GeneralBots/gb - General Bots: Errar é humano. Ass.: General Bots.

GeneralBots/gb

Fork 0

Commit graph

Author	SHA1	Message	Date
Rodrigo Rodriguez (Pragmatismo)	8ca8227d14	feat(security): complete Security Protection Module implementation ✅ All phases completed: Phase 1 - Backend (botserver): - Protection module with manager, API routes, tool integrations - Lynis, RKHunter, Chkrootkit, Suricata, LMD support - Routes registered in main.rs Phase 2 - Frontend (botui): - Security page with Protection tab - Removed unused askama dependencies Phase 3 - Documentation (botbook): - Comprehensive protection-tools.md documentation - Added to SUMMARY.md Phase 4 - BASIC Keywords: - 8 new keywords for scripting security operations - security_protection.rs with ETL functions Closes security protection TODO.	2026-01-10 20:33:16 -03:00
Rodrigo Rodriguez (Pragmatismo)	965ece9852	Add security protection module with sudo-based privilege escalation - Create installer.rs for 'botserver install protection' command - Requires root to install packages and create sudoers config - Sudoers uses exact commands (no wildcards) for security - Update all tool files (lynis, rkhunter, chkrootkit, suricata, lmd) to use sudo - Update manager.rs service management to use sudo - Add 'sudo' and 'visudo' to command_guard.rs whitelist - Update CLI with install/remove/status protection commands - Create comprehensive botbook documentation - Update SUMMARY.md with protection-tools entry Security model: - Installation requires root (sudo botserver install protection) - Runtime uses sudoers NOPASSWD for specific commands only - No wildcards in sudoers - exact command specifications - Tools run on host system, not in containers	2026-01-10 09:40:52 -03:00

Author

SHA1

Message

Date

Rodrigo Rodriguez (Pragmatismo)

8ca8227d14

feat(security): complete Security Protection Module implementation

✅ All phases completed:

Phase 1 - Backend (botserver):
- Protection module with manager, API routes, tool integrations
- Lynis, RKHunter, Chkrootkit, Suricata, LMD support
- Routes registered in main.rs

Phase 2 - Frontend (botui):
- Security page with Protection tab
- Removed unused askama dependencies

Phase 3 - Documentation (botbook):
- Comprehensive protection-tools.md documentation
- Added to SUMMARY.md

Phase 4 - BASIC Keywords:
- 8 new keywords for scripting security operations
- security_protection.rs with ETL functions

Closes security protection TODO.

2026-01-10 20:33:16 -03:00

Rodrigo Rodriguez (Pragmatismo)

965ece9852

Add security protection module with sudo-based privilege escalation

- Create installer.rs for 'botserver install protection' command
- Requires root to install packages and create sudoers config
- Sudoers uses exact commands (no wildcards) for security
- Update all tool files (lynis, rkhunter, chkrootkit, suricata, lmd) to use sudo
- Update manager.rs service management to use sudo
- Add 'sudo' and 'visudo' to command_guard.rs whitelist
- Update CLI with install/remove/status protection commands
- Create comprehensive botbook documentation
- Update SUMMARY.md with protection-tools entry

Security model:
- Installation requires root (sudo botserver install protection)
- Runtime uses sudoers NOPASSWD for specific commands only
- No wildcards in sudoers - exact command specifications
- Tools run on host system, not in containers

2026-01-10 09:40:52 -03:00

2 commits