Spaces:

GGSheng
/

action

Running

App Files Files Community

action / bt-source /panel /class /safe_warning /sw_file_mod.py

GGSheng

feat: deploy Gemma 4 to hf space

020c337 verified about 15 hours ago

raw

history blame contribute delete

2.46 kB

	#!/usr/bin/python
	# coding: utf-8
	# -------------------------------------------------------------------
	# 宝塔Linux面板
	# -------------------------------------------------------------------
	# Copyright (c) 2015-2099 宝塔软件(http://bt.cn) All rights reserved.
	# -------------------------------------------------------------------
	# Author: hwliang <hwl@bt.cn>
	# -------------------------------------------------------------------

	# -------------------------------------------------------------------
	# 开启地址空间布局随机化
	# -------------------------------------------------------------------
	import sys, os
	os.chdir('/www/server/panel')
	sys.path.append("class/")
	import os, sys, re, public

	_title = '关键性文件权限检查'
	_version = 1.0 # 版本
	_ps = "关键性文件权限检查" # 描述
	_level = 0 # 风险级别： 1.提示(低) 2.警告(中) 3.危险(高)
	_date = '2022-08-10' # 最后更新时间
	_ignore = os.path.exists("data/warning/ignore/sw_file_mod.pl")
	_tips = [
	"在【文件】页面，对指定目录或文件设置正确的权限和所有者",
	]
	_help = ''

	def check_run():
	dir_list = [
	['/etc/shadow', 400, 'root'],
	['/etc/security', 600, 'root'],
	['/etc/passwd', 644, 'root'],
	['/etc/services', 644, 'root'],
	['/etc/group', 644, 'root'],
	['/var/spool/cron/root',600, 'root'],
	['/etc/ssh/sshd_config',644,'root'],
	['/etc/sysctl.conf',644,'root'],
	['/etc/crontab',644,'root'],
	['/etc/hosts.deny',644,'root'],
	['/etc/hosts.allow',644,'root'],
	['/etc/gshadow',400,'root'],
	['/etc/passwd',644,'root'],
	['/etc/shadow',400,'root'],
	['/etc/group',644,'root'],
	['/etc/gshadow',400,'root'],
	]

	not_mode_list = []

	for d in dir_list:
	if not os.path.exists(d[0]): continue
	u_mode = public.get_mode_and_user(d[0])
	if u_mode['user'] != d[2]:
	not_mode_list.append("{} 当前权限: {} : {} 安全权限: {} : {}".format(d[0],u_mode['mode'],u_mode['user'],d[1],d[2]))
	if int(u_mode['mode']) != d[1]:
	not_mode_list.append("{} 当前权限: {} : {} 安全权限: {} : {}".format(d[0],u_mode['mode'],u_mode['user'],d[1],d[2]))

	if not_mode_list:
	return False,'以下关键文件或目录权限错误: <br />' + ("<br />".join(not_mode_list))
	else:
	return True,"无风险"


	# check_run()