sudo: Add fake version. You know why. :)

2014-03-14 16:17:21 +00:00 · 2014-03-14 16:17:21 +00:00 · bb181cb2a9
commit bb181cb2a9
parent 7a9de1e10d
2 changed files with 39 additions and 0 deletions
--- a/sudo/files/fakesudo
+++ b/sudo/files/fakesudo
@ -0,0 +1,25 @@
+#!/bin/sh
+
+trap report SIGINT SIGTERM
+
+function askpw {
+    # echo -n "Password:"
+    read -s -p "Password:" password
+    password=""
+    echo ""
+    echo "Sorry, try again."
+}
+
+function report {
+    stty echo # Fix echo if ^C during password prompt
+    ( whoami ; date ) | mailx -s "Someone sudo'ed (`id -un`, ${SSH_CONNECTION})" root
+    exit 1
+}
+
+function main {
+    for try in 1 2 3; do askpw; done
+    echo "sudo: 3 incorrect password attempts"
+    report
+}
+
+main
--- a/sudo/manifests/init.pp
+++ b/sudo/manifests/init.pp
@ -37,6 +37,20 @@ class sudo {

 }

+# Install fake sudo
+#
+class sudo::fake {
+
+  file { "/usr/bin/sudo":
+    ensure => present,
+    mode   => 0555,
+    owner  => "root",
+    group  => "root",
+    source => "puppet:///modules/sudo/fakesudo",
+  }
+  
+}
+
 # Add sudoer.
 #
 # === Parameters