Subversion Repositories ALCASAR

Rev

Rev 2662 | Go to most recent revision | Show entire file | Ignore whitespace | Details | Blame | Last modification | View Log

Rev 2662 Rev 2688
Line 1... Line 1...
1
#!/bin/bash
1
#!/bin/bash
2
 
2
 
3
# Id: $Id: alcasar-url_filter_bl.sh 2662 2018-11-18 12:55:55Z lucas.echard $
3
# Id: $Id: alcasar-url_filter_bl.sh 2688 2019-01-18 23:15:49Z lucas.echard $
4
 
4
 
5
# alcasar-url_filter.sh
5
# alcasar-url_filter.sh
6
# by REXY
6
# by REXY
7
# This script is distributed under the Gnu General Public License (GPL)
7
# This script is distributed under the Gnu General Public License (GPL)
8
 
8
 
9
# Active / désactive : safesearch des moteurs de recherche
9
# Active / désactive : safesearch des moteurs de recherche
10
# Enable / disable : search engines safesearch
10
# Enable / disable : search engines safesearch
11
# Active / désactive : le filtrage des url contenant une adresse ip à la place d'un nom de domaine
11
# Active / désactive : le filtrage des url contenant une adresse ip à la place d'un nom de domaine
12
# Enable / disable : filter of urls containing ip address instead of domain name
12
# Enable / disable : filter of urls containing ip address instead of domain name
13
 
13
 
14
DIR_DG="/etc/e2guardian/lists"
-
 
15
DNSMASQ_BL_CONF="/etc/dnsmasq-blacklist.conf"
-
 
16
CONF_FILE="/usr/local/etc/alcasar.conf"
14
CONF_FILE="/usr/local/etc/alcasar.conf"
-
 
15
DIR_DG="/etc/e2guardian/lists"
-
 
16
UNBOUND_BL_DOMAIN_FILTER_CONF="/etc/unbound/conf.d/blacklist/domainfilter.conf"
17
SED="/bin/sed -i"
17
SED="/bin/sed -i"
18
safesearch="Off"
18
safesearch="Off"
19
pureip="Off"
19
pureip="Off"
20
usage="Usage: alcasar-url_filter_bl.sh { -safesearch_on or -safesearch_off } & { -pureip_on or --pureip_off }"
20
usage="Usage: alcasar-url_filter_bl.sh { -safesearch_on or -safesearch_off } & { -pureip_on or -pureip_off }"
-
 
