WebSVN – ALCASAR – Diff – /alcasar.sh



#!/bin/bash
#  $Id: alcasar.sh 1696 2015-09-08 07:38:46Z franck $ 
 
# alcasar.sh
 
# ALCASAR Install script -  CopyLeft ALCASAR Team [Rexy + 3abtux + Steweb + Crox + ...] 
# Ce programme est un logiciel libre ; This software is free and open source

	$SED "s?^#Banner.*?Banner /etc/ssh/alcasar-banner-ssh?g" /etc/ssh/sshd_config
# postfix banner anonymisation
	$SED "s?^smtpd_banner =.*?smtpd_banner = $myhostname ESMTP?g" /etc/postfix/main.cf
# sshd écoute côté LAN et WAN
	$SED "s?^#ListenAddress 0\.0\.0\.0.*?ListenAddress 0\.0\.0\.0?g" /etc/ssh/sshd_config
# sshd autorise les connections root par certificat
	$SED "s?^PermitRootLogin.*?PermitRootLogin without-password?g" /etc/ssh/sshd_config
	# Put the default value in conf file (sshd, QOS and protocols/dns/ are off)(web antivirus is on)
	echo "SSH=off" >> $CONF_FILE
	echo "SSH_ADMIN_FROM=0.0.0.0/0.0.0.0" >> $CONF_FILE
	echo "QOS=off" >> $CONF_FILE
	echo "LDAP=off" >> $CONF_FILE

Subversion Repositories ALCASAR

(root)/alcasar.sh @ 1389 – Rev 1686 → 1696

Rev 1686		Rev 1696
Line 1...		Line 1...
1	`#!/bin/bash`	1	`#!/bin/bash`
2	`# $Id: alcasar.sh 1686 2015-07-30 13:37:16Z richard $`	2	`# $Id: alcasar.sh 1696 2015-09-08 07:38:46Z franck $`
3		3
4	`# alcasar.sh`	4	`# alcasar.sh`
5		5
6	`# ALCASAR Install script - CopyLeft ALCASAR Team [Rexy + 3abtux + Steweb + Crox + ...]`	6	`# ALCASAR Install script - CopyLeft ALCASAR Team [Rexy + 3abtux + Steweb + Crox + ...]`
7	`# Ce programme est un logiciel libre ; This software is free and open source`	7	`# Ce programme est un logiciel libre ; This software is free and open source`
Line 1847...		Line 1847...
1847	`$SED "s?^#Banner.*?Banner /etc/ssh/alcasar-banner-ssh?g" /etc/ssh/sshd_config`	1847	`$SED "s?^#Banner.*?Banner /etc/ssh/alcasar-banner-ssh?g" /etc/ssh/sshd_config`
1848	`# postfix banner anonymisation`	1848	`# postfix banner anonymisation`
1849	`$SED "s?^smtpd_banner =.*?smtpd_banner = $myhostname ESMTP?g" /etc/postfix/main.cf`	1849	`$SED "s?^smtpd_banner =.*?smtpd_banner = $myhostname ESMTP?g" /etc/postfix/main.cf`
1850	`# sshd écoute côté LAN et WAN`	1850	`# sshd écoute côté LAN et WAN`
1851	`$SED "s?^#ListenAddress 0\.0\.0\.0.*?ListenAddress 0\.0\.0\.0?g" /etc/ssh/sshd_config`	1851	`$SED "s?^#ListenAddress 0\.0\.0\.0.*?ListenAddress 0\.0\.0\.0?g" /etc/ssh/sshd_config`
-		1852	`# sshd autorise les connections root par certificat`
-		1853	`$SED "s?^PermitRootLogin.*?PermitRootLogin without-password?g" /etc/ssh/sshd_config`
1852	`# Put the default value in conf file (sshd, QOS and protocols/dns/ are off)(web antivirus is on)`	1854	`# Put the default value in conf file (sshd, QOS and protocols/dns/ are off)(web antivirus is on)`
1853	`echo "SSH=off" >> $CONF_FILE`	1855	`echo "SSH=off" >> $CONF_FILE`
1854	`echo "SSH_ADMIN_FROM=0.0.0.0/0.0.0.0" >> $CONF_FILE`	1856	`echo "SSH_ADMIN_FROM=0.0.0.0/0.0.0.0" >> $CONF_FILE`
1855	`echo "QOS=off" >> $CONF_FILE`	1857	`echo "QOS=off" >> $CONF_FILE`
1856	`echo "LDAP=off" >> $CONF_FILE`	1858	`echo "LDAP=off" >> $CONF_FILE`