Subversion Repositories ALCASAR

Rev

Rev 3039 | Rev 3043 | Go to most recent revision | Show entire file | Ignore whitespace | Details | Blame | Last modification | View Log

Rev 3039 Rev 3040
Line 1... Line 1...
1
#!/bin/bash
1
#!/bin/bash
2
#  $Id: alcasar.sh 3039 2022-07-11 22:22:24Z rexy $
2
#  $Id: alcasar.sh 3040 2022-07-17 22:31:53Z rexy $
3
 
3
 
4
# ALCASAR is a Free and open source NAC (Network Access Controler) created by Franck BOUIJOUX (3abtux), Pascal LEVANT and Richard REY (Rexy)
4
# ALCASAR is a Free and open source NAC (Network Access Controler) created by Franck BOUIJOUX (3abtux), Pascal LEVANT and Richard REY (Rexy)
5
# ALCASAR is based on a stripped Mageia (LSB) with the following open source softwares Coovachilli, freeradius, mariaDB, lighttpd, php, netfilter, e2guardian, ntpd, openssl, dnsmasq, unbound, gammu, clamav, Ulog, fail2ban, vnstat, wkhtml2pdf, ipt_NETFLOW, NFsen and NFdump
5
# ALCASAR is based on a stripped Mageia (LSB) with the following open source softwares Coovachilli, freeradius, mariaDB, lighttpd, php, netfilter, e2guardian, ntpd, openssl, dnsmasq, unbound, gammu, clamav, Ulog, fail2ban, vnstat, wkhtml2pdf, ipt_NETFLOW, NFsen and NFdump
6
# contact : info@alcasar.net
6
# contact : info@alcasar.net
7
 
7
 
Line 2169... Line 2169...
2169
	$SED "s?^PermitRootLogin.*?PermitRootLogin without-password?g" /etc/ssh/sshd_config
2169
	$SED "s?^PermitRootLogin.*?PermitRootLogin without-password?g" /etc/ssh/sshd_config
2170
	$SED "s?^X11Forwarding.*?#X11Forwarding yes?g" /etc/ssh/sshd_config
2170
	$SED "s?^X11Forwarding.*?#X11Forwarding yes?g" /etc/ssh/sshd_config
2171
# ALCASAR conf file
2171
# ALCASAR conf file
2172
	echo "HTTPS_LOGIN=off" >> $CONF_FILE
2172
	echo "HTTPS_LOGIN=off" >> $CONF_FILE
2173
	echo "HTTPS_CHILLI=off" >> $CONF_FILE
2173
	echo "HTTPS_CHILLI=off" >> $CONF_FILE
2174
	echo "SSH=on" >> $CONF_FILE
2174
	echo "SSH=off" >> $CONF_FILE
-
 
2175
	echo "SSH_WAN=22" >> $CONF_FILE
2175
	echo "SSH_ADMIN_FROM=0.0.0.0/0.0.0.0" >> $CONF_FILE
2176
	echo "SSH_ADMIN_FROM=0.0.0.0/0.0.0.0" >> $CONF_FILE
2176
	echo "LDAP=off" >> $CONF_FILE
2177
	echo "LDAP=off" >> $CONF_FILE
2177
	echo "LDAP_SERVER=127.0.0.1" >> $CONF_FILE
2178
	echo "LDAP_SERVER=127.0.0.1" >> $CONF_FILE
2178
	echo "LDAP_BASE=cn=Users;dc=serverad;dc=localdomain" >> $CONF_FILE
2179
	echo "LDAP_BASE=cn=Users;dc=serverad;dc=localdomain" >> $CONF_FILE
2179
	echo "LDAP_UID=sAMAccountName" >> $CONF_FILE
2180
	echo "LDAP_UID=sAMAccountName" >> $CONF_FILE