Subversion Repositories ALCASAR

Compare Revisions

No changes between revisions

Ignore whitespace Rev 70 → Rev 71

/alcasar.sh
28,6 → 28,7
# param_chilli : Configuration du daemon 'coova-chilli' et de la page d'authentification
# param_squid : Configuration du proxy squid en mode 'cache'
# param_dansguardian : Configuration de l'analyseur de contenu DansGuardian
# antivius : Installation havp + clamav
# firewall : Mise en place des règles du parefeu et de l'interface WEB FirewallEyes
# param_awstats : Configuration de l'interface des statistiques de consultation WEB
# bind : Configuration du serveur de noms
451,10 → 452,13
[ -d $DIR_SAVE/$i ] || mkdir -p $DIR_SAVE/$i
done
chown -R root:apache $DIR_SAVE
# Configuration php
# Configuration et sécurisation php
[ -e /etc/php.ini.default ] || cp /etc/php.ini /etc/php.ini.default
$SED "s?^upload_max_filesize.*?upload_max_filesize = 20M?g" /etc/php.ini
$SED "s?^post_max_size.*?post_max_size = 20M?g" /etc/php.ini
# Configuration Apache
$SED "s?^html_errors.*?html_errors = Off?g" /etc/php.ini
$SED "s?^expose_php.*?expose_php = Off?g" /etc/php.ini
# Configuration et sécurisation Apache
[ -e /etc/httpd/conf/httpd.conf.default ] || cp /etc/httpd/conf/httpd.conf /etc/httpd/conf/httpd.conf.default
$SED "s?^#ServerName.*?ServerName $PRIVATE_IP?g" /etc/httpd/conf/httpd.conf
$SED "s?^Listen.*?#Listen 127.0.0.1:80?g" /etc/httpd/conf/httpd.conf
913,6 → 917,27
chmod -R g+rw /etc/dansguardian
} # End of param_dansguardian ()
 
##################################################################
## Fonction antivirus ##
## - mise en place havp + clamav ##
##################################################################
antivirus ()
{
# création de la partition de stockage temporaire (100Mo)
useradd -r havp
dd if=/dev/zero of=/tmp/havp-disk bs=1024k count=30
mkfs.ext4 -qF /tmp/havp-disk
mkdir /var/tmp/havp
chown havp:havp /var/tmp/havp
echo "# Entry for havp tmp files scan partition" >> /etc/fstab
echo "/tmp/havp-disk /var/tmp/havp ext4 loop,mand,noatime,async" >> /etc/fstab
cp $DIR_CONF/havp/havp $DIR_DEST_SBIN
cp -r $DIR_CONF/havp/etc/havp $DIR_DEST_ETC
cp $DIR_CONF/havp/etc/init.d/havp /etc/init.d/
chkconfig --level 345 havp on
chkconfig --level 01267 havp off
}
 
