714,8 → 714,8 |
# Add an empty radius database structure |
mysql -u$DB_USER -p$radiuspwd $DB_RADIUS < $DIR_CONF/radiusd-db-vierge.sql |
# modify the start script in order to close accounting connexion when the system is comming down or up |
[ -e /usr/lib/systemd/system/mysqld.service.default ] || cp /usr/lib/systemd/system/mysqld.service /usr/lib/systemd/system/mysqld.service.default |
$SED "/ExecStartPost=/a ExecStartPost=[ -e /usr/local/sbin/alcasar-mysql.sh ] && /usr/local/sbin/alcasar-mysql.sh -acct_stop" /usr/lib/systemd/system/mysqld.service |
[ -e /lib/systemd/system/mysqld.service.default ] || cp /lib/systemd/system/mysqld.service /lib/systemd/system/mysqld.service.default |
$SED "/ExecStartPost=/a ExecStartPost=[ -e /usr/local/sbin/alcasar-mysql.sh ] && /usr/local/sbin/alcasar-mysql.sh -acct_stop" /lib/systemd/system/mysqld.service |
$SED "/ExecStartPost=/a ExecStop=[ -e /usr/local/sbin/alcasar-mysql.sh ] && /usr/local/sbin/alcasar-mysql.sh -acct_stop" /usr/lib/systemd/system/mysqld.service |
systemctl daemon-reload |
} # End init_db () |
777,7 → 777,7 |
cp -f $DIR_CONF/radius/counter.conf /etc/raddb/sql/mysql/counter.conf |
chown -R radius:radius /etc/raddb/sql/mysql/* |
# insures that mysql is up before radius start |
$SED "s?^After=.*?After=syslog.target network.target mysqld.service?g" /usr/lib/systemd/system/radiusd.service |
[ -e $SED "s?^After=.*?After=syslog.target network.target mysqld.service?g" /lib/systemd/system/radiusd.service |
|
} # End param_radius () |
|
1039,7 → 1039,7 |
|
################################################################## |
## Fonction "antivirus" ## |
## - configuration havp + libclamav ## |
## - configuration of havp, libclamav and freshclam ## |
################################################################## |
antivirus () |
{ |
1071,17 → 1071,21 |
echo "*.youtube.com/*" >> /etc/havp/whitelist |
# remplacement du fichier d'initialisation |
[ -e /etc/init.d/havp.default ] || cp /etc/init.d/havp /etc/init.d/havp.default |
# if keep old init file : $SED "/$HAVP_BIN -c $HAVP_CONFIG/i chown -R havp:havp \/var\/tmp\/havp" /etc/init.d/havp |
# if keep old init file : |
cp -f $DIR_CONF/havp-init /etc/init.d/havp |
# on remplace la page d'interception (template) |
# replace the on remplace la page d'interception (template) |
cp -f $DIR_CONF/virus-fr.html /etc/havp/templates/fr/virus.html |
cp -f $DIR_CONF/virus-en.html /etc/havp/templates/en/virus.html |
# automatisation de la mise à jour de la base antivirale (toutes les 2 heures) |
$SED "s?^Checks.*?Checks 12?g" /etc/freshclam.conf |
# update virus database every 2 hours (24h/12) |
[ -e /etc/freshclam.conf.default ] || cp /etc/freshclam.conf /etc/freshclam.conf.default |
$SED "s?^Checks.*?Checks 6?g" /etc/freshclam.conf |
$SED "s?^NotifyClamd.*?# NotifyClamd /etc/clamd.conf?g" /etc/freshclam.conf |
$SED "/^DatabaseMirror/i DatabaseMirror db.fr.clamav.net" /etc/freshclam.conf |
$SED "/^DatabaseMirror/i DatabaseMirror switch.clamav.net" /etc/freshclam.conf |
# Copy of the main virus database |
rm -f /var/lib/clamav/*.cld # in case of old database scheme |
cp -f $DIR_CONF/clamav-main.cvd /var/lib/clamav/main.cvd |
/usr/bin/freshclam |
} |
|
################################################################################## |
1240,7 → 1244,7 |
server=$DNS2 |
EOF |
# 3rd dnsmasq listen on udp 55 ("dnsmasq with whitelis") |
cat << EOF > /etc/dnsmasq-blacklist.conf |
cat << EOF > /etc/dnsmasq-whitelist.conf |
# Configuration file for "dnsmasq with whitelist" |
# Inclusion de la whitelist <domains> de Toulouse dans la configuration |
conf-dir=$DIR_DEST_SHARE/dnsmasq-wl-enabled |