diff --git a/bin/hardening/1.2_enable_verify_sign_packages_from_repository.sh b/bin/hardening/1.2_enable_verify_sign_packages_from_repository.sh index e8949ce..b655a66 100755 --- a/bin/hardening/1.2_enable_verify_sign_packages_from_repository.sh +++ b/bin/hardening/1.2_enable_verify_sign_packages_from_repository.sh @@ -65,8 +65,8 @@ apply_debian () { warn "Set to enabled signature of packages option" for CONFFILE in $(grep -i "${OPTION}" /etc/apt/ -Ir | grep -v "^#" | awk -F: '{print $1}') do - sed -i "/${OPTION}/d" ${CONFFILE} - #sed -i "s/${OPTION}.*true.*/${OPTION} \"false\";/g" ${CONFFILE} + backup_file ${CONFFILE} + sed -i "s/^${OPTION}/#&/" ${CONFFILE} done fi } @@ -75,9 +75,12 @@ apply_centos () { ok "The signature of packages option is enable " elif [ $FNRET = 1 ]; then warn "Set to enabled signature of packages option" + backup_file $YUM_CONF sed -i "s/$YUM_OPTION=.*/$YUM_OPTION=1/g" $YUM_CONF + else warn "Add $YUM_OPTION option to $YUM_CONF" + backup_file $YUM_CONF add_end_of_file $YUM_CONF "$YUM_OPTION=1" fi } diff --git a/bin/hardening/1.3_enable_verify_sign_of_local_packages.sh b/bin/hardening/1.3_enable_verify_sign_of_local_packages.sh index 4daea6a..be2ada4 100755 --- a/bin/hardening/1.3_enable_verify_sign_of_local_packages.sh +++ b/bin/hardening/1.3_enable_verify_sign_of_local_packages.sh @@ -63,8 +63,8 @@ apply_debian () { ok "The signature of local packages option is enable " else warn "Set to enabled signature of local packages option" - sed -i "/^${OPTION}/d" ${CONFFILE} - #sed -i "s/${OPTION}.*true.*/${OPTION} \"false\";/g" ${CONFFILE} + backup_file $CONFFILE + sed -i "s/^${OPTION}/#&/" ${CONFFILE} fi } @@ -72,9 +72,11 @@ apply_centos () { if [ $FNRET = 0 ]; then ok "The signature of packages option is enable " elif [ $FNRET = 1 ]; then + backup_file $YUM_CONFFILE warn "Set to enabled signature of packages option" sed -i "s/$YUM_OPTION=.*/$YUM_OPTION=1/g" $YUM_CONFFILE else + backup_file $YUM_CONFFILE warn "Add $YUM_OPTION option to $YUM_CONFFILE" add_end_of_file $YUM_CONFFILE "$YUM_OPTION=1" fi