WebSVN – ALCASAR – Diff – /alcasar.sh

 #!/bin/bash
-#  $Id: alcasar.sh 1484 2014-11-11 23:14:36Z richard $
+#  $Id: alcasar.sh 1485 2014-11-12 08:12:40Z richard $
 # alcasar.sh
 # ALCASAR Install script -  CopyLeft ALCASAR Team [Rexy + 3abtux + Steweb + Crox + ...]
 # Ce programme est un logiciel libre ; This software is free and open source
 #	radius			: FreeRadius initialisation
 #	radius_web		: copy ans modifiy original "freeradius web" in ACC
 #	chilli			: coovachilli initialisation (+authentication page)
 #	dansguardian		: DansGuardian filtering HTTP proxy configuration
 #	antivirus		: HAVP + libclamav configuration
+#	tinyproxy		: little proxy for user filtered with "WL + antivirus" and "antivirus"
 #	ulogd			: log system in userland (match NFLOG target of iptables)
 #	nfsen		:	: Configuration du grapheur nfsen pour apache
 #	dnsmasq			: Name server configuration
 #	BL			: BlackList of Toulouse configuration : split into 3 BL (for Dnsmasq, for dansguardian and for Netfilter)
 #	cron			: Logs export + watchdog + connexion statistics
 	      groupdel havp 2>/dev/null
 	fi
 	groupadd -f havp
 	useradd -r -g havp -s /bin/false -c "system user for havp" havp
 	mkdir -p /var/tmp/havp /var/log/havp /var/run/havp
-	mkdir -p /var/tmp/havp2 /var/log/havp2 /var/run/havp2
 	chown -R havp:havp /var/tmp/havp /var/log/havp /var/run/havp
-	chown -R havp:havp /var/tmp/havp2 /var/log/havp2 /var/run/havp2
 	[ -e /etc/havp/havp.config.default ] || cp /etc/havp/havp.config /etc/havp/havp.config.default
 	$SED "/^REMOVETHISLINE/d" /etc/havp/havp.config
 	$SED "s?^# PIDFILE.*?PIDFILE /var/run/havp/havp.pid?g" /etc/havp/havp.config	# pidfile
 	$SED "s?^# TRANSPARENT.*?TRANSPARENT false?g" /etc/havp/havp.config		# transparent mode
 	$SED "s?^# BIND_ADDRESS.*?BIND_ADDRESS 127.0.0.1?g" /etc/havp/havp.config	# we listen only on loopback
-	$SED "s?^# PORT.*?PORT 8090?g" /etc/havp/havp.config				# datas come on 8090 (on loopback)
+	$SED "s?^# PORT.*?PORT 8090?g" /etc/havp/havp.config				# datas come on port 8090 (on loopback)
 	$SED "s?^# TIMEFORMAT.*?TIMEFORMAT %Y %b %d %H:%M:%S?g" /etc/havp/havp.config	# Log format
 	$SED "s?^ENABLECLAMLIB.*?ENABLECLAMLIB true?g" /etc/havp/havp.config		# active libclamav AV
 	$SED "s?^# LOG_OKS.*?LOG_OKS false?g" /etc/havp/havp.config			# log only when malware matches
 	$SED "s?^# SERVERNUMBER.*?SERVERNUMBER 10?g" /etc/havp/havp.config		# 10 daemons are started simultaneously
 	$SED "s?^# SCANIMAGES.*?SCANIMAGES false?g" /etc/havp/havp.config		# doesn't scan image files
 	$SED "s?^# SKIPMIME.*?SKIPMIME image\/\* video\/\* audio\/\*?g" /etc/havp/havp.config # doesn't scan some multimedia files
-	cp /etc/havp/havp.config /etc/havp/havp2.config
-	$SED "s?^PIDFILE.*?PIDFILE /var/run/havp/havp2.pid?g" /etc/havp/havp2.config	# pidfile
-	$SED "s?^TRANSPARENT.*?TRANSPARENT true?g" /etc/havp/havp2.config		# transparent mode
