| 1 |
#!/bin/bash
|
1 |
#!/bin/bash
|
| 2 |
# $Id: alcasar-bypass.sh 1520 2014-12-17 18:10:26Z richard $
|
2 |
# $Id: alcasar-bypass.sh 1521 2014-12-17 22:57:44Z richard $
|
| 3 |
|
3 |
|
| 4 |
# alcasar-bypass.sh
|
4 |
# alcasar-bypass.sh
|
| 5 |
# by 3abtux and Rexy
|
5 |
# by 3abtux and Rexy
|
| 6 |
# This script is distributed under the Gnu General Public License (GPL)
|
6 |
# This script is distributed under the Gnu General Public License (GPL)
|
| 7 |
|
7 |
|
| 8 |
# activation / désactivation du contournement de l'authentification et du filtrage WEB
|
8 |
# activation / désactivation du contournement de l'authentification et du filtrage WEB
|
| 9 |
# enable / disable the bypass of authenticate process and filtering
|
9 |
# enable / disable the bypass of authenticate process and filtering
|
| 10 |
|
10 |
|
| 11 |
usage="Usage: alcasar-bypass.sh {--on or -on } | {--off or -off}"
|
11 |
usage="Usage: alcasar-bypass.sh {--on or -on } | {--off or -off}"
|
| 12 |
SED="/bin/sed -i"
|
12 |
SED="/bin/sed -i"
|
| 13 |
CONF_FILE="/usr/local/etc/alcasar.conf"
|
13 |
CONF_FILE="/usr/local/etc/alcasar.conf"
|
| 14 |
INTIF=`grep ^INTIF= $CONF_FILE|cut -d"=" -f2` # INTernal InterFace
|
14 |
INTIF=`grep ^INTIF= $CONF_FILE|cut -d"=" -f2` # INTernal InterFace
|
| 15 |
|
15 |
|
| 16 |
nb_args=$#
|
16 |
nb_args=$#
|
| 17 |
args=$1
|
17 |
args=$1
|
| 18 |
if [ $nb_args -eq 0 ]
|
18 |
if [ $nb_args -eq 0 ]
|
| 19 |
then
|
19 |
then
|
| 20 |
nb_args=1
|
20 |
nb_args=1
|
| 21 |
args="-h"
|
21 |
args="-h"
|
| 22 |
fi
|
22 |
fi
|
| 23 |
case $args in
|
23 |
case $args in
|
| 24 |
-\? | -h* | --h*)
|
24 |
-\? | -h* | --h*)
|
| 25 |
echo "$usage"
|
25 |
echo "$usage"
|
| 26 |
exit 0
|
26 |
exit 0
|
| 27 |
;;
|
27 |
;;
|
| 28 |
--on | -on)
|
28 |
--on | -on)
|
| 29 |
/usr/local/sbin/alcasar-logout.sh all
|
29 |
/usr/local/sbin/alcasar-logout.sh all
|
| 30 |
for i in chilli
|
30 |
/usr/bin/systemctl stop chilli
|
| 31 |
do
|
- |
|
| 32 |
if (pgrep $i) > /dev/null ; then /usr/bin/systemctl stop $i.service ; fi
|
- |
|
| 33 |
done
|
- |
|
| 34 |
cp /etc/sysconfig/network-scripts/default-ifcfg-$INTIF /etc/sysconfig/network-scripts/ifcfg-$INTIF
|
31 |
cp /etc/sysconfig/network-scripts/default-ifcfg-$INTIF /etc/sysconfig/network-scripts/ifcfg-$INTIF
|
| 35 |
ifup $INTIF
|
32 |
ifup $INTIF
|
| 36 |
sh /usr/local/bin/alcasar-iptables-bypass.sh
|
33 |
sh /usr/local/bin/alcasar-iptables-bypass.sh
|
| 37 |
$SED "s?^no-dhcp-interface.*?#&?g" /etc/dnsmasq.conf # dnsmasq become the DHCP server
|
34 |
