +## Copyright (C) 2001, 2002, 2003 The Anubis Team. +## +## GNU Anubis is free software; you can redistribute it and/or modify +## it under the terms of the GNU General Public License as published by +## the Free Software Foundation; either version 2 of the License, or +## (at your option) any later version. +## +## GNU Anubis is distributed in the hope that it will be useful, +## but WITHOUT ANY WARRANTY; without even the implied warranty of +## MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +## GNU General Public License for more details. +## +## You should have received a copy of the GNU General Public License +## along with GNU Anubis; if not, write to the Free Software +## Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA +## +## GNU Anubis is released under the GPL with the additional exemption that +## compiling, linking, and/or using OpenSSL is allowed. +## + +EXTRA_DIST = anubis anubis.allow anubis.deny + +## EOF + diff --git a/examples/pam/anubis b/examples/pam/anubis new file mode 100644 index 0000000..d93952c --- /dev/null +++ b/examples/pam/anubis @@ -0,0 +1,60 @@ +# +# /etc/pam.d/anubis (fit this file to your own needs) +# +# If you compile GNU Anubis with a support for the Pluggable Authentication +# Modules (PAM), edit this file, and copy to '/etc/pam.d/anubis'. +# + +#%PAM-1.0 + +# +## +### AUTH section ### +## +# + +# Because Anubis can run user's binaries, we check the /etc/nologin +auth required /lib/security/pam_nologin.so + +# Set the environment for Authenticate +auth required /lib/security/pam_env.so + +# Authenticate everyone +auth required /lib/security/pam_permit.so + +# Autenticate users NOT listed in file +#auth required /lib/security/pam_listfile.so \ +# onerr=succeed item=user sense=deny file=/etc/anubis.deny + +# Autenticate users LISTED in file +#auth required /lib/security/pam_listfile.so \ +# onerr=fail item=user sense=allow file=/etc/anubis.allow + +# +## +### ACCOUNT section ### +## +# + +# Set an account +account required /lib/security/pam_unix.so + +# Check /etc/security/time.conf for an user +#account required /lib/security/pam_time.so + +# +## +### SESSION section ### +## +# + +# Set session limitations +session required /lib/security/pam_limits.so + +# Let's GO! +session required /lib/security/pam_unix.so + +# +# EOF +# + diff --git a/examples/pam/anubis.allow b/examples/pam/anubis.allow new file mode 100644 index 0000000..0ae26f7 --- /dev/null +++ b/examples/pam/anubis.allow @@ -0,0 +1,18 @@ +# +# /etc/anubis.allow (fit this file to your own needs) +# +# If you compile GNU Anubis with a support for the Pluggable Authentication +# Modules (PAM), edit this file, and copy to '/etc/anubis.allow'. +# + +# Make sure that a user name below is the same one +# as specified with the 'user-notprivileged' keyword. + +anubis.unprivileged + +# user2 +# user3 +# user4 + +# EOF + diff --git a/examples/pam/anubis.deny b/examples/pam/anubis.deny new file mode 100644 index 0000000..4b35f90 --- /dev/null +++ b/examples/pam/anubis.deny @@ -0,0 +1,15 @@ +# +# /etc/anubis.deny (fit this file to your own needs) +# +# If you compile GNU Anubis with a support for the Pluggable Authentication +# Modules (PAM), edit this file, and copy to '/etc/anubis.deny'. +# + +root + +# user2 +# user3 +# user4 + +# EOF + |