WebSVN – ALCASAR – Diff – /scripts/sbin/alcasar-bypass.sh


#!/bin/bash
# $Id: alcasar-bypass.sh 1056 2013-03-26 21:46:36Z stephane $
 
# alcasar-bypass.sh
# by Franck BOUIJOUX and Richard REY
# This script is distributed under the Gnu General Public License (GPL)
 
# activation / désactivation du contournement de l'authentification et du filtrage WEB
# enable / disable the bypass of authenticate process and filtering
 
usage="Usage: alcasar-bypass.sh {--on or -on } | {--off or -off}"
SED="/bin/sed -i"
nb_args=$#
args=$1
if [ $nb_args -eq 0 ]
then
	nb_args=1
	args="-h"
fi
case $args in
	-\? | -h* | --h*)
		echo "$usage"
		exit 0
		;;
	--on | -on)	
		# activation du contournement
		for i in chilli squid dansguardian havp mysqld radiusd httpd freshclam dnsmasq
		do
			if  (pgrep $i) > /dev/null ; then /etc/init.d/$i stop ; fi
		done
		echo "Configure eth1 ..."
		cp /etc/sysconfig/network-scripts/default-ifcfg-eth1 /etc/sysconfig/network-scripts/ifcfg-eth1
		ifup eth1
		sh /usr/local/bin/alcasar-iptables-bypass.sh
		echo "Configure dnsmasq ..."
		$SED "s?^conf-dir=.*?#&?g" /etc/dnsmasq-blackhole.conf
		$SED "s?^no-dhcp-interface=.*?#&?g" /etc/dnsmasq.conf /etc/dnsmasq-blackhole.conf
		/etc/init.d/dnsmasq start
		echo "Le contournement des modules d'authentification de filtrage est activé"
		echo "les journaux de connexions continuent néanmoins d'être enregistrés"
		;;
	--off | -off)
		# désactivation du contournement
		if (pgrep dnsmasq) > /dev/null ; then /etc/init.d/dnsmasq stop ; fi
		echo "Configure dnsmasq ..."
		$SED "s?^#conf-dir=.*?conf-dir=/usr/local/etc/alcasar-dnsfilter-enabled?g" /etc/dnsmasq-blackhole.conf
		$SED "s?^#no-dhcp-interface=.*?no-dhcp-interface=eth1?g" /etc/dnsmasq.conf /etc/dnsmasq-blackhole.conf
		rm -f /etc/sysconfig/network-scripts/ifcfg-eth1
		for i in chilli squid dansguardian havp mysqld radiusd httpd freshclam dnsmasq	
		do
			if  ! (pgrep $i) > /dev/null ; then /etc/init.d/$i start ; fi
		done
		sh /usr/local/bin/alcasar-iptables.sh
		echo "L'authentification et le filtrage sont de nouveau activés"
;;
	*)
		echo "Argument inconnu :$1";
		echo "$usage"
		exit 1
		;;
esac
 