-	$SED "s?^BIND_ADDRESS.*?BIND_ADDRESS $PRIVATE_IP?g" /etc/havp/havp2.config	# we listen only on tun0
-	$SED "s?^PORT.*?PORT 8090?g" /etc/havp/havp2.config				# datas come on 8091
 # skip checking of youtube flow (too heavy load / risk too low)
 	[ -e /etc/havp/whitelist.default ] || cp /etc/havp/whitelist /etc/havp/whitelist.default
 	echo "# Whitelist youtube flow" >> /etc/havp/whitelist
 	echo "*.youtube.com/*" >> /etc/havp/whitelist
 # replacement of init script
 	[ -e /etc/init.d/havp.default ] || cp /etc/init.d/havp /etc/init.d/havp.default
 	cp -f $DIR_CONF/havp-init /etc/init.d/havp
-	cp /etc/init.d/havp /etc/init.d/havp2
-	$SED "s?^# description.*?# description: starts HAVP2 the High Availability Antivirus Proxy?g" /etc/init.d/havp2		# description
-	$SED "s?^HAVP_CONFIG.*?HAVP_CONFIG=/etc/havp/havp2.config?g" /etc/init.d/havp2						# config file
-	$SED "s?^PIDFILE.*?PIDFILE=/var/run/havp2/havp.pid?g" /etc/init.d/havp2							# pidfile
-	$SED "s?^NAME.*?NAME=havp2?g" /etc/init.d/havp2										# name
-	$SED "s?^DESC.*?DESC=havp2?g" /etc/init.d/havp2										# desc
-	$SED "s?^havp_mountpoint.*?havp_mountpoint=/var/tmp/havp2?g" /etc/init.d/havp2						# mountpoint
-	$SED "s?echo \"Reloading HAVP ...\".*?echo \"Reloading HAVP2 ...\"?g" /etc/init.d/havp2					# reloading havp
-	$SED "s?echo \"Error: HAVP not running\".*?echo \"Error : HAVP2 not running\"?g" /etc/init.d/havp2			# error havp
-	$SED "s?echo \"Error: HAVP not running or PIDFILE not readable\".*?echo \"Error : HAVP2 not running or PIDFILE not readable\"?g" /etc/init.d/havp2 # error havp
-	$SED "s?echo \"Error: HAVP not running or PIDFILE unreadable\".*?echo \"Error : HAVP2 not running or PIDFILE unreadable\"?g" /etc/init.d/havp2 # error havp
-	$SED "s?echo \"Shutting down HAVP ...\".*?echo \"Shutting down HAVP2 ...\"?g" /etc/init.d/havp2 			# shutting down havp
-	$SED "s?status havp.*?status havp2?g" /etc/init.d/havp2 								# status havp
 # replace of the intercept page (template)
 	cp -f $DIR_CONF/virus-fr.html /etc/havp/templates/fr/virus.html
 	cp -f $DIR_CONF/virus-en.html /etc/havp/templates/en/virus.html
 # update virus database every 4 hours (24h/6)
 	[ -e /etc/freshclam.conf.default ] || cp /etc/freshclam.conf /etc/freshclam.conf.default
 	$SED "s?MaxAttempts.*?MaxAttempts 3?g" /etc/freshclam.conf
 # update now
 	/usr/bin/freshclam --no-warnings
 } # End of antivirus ()
+##################################################################
+##			Fonction "antivirus"			##
+## - configuration of havp, libclamav and freshclam		##
+##################################################################
+tinyproxy ()
+{
+} # end of tinyproxy
 ##################################################################################
 ##			function "ulogd"					##
 ## - Ulog config for multi-log files 						##
 ##################################################################################
 ulogd ()

Subversion Repositories ALCASAR

(root)/alcasar.sh – Rev 1484 → 1485