From d08f07eae13d02431b1c4142634f49e978b551de Mon Sep 17 00:00:00 2001 From: mh Date: Sun, 4 Sep 2016 21:00:45 +0200 Subject: make module also work on EL7 * user is different * user must not be managed * make access more safe, it doesn't make sense that the user running the daemon owns the config, nor the config directory. --- manifests/daemon/params.pp | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) create mode 100644 manifests/daemon/params.pp (limited to 'manifests/daemon/params.pp') diff --git a/manifests/daemon/params.pp b/manifests/daemon/params.pp new file mode 100644 index 0000000..b2d8e34 --- /dev/null +++ b/manifests/daemon/params.pp @@ -0,0 +1,18 @@ +# setup variables for different distributions +class tor::daemon::params { + + case $osfamily { + 'RedHat': { + $user = 'toranon' + $group = 'toranon' + $manage_user = false + } + 'Debian': { + $user = 'debian-tor' + $group = 'debian-tor' + $manage_user = true + } + default: { fail("No support for osfamily ${osfamily}") } + } + +} -- cgit v1.2.3 From 5c4d6c56d9fc0c006e43e4bbeea9d755f44fe10b Mon Sep 17 00:00:00 2001 From: mh Date: Fri, 7 Oct 2016 02:02:43 +0200 Subject: redhat & debian have different modes --- manifests/daemon/params.pp | 14 ++++++++------ 1 file changed, 8 insertions(+), 6 deletions(-) (limited to 'manifests/daemon/params.pp') diff --git a/manifests/daemon/params.pp b/manifests/daemon/params.pp index b2d8e34..0c35cd6 100644 --- a/manifests/daemon/params.pp +++ b/manifests/daemon/params.pp @@ -3,14 +3,16 @@ class tor::daemon::params { case $osfamily { 'RedHat': { - $user = 'toranon' - $group = 'toranon' - $manage_user = false + $user = 'toranon' + $group = 'toranon' + $manage_user = false + $data_dir_mode = '0750' } 'Debian': { - $user = 'debian-tor' - $group = 'debian-tor' - $manage_user = true + $user = 'debian-tor' + $group = 'debian-tor' + $manage_user = true + $data_dir_mode = '0700' } default: { fail("No support for osfamily ${osfamily}") } } -- cgit v1.2.3