[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[PATCH 3/4] services: openssh: Fix 'PrintLastLog' default behaviour.
|
From: |
Clément Lassieur |
|
Subject: |
[PATCH 3/4] services: openssh: Fix 'PrintLastLog' default behaviour. |
|
Date: |
Tue, 21 Feb 2017 00:53:54 +0100 |
* gnu/services/ssh.scm (openssh-config-file): Add 'pring-last-log?' option.
(<openssh-configuration>)[print-last-log?]: Add it.
(openssh-activation): Touch /var/log/lastlog.
* doc/guix.texi (Networking Services): Document 'pring-last-log?'.
Before that, the service did not work as expected because /var/log/lastlog did
not exist.
---
doc/guix.texi | 4 ++++
gnu/services/ssh.scm | 13 +++++++++++++
2 files changed, 17 insertions(+)
diff --git a/doc/guix.texi b/doc/guix.texi
index fdfb88046..db0bf0f9b 100644
--- a/doc/guix.texi
+++ b/doc/guix.texi
@@ -9171,6 +9171,10 @@ Because PAM challenge response authentication usually
serves an
equivalent role to password authentication, you should disable either
@code{challenge-response-authentication?} or
@code{password-authentication?}.
+
address@hidden @code{print-last-log?} (default: @code{#t})
+Specifies whether @command{sshd} should print the date and time of the
+last user login when a user logs in interactively.
@end table
@end deftp
diff --git a/gnu/services/ssh.scm b/gnu/services/ssh.scm
index fe4598927..9e1449743 100644
--- a/gnu/services/ssh.scm
+++ b/gnu/services/ssh.scm
@@ -278,6 +278,8 @@ The other options should be self-descriptive."
(challenge-response-authentication?
openssh-challenge-response-authentication?
(default #f)) ;Boolean
(use-pam? openssh-configuration-use-pam?
+ (default #t)) ;Boolean
+ (print-last-log? openssh-configuration-print-last-log?
(default #t))) ;Boolean
(define %openssh-accounts
@@ -297,6 +299,14 @@ The other options should be self-descriptive."
(mkdir-p "/etc/ssh")
(mkdir-p (dirname #$(openssh-configuration-pid-file config)))
+ (define (touch file-name)
+ (call-with-output-file file-name (const #t)))
+
+ (let ((lastlog "/var/log/lastlog"))
+ (when #$(openssh-configuration-print-last-log? config)
+ (unless (file-exists? lastlog)
+ (touch lastlog))))
+
;; Generate missing host keys.
(system* (string-append #$openssh "/bin/ssh-keygen") "-A")))
@@ -334,6 +344,9 @@ The other options should be self-descriptive."
(format port "UsePAM ~a\n"
#$(if (openssh-configuration-use-pam? config)
"yes" "no"))
+ (format port "PrintLastLog ~a\n"
+ #$(if (openssh-configuration-print-last-log? config)
+ "yes" "no"))
#t))))
(define (openssh-shepherd-service config)
--
2.11.1
- Re: [PATCH 0/2] Openssh service patches, (continued)
- Re: [PATCH 0/2] Openssh service patches, ng0, 2017/02/17
- Re: [PATCH 0/2] Openssh service patches, Julien Lepiller, 2017/02/17
- [PATCH 1/2] services: openssh: Enable PAM., Clément Lassieur, 2017/02/18
- [PATCH 2/2] services: openssh: Remove deprecated 'RSAAuthentication' option., Clément Lassieur, 2017/02/18
- Re: [PATCH 2/2] services: openssh: Remove deprecated 'RSAAuthentication' option., Ricardo Wurmus, 2017/02/18
- Re: [PATCH 2/2] services: openssh: Remove deprecated 'RSAAuthentication' option., Clément Lassieur, 2017/02/18
- Re: [PATCH 2/2] services: openssh: Remove deprecated 'RSAAuthentication' option., ng0, 2017/02/19
- [PATCH 0/4] Openssh service patches, Clément Lassieur, 2017/02/20
- [PATCH 4/4] services: openssh: Add 'subsystems' option., Clément Lassieur, 2017/02/20
- [PATCH 2/4] services: openssh: Remove deprecated options., Clément Lassieur, 2017/02/20
- [PATCH 3/4] services: openssh: Fix 'PrintLastLog' default behaviour.,
Clément Lassieur <=
- [PATCH 1/4] services: openssh: Enable PAM., Clément Lassieur, 2017/02/20
- Re: [PATCH 1/4] services: openssh: Enable PAM., Clément Lassieur, 2017/02/22
- [PATCH] services: openssh: Enable PAM., Clément Lassieur, 2017/02/22
- Re: [PATCH 2/2] services: openssh: Remove deprecated 'RSAAuthentication' option., Ricardo Wurmus, 2017/02/18
- Re: [PATCH 2/2] services: openssh: Remove deprecated 'RSAAuthentication' option., Clément Lassieur, 2017/02/18
- Re: [PATCH 0/2] Openssh service patches, Clément Lassieur, 2017/02/18