DLPX-86539 CIS: postgres user account settings

PR URL: https://www.github.com/delphix/appliance-build/pull/776

Author: dbshah12

live-build/config/hooks/vm-artifacts/90-raw-disk-image.binary

@@ -304,6 +304,18 @@ cat <<-EOF >"$DIRECTORY/etc/fstab"
 	rpool/crashdump  /var/crash     zfs defaults,x-systemd.before=zfs-import-cache.service,x-systemd.before=kdump-tools.service 0 0
 EOF
 
+#
+# Check if DIR_MODE is present (either commented or uncommented) in file where new user
+# configurations are stored If DIR_MODE is found, update its value to 0750 (uncomment if needed)
+# If DIR_MODE is not found, add it to the file with value 0750
+#
+NEW_USER_FILE="$DIRECTORY/etc/adduser.conf"
+if grep -q "^#\?DIR_MODE" "$NEW_USER_FILE"; then
+	sed -i 's/^#\?DIR_MODE.*/DIR_MODE=0750/' "$NEW_USER_FILE"
+else
+	echo "DIR_MODE=0750" >>"$NEW_USER_FILE"
+fi
+
 #
 # Now we need to install the bootloader. In order to do that, we'll chroot
 # into the newly populated root filesystem, so that we use the grub-install

upgrade/upgrade-scripts/execute

@@ -595,6 +595,18 @@ if ! systemd-detect-virt -qc && [[ "$opt_p" == "aws" ]]; then
 	generate_interface_to_mac_address_map
 fi
 
+#
+# Check if DIR_MODE is present (either commented or uncommented) in file where new user
+# configurations are stored If DIR_MODE is found, update its value to 0750 (uncomment if needed)
+# If DIR_MODE is not found, add it to the file with value 0750
+#
+NEW_USER_FILE="/etc/adduser.conf"
+if grep -q "^#\?DIR_MODE" "$NEW_USER_FILE"; then
+	sed -i 's/^#\?DIR_MODE.*/DIR_MODE=0750/' "$NEW_USER_FILE"
+else
+	echo "DIR_MODE=0750" >>"$NEW_USER_FILE"
+fi
+
 #
 # We use a seperate ZFS dataset for GRUB, and this dataset is generally
 # not mounted when we update pacakges on the system.  Thus, when a new