The time now is Sat 25 May 2013, 16:17
All times are UTC - 4 |
| Author |
Message |
postfs1
Joined: 27 Mar 2010
Posts: 831
|
 Posted: Sat 19 Nov 2011, 18:29 Post subject:
 "FWBuilder" firewall manager in "Quirky Linux 1.40" ! script
Subject description: Tool to manage firewall. |
|
| Quote: |
Install_FWBuilder--sr0.sh
| Code: |
#!/bin/bash
#
cd /room ;
#
curl -C - -O file:///mnt/sr0/FWBuilder/Fedora-11_files/fwbuilder-5.0.0.3568-1.fc11.i586.rpm ;
if [ ! `echo -e "a6176dd3991d29eb092655c41e9746b3 fwbuilder-5.0.0.3568-1.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i fwbuilder-5.0.0.3568-1.fc11.i586.rpm ;
sleep 0.5s ;
rm /room/fwbuilder-5.0.0.3568-1.fc11.i586.rpm ;
rm /room/.md-5.sm ;
#1
curl -C - -O file:///mnt/sr0/FWBuilder/Fedora-11_files/keyutils-libs-1.2-5.fc11.i586.rpm ;
if [ ! `echo -e "247a0ac4b1c56f542f3496d2eec16349 keyutils-libs-1.2-5.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i keyutils-libs-1.2-5.fc11.i586.rpm ;
sleep 0.5s ;
rm /room/keyutils-libs-1.2-5.fc11.i586.rpm ;
rm /room/.md-5.sm ;
#2
curl -C - -O file:///mnt/sr0/FWBuilder/Fedora-11_files/krb5-libs-1.6.3-31.fc11.i586.rpm ;
if [ ! `echo -e "8f4bec783f5fa9a1ab31438a231cbd7e krb5-libs-1.6.3-31.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i krb5-libs-1.6.3-31.fc11.i586.rpm ;
sleep 0.5s ;
rm /room/krb5-libs-1.6.3-31.fc11.i586.rpm ;
rm /room/.md-5.sm ;
#3
curl -C - -O file:///mnt/sr0/FWBuilder/Fedora-11_files/libstdc++-4.4.1-2.fc11.i586.rpm ;
if [ ! `echo -e "96c934cb092bf073ace9c10cce025f44 libstdc++-4.4.1-2.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i libstdc++-4.4.1-2.fc11.i586.rpm ;
sleep 0.5s ;
rm /room/libstdc++-4.4.1-2.fc11.i586.rpm ;
rm /room/.md-5.sm ;
#4
curl -C - -O file:///mnt/sr0/FWBuilder/Fedora-11_files/net-snmp-libs-5.4.2.1-14.fc11.i586.rpm ;
if [ ! `echo -e "1ca102eafd7974005875331ed32330db net-snmp-libs-5.4.2.1-14.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i net-snmp-libs-5.4.2.1-14.fc11.i586.rpm ;
sleep 0.5s ;
rm /room/net-snmp-libs-5.4.2.1-14.fc11.i586.rpm ;
rm /room/.md-5.sm ;
#5
curl -C - -O file:///mnt/sr0/FWBuilder/Fedora-11_files/openssl-0.9.8n-2.fc11.i686.rpm ;
if [ ! `echo -e "2e7dc70ccf871f43e8d37e602b24687b openssl-0.9.8n-2.fc11.i686.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i openssl-0.9.8n-2.fc11.i686.rpm ;
sleep 0.5s ;
rm /room/openssl-0.9.8n-2.fc11.i686.rpm ;
rm /room/.md-5.sm ;
#6
curl -C - -O file:///mnt/sr0/FWBuilder/Fedora-11_files/qt-4.6.2-17.fc11.i586.rpm ;
if [ ! `echo -e "ece4122f0144569432c9bc36f195c49c qt-4.6.2-17.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i qt-4.6.2-17.fc11.i586.rpm ;
sleep 0.5s ;
rm /room/qt-4.6.2-17.fc11.i586.rpm ;
rm /room/.md-5.sm ;
#7
curl -C - -O file:///mnt/sr0/FWBuilder/Fedora-11_files/qt-x11-4.6.2-17.fc11.i586.rpm ;
if [ ! `echo -e "4270840a05873869b00a9d42c1ad703b qt-x11-4.6.2-17.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i qt-x11-4.6.2-17.fc11.i586.rpm ;
sleep 0.5s ;
rm /room/qt-x11-4.6.2-17.fc11.i586.rpm ;
rm /room/.md-5.sm ;
#8
curl -C - -O file:///mnt/sr0/FWBuilder/Fedora-11_files/libselinux-2.0.80-1.fc11.i586.rpm ;
