Subversion Repositories ALCASAR

#!/bin/bash

#!/bin/bash

# alcasar-bypass.sh

# alcasar-bypass.sh

# by Franck BOUIJOUX and Richard REY

# by Franck BOUIJOUX and Richard REY

# This script is distributed under the Gnu General Public License (GPL)

# This script is distributed under the Gnu General Public License (GPL)

# activation / désactivation du contournement de l'authentification et du filtrage WEB

# activation / désactivation du contournement de l'authentification et du filtrage WEB

# enable / disable the bypass of authenticate process and filtering

# enable / disable the bypass of authenticate process and filtering

usage="Usage: alcasar-bypass.sh {--on or -on } | {--off or -off}"

usage="Usage: alcasar-bypass.sh {--on or -on } | {--off or -off}"

SED="/bin/sed -i"

SED="/bin/sed -i"

nb_args=$#

nb_args=$#

args=$1

args=$1

if [ $nb_args -eq 0 ]

if [ $nb_args -eq 0 ]

then

then

	nb_args=1

	nb_args=1

	args="-h"

	args="-h"

fi

fi

case $args in

case $args in

	-\? | -h* | --h*)

	-\? | -h* | --h*)

		echo "$usage"

		echo "$usage"

		exit 0

		exit 0

		;;

		;;

	--on | -on)	

	--on | -on)	

		# activation du contournement

		# activation du contournement

		for i in chilli squid dansguardian havp mysqld radiusd httpd freshclam dnsmasq

		for i in chilli squid dansguardian havp mysqld radiusd httpd freshclam dnsmasq

		do

		do

			if  (pgrep $i) > /dev/null ; then /etc/init.d/$i stop ; fi

			if  (pgrep $i) > /dev/null ; then /etc/init.d/$i stop ; fi

		done

		done

		echo "Configure eth1 ..."

		echo "Configure eth1 ..."

		ifup eth1

		ifup eth1

		sh /usr/local/bin/alcasar-iptables-bypass.sh

		sh /usr/local/bin/alcasar-iptables-bypass.sh

		echo "Configure dnsmasq ..."

		echo "Configure dnsmasq ..."

		$SED "s?^conf-dir=.*?#&?g" /etc/dnsmasq-blackhole.conf

		$SED "s?^conf-dir=.*?#&?g" /etc/dnsmasq-blackhole.conf

		$SED "s?^no-dhcp-interface=.*?#&?g" /etc/dnsmasq.conf /etc/dnsmasq-blackhole.conf

		$SED "s?^no-dhcp-interface=.*?#&?g" /etc/dnsmasq.conf /etc/dnsmasq-blackhole.conf

		/etc/init.d/dnsmasq start

		/etc/init.d/dnsmasq start

		echo "Le contournement des modules d'authentification de filtrage est activé"

		echo "Le contournement des modules d'authentification de filtrage est activé"

		echo "les journaux de connexions continuent néanmoins d'être enregistrés"

		echo "les journaux de connexions continuent néanmoins d'être enregistrés"

		;;

		;;

	--off | -off)

	--off | -off)

		# désactivation du contournement

		# désactivation du contournement

		if (pgrep dnsmasq) > /dev/null ; then /etc/init.d/dnsmasq stop ; fi

		if (pgrep dnsmasq) > /dev/null ; then /etc/init.d/dnsmasq stop ; fi

		echo "Configure dnsmasq ..."

		echo "Configure dnsmasq ..."

		$SED "s?^#conf-dir=.*?conf-dir=/usr/local/etc/alcasar-dnsfilter-enabled?g" /etc/dnsmasq-blackhole.conf

		$SED "s?^#conf-dir=.*?conf-dir=/usr/local/etc/alcasar-dnsfilter-enabled?g" /etc/dnsmasq-blackhole.conf

		$SED "s?^#no-dhcp-interface=.*?no-dhcp-interface=eth1?g" /etc/dnsmasq.conf /etc/dnsmasq-blackhole.conf

		$SED "s?^#no-dhcp-interface=.*?no-dhcp-interface=eth1?g" /etc/dnsmasq.conf /etc/dnsmasq-blackhole.conf

		do

		do

			if  ! (pgrep $i) > /dev/null ; then /etc/init.d/$i start ; fi

			if  ! (pgrep $i) > /dev/null ; then /etc/init.d/$i start ; fi

		done

		done

		sh /usr/local/bin/alcasar-iptables.sh

		sh /usr/local/bin/alcasar-iptables.sh

		echo "L'authentification et le filtrage sont de nouveau activés"

		echo "L'authentification et le filtrage sont de nouveau activés"

;;

;;

	*)

	*)

		echo "Argument inconnu :$1";

		echo "Argument inconnu :$1";

		echo "$usage"

		echo "$usage"

		exit 1

		exit 1

		;;

		;;

esac

esac