18,9 → 18,8 |
# Script d'installation d'ALCASAR (Application Libre pour le Contrôle d'Accès Sécurisé et Authentifié au Réseau) |
# ALCASAR est architecturé autour d'une distribution Linux Mageia minimaliste et les logiciels libres suivants : |
# Install script for ALCASAR (a secured and authenticated Internet access control captive portal) |
# ALCASAR is based on a stripped Mageia (LSB) with the following open source softwares : |
# |
# Coovachilli, freeradius, mariaDB, apache, netfilter, dansguardian, ntpd, openssl, dnsmasq, havp, libclamav, Ulog, fail2ban, NFsen and NFdump |
# ALCASAR is based on a stripped Mageia (LSB) with the following open source softwares : |
# Coovachilli, freeradius, mariaDB, apache, netfilter, dansguardian, ntpd, openssl, dnsmasq, gammu, havp, libclamav, Ulog, fail2ban, tinyproxy, NFsen and NFdump |
|
# Options : |
# -i or --install |
664,9 → 663,8 |
[ -e /etc/httpd/conf/conf.d/ssl.conf.default ] || cp /etc/httpd/conf/conf.d/ssl.conf /etc/httpd/conf/conf.d/ssl.conf.default |
$SED "s?^Listen.*?Listen $PRIVATE_IP:443?g" /etc/httpd/conf/conf.d/ssl.conf # Listen only on INTIF |
# Error page management |
FIC_ERROR_DOC=`find /etc/httpd/conf -type f -name multilang-errordoc.conf` |
[ -e $FIC_ERROR_DOC ] || cp $FIC_ERROR_DOC $FIC_ERROR_DOC.default |
cat <<EOF > $FIC_ERROR_DOC |
[ -e /etc/httpd/conf/conf.d/multilang-errordoc.conf.default ] || cp /etc/httpd/conf/conf.d/multilang-errordoc.conf /etc/httpd/conf/conf.d/multilang-errordoc.conf.default |
cat <<EOF > /etc/httpd/conf/conf.d/multilang-errordoc.conf |
Alias /error/ "/var/www/html/" |
<Directory "/usr/share/httpd/error"> |
AllowOverride None |
1384,7 → 1382,7 |
{ |
tar xzf ./conf/nfsen/nfsen-1.3.6p1.tar.gz -C /tmp/ |
# Add PortTracker plugin |
for i in /var/www/nfsen/plugins /var/log/netflow/porttracker /usr/share/nfsen/plugins |
for i in /var/www/html/acc/manager/nfsen/plugins /var/log/netflow/porttracker /usr/share/nfsen/plugins |
do |
[ ! -d $i ] && mkdir $i && chown -R apache:apache $i |
done |
1398,13 → 1396,13 |
/usr/bin/perl5 install.pl etc/nfsen.conf # to avoid a Perl mistake "Semaphore introuvable" |
# Create RRD DB for porttracker (only in it still doesn't exist) |
cp /tmp/nfsen-1.3.6p1/contrib/PortTracker/PortTracker.pm /usr/share/nfsen/plugins/ |
cp /tmp/nfsen-1.3.6p1/contrib/PortTracker/PortTracker.php /var/www/nfsen/plugins/ |
cp /tmp/nfsen-1.3.6p1/contrib/PortTracker/PortTracker.php /var/www/html/acc/manager/nfsen/plugins/ |
if [ "$(ls -A "/var/log/netflow/porttracker" 2>&1)" = "" ]; then sudo -u apache nftrack -I -d /var/log/netflow/porttracker; else echo "RRD DB already exists"; fi |
chmod -R 770 /var/log/netflow/porttracker |
# Apache conf file |
cat << EOF > /etc/httpd/conf/conf.d/nfsen.conf |
Alias /nfsen /var/www/nfsen |
<Directory /var/www/nfsen/> |
Alias /nfsen /var/www/html/acc/manager/nfsen |
<Directory /var/www/html/acc/manager/nfsen/> |
DirectoryIndex nfsen.php |
Options -Indexes |
AllowOverride all |