Lines 39-56
ln -sf /etc/machine.secret /etc/libnss-ldap.secret
|
Link Here
|
---|
|
39 |
# /etc/pam_ldap.secret is required for rootbinddn in /etc/pam_ldap.conf |
39 |
# /etc/pam_ldap.secret is required for rootbinddn in /etc/pam_ldap.conf |
40 |
ln -sf /etc/machine.secret /etc/pam_ldap.secret |
40 |
ln -sf /etc/machine.secret /etc/pam_ldap.secret |
41 |
|
41 |
|
42 |
# Update to UCS 3.0, increase nscd cache sizes if pre 3.0 default values |
|
|
43 |
# are used. Bug #21358 |
44 |
if [ "$1" = configure -a -n "$2" ] && dpkg --compare-versions "$2" lt 5.0.15-1; then |
45 |
if [ "$nscd_passwd_size" = "3001" -a "$nscd_group_size" = "3001" -a "$nscd_hosts_size" = "3001" ]; then |
46 |
univention-config-registry set \ |
47 |
nscd/passwd/size=6007 \ |
48 |
nscd/group/size=56003 \ |
49 |
nscd/hosts/size=6007 \ |
50 |
nscd/group/maxdbsize=62914560 |
51 |
fi |
52 |
fi |
53 |
|
54 |
univention-config-registry set \ |
42 |
univention-config-registry set \ |
55 |
nscd/passwd/size?6007 \ |
43 |
nscd/passwd/size?6007 \ |
56 |
nscd/group/size?56003 \ |
44 |
nscd/group/size?56003 \ |
Lines 114-126
if [ -e /etc/univention/templates/files/etc/pam.d/common-auth ]; then
|
Link Here
|
---|
|
114 |
rm /etc/univention/templates/files/etc/pam.d/common-auth |
102 |
rm /etc/univention/templates/files/etc/pam.d/common-auth |
115 |
fi |
103 |
fi |
116 |
|
104 |
|
117 |
if [ "$1" = configure -a -n "$2" ] && dpkg --compare-versions "$2" lt 6.0.2-1; then |
|
|
118 |
if is_ucr_true nss/group/cachefile; then |
119 |
/usr/lib/univention-pam/ldap-group-to-file.py |
120 |
univention-config-registry set nscd/group/invalidate_cache_on_changes="false" |
121 |
fi |
122 |
fi |
123 |
|
124 |
# Restart listener |
105 |
# Restart listener |
125 |
if [ -x "/etc/init.d/univention-directory-listener" ] ; then |
106 |
if [ -x "/etc/init.d/univention-directory-listener" ] ; then |
126 |
/etc/init.d/univention-directory-listener crestart |
107 |
/etc/init.d/univention-directory-listener crestart |
Lines 138-151
univention-config-registry set \
|
Link Here
|
---|
|
138 |
'security/limits/default/user/hard/nofile?32768' \ |
119 |
'security/limits/default/user/hard/nofile?32768' \ |
139 |
'security/limits/group/Domain Users/hard/nproc?1000' |
120 |
'security/limits/group/Domain Users/hard/nproc?1000' |
140 |
|
121 |
|
141 |
# Bug #32415, can be removed after 4.0-0 |
122 |
# Bug #37995: Enable sudo only on new UCS-4.1 installs |
142 |
if [ "$1" = configure -a -n "$2" ] && dpkg --compare-versions "$2" lt 8.0.1-2; then |
123 |
if [ "$1" = configure ] && [ -n "$2" ] |
143 |
if [ -n "$security_limits_user_default_user_soft_nofile" ]; then |
124 |
then |
144 |
ucr unset security/limits/user/default/user/soft/nofile |
125 |
univention-config-registry set auth/sudo?yes |
145 |
fi |
|
|
146 |
if [ -n "$security_limits_user_default_user_hard_nofile" ]; then |
147 |
ucr unset security/limits/user/default/user/hard/nofile |
148 |
fi |
149 |
fi |
126 |
fi |
150 |
|
127 |
|
151 |
call_joinscript 11univention-pam.inst |
128 |
call_joinscript 11univention-pam.inst |