WebSVN – ALCASAR – Diff – /alcasar.sh



#!/bin/bash
#  $Id: alcasar.sh 1003 2013-01-03 18:53:02Z richard $ 
 
# alcasar.sh
 
# ALCASAR - Portail captif d'accès à l'Internet -  Copyright (C) [2005] [ALcasar team - Rexy - 3abtux - ...] 
# Ce programme est un logiciel libre ; vous pouvez le redistribuer et/ou le modifier au titre des clauses de la Licence Publique Générale GNU, 

	echo "$grubpwd" >> $PASSWD_FILE
	md5_grubpwd=`/usr/bin/md5pass $grubpwd`
	$SED "/^password.*/d" /boot/grub/menu.lst
	$SED "1ipassword --md5 $md5_grubpwd" /boot/grub/menu.lst
	mysqlpwd=`cat /dev/urandom | tr -dc [:alnum:] | head -c8`	# mot de passe de l'administrateur Mysqld
	echo -n "Name and password of Mysql/mariadb administrator : " >> $PASSWD_FILE
	echo "root / $mysqlpwd" >> $PASSWD_FILE
	radiuspwd=`cat /dev/urandom | tr -dc [:alnum:] | head -c8`	# mot de passe de l'utilisateur Mysqld (utilisé par freeradius)
	echo -n "Name and password of Mysql/mariadb user : " >> $PASSWD_FILE
	echo "$DB_USER / $radiuspwd" >> $PASSWD_FILE
	secretuam=`cat /dev/urandom | tr -dc [:alnum:] | head -c8`	# secret partagé entre intercept.php et coova-chilli
	echo -n "Shared secret between the script 'intercept.php' and coova-chilli : " >> $PASSWD_FILE
	echo "$secretuam" >> $PASSWD_FILE
	secretradius=`cat /dev/urandom | tr -dc [:alnum:] | head -c8`	# secret partagé entre coova-chilli et FreeRadius

#"(^http://[0-9a-z]+\.bing\.[a-z]+[-/%.0-9a-z]*\?)(.*)"->"\1\2&adlt=strict"
# Youtube - add 'edufilter=your_ID' 
#"(^http://[0-9a-z]+\.youtube\.[a-z]+[-/%.0-9a-z]*\?)(.*)"->"\1\2&edufilter=ABCD1234567890abcdef"
EOF
# change the the google safesearch ("safe=strict" instead of "safe=vss")
	$SED "s?safe=vss?safe=strict?g" $DIR_DG/lists/urlregexplist
	chown -R dansguardian:apache $DIR_DG
	chmod -R g+rw $DIR_DG
# On crée la structure du DNS-blackhole :
  	mkdir $DIR_DEST_ETC/{alcasar-dnsfilter-available,alcasar-dnsfilter-enabled}
	chown -R 770 $DIR_DEST_ETC/{alcasar-dnsfilter-available,alcasar-dnsfilter-enabled}

/etc/pki/*				root.apache	750
EOF
	/usr/sbin/msec
# modification /etc/inittab
	[ -e /etc/inittab.default ] || cp /etc/inittab /etc/inittab.default
# We keep only 3 TTYs
	$SED "s?^4.*?#&?g" /etc/inittab
	$SED "s?^5.*?#&?g" /etc/inittab
	$SED "s?^6.*?#&?g" /etc/inittab
# switch to multi-users runlevel (instead of x11)
ln -sf /lib/systemd/system/multi-user.target /etc/systemd/system/default.target
$SED "s?^id.*?id:3:initdefault:?g" /etc/inittab
# On limite le temps d'attente de grub (3s) et on change la résolution d'écran
$SED "s?^timeout.*?timeout 3?g" /boot/grub/menu.lst
$SED "s?^kernel.*?& vga=791?g" /boot/grub/menu.lst
$SED "s? vga=791??2g" /boot/grub/menu.lst
# Remove unused services and users
for svc in alsa sound dm atd bootlogd stop-bootlogd
do
	/sbin/chkconfig --del $svc
done
for rm_users in avahi-autoipd avahi icapd

			mode="install"
		fi
		for func in init network gestion AC init_db param_radius param_web_radius param_chilli param_squid param_dansguardian antivirus param_ulogd param_awstats param_dnsmasq BL cron post_install
		do
			$func
 echo "*** 'debug' : end of function $func ***"; read a
		done
		;;
	-u | --uninstall)
		if [ ! -e $DIR_DEST_SBIN/alcasar-uninstall.sh ]
		then

