Git/ssh-audit
1
0
Fork 0
mirror of https://github.com/jtesta/ssh-audit.git synced 2025-10-30 13:05:26 +01:00
Code Issues Packages Projects Releases Wiki Activity

Do not accidentally overwrite policies when creating new policy with -M.

Browse Source
This commit is contained in:
Joe Testa
2020-07-06 16:15:26 -04:00
parent adc1007d7d
commit 1faa24ad86
1 changed files with 11 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
ssh-audit.py
View File

@@ -3206,10 +3206,18 @@ def make_policy(aconf: AuditConf, banner: Optional['SSH.Banner'], kex: Optional[
if aconf.policy_file is None: if aconf.policy_file is None:
raise RuntimeError('Internal error: cannot write policy file since filename is None!') raise RuntimeError('Internal error: cannot write policy file since filename is None!')
with open(aconf.policy_file, 'w') as f: # Open with mode 'x' (creates the file, or fails if it already exist).
succeeded = True
try:
with open(aconf.policy_file, 'x') as f:
f.write(policy_data) f.write(policy_data)
except FileExistsError:
succeeded = False
print("Wrote policy to %s. Customize as necessary." % aconf.policy_file) if succeeded:
print("Wrote policy to %s. Customize as necessary, then run a policy scan with -P option." % aconf.policy_file)
else:
print("Error: file already exists: %s" % aconf.policy_file)
class Utils: class Utils: