909,7 → 909,7 |
} # End of ACC() |
|
################################################################## |
## Fonction "CA" ## |
## Fonction "CA" ## |
## - Creating the CA and the server certificate (lighttpd) ## |
################################################################## |
CA() |
1591,7 → 1591,10 |
server=$DNS2 |
EOF |
# Create dnsmasq-whitelist unit |
mv /lib/systemd/system/dnsmasq.service /lib/systemd/system/dnsmasq.service.default |
if [ "$mode" != "update" ] |
then |
mv /lib/systemd/system/dnsmasq.service /lib/systemd/system/dnsmasq.service.default |
fi |
cp /lib/systemd/system/dnsmasq.service.default /lib/systemd/system/dnsmasq-whitelist.service |
$SED "s?^ExecStart=.*?ExecStart=/usr/sbin/dnsmasq -C /etc/dnsmasq-whitelist.conf?g" /lib/systemd/system/dnsmasq-whitelist.service |
$SED "s?^PIDFile=.*?PIDFile=/var/run/dnsmasq-whitelist.pid?g" /lib/systemd/system/dnsmasq-whitelist.service |
1966,9 → 1969,9 |
fail2ban() |
{ |
/usr/bin/sh $DIR_CONF/fail2ban.sh |
# Autorise la lecture seule 2 des 3 fichiers de log concernés, havp est traité dans le script d'init de havp |
[ -e /var/log/fail2ban.log ] || touch /var/log/fail2ban.log |
[ -e /var/Save/security/watchdog.log ] || touch /var/Save/security/watchdog.log |
# allow reading of 2 log files (fail2ban & watchdog). HAVP is treated in its section |
[ -e /var/log/fail2ban.log ] || /usr/bin/touch /var/log/fail2ban.log |
[ -e /var/Save/security/watchdog.log ] || /usr/bin/touch /var/Save/security/watchdog.log |
chmod 644 /var/log/fail2ban.log |
chmod 644 /var/Save/security/watchdog.log |
/usr/bin/touch /var/log/auth.log |