##################################################################################
## Fonction firewall ##
## - adaptation des scripts du parefeu ##
1255,7 → 1280,7
else
mode="install"
fi
for func in init network gestion AC init_db param_radius param_web_radius param_chilli param_squid param_dansguardian firewall param_awstats param_bind cron post_install
for func in init network gestion AC init_db param_radius param_web_radius param_chilli param_squid param_dansguardian antivirus firewall param_awstats param_bind cron post_install
do
$func
# echo "*** 'debug' : end of function $func ***"; read a
/scripts/sbin/alcasar-uninstall.sh
35,11 → 35,12
[ -e /etc/hosts.deny.default ] && mv /etc/hosts.deny.default /etc/hosts.deny && echo -n "9"
sleep 1
# gestion
echo -en "\n-3 gestion(4) : "
echo -en "\n-3 gestion(5) : "
[ -d /var/www/html ] && rm -rf /var/www/html && echo -n "1, "
[ -e /etc/httpd/conf/httpd.conf.default ] && mv /etc/httpd/conf/httpd.conf.default /etc/httpd/conf/httpd.conf && echo -n "2, "
[ -e /etc/httpd/conf/webapps.d/alcasar.conf ] && rm -f /etc/httpd/conf/webapps.d/alcasar.conf && echo -n "3, "
[ -e /var/www/error/include/bottom.html.default ] && mv /var/www/error/include/bottom.html.default /var/www/error/include/bottom.html && echo -n "4 "
[ -e /etc/php.ini.default ] && mv /etc/php.ini.default /etc/php.ini && echo -n "3, "
[ -e /etc/httpd/conf/webapps.d/alcasar.conf ] && rm -f /etc/httpd/conf/webapps.d/alcasar.conf && echo -n "4, "
[ -e /var/www/error/include/bottom.html.default ] && mv /var/www/error/include/bottom.html.default /var/www/error/include/bottom.html && echo -n "5 "
sleep 1
# CA
echo -en "\n-4 AC(4) : "
97,16 → 98,26
[ -e /etc/dansguardian/lists/bannedsitelist.default ] && mv /etc/dansguardian/lists/bannedsitelist.default /etc/dansguardian/lists/bannedsitelist && echo -n "9, "
[ -d /etc/dansguardian/lists/blacklists.default ] && mv -f /etc/dansguardian/lists/blacklists.default /etc/dansguardian/lists/blacklists && echo -n "10"
sleep 1
#antivirus
echo -en "\n-11 antivirus(5) : "
chkconfig --del havp && echo -n "1, "
umount /var/tmp/havp && echo -n "2, "
rmdir /var/tmp/havp && echo -n "3, "
rm -f /tmp/havp-disk && echo -n "4, "
$SED "/^# Entry for havp/d" /etc/fstab
$SED "/^\/tmp\/havp-disk/d" /etc/fstab && echo -n "5, "
userdel havp && echo -n "6"
sleep 1
#firewall
echo -en "\n-11 firewall(1) : "
echo -en "\n-12 firewall(1) : "
[ -e /etc/sysconfig/iptables ] && rm -f /etc/sysconfig/iptables && echo -n "1"
sleep 1
#awstats
echo -en "\n-12 awstats(1) : "
echo -en "\n-13 awstats(1) : "
[ -e /etc/awstats/awstats.conf.default ] && mv /etc/awstats/awstats.conf.default /etc/awstats/awstats.conf && echo -n "1"
sleep 1
#Bind
echo -en "\n-13 bind(4) : "
echo -en "\n-14 bind(4) : "
[ -e /var/lib/named/etc/named.conf.default ] && mv /var/lib/named/etc/named.conf.default /var/lib/named/etc/named.conf && echo -n "1, "
[ -e /var/lib/named/etc/trusted_networks_acl.conf.default ] && mv /var/lib/named/etc/trusted_networks_acl.conf.default /var/lib/named/etc/trusted_networks_acl.conf && echo -n "2, "
[ -e /var/lib/named/var/named/master/localdomain.zone.default ] && mv /var/lib/named/var/named/master/localdomain.zone.default /var/lib/named/var/named/master/localdomain.zone && echo -n "3, "
113,7 → 124,7
[ -e /var/lib/named/var/named/reverse/localdomain.rev ] && rm /var/lib/named/var/named/reverse/localdomain.rev && echo -n "4"
sleep 1
#cron
echo -en "\n-13 cron(9) : "
echo -en "\n-15 cron(9) : "
[ -e /etc/crontab.default ] && mv /etc/crontab.default /etc/crontab && echo -n "1, "
[ -e /etc/anacrontab.default ] && mv /etc/anacrontab.default /etc/anacrontab && echo -n "2, "
[ -e /etc/cron.d/mysql ] && rm -f /etc/cron.d/mysql && echo -n "3, "
129,7 → 140,7
[ -e /etc/raddb/ldap.default ] && mv /etc/raddb/ldap.default /etc/raddb/modules/ldap
sleep 1
#post_install
echo -en "\n-14 post_install(11) : "
echo -en "\n-16 post_install(11) : "
[ -e /etc/mandriva-release.default ] && mv /etc/mandriva-release.default /etc/mandriva-release && echo -n "1, "
[ -e /etc/ssh/alcasar-banner-ssh ] && rm -f /etc/ssh/alcasar-banner-ssh && echo -n "2, "
[ -e /etc/ssh/sshd_config.default ] && mv /etc/ssh/sshd_config.default /etc/ssh/sshd_config && echo -n "3, "
/scripts/sbin/alcasar-havp.sh
0,0 → 1,39
#/bin/sh
# Gestion Havp / Clamav
SED="/bin/sed -i"
usage="Usage: alcasar-havp.sh -on | -off | -update"
nb_args=$#
args=$1
if [ $nb_args -eq 0 ]
then
nb_args=1
args="-h"
fi
case $args in
-\? | -h* | --h*)
echo "$usage"
exit 0
;;
-on)
# activation havp
$SED "s/^proxyport =.*/proxyport = 8090/g" /etc/dansguardian/dansguardian.conf
service dansguardian reload
service havp start
;;
-off)
# désactivation du filtrage
$SED "s/^proxyport =.*/proxyport = 3128/g" /etc/dansguardian/dansguardian.conf
service dansguardian reload
service havp stop
;;
-update)
#mise à jour de la base de signature
freshclam
;;
*)
echo "Argument inconnu :$1";
echo "$usage"
exit 1
;;
esac
 
Property changes:
Added: svn:eol-style
+native
\ No newline at end of property
Added: svn:executable
+*
\ No newline at end of property
/gestion/menu.php
142,7 → 142,7
fputs($fp, "$nb\n");
fclose($fp);
?>
<br>depuis le 23/12/2009<br></center></td></tr>
<br>depuis le 99/99/9999<br></center></td></tr>
</TABLE>
</td></tr>
</TABLE>