/alcasar.sh |
---|
28,6 → 28,7 |
# param_chilli : Configuration du daemon 'coova-chilli' et de la page d'authentification |
# param_squid : Configuration du proxy squid en mode 'cache' |
# param_dansguardian : Configuration de l'analyseur de contenu DansGuardian |
# antivius : Installation havp + clamav |
# firewall : Mise en place des règles du parefeu et de l'interface WEB FirewallEyes |
# param_awstats : Configuration de l'interface des statistiques de consultation WEB |
# bind : Configuration du serveur de noms |
451,10 → 452,13 |
[ -d $DIR_SAVE/$i ] || mkdir -p $DIR_SAVE/$i |
done |
chown -R root:apache $DIR_SAVE |
# Configuration php |
# Configuration et sécurisation php |
[ -e /etc/php.ini.default ] || cp /etc/php.ini /etc/php.ini.default |
$SED "s?^upload_max_filesize.*?upload_max_filesize = 20M?g" /etc/php.ini |
$SED "s?^post_max_size.*?post_max_size = 20M?g" /etc/php.ini |
# Configuration Apache |
$SED "s?^html_errors.*?html_errors = Off?g" /etc/php.ini |
$SED "s?^expose_php.*?expose_php = Off?g" /etc/php.ini |
# Configuration et sécurisation Apache |
[ -e /etc/httpd/conf/httpd.conf.default ] || cp /etc/httpd/conf/httpd.conf /etc/httpd/conf/httpd.conf.default |
$SED "s?^#ServerName.*?ServerName $PRIVATE_IP?g" /etc/httpd/conf/httpd.conf |
$SED "s?^Listen.*?#Listen 127.0.0.1:80?g" /etc/httpd/conf/httpd.conf |
913,6 → 917,27 |
chmod -R g+rw /etc/dansguardian |
} # End of param_dansguardian () |
################################################################## |
## Fonction antivirus ## |
## - mise en place havp + clamav ## |
################################################################## |
antivirus () |
{ |
# création de la partition de stockage temporaire (100Mo) |
useradd -r havp |
dd if=/dev/zero of=/tmp/havp-disk bs=1024k count=30 |
mkfs.ext4 -qF /tmp/havp-disk |
mkdir /var/tmp/havp |
chown havp:havp /var/tmp/havp |
echo "# Entry for havp tmp files scan partition" >> /etc/fstab |
echo "/tmp/havp-disk /var/tmp/havp ext4 loop,mand,noatime,async" >> /etc/fstab |
cp $DIR_CONF/havp/havp $DIR_DEST_SBIN |
cp -r $DIR_CONF/havp/etc/havp $DIR_DEST_ETC |
cp $DIR_CONF/havp/etc/init.d/havp /etc/init.d/ |
chkconfig --level 345 havp on |
chkconfig --level 01267 havp off |
} |
################################################################################## |
## Fonction firewall ## |
## - adaptation des scripts du parefeu ## |
1255,7 → 1280,7 |
else |
mode="install" |
fi |
for func in init network gestion AC init_db param_radius param_web_radius param_chilli param_squid param_dansguardian firewall param_awstats param_bind cron post_install |
for func in init network gestion AC init_db param_radius param_web_radius param_chilli param_squid param_dansguardian antivirus firewall param_awstats param_bind cron post_install |
do |
$func |
# echo "*** 'debug' : end of function $func ***"; read a |
/scripts/sbin/alcasar-uninstall.sh |
---|
35,11 → 35,12 |
[ -e /etc/hosts.deny.default ] && mv /etc/hosts.deny.default /etc/hosts.deny && echo -n "9" |
sleep 1 |
# gestion |
echo -en "\n-3 gestion(4) : " |
echo -en "\n-3 gestion(5) : " |
[ -d /var/www/html ] && rm -rf /var/www/html && echo -n "1, " |
[ -e /etc/httpd/conf/httpd.conf.default ] && mv /etc/httpd/conf/httpd.conf.default /etc/httpd/conf/httpd.conf && echo -n "2, " |
[ -e /etc/httpd/conf/webapps.d/alcasar.conf ] && rm -f /etc/httpd/conf/webapps.d/alcasar.conf && echo -n "3, " |
[ -e /var/www/error/include/bottom.html.default ] && mv /var/www/error/include/bottom.html.default /var/www/error/include/bottom.html && echo -n "4 " |
[ -e /etc/php.ini.default ] && mv /etc/php.ini.default /etc/php.ini && echo -n "3, " |
[ -e /etc/httpd/conf/webapps.d/alcasar.conf ] && rm -f /etc/httpd/conf/webapps.d/alcasar.conf && echo -n "4, " |
[ -e /var/www/error/include/bottom.html.default ] && mv /var/www/error/include/bottom.html.default /var/www/error/include/bottom.html && echo -n "5 " |
