diff options
| author | Simon Rettberg | 2019-03-12 10:52:04 +0100 |
|---|---|---|
| committer | Simon Rettberg | 2019-03-12 10:52:04 +0100 |
| commit | d5795495186055bc4237a668868ffc56f15f6013 (patch) | |
| tree | bc4de4078cc7e86018a90fba4530ecdd27bcbbe0 /core/modules/kiosk-common | |
| parent | [run-virt] Ugly fix for linux script / runscript root/user, default changed t... (diff) | |
| download | mltk-d5795495186055bc4237a668868ffc56f15f6013.tar.gz mltk-d5795495186055bc4237a668868ffc56f15f6013.tar.xz mltk-d5795495186055bc4237a668868ffc56f15f6013.zip | |
[kiosk-common] Only allow 132.230.0.0/16? Very smart!
Diffstat (limited to 'core/modules/kiosk-common')
| -rw-r--r-- | core/modules/kiosk-common/data/opt/openslx/lightdm/guest-account.d/00-iptables | 26 |
1 files changed, 0 insertions, 26 deletions
diff --git a/core/modules/kiosk-common/data/opt/openslx/lightdm/guest-account.d/00-iptables b/core/modules/kiosk-common/data/opt/openslx/lightdm/guest-account.d/00-iptables deleted file mode 100644 index 38e4893a..00000000 --- a/core/modules/kiosk-common/data/opt/openslx/lightdm/guest-account.d/00-iptables +++ /dev/null @@ -1,26 +0,0 @@ -#!/bin/ash -# ^ SOURCED - -kiosk_rules="/opt/openslx/iptables/rules.d/90-kiosk" -cat <<-EOF > "$kiosk_rules" - #!/bin/ash - - iptables -w -A ipt-helper-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT - iptables -w -I ipt-helper-OUTPUT 1 -o br0 -d 132.230.0.0/16 -j ACCEPT - iptables -w -I ipt-helper-INPUT 1 -i br0 -d 132.230.0.0/16 -j ACCEPT - iptables -w -I ipt-helper-OUTPUT 1 -o br0 -d 10.0.0.0/8 -j ACCEPT - iptables -w -I ipt-helper-INPUT 1 -i br0 -d 10.0.0.0/8 -j ACCEPT - - iptables -P INPUT DROP - iptables -P FORWARD DROP - iptables -P OUTPUT DROP -EOF - -chmod +x "$kiosk_rules" - -# HACK: wait for iptables helper to setup the rules... -sleep 2 - -# make sure it is cleared on session close -echo "rm -f \"$kiosk_rules\"" > "/etc/X11/Xreset.d/clear-kiosk-iptables" -true |