$SED "s?^no-dhcp-interface.*?#&?g" /etc/dnsmasq.conf # dnsmasq become the DHCP server
|
| 38 |
/usr/bin/systemctl restart dnsmasq
|
35 |
/usr/bin/systemctl restart dnsmasq
|
| 39 |
rm -f /etc/cron.d/alcasar-daemon-watchdog # don't restart daemons (specially coova)
|
36 |
rm -f /etc/cron.d/alcasar-daemon-watchdog # don't restart daemons (specially coova)
|
| 40 |
echo "ALCASAR est en mode 'bypass'"
|
37 |
echo "ALCASAR est en mode 'bypass'"
|
| 41 |
echo "ALCASAR is in 'bypass' mode"
|
38 |
echo "ALCASAR is in 'bypass' mode"
|
| 42 |
;;
|
39 |
;;
|
| 43 |
--off | -off)
|
40 |
--off | -off)
|
| 44 |
$SED "s?^#no-dhcp-interface=$INTIF?no-dhcp-interface=$INTIF?g" /etc/dnsmasq.conf
|
41 |
$SED "s?^#no-dhcp-interface=$INTIF?no-dhcp-interface=$INTIF?g" /etc/dnsmasq.conf
|
| 45 |
$SED "s?^#no-dhcp-interface=tun0?no-dhcp-interface=tun0?g" /etc/dnsmasq.conf
|
42 |
$SED "s?^#no-dhcp-interface=tun0?no-dhcp-interface=tun0?g" /etc/dnsmasq.conf
|
| 46 |
$SED "s?^#no-dhcp-interface=lo?no-dhcp-interface=lo?g" /etc/dnsmasq.conf
|
43 |
$SED "s?^#no-dhcp-interface=lo?no-dhcp-interface=lo?g" /etc/dnsmasq.conf
|
| 47 |
systemctl restart dnsmasq
|
44 |
systemctl restart dnsmasq
|
| 48 |
rm -f /etc/sysconfig/network-scripts/ifcfg-$INTIF
|
45 |
rm -f /etc/sysconfig/network-scripts/ifcfg-$INTIF
|
| 49 |
/usr/bin/systemctl start chilli
|
46 |
/usr/bin/systemctl start chilli
|
| 50 |
sh /usr/local/bin/alcasar-iptables.sh
|
47 |
sh /usr/local/bin/alcasar-iptables.sh
|
| 51 |
# activation of the "daemon-watchdog" every 18'
|
48 |
# activation of the "daemon-watchdog" every 18'
|
| 52 |
cat << EOF > /etc/cron.d/alcasar-daemon-watchdog
|
49 |
cat << EOF > /etc/cron.d/alcasar-daemon-watchdog
|
| 53 |
# activation du "chien de garde" (daemon-watchdog) toutes les 18'
|
50 |
# activation du "chien de garde" (daemon-watchdog) toutes les 18'
|
| 54 |
*/18 * * * * root $DIR_DEST_BIN/alcasar-daemon.sh > /dev/null 2>&1
|
51 |
*/18 * * * * root /usr/local/bin/alcasar-daemon.sh > /dev/null 2>&1
|
| 55 |
EOF
|
52 |
EOF
|
| 56 |
echo "L'authentification et le filtrage sont actifs"
|
53 |
echo "L'authentification et le filtrage sont actifs"
|
| 57 |
echo "Authentication and filtering system are enabled"
|
54 |
echo "Authentication and filtering system are enabled"
|
| 58 |
;;
|
55 |
;;
|
| 59 |
*)
|
56 |
*)
|
| 60 |
echo "Argument inconnu :$1";
|
57 |
echo "Argument inconnu :$1";
|
| 61 |
echo "$usage"
|
58 |
echo "$usage"
|
| 62 |
exit 1
|
59 |
exit 1
|
| 63 |
;;
|
60 |
;;
|
| 64 |
esac
|
61 |
esac
|
| 65 |
|
62 |
|