sleep 1 |
# CA |
echo -en "\n-4 AC(4) : " |
97,16 → 98,26 |
[ -e /etc/dansguardian/lists/bannedsitelist.default ] && mv /etc/dansguardian/lists/bannedsitelist.default /etc/dansguardian/lists/bannedsitelist && echo -n "9, " |
[ -d /etc/dansguardian/lists/blacklists.default ] && mv -f /etc/dansguardian/lists/blacklists.default /etc/dansguardian/lists/blacklists && echo -n "10" |
sleep 1 |
#antivirus |
echo -en "\n-11 antivirus(5) : " |
chkconfig --del havp && echo -n "1, " |
umount /var/tmp/havp && echo -n "2, " |
rmdir /var/tmp/havp && echo -n "3, " |
rm -f /tmp/havp-disk && echo -n "4, " |
$SED "/^# Entry for havp/d" /etc/fstab |
$SED "/^\/tmp\/havp-disk/d" /etc/fstab && echo -n "5, " |
userdel havp && echo -n "6" |
sleep 1 |
#firewall |
echo -en "\n-11 firewall(1) : " |
echo -en "\n-12 firewall(1) : " |
[ -e /etc/sysconfig/iptables ] && rm -f /etc/sysconfig/iptables && echo -n "1" |
sleep 1 |
#awstats |
echo -en "\n-12 awstats(1) : " |
echo -en "\n-13 awstats(1) : " |
[ -e /etc/awstats/awstats.conf.default ] && mv /etc/awstats/awstats.conf.default /etc/awstats/awstats.conf && echo -n "1" |
sleep 1 |
#Bind |
echo -en "\n-13 bind(4) : " |
echo -en "\n-14 bind(4) : " |
[ -e /var/lib/named/etc/named.conf.default ] && mv /var/lib/named/etc/named.conf.default /var/lib/named/etc/named.conf && echo -n "1, " |
[ -e /var/lib/named/etc/trusted_networks_acl.conf.default ] && mv /var/lib/named/etc/trusted_networks_acl.conf.default /var/lib/named/etc/trusted_networks_acl.conf && echo -n "2, " |
[ -e /var/lib/named/var/named/master/localdomain.zone.default ] && mv /var/lib/named/var/named/master/localdomain.zone.default /var/lib/named/var/named/master/localdomain.zone && echo -n "3, " |
113,7 → 124,7 |
[ -e /var/lib/named/var/named/reverse/localdomain.rev ] && rm /var/lib/named/var/named/reverse/localdomain.rev && echo -n "4" |
sleep 1 |
#cron |
echo -en "\n-13 cron(9) : " |
echo -en "\n-15 cron(9) : " |
[ -e /etc/crontab.default ] && mv /etc/crontab.default /etc/crontab && echo -n "1, " |
[ -e /etc/anacrontab.default ] && mv /etc/anacrontab.default /etc/anacrontab && echo -n "2, " |
[ -e /etc/cron.d/mysql ] && rm -f /etc/cron.d/mysql && echo -n "3, " |
129,7 → 140,7 |
[ -e /etc/raddb/ldap.default ] && mv /etc/raddb/ldap.default /etc/raddb/modules/ldap |
sleep 1 |
#post_install |
echo -en "\n-14 post_install(11) : " |
echo -en "\n-16 post_install(11) : " |
[ -e /etc/mandriva-release.default ] && mv /etc/mandriva-release.default /etc/mandriva-release && echo -n "1, " |
[ -e /etc/ssh/alcasar-banner-ssh ] && rm -f /etc/ssh/alcasar-banner-ssh && echo -n "2, " |
[ -e /etc/ssh/sshd_config.default ] && mv /etc/ssh/sshd_config.default /etc/ssh/sshd_config && echo -n "3, " |
/scripts/sbin/alcasar-havp.sh |
---|
0,0 → 1,39 |
#/bin/sh |
# Gestion Havp / Clamav |
SED="/bin/sed -i" |
usage="Usage: alcasar-havp.sh -on | -off | -update" |
nb_args=$# |
args=$1 |
if [ $nb_args -eq 0 ] |
then |
nb_args=1 |
args="-h" |
fi |
case $args in |
-\? | -h* | --h*) |
echo "$usage" |
exit 0 |
;; |
-on) |
# activation havp |
$SED "s/^proxyport =.*/proxyport = 8090/g" /etc/dansguardian/dansguardian.conf |
service dansguardian reload |
service havp start |
;; |
-off) |
# désactivation du filtrage |
$SED "s/^proxyport =.*/proxyport = 3128/g" /etc/dansguardian/dansguardian.conf |
service dansguardian reload |
service havp stop |
;; |
-update) |
#mise à jour de la base de signature |
freshclam |
;; |
*) |
echo "Argument inconnu :$1"; |
echo "$usage" |
exit 1 |
;; |
esac |
Property changes: |
Added: svn:eol-style |
+native |
\ No newline at end of property |
Added: svn:executable |
+* |
\ No newline at end of property |
/gestion/menu.php |
---|
142,7 → 142,7 |
fputs($fp, "$nb\n"); |
fclose($fp); |
?> |
<br>depuis le 23/12/2009<br></center></td></tr> |
<br>depuis le 99/99/9999<br></center></td></tr> |
</TABLE> |
</td></tr> |
</TABLE> |