WebSVN – ALCASAR – Diff – /scripts/alcasar-uninstall.sh

 #!/bin/bash
-# $Id: alcasar-uninstall.sh 2956 2021-05-24 19:57:17Z rexy $
+# $Id: alcasar-uninstall.sh 2971 2021-07-14 15:58:57Z rexy $
 # alcasar-uninstall.sh
 # by Franck BOUIJOUX, Pascal LEVANT and Richard REY
 # This script is distributed under the Gnu General Public License (GPL)
         [ -e /etc/raddb/mods-enabled/$mods ] && rm /etc/raddb/mods-enabled/$mods && echo -n "$i, "
 	done
 	[ -e /etc/raddb/mods-available/sql.default ] && mv /etc/raddb/mods-available/sql.default /etc/raddb/mods-available/sql && echo -n "19, "
 	[ -e /etc/raddb/mods-config/sql/main/mysql/queries.conf.default ] && mv /etc/raddb/mods-config/sql/main/mysql/queries.conf.default /etc/raddb/mods-config/sql/main/mysql/queries.conf && echo -n "20, "
 	[ -e /etc/raddb/mods-available/sqlcounter.default ] && mv /etc/raddb/mods-available/sqlcounter.default /etc/raddb/mods-available/sqlcounter && echo -n "21, "
-	if [ -e /etc/systemd/system/radiusd.service ]
+	if [ -e /etc/systemd/system/radiusd.service ]; then
-		then
 		rm -f /etc/systemd/system/radiusd.service
 		echo -n "22"
 	fi
+}
 e2guardian ()
+{
 	echo -en "(15) : "
 	[ -d /var/e2guardian ] && rm -rf /var/e2guardian
 	[ -d /var/dansguardian ] && rm -rf /var/dansguardian
-	if [ -e /etc/systemd/system/e2guardian.service ]
+	if [ -e /etc/systemd/system/e2guardian.service ]; then
-	then
 		rm -f /etc/systemd/system/e2guardian.service
 		echo -n "1, "
 	fi
     [ -e /etc/e2guardian/e2guardian.conf.default ] && mv /etc/e2guardian/e2guardian.conf.default /etc/e2guardian/e2guardian.conf && echo -n "2, "
 	[ -e /etc/e2guardian/lists/bannedphraselist.default ] && mv /etc/e2guardian/lists/bannedphraselist.default /etc/e2guardian/lists/bannedphraselist && echo -n "3, "
+}
 antivirus ()
+{
 	echo -en "(4) : "
-	if [ -e /etc/systemd/system/clamav-daemon.service ]
+	if [ -e /etc/systemd/system/clamav-daemon.service ]; then
-	then
 		rm -f /etc/systemd/system/clamav-daemon.service
 		echo -n "1, "
 	fi
-	if [ -e /etc/systemd/system/clamav-daemon.socket ]
+	if [ -e /etc/systemd/system/clamav-daemon.socket ]; then
-	then
 		rm -f /etc/systemd/system/clamav-daemon.socket
 		echo -n "2, "
 	fi
 	[ -e /etc/clamd.conf.default ] && mv /etc/clamd.conf.default /etc/clamd.conf && echo -n "3, "
 	[ -e /etc/freshclam.conf.default ] && mv /etc/freshclam.conf.default /etc/freshclam.conf && echo -n "4"
 vnstat ()
+{
 	echo -en "(2) : "
 	[ -e /etc/vnstat.conf.default ] && mv /etc/vnstat.conf.default /etc/vnstat.conf && echo -n "1, "
-	if [ -e /etc/systemd/system/vnstat.service ]
+	if [ -e /etc/systemd/system/vnstat.service ]; then
-	then
 		rm -f /etc/systemd/system/vnstat.service
 		echo -n "2"
 	fi
+}
 dnsmasq ()
+{
 	echo -en "(3) : "