21
 
-
 
22
nb_args=$#
21
 
23
 
22
googledomains="google.com. google.ad. google.ae. google.com.af. google.com.ag. google.com.ai. google.al. google.am. google.co.ao. google.com.ar. google.as. google.at. google.com.au. google.az. google.ba. google.com.bd. google.be. google.bf. google.bg. google.com.bh. google.bi. google.bj. google.com.bn. google.com.bo. google.com.br. google.bs. google.bt. google.co.bw. google.by. google.com.bz. google.ca. google.cd. google.cf. google.cg. google.ch. google.ci. google.co.ck. google.cl. google.cm. google.cn. google.com.co. google.co.cr. google.com.cu. google.cv. google.com.cy. google.cz. google.de. google.dj. google.dk. google.dm. google.com.do. google.dz. google.com.ec. google.ee. google.com.eg. google.es. google.com.et. google.fi. google.com.fj. google.fm. google.fr. google.ga. google.ge. google.gg. google.com.gh. google.com.gi. google.gl. google.gm. google.gp. google.gr. google.com.gt. google.gy. google.com.hk. google.hn. google.hr. google.ht. google.hu. google.co.id. google.ie. google.co.il. google.im. google.co.in. google.iq. google.is. google.it. google.je. google.com.jm. google.jo. google.co.jp. google.co.ke. google.com.kh. google.ki. google.kg. google.co.kr. google.com.kw. google.kz. google.la. google.com.lb. google.li. google.lk. google.co.ls. google.lt. google.lu. google.lv. google.com.ly. google.co.ma. google.md. google.me. google.mg. google.mk. google.ml. google.com.mm. google.mn. google.ms. google.com.mt. google.mu. google.mv. google.mw. google.com.mx. google.com.my. google.co.mz. google.com.na. google.com.nf. google.com.ng. google.com.ni. google.ne. google.nl. google.no. google.com.np. google.nr. google.nu. google.co.nz. google.com.om. google.com.pa. google.com.pe. google.com.pg. google.com.ph. google.com.pk. google.pl. google.pn. google.com.pr. google.ps. google.pt. google.com.py. google.com.qa. google.ro. google.ru. google.rw. google.com.sa. google.com.sb. google.sc. google.se. google.com.sg. google.sh. google.si. google.sk. google.com.sl. google.sn. google.so. google.sm. google.sr. google.st. google.com.sv. google.td. google.tg. google.co.th. google.com.tj. google.tk. google.tl. google.tm. google.tn. google.to. google.com.tr. google.tt. google.com.tw. google.co.tz. google.com.ua. google.co.ug. google.co.uk. google.com.uy. google.co.uz. google.com.vc. google.co.ve. google.vg. google.co.vi. google.com.vn. google.vu. google.ws. google.rs. google.co.za. google.co.zm. google.co.zw. google.cat."
24
googledomains="google.com. google.ad. google.ae. google.com.af. google.com.ag. google.com.ai. google.al. google.am. google.co.ao. google.com.ar. google.as. google.at. google.com.au. google.az. google.ba. google.com.bd. google.be. google.bf. google.bg. google.com.bh. google.bi. google.bj. google.com.bn. google.com.bo. google.com.br. google.bs. google.bt. google.co.bw. google.by. google.com.bz. google.ca. google.cd. google.cf. google.cg. google.ch. google.ci. google.co.ck. google.cl. google.cm. google.cn. google.com.co. google.co.cr. google.com.cu. google.cv. google.com.cy. google.cz. google.de. google.dj. google.dk. google.dm. google.com.do. google.dz. google.com.ec. google.ee. google.com.eg. google.es. google.com.et. google.fi. google.com.fj. google.fm. google.fr. google.ga. google.ge. google.gg. google.com.gh. google.com.gi. google.gl. google.gm. google.gp. google.gr. google.com.gt. google.gy. google.com.hk. google.hn. google.hr. google.ht. google.hu. google.co.id. google.ie. google.co.il. google.im. google.co.in. google.iq. google.is. google.it. google.je. google.com.jm. google.jo. google.co.jp. google.co.ke. google.com.kh. google.ki. google.kg. google.co.kr. google.com.kw. google.kz. google.la. google.com.lb. google.li. google.lk. google.co.ls. google.lt. google.lu. google.lv. google.com.ly. google.co.ma. google.md. google.me. google.mg. google.mk. google.ml. google.com.mm. google.mn. google.ms. google.com.mt. google.mu. google.mv. google.mw. google.com.mx. google.com.my. google.co.mz. google.com.na. google.com.nf. google.com.ng. google.com.ni. google.ne. google.nl. google.no. google.com.np. google.nr. google.nu. google.co.nz. google.com.om. google.com.pa. google.com.pe. google.com.pg. google.com.ph. google.com.pk. google.pl. google.pn. google.com.pr. google.ps. google.pt. google.com.py. google.com.qa. google.ro. google.ru. google.rw. google.com.sa. google.com.sb. google.sc. google.se. google.com.sg. google.sh. google.si. google.sk. google.com.sl. google.sn. google.so. google.sm. google.sr. google.st. google.com.sv. google.td. google.tg. google.co.th. google.com.tj. google.tk. google.tl. google.tm. google.tn. google.to. google.com.tr. google.tt. google.com.tw. google.co.tz. google.com.ua. google.co.ug. google.co.uk. google.com.uy. google.co.uz. google.com.vc. google.co.ve. google.vg. google.co.vi. google.com.vn. google.vu. google.ws. google.rs. google.co.za. google.co.zm. google.co.zw. google.cat."
23
 
25
 
24
youtubedomains="www.youtube.com m.youtube.com youtubei.googleapis.com youtube.googleapis.com www.youtube-nocookie.com"
26
youtubedomains="www.youtube.com m.youtube.com youtubei.googleapis.com youtube.googleapis.com www.youtube-nocookie.com"
25
 
27
 
26
nb_args=$#
28
safesearch=""
-
 
29
pureip=""
-
 
30
 
27
if [ $nb_args -le 1 ]
31
if [ $nb_args -lt 1 ]
28
then
32
then
29
	echo "$usage"
33
	echo "$usage"
30
	nb_args=0
34
	exit 1
31
else
35
fi
-
 
36
 
32
	while [ $nb_args -ge 1 ]
37
while [ $nb_args -ge 1 ]
-
 
38
do
-
 
39
	arg=${!nb_args}
-
 
40
	case $arg in
-
 
41
	-\? | -h* | --h*)
-
 
42
		echo "$usage"
-
 
43
		exit 0
-
 
44
		;;
-
 
45
	# Safe search activation
-
 
46
	-safesearch_on | --safesearch_on)
-
 
47
		safesearch="On"
-
 
48
		;;
-
 
49
	# Safe search deactivation
-
 
50
	-safesearch_off | --safesearch_off)
-
 
51
		safesearch="Off"
-
 
52
		;;
-
 
53
	# pure_ip activation
-
 
54
	-pureip_on | --pureip_on)
-
 
55
		pureip="On"
-
 
56
		;;
-
 
57
	# pureip deactivation
-
 
58
	-pureip_off | --pureip_off)
-
 
59
		pureip="Off"
-
 
60
		;;
-
 
61
	*)
-
 
62
		echo "Argument inconnu :$arg";
-
 
63
		echo "$usage"
-
 
64
		exit 1
-
 
65
		;;
-
 
66
	esac
-
 
67
nb_args=$(expr $nb_args - 1)
-
 
68
done
-
 
69
 
-
 
70
if [ "$safesearch" == "On" ]
-
 
71
then
-
 
72
	$SED "s?^#\"?\"?g" $DIR_DG/urlregexplist # on décommente les lignes de regles
-
 