Rev 1000	Rev 1003
Line 1...	Line 1...
1	`#!/bin/bash`	1	`#!/bin/bash`
2	`# $Id: alcasar.sh 1000 2012-12-08 14:23:32Z richard $`	2	`# $Id: alcasar.sh 1003 2013-01-03 18:53:02Z richard $`
3		3
4	`# alcasar.sh`	4	`# alcasar.sh`
5		5
6	`# ALCASAR - Portail captif d'accès à l'Internet - Copyright (C) [2005] [ALcasar team - Rexy - 3abtux - ...]`	6	`# ALCASAR - Portail captif d'accès à l'Internet - Copyright (C) [2005] [ALcasar team - Rexy - 3abtux - ...]`
7	`# Ce programme est un logiciel libre ; vous pouvez le redistribuer et/ou le modifier au titre des clauses de la Licence Publique Générale GNU,`	7	`# Ce programme est un logiciel libre ; vous pouvez le redistribuer et/ou le modifier au titre des clauses de la Licence Publique Générale GNU,`
Line 269...	Line 269...
269	`echo "$grubpwd" >> $PASSWD_FILE`	269	`echo "$grubpwd" >> $PASSWD_FILE`
270	md5_grubpwd=`/usr/bin/md5pass $grubpwd`	270	md5_grubpwd=`/usr/bin/md5pass $grubpwd`
271	`$SED "/^password.*/d" /boot/grub/menu.lst`	271	`$SED "/^password.*/d" /boot/grub/menu.lst`
272	`$SED "1ipassword --md5 $md5_grubpwd" /boot/grub/menu.lst`	272	`$SED "1ipassword --md5 $md5_grubpwd" /boot/grub/menu.lst`
273	mysqlpwd=`cat /dev/urandom \| tr -dc [:alnum:] \| head -c8` # mot de passe de l'administrateur Mysqld	273	mysqlpwd=`cat /dev/urandom \| tr -dc [:alnum:] \| head -c8` # mot de passe de l'administrateur Mysqld
274	`echo -n "Name and password of MYSQL administrator : " >> $PASSWD_FILE`	274	`echo -n "Name and password of Mysql/mariadb administrator : " >> $PASSWD_FILE`
275	`echo "root / $mysqlpwd" >> $PASSWD_FILE`	275	`echo "root / $mysqlpwd" >> $PASSWD_FILE`
276	radiuspwd=`cat /dev/urandom \| tr -dc [:alnum:] \| head -c8` # mot de passe de l'utilisateur Mysqld (utilisé par freeradius)	276	radiuspwd=`cat /dev/urandom \| tr -dc [:alnum:] \| head -c8` # mot de passe de l'utilisateur Mysqld (utilisé par freeradius)
277	`echo -n "Name and password of MYSQL user : " >> $PASSWD_FILE`	277	`echo -n "Name and password of Mysql/mariadb user : " >> $PASSWD_FILE`
278	`echo "$DB_USER / $radiuspwd" >> $PASSWD_FILE`	278	`echo "$DB_USER / $radiuspwd" >> $PASSWD_FILE`
279	secretuam=`cat /dev/urandom \| tr -dc [:alnum:] \| head -c8` # secret partagé entre intercept.php et coova-chilli	279	secretuam=`cat /dev/urandom \| tr -dc [:alnum:] \| head -c8` # secret partagé entre intercept.php et coova-chilli
280	`echo -n "Shared secret between the script 'intercept.php' and coova-chilli : " >> $PASSWD_FILE`	280	`echo -n "Shared secret between the script 'intercept.php' and coova-chilli : " >> $PASSWD_FILE`
281	`echo "$secretuam" >> $PASSWD_FILE`	281	`echo "$secretuam" >> $PASSWD_FILE`
282	secretradius=`cat /dev/urandom \| tr -dc [:alnum:] \| head -c8` # secret partagé entre coova-chilli et FreeRadius	282	secretradius=`cat /dev/urandom \| tr -dc [:alnum:] \| head -c8` # secret partagé entre coova-chilli et FreeRadius
Line 1342...	Line 1342...
1342	`#"(^http://[0-9a-z]+\.bing\.[a-z]+[-/%.0-9a-z]\?)(.)"->"\1\2&adlt=strict"`	1342	`#"(^http://[0-9a-z]+\.bing\.[a-z]+[-/%.0-9a-z]\?)(.)"->"\1\2&adlt=strict"`
1343	`# Youtube - add 'edufilter=your_ID'`	1343	`# Youtube - add 'edufilter=your_ID'`
1344	`#"(^http://[0-9a-z]+\.youtube\.[a-z]+[-/%.0-9a-z]\?)(.)"->"\1\2&edufilter=ABCD1234567890abcdef"`	1344	`#"(^http://[0-9a-z]+\.youtube\.[a-z]+[-/%.0-9a-z]\?)(.)"->"\1\2&edufilter=ABCD1234567890abcdef"`
1345	`EOF`	1345	`EOF`
1346	`# change the the google safesearch ("safe=strict" instead of "safe=vss")`	1346	`# change the the google safesearch ("safe=strict" instead of "safe=vss")`
