From patchwork Mon Oct 16 21:18:39 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Andrew Davis X-Patchwork-Id: 32411 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id 47B5ECDB474 for ; Mon, 16 Oct 2023 21:18:43 +0000 (UTC) Received: from lelv0142.ext.ti.com (lelv0142.ext.ti.com [198.47.23.249]) by mx.groups.io with SMTP id smtpd.web10.180779.1697491122473194790 for ; Mon, 16 Oct 2023 14:18:42 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@ti.com header.s=ti-com-17Q1 header.b=IFKtIQcT; spf=pass (domain: ti.com, ip: 198.47.23.249, mailfrom: afd@ti.com) Received: from lelv0265.itg.ti.com ([10.180.67.224]) by lelv0142.ext.ti.com (8.15.2/8.15.2) with ESMTP id 39GLIfj5059123; Mon, 16 Oct 2023 16:18:41 -0500 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ti.com; s=ti-com-17Q1; t=1697491121; bh=pDxoYxI8Lz/9OrAX5OVtDE19zSmlhh8Yx5zOX0d4TMM=; h=From:To:CC:Subject:Date; b=IFKtIQcTO45ZfuezAQkcJeKBxSRozK1UpHKPj3d+AZTbOrgmz3WPEjsQ8SIiZ98kE DdUxByUk46bxtUbZF/+hSlr9FsorYgS3j/JVDRAvhrv9O0Lygp8pp+7N2UfPOE+e4Y FKTmO6yY5tpVNFs4o27eotwaslVmNvA1e9UBT8Tk= Received: from DFLE106.ent.ti.com (dfle106.ent.ti.com [10.64.6.27]) by lelv0265.itg.ti.com (8.15.2/8.15.2) with ESMTPS id 39GLIfx4009784 (version=TLSv1.2 cipher=AES256-GCM-SHA384 bits=256 verify=FAIL); Mon, 16 Oct 2023 16:18:41 -0500 Received: from DFLE110.ent.ti.com (10.64.6.31) by DFLE106.ent.ti.com (10.64.6.27) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2507.23; Mon, 16 Oct 2023 16:18:40 -0500 Received: from fllv0040.itg.ti.com (10.64.41.20) by DFLE110.ent.ti.com (10.64.6.31) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2507.23 via Frontend Transport; Mon, 16 Oct 2023 16:18:41 -0500 Received: from ula0226330.dhcp.ti.com (ileaxei01-snat2.itg.ti.com [10.180.69.6]) by fllv0040.itg.ti.com (8.15.2/8.15.2) with ESMTP id 39GLIeqV047105; Mon, 16 Oct 2023 16:18:40 -0500 From: Andrew Davis To: Denys Dmytriyenko , Ryan Eatmon , CC: Andrew Davis Subject: [meta-arago][master/kirkstone][PATCH 1/2] initscript-telnetd: Remove this package Date: Mon, 16 Oct 2023 16:18:39 -0500 Message-ID: <20231016211840.23815-1-afd@ti.com> X-Mailer: git-send-email 2.39.2 MIME-Version: 1.0 X-EXCLAIMER-MD-CONFIG: e1e8a2fd-e40a-4ac6-ac9b-f7e9cc9ee180 List-Id: X-Webhook-Received: from li982-79.members.linode.com [45.33.32.79] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Mon, 16 Oct 2023 21:18:43 -0000 X-Groupsio-URL: https://lists.yoctoproject.org/g/meta-arago/message/14939 Signed-off-by: Andrew Davis --- .../initscript-telnetd/initscript-telnetd.bb | 18 --------- .../initscript-telnetd/telnetd | 40 ------------------- .../packagegroups/packagegroup-arago-base.bb | 1 - 3 files changed, 59 deletions(-) delete mode 100644 meta-arago-distro/recipes-connectivity/initscript-telnetd/initscript-telnetd.bb delete mode 100644 meta-arago-distro/recipes-connectivity/initscript-telnetd/initscript-telnetd/telnetd diff --git a/meta-arago-distro/recipes-connectivity/initscript-telnetd/initscript-telnetd.bb b/meta-arago-distro/recipes-connectivity/initscript-telnetd/initscript-telnetd.bb deleted file mode 100644 index e492119b..00000000 --- a/meta-arago-distro/recipes-connectivity/initscript-telnetd/initscript-telnetd.bb +++ /dev/null @@ -1,18 +0,0 @@ -DESCRIPTION = "Initscripts for telnetd" -LICENSE = "MIT" -LIC_FILES_CHKSUM = "file://telnetd;beginline=2;endline=18;md5=d134d0d385c53f9201a270fef8448f29" -PR ="r1" - -SRC_URI = "file://telnetd" - -S = "${WORKDIR}" - -INITSCRIPT_NAME = "telnetd" -INITSCRIPT_PARAMS = "defaults 10" - -inherit update-rc.d - -do_install () { - install -d ${D}${sysconfdir}/init.d/ - install -c -m 755 ${S}/telnetd ${D}${sysconfdir}/init.d/telnetd -} diff --git a/meta-arago-distro/recipes-connectivity/initscript-telnetd/initscript-telnetd/telnetd b/meta-arago-distro/recipes-connectivity/initscript-telnetd/initscript-telnetd/telnetd deleted file mode 100644 index a99f23ef..00000000 --- a/meta-arago-distro/recipes-connectivity/initscript-telnetd/initscript-telnetd/telnetd +++ /dev/null @@ -1,40 +0,0 @@ -#! /bin/sh -#Permission is hereby granted, free of charge, to any person obtaining a copy -#of this software and associated documentation files (the "Software"), to deal -#in the Software without restriction, including without limitation the rights -#to use, copy, modify, merge, publish, distribute, sublicense, and/or sell -#copies of the Software, and to permit persons to whom the Software is -#furnished to do so, subject to the following conditions: -# -#The above copyright notice and this permission notice shall be included in -#all copies or substantial portions of the Software. -# -#THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR -#IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, -#FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE -#AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER -#LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, -#OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN -#THE SOFTWARE. - -telnetd=/usr/sbin/telnetd - -test -x "$telnetd" || exit 0 - -case "$1" in - start) - echo -n "Starting telnet daemon" - start-stop-daemon --start --quiet --exec $telnetd - echo "." - ;; - stop) - echo -n "Stopping telnet daemon" - start-stop-daemon --stop --quiet --exec $telnetd - echo "." - ;; - *) - echo "Usage: /etc/init.d/telnetd {start|stop}" - exit 1 -esac - -exit 0 diff --git a/meta-arago-distro/recipes-core/packagegroups/packagegroup-arago-base.bb b/meta-arago-distro/recipes-core/packagegroups/packagegroup-arago-base.bb index 1f63a7d0..5e528846 100644 --- a/meta-arago-distro/recipes-core/packagegroups/packagegroup-arago-base.bb +++ b/meta-arago-distro/recipes-core/packagegroups/packagegroup-arago-base.bb @@ -16,7 +16,6 @@ ARAGO_BASE = "\ mtd-utils \ mtd-utils-ubifs \ curl \ - initscript-telnetd \ ethtool \ thermal-init \ bash \ From patchwork Mon Oct 16 21:18:40 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Andrew Davis X-Patchwork-Id: 32410 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id 49A7BC41513 for ; Mon, 16 Oct 2023 21:18:43 +0000 (UTC) Received: from lelv0142.ext.ti.com (lelv0142.ext.ti.com [198.47.23.249]) by mx.groups.io with SMTP id smtpd.web11.180432.1697491122447609385 for ; Mon, 16 Oct 2023 14:18:42 