73
	# add 'SafeSearch' redirection for google searching
-
 
74
	google_safe_server=`host -ta forcesafesearch.google.com | grep "address" | cut -d" " -f4`	# retrieve google forcesafesearch ip
-
 
75
 
-
 
76
	# config file header
-
 
77
	echo "server:" > $UNBOUND_BL_DOMAIN_FILTER_CONF
-
 
78
 
-
 
79
	for domain in $googledomains
33
	do
80
	do
34
		arg=${!nb_args}
-
 
35
		case $arg in
-
 
36
		-\? | -h* | --h*)
-
 
37
			echo "$usage"
-
 
38
			exit 0
-
 
39
			;;
-
 
40
		# Safe search activation
-
 
41
		-safesearch_on | --safesearch_on)
81
		echo -e "\tlocal-zone: \"$domain\" redirect" >> $UNBOUND_BL_DOMAIN_FILTER_CONF
42
			safesearch="On"
-
 
43
			;;
-
 
44
		# Safe search desactivation
-
 
45
		-safesearch_off | --safesearch_off)
82
		echo -e "\tlocal-data: \"$domain A $google_safe_server\"" >> $UNBOUND_BL_DOMAIN_FILTER_CONF
46
			safesearch="Off"
-
 
47
			;;
-
 
48
		# pure_ip activation
-
 
49
		-pureip_on | --pureip_on)
-
 
50
			pureip="On"
-
 
51
			;;
-
 
52
		# pureip desactivation
-
 
53
		-pureip_off | --pureip_off)
-
 
54
			pureip="Off"
-
 
55
			;;
-
 
56
		*)
-
 
57
			echo "Argument inconnu :$arg";
-
 
58
			echo "$usage"
-
 
59
			exit 1
-
 
60
			;;
-
 
61
		esac
-
 
62
	nb_args=$(expr $nb_args - 1)
-
 
63
	done
83
	done
64
	if [ $safesearch == "On" ]
-
 
65
	then
-
 
66
		$SED "s?^#\"?\"?g" $DIR_DG/urlregexplist # on décommente les lignes de regles
-
 
67
 
84
 
68
		# add 'SafeSearch' redirection for google searching
85
	# add 'SafeSearch' redirection for youtube searching
69
		$SED "/google/d" $DNSMASQ_BL_CONF # remove old google declaration
-
 
70
		google_safe_server=`host -ta forcesafesearch.google.com|cut -d" " -f4`	# retrieve google forcesafesearch ip
86
	youtube_safe_server=`host -ta restrict.youtube.com | grep "address" | cut -d" " -f4`	# retrieve youtube restrict ip
71
		echo "# SafeSearch redirect server for google" >> $DNSMASQ_BL_CONF
-
 
72
		for gg_dnsname in $googledomains
87
	for domain in $youtubedomains
73
		do
88
	do
-
 
89
		echo -e "\tlocal-zone: \"$domain\" redirect" >> $UNBOUND_BL_DOMAIN_FILTER_CONF
74
			echo "address=/$gg_dnsname/$google_safe_server" >> $DNSMASQ_BL_CONF
90
		echo -e "\tlocal-data: \"$domain A $youtube_safe_server\"" >> $UNBOUND_BL_DOMAIN_FILTER_CONF
75
		done
91
	done
76
 
92
 
77
		# add 'SafeSearch' redirection for bing searching
93
	# add 'SafeSearch' redirection for bing searching
78
		$SED "/bing/d" $DNSMASQ_BL_CONF # remove old bing declaration
-
 
79
		bing_safe_server=`host -ta strict.bing.com | grep "address" | cut -d" " -f4`	# retrieve bing strict ip
94
	bing_safe_server=`host -ta strict.bing.com | grep "address" | cut -d" " -f4`	# retrieve bing strict ip
80
		echo "# SafeSearch redirect server for bing" >> $DNSMASQ_BL_CONF
95
	echo -e "\tlocal-zone: \"www.bing.com\" redirect" >> $UNBOUND_BL_DOMAIN_FILTER_CONF
81
		echo "address=/www.bing.com/$bing_safe_server" >> $DNSMASQ_BL_CONF
96
	echo -e "\tlocal-data: \"www.bing.com A $bing_safe_server\"" >> $UNBOUND_BL_DOMAIN_FILTER_CONF
82
 