Rev 958	Rev 1056
1	`#!/bin/bash`	1	`#!/bin/bash`
2	`# $Id: alcasar-bypass.sh 958 2012-07-19 09:01:30Z franck $`	2	`# $Id: alcasar-bypass.sh 1056 2013-03-26 21:46:36Z stephane $`
3		3
4	`# alcasar-bypass.sh`	4	`# alcasar-bypass.sh`
5	`# by Franck BOUIJOUX and Richard REY`	5	`# by Franck BOUIJOUX and Richard REY`
6	`# This script is distributed under the Gnu General Public License (GPL)`	6	`# This script is distributed under the Gnu General Public License (GPL)`
7		7
8	`# activation / désactivation du contournement de l'authentification et du filtrage WEB`	8	`# activation / désactivation du contournement de l'authentification et du filtrage WEB`
9	`# enable / disable the bypass of authenticate process and filtering`	9	`# enable / disable the bypass of authenticate process and filtering`
10		10
11	`usage="Usage: alcasar-bypass.sh {--on or -on } \| {--off or -off}"`	11	`usage="Usage: alcasar-bypass.sh {--on or -on } \| {--off or -off}"`
12	`SED="/bin/sed -i"`	12	`SED="/bin/sed -i"`
13	`nb_args=$#`	13	`nb_args=$#`
14	`args=$1`	14	`args=$1`
15	`if [ $nb_args -eq 0 ]`	15	`if [ $nb_args -eq 0 ]`
16	`then`	16	`then`
17	`nb_args=1`	17	`nb_args=1`
18	`args="-h"`	18	`args="-h"`
19	`fi`	19	`fi`
20	`case $args in`	20	`case $args in`
21	`-\? \| -h* \| --h*)`	21	`-\? \| -h* \| --h*)`
22	`echo "$usage"`	22	`echo "$usage"`
23	`exit 0`	23	`exit 0`
24	`;;`	24	`;;`
25	`--on \| -on)`	25	`--on \| -on)`
26	`# activation du contournement`	26	`# activation du contournement`
27	`for i in chilli squid dansguardian havp mysqld radiusd httpd freshclam dnsmasq`	27	`for i in chilli squid dansguardian havp mysqld radiusd httpd freshclam dnsmasq`
28	`do`	28	`do`
29	`if (pgrep $i) > /dev/null ; then /etc/init.d/$i stop ; fi`	29	`if (pgrep $i) > /dev/null ; then /etc/init.d/$i stop ; fi`
30	`done`	30	`done`
31	`echo "Configure eth1 ..."`	31	`echo "Configure eth1 ..."`
32	`cp /etc/sysconfig/network-scripts/default-ifcfg-eth1 /etc/sysconfig/network-scripts/ifcfg-eth1`	32	`cp /etc/sysconfig/network-scripts/default-ifcfg-eth1 /etc/sysconfig/network-scripts/ifcfg-eth1`
33	`ifup eth1`	33	`ifup eth1`
34	`sh /usr/local/bin/alcasar-iptables-bypass.sh`	34	`sh /usr/local/bin/alcasar-iptables-bypass.sh`
35	`echo "Configure dnsmasq ..."`	35	`echo "Configure dnsmasq ..."`
36	`$SED "s?^conf-dir=.*?#&?g" /etc/dnsmasq-blackhole.conf`	36	`$SED "s?^conf-dir=.*?#&?g" /etc/dnsmasq-blackhole.conf`
37	`$SED "s?^no-dhcp-interface=.*?#&?g" /etc/dnsmasq.conf /etc/dnsmasq-blackhole.conf`	37	`$SED "s?^no-dhcp-interface=.*?#&?g" /etc/dnsmasq.conf /etc/dnsmasq-blackhole.conf`
38	`/etc/init.d/dnsmasq start`	38	`/etc/init.d/dnsmasq start`
39	`echo "Le contournement des modules d'authentification de filtrage est activé"`	39	`echo "Le contournement des modules d'authentification de filtrage est activé"`
40	`echo "les journaux de connexions continuent néanmoins d'être enregistrés"`	40	`echo "les journaux de connexions continuent néanmoins d'être enregistrés"`
41	`;;`	41	`;;`
42	`--off \| -off)`	42	`--off \| -off)`
43	`# désactivation du contournement`	43	`# désactivation du contournement`
44	`if (pgrep dnsmasq) > /dev/null ; then /etc/init.d/dnsmasq stop ; fi`	44	`if (pgrep dnsmasq) > /dev/null ; then /etc/init.d/dnsmasq stop ; fi`
45	`echo "Configure dnsmasq ..."`	45	`echo "Configure dnsmasq ..."`
46	`$SED "s?^#conf-dir=.*?conf-dir=/usr/local/etc/alcasar-dnsfilter-enabled?g" /etc/dnsmasq-blackhole.conf`	46	`$SED "s?^#conf-dir=.*?conf-dir=/usr/local/etc/alcasar-dnsfilter-enabled?g" /etc/dnsmasq-blackhole.conf`
47	`$SED "s?^#no-dhcp-interface=.*?no-dhcp-interface=eth1?g" /etc/dnsmasq.conf /etc/dnsmasq-blackhole.conf`	47	`$SED "s?^#no-dhcp-interface=.*?no-dhcp-interface=eth1?g" /etc/dnsmasq.conf /etc/dnsmasq-blackhole.conf`
48	`rm -f /etc/sysconfig/network-scripts/ifcfg-eth1`	48	`rm -f /etc/sysconfig/network-scripts/ifcfg-eth1`
49	`for i in chilli squid dansguardian havp mysqld radiusd httpd freshclam dnsmasq`	49	`for i in chilli squid dansguardian havp mysqld radiusd httpd freshclam dnsmasq`
50	`do`	50	`do`
51	`if ! (pgrep $i) > /dev/null ; then /etc/init.d/$i start ; fi`	51	`if ! (pgrep $i) > /dev/null ; then /etc/init.d/$i start ; fi`
52	`done`	52	`done`
53	`sh /usr/local/bin/alcasar-iptables.sh`	53	`sh /usr/local/bin/alcasar-iptables.sh`
54	`echo "L'authentification et le filtrage sont de nouveau activés"`	54	`echo "L'authentification et le filtrage sont de nouveau activés"`
55	`;;`	55	`;;`
56	`*)`	56	`*)`
57	`echo "Argument inconnu :$1";`	57	`echo "Argument inconnu :$1";`
58	`echo "$usage"`	58	`echo "$usage"`
59	`exit 1`	59	`exit 1`
60	`;;`	60	`;;`
61	`esac`	61	`esac`
62		62

Subversion Repositories ALCASAR

(root)/scripts/sbin/alcasar-bypass.sh – Rev 958 → 1056