post_install.sh

# **************************************************************************** #
#                                                                              #
#                                                         :::      ::::::::    #
#    post_install.sh                                    :+:      :+:    :+:    #
#                                                     +:+ +:+         +:+      #
#    By: agaley <agaley@student.42lyon.fr>          +#+  +:+       +#+         #
#                                                 +#+#+#+#+#+   +#+            #
#    Created: 2022/12/05 20:14:57 by agaley            #+#    #+#              #
#    Updated: 2022/12/11 18:54:26 by agaley           ###   ########lyon.fr    #
#                                                                              #
# **************************************************************************** #

#!/bin/bash

sed -i 's/^.*Port 22/Port 4242/' /etc/ssh/sshd_config
sed -i 's/^.*PasswordAuthentication yes/PasswordAuthentication yes/' /etc/ssh/sshd_config
sed -i 's/^.*PermitRootLogin.*$/PermitRootLogin no/' /etc/ssh/sshd_config

sed -i $'s/^PASS_MAX_DAYS.*$/PASS_MAX_DAYS\t30/' /etc/login.defs
sed -i $'s/^PASS_MIN_DAYS.*$/PASS_MIN_DAYS\t2/' /etc/login.defs
sed -i $'s/^PASS_WARN_AGE.*$/PASS_WARN_AGE\t7/' /etc/login.defs
sed -i 's/^.*pam_pwquality.so.*$/password'"\t"'requisite'"\t"'pam_pwquality.so minlen=10 ucredit=-1 dcredit=-1 lcredit=0 ocredit=0 maxrepeat=3 reject_username enforce_for_root'"\n"'password'"\t"'requisite'"\t"'pam_pwquality.so difok=7/' /etc/pam.d/common-password

mkdir /var/log/sudo
echo 'Defaults	passwd_tries=3' >> /etc/sudoers.d/42
echo 'Defaults	badpass_message="Not this. You are on Qwerty (:"' >> /etc/sudoers.d/42
echo 'Defaults	logfile="/var/log/sudo/audit"' >> /etc/sudoers.d/42
echo 'Defaults	log_input, log_output' >> /etc/sudoers.d/42
echo 'Defaults	iolog_dir="/var/log/sudo"' >> /etc/sudoers.d/42
echo 'Defaults	requiretty' >> /etc/sudoers.d/42
echo 'Defaults	secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin"' >> /etc/sudoers.d/42

addgroup user42
usermod -aG user42 agaley

chpasswd <<<"agaley:Unkn0wn107"
chpasswd <<<"root:Unkn0wn107"
# #echo $USR_PSD | sudo passwd agaley
# #echo $ROOT_PSD | sudo passwd root
chmod +x /root/status.sh
chmod +x /home/agaley/services_install.sh
chmod +x /home/agaley/backup.sh
chown agaley:agaley /home/agaley/services_install.sh
chown agaley:agaley /home/agaley/backup.sh
chmod 775 /var/www/html
chown -R www-data:www-data /var/www/html