Subversion Repositories ALCASAR

Rev

Rev 2688 | Show entire file | Ignore whitespace | Details | Blame | Last modification | View Log

Rev 2688 Rev 3263
Line 1... Line 1...
1 
#!/bin/bash
 1 
#!/bin/bash
2 
 
 2 
 
3 
# Id: $Id: alcasar-url_filter_wl.sh 2688 2019-01-18 23:15:49Z lucas.echard $
 3 
# Id: $Id: alcasar-url_filter_wl.sh 3263 2025-03-25 23:14:18Z rexy $
4 
 
 4 
 
5 
# alcasar-url_filter.sh
 5 
# alcasar-url_filter.sh
6 
# by REXY
 6 
# by REXY
7 
# This script is distributed under the Gnu General Public License (GPL)
 7 
# This script is distributed under the Gnu General Public License (GPL)
8 
 
 8 
 
9 
# Active / désactive : safesearch des moteurs de recherche
 9 
# Active / désactive : safesearch des moteurs de recherche
10 
# Enable / disable : search engines safesearch
 10 
# Enable / disable : search engines safesearch
11 
# Active / désactive : le filtrage des url contenant une adresse ip à la place d'un nom de domaine
 - 
 
12 
# Enable / disable : filter of urls containing ip address instead of domain name
 - 
 
13 
 
 11 
 
14 
CONF_FILE="/usr/local/etc/alcasar.conf"
 12 
CONF_FILE="/usr/local/etc/alcasar.conf"
15 
UNBOUND_WL_DOMAIN_FILTER_CONF="/etc/unbound/conf.d/whitelist/domainfilter.conf"
 - 
 
16 
IP_WL="/usr/local/share/iptables-wl-enabled/ossi-ip-safesearch"
 13 
IP_WL="/usr/local/share/iptables-wl-enabled/ossi-ip-safesearch"
17 
SED="/bin/sed -i"
 14 
SED="/bin/sed -i"
18 
safesearch="Off"
 15 
safesearch="Off"
19 
usage="Usage: alcasar-url_filter_wl.sh { -safesearch_on or -safesearch_off }"
 16 
usage="Usage: alcasar-url_filter_wl.sh { -safesearch_on or -safesearch_off }"
20 
 
 17 
 
21 
nb_args=$#
 18 
nb_args=$#
22 
 
 - 
 
23 
googledomains="google.com. google.ad. google.ae. google.com.af. google.com.ag. google.com.ai. google.al. google.am. google.co.ao. google.com.ar. google.as. google.at. google.com.au. google.az. google.ba. google.com.bd. google.be. google.bf. google.bg. google.com.bh. google.bi. google.bj. google.com.bn. google.com.bo. google.com.br. google.bs. google.bt. google.co.bw. google.by. google.com.bz. google.ca. google.cd. google.cf. google.cg. google.ch. google.ci. google.co.ck. google.cl. google.cm. google.cn. google.com.co. google.co.cr. google.com.cu. google.cv. google.com.cy. google.cz. google.de. google.dj. google.dk. google.dm. google.com.do. google.dz. google.com.ec. google.ee. google.com.eg. google.es. google.com.et. google.fi. google.com.fj. google.fm. google.fr. google.ga. google.ge. google.gg. google.com.gh. google.com.gi. google.gl. google.gm. google.gp. google.gr. google.com.gt. google.gy. google.com.hk. google.hn. google.hr. google.ht. google.hu. google.co.id. google.ie. google.co.il. google.im. google.co.in. google.iq. google.is. google.it. google.je. google.com.jm. google.jo. google.co.jp. google.co.ke. google.com.kh. google.ki. google.kg. google.co.kr. google.com.kw. google.kz. google.la. google.com.lb. google.li. google.lk. google.co.ls. google.lt. google.lu. google.lv. google.com.ly. google.co.ma. google.md. google.me. google.mg. google.mk. google.ml. google.com.mm. google.mn. google.ms. google.com.mt. google.mu. google.mv. google.mw. google.com.mx. google.com.my. google.co.mz. google.com.na. google.com.nf. google.com.ng. google.com.ni. google.ne. google.nl. google.no. google.com.np. google.nr. google.nu. google.co.nz. google.com.om. google.com.pa. google.com.pe. google.com.pg. google.com.ph. google.com.pk. google.pl. google.pn. google.com.pr. google.ps. google.pt. google.com.py. google.com.qa. google.ro. google.ru. google.rw. google.com.sa. google.com.sb. google.sc. google.se. google.com.sg. google.sh. google.si. google.sk. google.com.sl. google.sn. google.so. google.sm. google.sr. google.st. google.com.sv. google.td. google.tg. google.co.th. google.com.tj. google.tk. google.tl. google.tm. google.tn. google.to. google.com.tr. google.tt. google.com.tw. google.co.tz. google.com.ua. google.co.ug. google.co.uk. google.com.uy. google.co.uz. google.com.vc. google.co.ve. google.vg. google.co.vi. google.com.vn. google.vu. google.ws. google.rs. google.co.za. google.co.zm. google.co.zw. google.cat."
 - 
 
24 
 
 - 
 
25 
youtubedomains="www.youtube.com m.youtube.com youtubei.googleapis.com youtube.googleapis.com www.youtube-nocookie.com"
 - 
 
26 
 
 - 
 
27 
if [ $nb_args -le 0 ]
 19 
if [ $nb_args -le 0 ]
28 
then
 20 
then
29 
	echo "$usage"
 21 
	echo "$usage"
30 
	exit 1
 22 
	exit 1
31 
fi
 23 
fi
Line 56... Line 48...
56 
done
 48 
done
57 
 
