Line 1... |
Line 1... |
1 |
#!/bin/bash
|
1 |
#!/bin/bash
|
2 |
# $Id: alcasar-bypass.sh 1469 2014-10-30 21:58:47Z richard $
|
2 |
# $Id: alcasar-bypass.sh 1482 2014-11-07 22:11:06Z richard $
|
3 |
|
3 |
|
4 |
# alcasar-bypass.sh
|
4 |
# alcasar-bypass.sh
|
5 |
# by 3abtux and Rexy
|
5 |
# by 3abtux and Rexy
|
6 |
# This script is distributed under the Gnu General Public License (GPL)
|
6 |
# This script is distributed under the Gnu General Public License (GPL)
|
7 |
|
7 |
|
Line 25... |
Line 25... |
25 |
echo "$usage"
|
25 |
echo "$usage"
|
26 |
exit 0
|
26 |
exit 0
|
27 |
;;
|
27 |
;;
|
28 |
--on | -on)
|
28 |
--on | -on)
|
29 |
# activation du contournement
|
29 |
# activation du contournement
|
30 |
for i in chilli dansguardian havp mysqld radiusd httpd freshclam dnsmasq squid
|
30 |
/usr/local/sbin/alcasar-logout.sh all
|
- |
|
31 |
for i in chilli
|
31 |
do
|
32 |
do
|
32 |
if (pgrep $i) > /dev/null ; then /usr/bin/systemctl stop $i.service ; fi
|
33 |
if (pgrep $i) > /dev/null ; then /usr/bin/systemctl stop $i.service ; fi
|
33 |
done
|
34 |
done
|
34 |
echo "$INTIF configuration ..."
|
- |
|
35 |
cp /etc/sysconfig/network-scripts/default-ifcfg-$INTIF /etc/sysconfig/network-scripts/ifcfg-$INTIF
|
35 |
cp /etc/sysconfig/network-scripts/default-ifcfg-$INTIF /etc/sysconfig/network-scripts/ifcfg-$INTIF
|
36 |
ifup $INTIF
|
36 |
ifup $INTIF
|
37 |
sh /usr/local/bin/alcasar-iptables-bypass.sh
|
37 |
sh /usr/local/bin/alcasar-iptables-bypass.sh
|
38 |
echo "dnsmasq Configuration ..."
|
- |
|
39 |
$SED "s?^conf-dir=.*?#&?g" /etc/dnsmasq-blacklist.conf
|
- |
|
40 |
$SED "s?^no-dhcp-interface=.*?#&?g" /etc/dnsmasq.conf /etc/dnsmasq-blacklist.conf
|
38 |
$SED "s?^no-dhcp-interface.*?#&?g" /etc/dnsmasq.conf
|
41 |
/etc/init.d/dnsmasq start
|
39 |
/usr/bin/systemctl restart dnsmasq
|
42 |
echo "Le contournement des modules d'authentification de filtrage est activé"
|
40 |
echo "ALCASAR est en mode 'bypass'"
|
43 |
echo "les journaux de connexions continuent néanmoins d'être enregistrés"
|
41 |
echo "ALCASAR is in 'bypass' mode"
|
44 |
;;
|
42 |
;;
|
45 |
--off | -off)
|
43 |
--off | -off)
|
46 |
# désactivation du contournement
|
44 |
# désactivation du contournement
|
47 |
if (pgrep dnsmasq) > /dev/null ; then /etc/init.d/dnsmasq stop ; fi
|
45 |
$SED "s?^#no-dhcp-interface=$INTIF?no-dhcp-interface=$INTIF?g" /etc/dnsmasq.conf
|
48 |
echo "dnsmasq Configuration ..."
|
- |
|
49 |
$SED "s?^#conf-dir=.*?conf-dir=/usr/local/share/dnsmasq-bl-enabled?g" /etc/dnsmasq-blacklist.conf
|
46 |
$SED "s?^#no-dhcp-interface=tun0?no-dhcp-interface=tun0?g" /etc/dnsmasq.conf
|
50 |
$SED "s?^#no-dhcp-interface=.*?no-dhcp-interface=$INTIF?g" /etc/dnsmasq.conf /etc/dnsmasq-blacklist.conf
|
47 |
$SED "s?^#no-dhcp-interface=lo?no-dhcp-interface=lo?g" /etc/dnsmasq.conf
|
- |
|
48 |
systemctl restart dnsmasq
|
51 |
rm -f /etc/sysconfig/network-scripts/ifcfg-$INTIF
|
49 |
rm -f /etc/sysconfig/network-scripts/ifcfg-$INTIF
|
52 |
for i in chilli dansguardian havp mysqld radiusd httpd freshclam dnsmasq squid
|
- |
|
53 |
do
|
- |
|
54 |
if ! (pgrep $i) > /dev/null ; then /usr/bin/systemctl start $i.service; fi
|
50 |
/usr/bin/systemctl start chilli
|
55 |
done
|
- |
|
56 |
sh /usr/local/bin/alcasar-iptables.sh
|
51 |
sh /usr/local/bin/alcasar-iptables.sh
|
57 |
echo "L'authentification et le filtrage sont de nouveau activés"
|
52 |
echo "L'authentification et le filtrage sont actifs"
|
- |
|
53 |
echo "Authentication ans filterig system are enabled"
|
58 |
;;
|
54 |
;;
|
59 |
*)
|
55 |
*)
|
60 |
echo "Argument inconnu :$1";
|
56 |
echo "Argument inconnu :$1";
|
61 |
echo "$usage"
|
57 |
echo "$usage"
|
62 |
exit 1
|
58 |
exit 1
|