PC World Komputer 1999 March B

home *** CD-ROM | disk | FTP | other *** search

/ PC World Komputer 1999 March B / SCO_CASTOR4RRT.iso / dfs / install / postinstall < prev next >

Wrap

Text File | 1998-08-19 | 3.8 KB | 145 lines

#ident "@(#)postinstall 1.2" # # Initialize FAILURE to 1 (fatal error) # FAILURE=1 # Create dummy /etc/dfs/lid_and_priv file #if [ ! -f /etc/dfs/lid_and_priv ] #then # echo "# specify access to be granted to NFS clients of this server" >> /etc/dfs/lid_and_priv # echo "# domain hostname MAC_level privilege_set" >> /etc/dfs/lid_and_priv #fi #installf $PKGINST /etc/dfs/lid_and_priv f 0644 root root 2 NULL NULL # Create empty /etc/dfs/sharetab file if [ ! -f /etc/dfs/sharetab ] then > /etc/dfs/sharetab fi installf $PKGINST /etc/dfs/sharetab v 0644 root root 2 NULL NULL # # change levels of some commands to SYS_PUBLIC so that OA&M may work for dfs # (cannot use chlvl) installf $PKGINST /usr/bin/tr f \? \? \? 1 NULL NULL # # add /sbin/init to the NET role so that # network administrator can go init 3 # #adminrole -a init:/sbin/init:allprivs NET # # Add the dev and filesys privilege to the generic umount & mount # and also mountall & umountall commands since they are not set in the TCB. installf $PKGINST /sbin/umount f \? \? \? 2 NULL allprivs installf $PKGINST /sbin/mount f \? \? \? 1 NULL allprivs installf $PKGINST /sbin/mountall f \? \? \? 2 NULL allprivs installf $PKGINST /sbin/umountall f \? \? \? 2 NULL allprivs # # put /usr/bin/cp in NET role with privs .. so that OA&M works # # cp is needed by nsu and dfs, so both postinstalls add it # ignoring error. The packages can then remain independent. # #adminrole -a cp:/usr/bin/cp:macwrite:dacwrite:macread:dacread NET 2>/dev/null 1>&1 #adminrole -a mkdir:/usr/bin/mkdir:dacread:dacwrite:macread:macwrite:multidir:fsysrange:setflevel NET 2>/dev/null # # # put /sbin/sh in NET role with privs .. so that OA&M works # #adminrole -a sh:/sbin/sh:macwrite:dacwrite:macread:dacread:filesys:dev NET # # Add dfs commands to TFM database # #while read cmd #do # base=`basename $cmd` # privs=` # egrep ":${cmd}$" /etc/security/tcb/privs | # sed -n '/%inher,.*:/s/^.*%inher,$.*$:.*/\1/p' | # sed 's/,/:/gp' # ` # if [ ! -f $cmd ] # then # echo "Warning: $cmd not found on the system.\c" # echo " Not adding to TFM." # continue # fi # # if [ -z "$privs" ] # then # adminrole -a $base:$cmd NET # else # adminrole -a $base:$cmd:$privs NET # fi #done <<! #/usr/sbin/dfshares #/usr/sbin/general #/usr/sbin/share #/usr/sbin/shareall #/usr/sbin/unshareall #/usr/sbin/lidload #/usr/sbin/fuser #/usr/bin/kill #! # Workaround for putting unshare and dfmounts in NET role with privs # /usr/sbin/unshare is a link to /usr/sbin/general and /usr/sbin/dfmounts # is a link to /usr/sbin/dfshares. #/usr/bin/adminrole -a unshare:/usr/sbin/unshare:dacread:dacwrite:dev:macread:macwrite:driver:fsysrange:filesys NET #/usr/bin/adminrole -a dfmounts:/usr/sbin/dfmounts:dacread:dacwrite:dev:macread:macwrite:driver:fsysrange NET # and modify generic umount and mount (they already have new privs in TCB #for role in SOP SSO #do # adminrole -r mount -a mount:/sbin/mount:allprivs $role # adminrole -r umount -a umount:/sbin/umount:allprivs $role #done #adminrole -a mount:/sbin/mount:allprivs NET #adminrole -a umount:/sbin/umount:allprivs NET #adminrole -a umountall:/sbin/umountall:allprivs NET #adminrole -a mountall:/sbin/mountall:allprivs NET # root must have the NET role .... TEST=`adminuser root | grep "roles:" | (read a b; echo $b)` echo $TEST | grep NET > /dev/null if [ $? -ne 0 ] then echo $TEST | grep none > /dev/null if [ $? -ne 0 ] then TEST=$TEST,NET else TEST=NET fi adminuser -o $TEST root fi ############# Begin UPGRADE AND OVERLAY ####################### SCRIPTS=/usr/sbin/pkginst . ${SCRIPTS}/updebug [ "$UPDEBUG" = "YES" ] && set -x if [ $PKGINSTALL_TYPE = UPGRADE ] || [ $PKGINSTALL_TYPE = OVERLAY ] then ${SCRIPTS}/pkgmrgconf "$PKGINST" "$AUTOMERGE" "$NAME" fi ############# End UPGRADE AND OVERLAY ####################### installf -f $PKGINST || exit FAILURE exit 0