 49 
 
58 
if [ $safesearch == "On" ]
 50 
if [ $safesearch == "On" ]
59 
then
 51 
then
60 
	[ -e $IP_WL ] && rm -f $IP_WL
 52 
	[ -e $IP_WL ] && rm -f $IP_WL
61 
 
 - 
 
62 
	# add 'SafeSearch' redirection for google searching
 53 
	# Before we wrote a special Unbound file with redirection. Ex. for google safesearching
63 
	google_safe_server=`host -ta forcesafesearch.google.com | grep "address" | cut -d" " -f4`	# retrieve google forcesafesearch ip
 54 
	# google_safe_server=`host -ta forcesafesearch.google.com | grep "address" | cut -d" " -f4`	# retrieve google forcesafesearch ip
64 
 
 - 
 
65 
	# config file header
 - 
 
66 
	echo "server:" > $UNBOUND_WL_DOMAIN_FILTER_CONF
 55 
	# echo "server:" > $UNBOUND_BL_DOMAIN_FILTER_CONF
67 
 
 - 
 
68 
	for domain in $googledomains
 56 
	# for domain in "google.com. google.ad. google.ae. google.com.af. google.com.ag. google.com etc."
69 
	do
 57 
	# do
70 
		echo -e "\tlocal-zone: \"$domain\" redirect" >> $UNBOUND_WL_DOMAIN_FILTER_CONF
 58 
	#	echo -e "\tlocal-zone: \"$domain\" redirect" >> $UNBOUND_BL_DOMAIN_FILTER_CONF
71 
		echo -e "\tlocal-data: \"$domain A $google_safe_server\"" >> $UNBOUND_WL_DOMAIN_FILTER_CONF
 59 
	#	echo -e "\tlocal-data: \"$domain A $google_safe_server\"" >> $UNBOUND_BL_DOMAIN_FILTER_CONF
72 
	done
 60 
	# done
73 
	echo "add wl_ip_allowed $google_safe_server" >> $IP_WL
 - 
 
74 
 
 - 
 
75 
	# add 'SafeSearch' redirection for youtube searching
 - 
 
76 
	youtube_safe_server=`host -ta restrict.youtube.com | grep "address" | cut -d" " -f4`	# retrieve youtube restrict ip
 - 
 
77 
	for domain in $youtubedomains
 - 
 
78 
	do
 61 
	#
79 
		echo -e "\tlocal-zone: \"$domain\" redirect" >> $UNBOUND_WL_DOMAIN_FILTER_CONF
 - 
 
80 
		echo -e "\tlocal-data: \"$domain A $youtube_safe_server\"" >> $UNBOUND_WL_DOMAIN_FILTER_CONF
 - 
 
81 
	done
 - 
 
82 
	echo "add wl_ip_allowed $youtube_safe_server" >> $IP_WL
 - 
 
83 
 
 - 
 
84 
	# add 'SafeSearch' redirection for bing searching
 - 
 
85 
	bing_safe_server=`host -ta strict.bing.com | grep "address" | cut -d" " -f4`	# retrieve bing strict ip
 - 
 
86 
	echo -e "\tlocal-zone: \"www.bing.com\" redirect" >> $UNBOUND_WL_DOMAIN_FILTER_CONF
 - 
 
87 
	echo -e "\tlocal-data: \"www.bing.com A $bing_safe_server\"" >> $UNBOUND_WL_DOMAIN_FILTER_CONF
 - 
 
88 
	echo "add wl_ip_allowed $bing_safe_server" >> $IP_WL
 - 
 
89 
 
 - 
 
90 
	# add 'SafeSearch' redirection for qwant searching
 - 
 
91 
	qwant_safe_server=`host -ta safeapi.qwant.com | grep "address" | cut -d" " -f4` # retrieve qwant strict ip
 62 
	# If enable again, add/remove "safe-searching" file in /etc/unbound/conf.d/whitelist (in this file, CNAME is used instead of REDIRECT)
92 
	echo -e "\tlocal-zone: \"api.qwant.com\" redirect" >> $UNBOUND_WL_DOMAIN_FILTER_CONF
 - 
 
93 
	echo -e "\tlocal-data: \"api.qwant.com A $qwant_safe_server\"" >> $UNBOUND_WL_DOMAIN_FILTER_CONF
 - 
 
94 
	echo "add wl_ip_allowed $qwant_safe_server" >> $IP_WL
 - 
 
95 
 
 - 
 
96 
	$SED 's/^WL_SAFESEARCH=.*/WL_SAFESEARCH=on/g' $CONF_FILE
 63 
	$SED 's/^WL_SAFESEARCH=.*/WL_SAFESEARCH=on/g' $CONF_FILE
97 
else
 64 
else
98 
	[ -e $UNBOUND_WL_DOMAIN_FILTER_CONF ] && rm -f $UNBOUND_WL_DOMAIN_FILTER_CONF
 - 
 
99 
	[ -e $IP_WL ] && rm -f $IP_WL
 65 
	[ -e $IP_WL ] && rm -f $IP_WL
100 
 
 - 
 
101 
	$SED 's/^WL_SAFESEARCH=.*/WL_SAFESEARCH=off/g' $CONF_FILE
 66 
	$SED 's/^WL_SAFESEARCH=.*/WL_SAFESEARCH=off/g' $CONF_FILE
102 
fi
 67 
fi
103 
systemctl restart unbound-whitelist
 68 
systemctl restart unbound-whitelist