 	[ -e /etc/dnsmasq.conf.default ] && mv /etc/dnsmasq.conf.default /etc/dnsmasq.conf && echo -n "1, "
 	[ -e /etc/dnsmasq-whitelist.conf ] && rm /etc/dnsmasq-whitelist.conf && echo -n "2, "
-	if [ -e /etc/systemd/system/dnsmasq-whitelist.service ]
+	if [ -e /etc/systemd/system/dnsmasq-whitelist.service ]; then
-	then
 		rm -f /etc/systemd/system/dnsmasq-whitelist.service
 		echo -n "3, "
 	fi
+}
 			rm -f /etc/systemd/system/unbound-$list.service
 			echo -n "$i, "
 		fi
 		i=`expr $i + 1`
 	done
-	if [ -e /etc/systemd/system/unbound.service ]
+	if [ -e /etc/systemd/system/unbound.service ]; then
-	then
 		rm -f /etc/systemd/system/unbound.service
 		echo -n "9"
 	fi
+}
 	for jail in `ls /etc/fail2ban/jail.d/*alcasar_* 2>/dev/null`
 	do
 		i=`expr $i + 1`
 		rm $jail && echo -n "$i, "
 	done
-	if [ -e /etc/systemd/system/fail2ban.service ]
+	if [ -e /etc/systemd/system/fail2ban.service ]; then
-	then
 		rm -f /etc/systemd/system/fail2ban.service
 		echo -n "11"
 	fi
+}
+}
 msec ()
+{
 	echo -en "(2) : "
-	if [ -e /etc/security/msec/security.conf ]
+	if [ -e /etc/security/msec/security.conf ]; then
-	then
 		[ -e /etc/security/msec/security.conf.default ] && mv /etc/security/msec/security.conf.default /etc/security/msec/security.conf && echo -n "1, "
 		[ -e /etc/security/msec/perm.local ] && rm -f /etc/security/msec/perm.local && echo -n "2"
+	else
-	else	echo -n "uninstalled"
+		echo -n "uninstalled"
 	fi
+}
 letsencrypt ()
+{
 usage="Usage: alcasar-uninstall.sh {-update or --update} | {-full or --full}"
 nb_args=$#
 args=$1
-if [ $nb_args -eq 0 ]
+if [ $nb_args -eq 0 ]; then
-then
 	nb_args=1
 	args="-h"
 fi
 case $args in
 	-\? | -h* | --h*)
 		echo "$usage"
 		exit 1
 		;;
 esac
 clear
-if [ $mode == "full" ]
+if [ $mode == "full" ]; then
-then
 	echo "----------------------------------------------------------------------------"
 	echo "**                     Uninstall/Désinstallation d'ALCASAR		**"
 	echo "----------------------------------------------------------------------------"
 	services="vnstat clamav-daemon clamav-freshclam ntpd php-fpm lighttpd radiusd mysqld unbound unbound-blacklist unbound-whitelist dnsmasq-whitelist unbound-blackhole nfcapd fail2ban iptables ulogd-ext-access ulogd-ssh ulogd-traceability e2guardian sshd chilli"
 	/usr/local/bin/alcasar-logout.sh all # logout everybody
 [ -e /etc/cron.d/alcasar-daemon-watchdog ] && rm -f /etc/cron.d/alcasar-daemon-watchdog
 /usr/local/bin/alcasar-sms.sh --stop
 for i in $services
 do
 	service_exist=`systemctl list-unit-files | grep ^$i.service | wc -l`
-	if [ $service_exist -eq 1 ]
+	if [ $service_exist -eq 1 ]; then
-	then
 		/usr/bin/systemctl disable $i.service
 		/usr/bin/systemctl stop $i.service 1>/dev/null
 		sleep 1
 	else
 		echo "The service $i.service doesn't exist !"