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@ti.com header.s=ti-com-17Q1 header.b=nEDGGrJL; spf=pass (domain: ti.com, ip: 198.47.23.249, mailfrom: afd@ti.com) Received: from fllv0034.itg.ti.com ([10.64.40.246]) by lelv0142.ext.ti.com (8.15.2/8.15.2) with ESMTP id 39GLIfTn059127; Mon, 16 Oct 2023 16:18:41 -0500 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ti.com; s=ti-com-17Q1; t=1697491121; bh=mYSINGZ6VV0gn4D9Is9u/6Zc87bp0+B8dbfOoD5c00o=; h=From:To:CC:Subject:Date:In-Reply-To:References; b=nEDGGrJLtWeW2Iz8SKPX4SP2NzOR+UJu2vJPdBs9fRK4+cJkH7Ex3MCzmrWvp97lQ fn7Hvdn2MSKW6RBdxUpBFNH742wRi8zutrIzURxGyDBjj+vywbmxS+qPxac5cXTyig e0f8hZDH8I8gXqlj8r9ZN1yNhsnWyDYSqKSJYXss= Received: from DFLE105.ent.ti.com (dfle105.ent.ti.com [10.64.6.26]) by fllv0034.itg.ti.com (8.15.2/8.15.2) with ESMTPS id 39GLIf69031100 (version=TLSv1.2 cipher=AES256-GCM-SHA384 bits=256 verify=FAIL); Mon, 16 Oct 2023 16:18:41 -0500 Received: from DFLE104.ent.ti.com (10.64.6.25) by DFLE105.ent.ti.com (10.64.6.26) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2507.23; Mon, 16 Oct 2023 16:18:41 -0500 Received: from fllv0040.itg.ti.com (10.64.41.20) by DFLE104.ent.ti.com (10.64.6.25) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2507.23 via Frontend Transport; Mon, 16 Oct 2023 16:18:40 -0500 Received: from ula0226330.dhcp.ti.com (ileaxei01-snat2.itg.ti.com [10.180.69.6]) by fllv0040.itg.ti.com (8.15.2/8.15.2) with ESMTP id 39GLIeqW047105; Mon, 16 Oct 2023 16:18:40 -0500 From: Andrew Davis To: Denys Dmytriyenko , Ryan Eatmon , CC: Andrew Davis Subject: [meta-arago][master/kirkstone][PATCH 2/2] shadow-securetty: Do not allow root login over telnet Date: Mon, 16 Oct 2023 16:18:40 -0500 Message-ID: <20231016211840.23815-2-afd@ti.com> X-Mailer: git-send-email 2.39.2 In-Reply-To: <20231016211840.23815-1-afd@ti.com> References: <20231016211840.23815-1-afd@ti.com> MIME-Version: 1.0 X-EXCLAIMER-MD-CONFIG: e1e8a2fd-e40a-4ac6-ac9b-f7e9cc9ee180 List-Id: X-Webhook-Received: from li982-79.members.linode.com [45.33.32.79] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Mon, 16 Oct 2023 21:18:43 -0000 X-Groupsio-URL: https://lists.yoctoproject.org/g/meta-arago/message/14938 I'm sure I don't have to explain why this was a bad idea.. Signed-off-by: Andrew Davis --- .../shadow/shadow-securetty_%.bbappend | 15 --------------- 1 file changed, 15 deletions(-) delete mode 100644 meta-arago-distro/recipes-extended/shadow/shadow-securetty_%.bbappend diff --git a/meta-arago-distro/recipes-extended/shadow/shadow-securetty_%.bbappend b/meta-arago-distro/recipes-extended/shadow/shadow-securetty_%.bbappend deleted file mode 100644 index 62999d2a..00000000 --- a/meta-arago-distro/recipes-extended/shadow/shadow-securetty_%.bbappend +++ /dev/null @@ -1,15 +0,0 @@ -PR:append = ".arago0" - -do_install:append () { - # Allow telnet sessions to login as root - securetty_file=${D}${sysconfdir}/securetty - - echo '' >> $securetty_file - echo '# Allow 5 telnet login' >> $securetty_file - echo 'pts/0' >> $securetty_file - echo 'pts/1' >> $securetty_file - echo 'pts/2' >> $securetty_file - echo 'pts/3' >> $securetty_file - echo 'pts/4' >> $securetty_file - -}