Menu
▾
▴
[Devil-linux-commit] build/config/etc/initrd linuxrc,1.56,1.57
|
From: <smi...@pr...> - 2004-01-26 19:29:44
|
Update of /cvsroot/devil-linux/build/config/etc/initrd In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv31254/config/etc/initrd Modified Files: linuxrc Log Message: added support for digitally signing the configuration Index: linuxrc =================================================================== RCS file: /cvsroot/devil-linux/build/config/etc/initrd/linuxrc,v retrieving revision 1.56 retrieving revision 1.57 diff -u -d -r1.56 -r1.57 --- linuxrc 22 Jan 2004 01:40:22 -0000 1.56 +++ linuxrc 25 Jan 2004 02:07:05 -0000 1.57 @@ -156,9 +156,6 @@ echo "loading configuration" tar -C /shm -xjf /floppy/etc.tar.bz2 -# unmount config media -umount /floppy - # create mtab for mount cat /proc/mounts > /etc/mtab @@ -171,6 +168,35 @@ /mount_cdrom /cdrom fi +if [ -f /cdrom/config/pubring.gpg ]; then + $YELLOW + echo "checking PGP signature of configuration" + $NORMAL + if ! /bin/gpgv --homedir /cdrom/config --keyring /cdrom/config/pubring.gpg --ignore-time-conflict -q /floppy/etc.tar.bz2.sig ;then + $RED + echo + echo "********************************************************************************" + echo "* !!! WARNING !!! WARNING !!! WARNING !!! WARNING !!! WARNING !!! *" + echo "* *" + echo "* The verification of the configuration signature failed ! *" + echo "* *" + echo "* There is a strong possibility that somebody tempered with your system *" + echo "* *" + echo "* !!! WARNING !!! WARNING !!! WARNING !!! WARNING !!! WARNING !!! *" + echo "********************************************************************************" + beep; sleep 1; beep; sleep 1; beep; sleep 1; beep; sleep 1; beep; sleep 1; beep; + $NORMAL + echo + echo -n "Do you want to continue? " + if ! ask_yes_no ; then + exit + fi + fi +fi + +# unmount config media +umount /floppy + # Update modules for SCSI CD (if any) if [ -s /shm/.probed_modules ] ; then echo "Updating /etc/sysconfig/config for SCSI modules." |