 	fi
 done
 echo "Check the service clearing"
 for i in $services
 do
-	if [ `systemctl is-active $i.service` == "active" ]
+	if [ `systemctl is-active $i.service` == "active" ]; then
-	then
 		echo "The service '$i' need to be killed"
 		/usr/bin/systemctl stop $i.service
 		killall $i
 	fi
 done
-if [ $mode == "update" ] # reload sshd in case of remote update
-then
-	/usr/bin/systemctl reload sshd
+[ $mode == "update" ] && /usr/bin/systemctl reload sshd # reload sshd in case of remote update
-fi
 echo "Reset ALCASAR main functions : "
 for func in init ACC CA time_server init_db freeradius chilli e2guardian antivirus ulogd nfsen vnstat unbound dnsmasq dhcpd cron fail2ban gammu_smsd msec letsencrypt post_install
 do
 	echo -en "\n- $func "
 	$func
-	if [ $DEBUG_ALCASAR == "on" ]
+	if [ $DEBUG_ALCASAR == "on" ]; then
-	then
 		echo -n " *** 'debug' : end of cleaning '$func' *** "
 		read a
 	fi
 done
-if [ $mode == "full" ]
+if [ $mode == "full" ]; then
-then
 	echo -en "\n- network(10) : "
 	hostnamectl set-hostname localhost.localdomain
 	chmod a-x /etc/sysconfig/network-scripts/default-*
 	i=0
 	for nic in `ls /etc/sysconfig/network-scripts/default-*|cut -d'-' -f4`
 	[ -e /etc/sysconfig/network.default ] && mv -f /etc/sysconfig/network.default /etc/sysconfig/network && echo -n "3, "
 	[ -e /etc/hosts.default ] && mv -f /etc/hosts.default /etc/hosts && echo -n "4, "
 	[ -e /etc/hosts.allow.default ] && mv -f /etc/hosts.allow.default /etc/hosts.allow && echo -n "5, "
 	[ -e /etc/hosts.deny.default ] && mv -f /etc/hosts.deny.default /etc/hosts.deny && echo -n "6, "
 	[ -e /etc/modprobe.preload.default ] && mv -f /etc/modprobe.preload.default /etc/modprobe.preload && echo -n "7, "
-	if [ -e /etc/systemd/system/alcasar-network.service ]
+	if [ -e /etc/systemd/system/alcasar-network.service ]; then
--	then
--		rm -f /etc/systemd/system/alcasar-network.service
+		rm -f /etc/systemd/system/alcasar-network.service
--		echo -n "8, "
+		echo -n "8, "
--	fi
+	fi
-	if [ -e /etc/systemd/system/iptables.service ]
+	if [ -e /etc/systemd/system/iptables.service ]; then
-	then
 		rm -f /etc/systemd/system/iptables.service
 		echo -n "9, "
 	fi
 	[ -e /usr/libexec/iptables.init.default ] && mv -f /usr/libexec/iptables.init.default /usr/libexec/iptables.init && echo -n "10"
 	/usr/bin/systemctl restart network
 	sleep 1
 fi
 # Reset "skip.list" (we keep "kernel" in order not to download kernel we don't want to have)
 echo "/^kernel/" > /etc/urpmi/skip.list
+if [ `egrep '^exclude=' /etc/dnf/dnf.conf |wc -l` -eq "1" ]; then
+	$SED "s?^exclude=.*?exclude=kernel\*?g" /etc/dnf/dnf.conf
+else
-$SED "/^exclude/d" /etc/dnf/dnf.conf
+	echo "exclude=kernel*" >> /etc/dnf/dnf.conf
+fi
 # Cleaning (remove all "old" alcasar scripts)
 echo -en "\n- End of cleaning ...\n"
 for rm_fic in /usr/local/bin /usr/local/etc /usr/local/sbin
 do
 	rm -rf $rm_fic/alcasar*
 done
 /usr/bin/update-grub2
-if [ $mode == "full" ]
+if [ $mode == "full" ]; then
-then
 	echo -n "Waiting for Network to be up again : "
 	i=0
 	while [ $i -lt 10 ] # We wait 10 seconds max
 	do
 		echo -n "."
 		DNS1=`grep ^nameserver /etc/resolv.conf|awk -F" " '{print $2}'|head -n 1`
-		if [ "$DNS1" != "" ] && [ "$DNS1" != "127.0.0.1" ]
+		if [ "$DNS1" != "" ] && [ "$DNS1" != "127.0.0.1" ]; then
-		then
 			i=9
 			echo -n "ok"
 		fi
 		i=`expr $i + 1`
 		sleep 1

Subversion Repositories ALCASAR

(root)/scripts/alcasar-uninstall.sh – Rev 2956 → 2971