Security improvements

Addressing the #2 security concerns reported by @tvibliani about the user created with the script. This is made that way because this is a “system” user. It is there to own and run the application, it isn’t supposed to be a person type user with a login etc. In Ubuntu, a system user gets a UID below 1000, has no shell (it’s actually /bin/false) and has logins disabled.
10 years ago · 26e3741a6b
parent 35d3f9fd15
commit 26e3741a6b
1 changed files with 2 additions and 3 deletions
--- a/odoo_install.sh
+++ b/odoo_install.sh
@ -95,13 +95,12 @@ else
 fi
 	
 echo -e "\n---- Create ODOO system user ----"
-sudo adduser --system --quiet --shell=/bin/bash --home=$OE_HOME --gecos 'ODOO' --group $OE_USER
+sudo adduser --system --home=$OE_HOME --group odoo
 #The user should also be added to the sudo'ers group.
-sudo adduser $OE_USER sudo

 echo -e "\n---- Create Log directory ----"
 sudo mkdir /var/log/$OE_USER
-sudo chown $OE_USER:$OE_USER /var/log/$OE_USER
+sudo chown $OE_USER:root /var/log/$OE_USER

 #--------------------------------------------------
 # Install ODOO