[pam/runvirt/..] Move .account and .home into .openslx subdirectory

Create separate tmpfs for .openslx to make sure the user cannot rename,
edit or remove the files. It's a subdir of $HOME which has 0700, so
no other user will be able to read it.

1 files changed, 2 insertions, 2 deletions

diff --git a/core/modules/run-virt/data/opt/openslx/scripts/pam_script_auth.d/99-run_virt_credentials b/core/modules/run-virt/data/opt/openslx/scripts/pam_script_auth.d/99-run_virt_credentials
index 211f780e..c1761d2d 100644
--- a/core/modules/run-virt/data/opt/openslx/scripts/pam_script_auth.d/99-run_virt_credentials
+++ b/core/modules/run-virt/data/opt/openslx/scripts/pam_script_auth.d/99-run_virt_credentials
@@ -9,8 +9,8 @@ if [ -n "$TEMP_HOME_DIR" ]; then
 		fi
 		if [ -n "$PERSISTENT_NETPATH" ]; then
 			[ "x${PERSISTENT_NETPATH:0:2}" = "x//" ] && PERSISTENT_NETPATH=$(echo "$PERSISTENT_NETPATH" | tr '/' '\')
-			echo "${PERSISTENT_NETPATH}" > "${TEMP_HOME_DIR}/.home"
-			chmod 0644 "${TEMP_HOME_DIR}/.home"
+			echo "${PERSISTENT_NETPATH}" > "${TEMP_HOME_DIR}/.openslx/home"
+			chmod 0644 "${TEMP_HOME_DIR}/.openslx/home"
 		fi
 
 		# pwdaemon