This extends the git-prepend-base script to automatically create a bare
git repository when it does not exist yet. This also makes the option
handling slightly more robust, to prevent the script from messing with
arguments that aren't git repository paths at all.
root [Tue, 5 May 2009 16:20:22 +0000 (18:20 +0200)]
Merge commit 'origin/template' into login
* commit 'origin/template':
rsyslog: Use another format for forwarding messages.
ssh: Disable changing of the oom_adj value.
ssh: Add default initscript configuration.
rsyslog: Use another format for forwarding messages.
The syslog protocol 23 format seems to be broken in rsyslog for messages
that were originally generated by legacy applications (i.e., do not have
a structured-data field).
See http://bugzilla.adiscon.com/show_bug.cgi?id=125
root [Tue, 5 May 2009 14:26:47 +0000 (16:26 +0200)]
Merge commit 'origin/template' into login
* commit 'origin/template':
rsyslog: Make the main queue disk-assisted as well.
rsyslog: Enable queuing of log messages.
nss: Add some comments.
rsyslog: Send all logs to the log vserver.
rsyslog: Move all rsyslog log files into a subdir.
rsyslog: Update logrotate config to new rsyslog config.
rsyslog: Add default logrotate config.
rsyslog: Disable logging of kernel messages.
rsyslog: Enable loggin of mark lines.
rsyslog: Clean up rsyslog configuration.
rsyslog: Add default configuration.
pam: Add pam_permit to the auth section of chfn.
nss: Update to use our custom LDAP schema.
apt: Set the Default-Release to "stable".
This uses the uniqueMember attribute containing dns instead of the
memberUid attribute containing usernames for forming groups.
Additionally, it tells nss-ldap about our replacement for the posixGroup
objectClass.
git: Add scripts to enable a base path for git over ssh.
These files provide wrappers aroudn git-{receive,upload}-pack that
prepend the base path '/data/vcs/git/' to each non-option argument. This
enables git urls over ssh to leave out this base path.
This makes sure that common-account supports both unix users (from
passwd) and ldap users. A lot of services don't do real (password)
authentication, but do need to work for both ldap and unix users (cron,
su).
common-auth still only works for ldap users, since those are the only
ones with actual passwords.
pam: Allow only root to change shells and user info.
Since changing user info and shells for ldap users is not supported by
chfn and chsh anyway, and we have no real users that are not in ldap,
limiting this to just root makes sense.
The session modules seem useless, and the common files only include ldap
and don't know about root, so that only gives warnings when root is
trying to su.
This makes it impossible for non-root users to use su, but that's a
feature.