diff options
author | Michael Boelen <michael@cisofy.com> | 2015-12-10 00:49:23 +0300 |
---|---|---|
committer | Michael Boelen <michael@cisofy.com> | 2015-12-10 00:49:23 +0300 |
commit | 502f106f9a493c27f1bad6d6004734e10f12de91 (patch) | |
tree | 4acf34449cfbd1a4359f1c64f777a4c0fc7ff4e1 /include/tests_storage | |
parent | 494ba68a6bff0b7959ff722f95716037cc59b471 (diff) | |
parent | c1c0d722d03eb7a1b69b97de6d3babae35e2d31d (diff) |
Merge pull request #96 from kboratynski/issue_11-str_1840
Authorization check for storage devices. Approved.
Diffstat (limited to 'include/tests_storage')
-rw-r--r-- | include/tests_storage | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/include/tests_storage b/include/tests_storage index 425ece24..e9235d65 100644 --- a/include/tests_storage +++ b/include/tests_storage @@ -60,6 +60,34 @@ Display --indent 2 --text "- Checking usb-storage driver (modprobe config)" --result "DISABLED" --color GREEN AddHP 3 3 fi + + + logtext "Test: Checking USB devices authorization to connect to the system" + FOUND=0 + USBDEVICESPATH="/sys/bus/usb/devices/usb" + for device in "${USBDEVICESPATH}"*; do + if [ -e "${device}/authorized" ] || [ -e "${device}/authorized_default" ]; then + if [ `cat "${device}/authorized_default"` -eq 1 ]; then + FOUND=1 + logtext "Test: ${device} is authorized by default" + elif [ `cat "${device}/authorized"` -eq 1 ]; then + FOUND=1 + logtext "Test: ${device} is authorized for now" + fi + fi + done + + if [ ${FOUND} -eq 1 ]; then + logtext "Result: Some USB devices are authorized by default or temporary to connect to the system" + Display --indent 2 --text "- Checking USB devices authorization" --result "ENABLED" --color RED + ReportSuggestion ${TEST_NO} "Disable USB devices authorization, to prevent unauthorized storage or data theft" + AddHP 0 3 + else + logtext "Result: None USB devices are authorized by default or temporary to connect to the system" + Display --indent 2 --text "- Checking USB devices authorization" --result "DISABLED" --color GREEN + AddHP 3 3 + fi + fi # ################################################################################# |