Line 1... |
Line 1... |
1 |
#!/bin/bash
|
1 |
#!/bin/bash
|
2 |
# $Id: alcasar.sh 2994 2022-03-08 23:02:14Z rexy $
|
2 |
# $Id: alcasar.sh 3005 2022-04-26 22:12:46Z rexy $
|
3 |
|
3 |
|
4 |
# ALCASAR is a Free and open source NAC (Network Access Controler) created by Franck BOUIJOUX (3abtux), Pascal LEVANT and Richard REY (Rexy)
|
4 |
# ALCASAR is a Free and open source NAC (Network Access Controler) created by Franck BOUIJOUX (3abtux), Pascal LEVANT and Richard REY (Rexy)
|
5 |
# ALCASAR is based on a stripped Mageia (LSB) with the following open source softwares Coovachilli, freeradius, mariaDB, lighttpd, php, netfilter, e2guardian, ntpd, openssl, dnsmasq, unbound, gammu, clamav, Ulog, fail2ban, vnstat, wkhtml2pdf, ipt_NETFLOW, NFsen and NFdump
|
5 |
# ALCASAR is based on a stripped Mageia (LSB) with the following open source softwares Coovachilli, freeradius, mariaDB, lighttpd, php, netfilter, e2guardian, ntpd, openssl, dnsmasq, unbound, gammu, clamav, Ulog, fail2ban, vnstat, wkhtml2pdf, ipt_NETFLOW, NFsen and NFdump
|
6 |
# contact : info@alcasar.net
|
6 |
# contact : info@alcasar.net
|
7 |
|
7 |
|
Line 2132... |
Line 2132... |
2132 |
## "mail_service" ##
|
2132 |
## "mail_service" ##
|
2133 |
## - Install Postfix conf for email registration method ##
|
2133 |
## - Install Postfix conf for email registration method ##
|
2134 |
##################################################################
|
2134 |
##################################################################
|
2135 |
mail_service()
|
2135 |
mail_service()
|
2136 |
{
|
2136 |
{
|
2137 |
[ -e /etc/postfix/main.cf.default ] || cp /etc/postfix/main.cf /etc/postfix/main.cf.default
|
2137 |
[ -e /etc/postfix/main.cf.orig ] || cp /etc/postfix/main.cf /etc/postfix/main.cf.orig
|
2138 |
cat << EOT >> /etc/postfix/main.cf
|
2138 |
cat << EOT >> /etc/postfix/main.cf
|
- |
|
2139 |
smtp_sasl_auth_enable = yes
|
- |
|
2140 |
smtp_sasl_security_options = noanonymous
|
- |
|
2141 |
smtp_sasl_password_maps = hash:/etc/postfix/sasl/sasl_passwd
|
- |
|
2142 |
smtpd_banner = \$myhostname ESMTP
|
- |
|
2143 |
relayhost =
|
2139 |
myhostname = $HOSTNAME.$DOMAIN
|
2144 |
myhostname = $HOSTNAME.$DOMAIN
|
2140 |
EOT
|
2145 |
EOT
|
2141 |
# Enable SASL authentication
|
- |
|
2142 |
$SED "s?^smtp_sasl_auth_enable =.*?smtp_sasl_auth_enable = yes?g" /etc/postfix/main.cf
|
- |
|
2143 |
# Disallow methods that allow anonymous authentication
|
- |
|
2144 |
$SED "s?^smtp_sasl_security_options =.*?smtp_sasl_security_options = noanonymous?g" /etc/postfix/main.cf
|
- |
|
2145 |
# Location of sasl_passwd
|
- |
|
2146 |
$SED "s?^smtp_sasl_password_maps =.*?smtp_sasl_password_maps = hash:/etc/postfix/sasl/sasl_passwd?g" /etc/postfix/main.cf
|
- |
|
2147 |
# Banner anonymisation
|
- |
|
2148 |
$SED "s?^smtpd_banner =.*?smtpd_banner = \$myhostname ESMTP?g" /etc/postfix/main.cf
|
- |
|
2149 |
chown -R postfix:postfix /var/lib/postfix
|
2146 |
chown -R postfix:postfix /var/lib/postfix
|
2150 |
} # end of mail_service
|
2147 |
} # end of mail_service
|
2151 |
|
2148 |
|
2152 |
##################################################################
|
2149 |
##################################################################
|
2153 |
## Fonction "post_install" ##
|
2150 |
## Fonction "post_install" ##
|
Line 2187... |
Line 2184... |
2187 |
echo "LDAP_CERT_REQUIRED=" >> $CONF_FILE
|
2184 |
echo "LDAP_CERT_REQUIRED=" >> $CONF_FILE
|
2188 |
echo "SMS=off" >> $CONF_FILE
|
2185 |
echo "SMS=off" >> $CONF_FILE
|
2189 |
echo "SMS_NUM=" >> $CONF_FILE
|
2186 |
echo "SMS_NUM=" >> $CONF_FILE
|
2190 |
echo "MAIL=off" >> $CONF_FILE
|
2187 |
echo "MAIL=off" >> $CONF_FILE
|
2191 |
echo "MAIL_TYPE=" >> $CONF_FILE
|
2188 |
echo "MAIL_TYPE=" >> $CONF_FILE
|
- |
|
2189 |
echo "MAIL_SMTP=" >> $CONF_FILE
|
2192 |
echo "MAIL_SMTP_IP=" >> $CONF_FILE
|
2190 |
echo "MAIL_SMTP_IP=" >> $CONF_FILE
|
2193 |
echo "MAIL_PORT=" >> $CONF_FILE
|
2191 |
echo "MAIL_PORT=" >> $CONF_FILE
|
2194 |
echo "MAIL_SMTP=" >> $CONF_FILE
|
- |
|
2195 |
echo "MAIL_ADDR=" >> $CONF_FILE
|
2192 |
echo "MAIL_ADDR=" >> $CONF_FILE
|
2196 |
echo "MAIL_WHITEDOMAIN=" >> $CONF_FILE
|
2193 |
echo "MAIL_WHITEDOMAIN=" >> $CONF_FILE
|
2197 |
echo "MAIL_ADMIN=" >> $CONF_FILE
|
2194 |
echo "MAIL_ADMIN=" >> $CONF_FILE
|
2198 |
echo "BL_PUREIP=on" >> $CONF_FILE
|
2195 |
echo "BL_PUREIP=on" >> $CONF_FILE
|
2199 |
echo "BL_SAFESEARCH=off" >> $CONF_FILE
|
2196 |
echo "BL_SAFESEARCH=off" >> $CONF_FILE
|