This repository was archived by the owner on Jul 16, 2025. It is now read-only.
cfgsystem
Folders and files
| Name | Name | Last commit date | ||
|---|---|---|---|---|
parent directory.. | ||||
Use on your own risk, it can harm your system configuration files.
cfgsystem.so
------------
TransAPI module primarily intended for the Netopeer server, but in general
for libnetconf based NETCONF servers. The module should correctly work on
RHEL, SUSE and Debian based distros.
Install
~~~~~~~
$ ./configure
$ make
# make install
configure options:
--with-netopeer-confdir=DIR
If you changed the sysconfdir of the Netopeer server, please reflect
this change in this option. By default, the Netopeer server stores its
configuration files in ${sysconfdir}/netopeer/ directory. Instead of the
complete path, you can alternatively specify the sysconfdir value
(--sysconfdir=DIR) in the same way as in case of the Netopeer server.
--with-[useradd|userdel|shutdown]=PATH
On some distros (RHEL based) when a normal user builds (run configure)
it is unable to detect, that these tools are available when you are
root. Therefore, if configure cannot detect those tools, you can specify
them manually. Otherwise, configure switches off the functionality of the
cfgsystem that depends on that tools.
Functionality
~~~~~~~~~~~~~
This module implements ietf-system data model as defined in RFC 7317. It
implements only the folowing features of the data model:
- authentication - configuration of the user authentication by manipulating
with the sshd_config of SSH daemon listening for the NETCONF connections
and basic certificate management.
- local-users - configuration of local user authentication by manipulating
with the /etc/passwd, /etc/shadow and ~/.ssh/authorized_keys files.
- ntp - configuration of usage NTP server(s) by manipulating with
/etc/ntp.conf file and the ntp (or ntpd on RHEL based distros) service.
- timezone-name - allows timezone configuration using TZ database.
The module also allows configuration of
- DNS resolver by manipulating with the /etc/resolv.conf.
For the detailed description of content for the specific configuration
element, please read the RFC 7317.
!!environment variables:
cfgsystem relies on retrieving some information from the environment
variables exported by netopeer-server(8), namely:
SSHD_PID - PID number of the sshd process
File monitoring
~~~~~~~~~~~~~~~
4 files are monitored:
- /etc/passwd
- /etc/shadow
- /etc/ntp.conf
- /etc/resolv.conf
Any changes to these files outside this module are reflected in the running
configuration. However, no callbacks are called for these changes and it is
assumed that they were applied outside cfgsystem (some other application,
a user, e.c.).
cfgsystem-init
--------------
This small utility is able to load all the configurations managed by the
ietf-system model and store them as the startup configuration data for use
in the netopeer-server.
The tool is automatically used with 'make install' when the Netopeer server
(netopeer-manager(1)) is already installed, so after that you don't need to run
it manually.
Remember, that having empty startup datastore on netopeer-server startup with
the cfgsystem module enabled causes removing all current configuration settings
(NTP and DNS servers, users,...)!
Usage:
./cfgsystem-init <cfgsystem's datastore path> <supported feature> ...