97
 
83
		# add 'SafeSearch' redirection for youtube searching
98
	# add 'SafeSearch' redirection for qwant searching
84
		$SED "/youtube/d" $DNSMASQ_BL_CONF # remove old youtube declaration
-
 
85
		youtube_safe_server=`host -ta restrict.youtube.com | grep "address" | cut -d" " -f4`	# retrieve youtube restrict ip
99
	qwant_safe_server=`host -ta safeapi.qwant.com | grep "address" | cut -d" " -f4`	# retrieve qwant strict ip
86
		echo "# SafeSearch redirect server for youtube" >> $DNSMASQ_BL_CONF
100
	echo -e "\tlocal-zone: \"api.qwant.com\" redirect" >> $UNBOUND_BL_DOMAIN_FILTER_CONF
87
		for yt_dnsname in $youtubedomains
-
 
88
		do
-
 
89
			echo "address=/$yt_dnsname/$youtube_safe_server" >> $DNSMASQ_BL_CONF
101
	echo -e "\tlocal-data: \"api.qwant.com A $qwant_safe_server\"" >> $UNBOUND_BL_DOMAIN_FILTER_CONF
90
		done
-
 
91
 
102
 
92
		# add 'SafeSearch' redirection for qwant searching
-
 
93
		$SED "/qwant/d" $DNSMASQ_BL_CONF # remove old qwant declaration
103
	$SED 's/^BL_SAFESEARCH=.*/BL_SAFESEARCH=on/g' $CONF_FILE
94
		qwant_safe_server=`host -ta safeapi.qwant.com | grep "address" | cut -d" " -f4`	# retrieve qwant strict ip
-
 
95
		echo "# SafeSearch redirect server for qwant" >> $DNSMASQ_BL_CONF
-
 
96
		echo "address=/api.qwant.com/$qwant_safe_server" >> $DNSMASQ_BL_CONF
-
 
97
	else
-
 
98
		$SED "s?^[^#]?#&?g" $DIR_DG/urlregexplist
-
 
99
		$SED "/google/d" $DNSMASQ_BL_CONF
-
 
100
		$SED "/bing/d" $DNSMASQ_BL_CONF
-
 
101
		$SED "/youtube/d" $DNSMASQ_BL_CONF
-
 
102
		$SED "/qwant/d" $DNSMASQ_BL_CONF
-
 
103
	fi
-
 
104
	if [ $pureip == "On" ]
104
elif [ "$safesearch" == "Off" ]
105
	then
105
then
106
		$SED "s/^\#\*ip$/*ip/g" $DIR_DG/bannedsitelist
106
	$SED "s?^[^#]?#&?g" $DIR_DG/urlregexplist
107
		$SED "s/^\#\*ips$/*ips/g" $DIR_DG/bannedsitelist
107
	[ -e $UNBOUND_BL_DOMAIN_FILTER_CONF ] && rm -f $UNBOUND_BL_DOMAIN_FILTER_CONF
108
	else
108
 
109
		$SED "s/^\*ip$/#*ip/g" $DIR_DG/bannedsitelist
-
 
110
		$SED "s/^\*ips$/#*ips/g" $DIR_DG/bannedsitelist
109
	$SED 's/^BL_SAFESEARCH=.*/BL_SAFESEARCH=off/g' $CONF_FILE
111
	fi
-
 
112
systemctl restart e2guardian
-
 
113
systemctl restart dnsmasq-blacklist
-
 
114
fi
110
fi
-
 
111
 
-
 
112
if [ "$pureip" == "On" ]
-
 
113
then
-
 
114
	$SED "s/^\#\*ip$/*ip/g" $DIR_DG/bannedsitelist
-
 
115
	$SED "s/^\#\*ips$/*ips/g" $DIR_DG/bannedsitelist
-
 
116
 
-
 
117
	$SED 's/^BL_PUREIP=.*/BL_PUREIP=on/g' $CONF_FILE
-
 
118
elif [ "$pureip" == "Off" ]
-
 
119
then
-
 
120
	$SED "s/^\*ip$/#*ip/g" $DIR_DG/bannedsitelist
-
 
121
	$SED "s/^\*ips$/#*ips/g" $DIR_DG/bannedsitelist
-
 
122
 
-
 
123
	$SED 's/^BL_PUREIP=.*/BL_PUREIP=off/g' $CONF_FILE
-
 
124
fi
-
 
125
systemctl restart e2guardian
-
 
126
systemctl restart unbound-blacklist