1347	`$SED "s?safe=vss?safe=strict?g" $DIR_DG/lists/urlregexlist`	1347	`$SED "s?safe=vss?safe=strict?g" $DIR_DG/lists/urlregexplist`
1348	`chown -R dansguardian:apache $DIR_DG`	1348	`chown -R dansguardian:apache $DIR_DG`
1349	`chmod -R g+rw $DIR_DG`	1349	`chmod -R g+rw $DIR_DG`
1350	`# On crée la structure du DNS-blackhole :`	1350	`# On crée la structure du DNS-blackhole :`
1351	`mkdir $DIR_DEST_ETC/{alcasar-dnsfilter-available,alcasar-dnsfilter-enabled}`	1351	`mkdir $DIR_DEST_ETC/{alcasar-dnsfilter-available,alcasar-dnsfilter-enabled}`
1352	`chown -R 770 $DIR_DEST_ETC/{alcasar-dnsfilter-available,alcasar-dnsfilter-enabled}`	1352	`chown -R 770 $DIR_DEST_ETC/{alcasar-dnsfilter-available,alcasar-dnsfilter-enabled}`
Line 1621...	Line 1621...
1621	`/etc/pki/* root.apache 750`	1621	`/etc/pki/* root.apache 750`
1622	`EOF`	1622	`EOF`
1623	`/usr/sbin/msec`	1623	`/usr/sbin/msec`
1624	`# modification /etc/inittab`	1624	`# modification /etc/inittab`
1625	`[ -e /etc/inittab.default ] \|\| cp /etc/inittab /etc/inittab.default`	1625	`[ -e /etc/inittab.default ] \|\| cp /etc/inittab /etc/inittab.default`
1626	`# On ne garde que 3 terminaux`	1626	`# We keep only 3 TTYs`
1627	`$SED "s?^4.*?#&?g" /etc/inittab`	1627	`$SED "s?^4.*?#&?g" /etc/inittab`
1628	`$SED "s?^5.*?#&?g" /etc/inittab`	1628	`$SED "s?^5.*?#&?g" /etc/inittab`
1629	`$SED "s?^6.*?#&?g" /etc/inittab`	1629	`$SED "s?^6.*?#&?g" /etc/inittab`
-		1630	`# switch to multi-users runlevel (instead of x11)`
-		1631	`ln -sf /lib/systemd/system/multi-user.target /etc/systemd/system/default.target`
-		1632	`$SED "s?^id.*?id:3:initdefault:?g" /etc/inittab`
1630	`# On limite le temps d'attente de grub (3s) et on change la résolution d'écran`	1633	`# On limite le temps d'attente de grub (3s) et on change la résolution d'écran`
1631	`$SED "s?^timeout.*?timeout 3?g" /boot/grub/menu.lst`	1634	`$SED "s?^timeout.*?timeout 3?g" /boot/grub/menu.lst`
1632	`$SED "s?^kernel.*?& vga=791?g" /boot/grub/menu.lst`	1635	`$SED "s?^kernel.*?& vga=791?g" /boot/grub/menu.lst`
1633	`$SED "s? vga=791??2g" /boot/grub/menu.lst`	1636	`$SED "s? vga=791??2g" /boot/grub/menu.lst`
1634	`# On supprime les services et les utilisateurs inutiles`	1637	`# Remove unused services and users`
1635	`for svc in alsa sound dm atd bootlogd stop-bootlogd`	1638	`for svc in alsa sound dm atd bootlogd stop-bootlogd`
1636	`do`	1639	`do`
1637	`/sbin/chkconfig --del $svc`	1640	`/sbin/chkconfig --del $svc`
1638	`done`	1641	`done`
1639	`for rm_users in avahi-autoipd avahi icapd`	1642	`for rm_users in avahi-autoipd avahi icapd`
Line 1810...	Line 1813...
1810	`mode="install"`	1813	`mode="install"`
1811	`fi`	1814	`fi`
1812	`for func in init network gestion AC init_db param_radius param_web_radius param_chilli param_squid param_dansguardian antivirus param_ulogd param_awstats param_dnsmasq BL cron post_install`	1815	`for func in init network gestion AC init_db param_radius param_web_radius param_chilli param_squid param_dansguardian antivirus param_ulogd param_awstats param_dnsmasq BL cron post_install`
1813	`do`	1816	`do`
1814	`$func`	1817	`$func`
1815	`# echo "* 'debug' : end of function $func *"; read a`	1818	`echo "* 'debug' : end of function $func *"; read a`
1816	`done`	1819	`done`
1817	`;;`	1820	`;;`
1818	`-u \| --uninstall)`	1821	`-u \| --uninstall)`
1819	`if [ ! -e $DIR_DEST_SBIN/alcasar-uninstall.sh ]`	1822	`if [ ! -e $DIR_DEST_SBIN/alcasar-uninstall.sh ]`
1820	`then`	1823	`then`

Subversion Repositories ALCASAR

(root)/alcasar.sh – Rev 1000 → 1003