if [ ! `echo -e "a33dd8be6e63530f3babeec2e3c03019 libselinux-2.0.80-1.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i libselinux-2.0.80-1.fc11.i586.rpm ;
sleep 0.5s ;
rm /room/libselinux-2.0.80-1.fc11.i586.rpm ;
rm /room/.md-5.sm ;
#9
#
# # #
#
#Sensors. >>>
curl -C - -O file:///mnt/sr0/FWBuilder/Fedora-11_files/lm_sensors-3.1.0-1.fc11.i586.rpm ;
if [ ! `echo -e "1b525876a63e0e1b44dec0f12b8a1493 lm_sensors-3.1.0-1.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i lm_sensors-3.1.0-1.fc11.i586.rpm ;
sleep 0.5s ;
rm /room/lm_sensors-3.1.0-1.fc11.i586.rpm ;
rm /room/.md-5.sm ;
#1
#
rm /usr/bin/perlthanks /usr/bin/perlivp /usr/bin/perldoc ;
rm /usr/bin/perl /usr/bin/perlbug /usr/bin/perl5.10.1 ;
rm -r /usr/lib/perl5 ;
#
curl -C - -O file:///mnt/sr0/FWBuilder/Fedora-11_files/perl-5.10.0-82.fc11.i586.rpm ;
if [ ! `echo -e "175f93681b9bd4a69e7ee1d082f37b92 perl-5.10.0-82.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i perl-5.10.0-82.fc11.i586.rpm ;
sleep 0.5s ;
rm /room/perl-5.10.0-82.fc11.i586.rpm ;
rm /room/.md-5.sm ;
#2
curl -C - -O file:///mnt/sr0/FWBuilder/Fedora-11_files/perl-libs-5.10.0-82.fc11.i586.rpm ;
if [ ! `echo -e "1ac4c25aeea0c6793066147db5e06a04 perl-libs-5.10.0-82.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i perl-libs-5.10.0-82.fc11.i586.rpm ;
sleep 0.5s ;
rm /room/perl-libs-5.10.0-82.fc11.i586.rpm ;
rm /room/.md-5.sm ;
#3
#
# # #
#
cat /etc/init.d/lm_sensors | \
sed -e 's|. /etc/init.d/functions|. /etc/rc.d/functions|' > /etc/init.d/lm_sensors ;
yes | sensors-detect ;
/etc/init.d/lm_sensors start 2>/dev/null | xmessage `cat` ;
#
#<<< Sensors.
#
# # #
#
#For on-line lesson >>>
#
#http://www.youtube.com/v/Q5GPrkwyGxw&hl=en_US&feature=player_embedded&version=3
#http://www.youtube.com/watch?v=Q5GPrkwyGxw&hl=en_US&feature=player_embedded&version=3
#
if [ -f /usr/bin/icecat-3.6.16-i686/icecat ] ; then
ln -s -f /usr/bin/icecat-3.6.16-i686/icecat /usr/bin/firefox ;
elif [ -f /usr/local/bin/icecat-3.6.16-i686/icecat ] ; then
ln -s -f /usr/local/bin/icecat-3.6.16-i686/icecat /usr/bin/firefox ;
else echo -e "If there is no web-browser in the system then\n the watching of tutorial videos is unavailable." | xmessage -file - ;
fi ;
# <<<
#
# # #
#
#
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#http://www.fwbuilder.org/4.0/docs/users_guide/install_with_regular_user.html = Copyrighted content.
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#
# # #
#
#http://sourceforge.net/projects/fwbuilder/forums/forum/16372/topic/3900942
#
# # #
#
#"Firewall Builder"://Edit/Preferences/Installer >>>
#/usr/local/bin/.cfb = scp
#/usr/local/bin/.afb = instead of ssh
#<<<
#
# # #
#
ln -s /usr/sbin/iptables /sbin/iptables ;
ln -s /bin/ip /sbin/ip ;
#
mkdir -m 0700 -p /var/lib/.fb ;
mkdir -m 0700 -p /etc/fw ;
echo '#!/bin/bash' > /usr/local/bin/.cfb ;
echo "cp /var/lib/.fb/fb.fw /etc/fw" >> /usr/local/bin/.cfb ;
chmod 0700 /usr/local/bin/.cfb ;
#
echo '#!/bin/bash' > /usr/local/bin/.afb ;
echo "sh /etc/fw/fb.fw start" >> /usr/local/bin/.afb ;
chmod 0700 /usr/local/bin/.afb ;
#
# # #
#
cd /var/lib/.fb/ ;
curl -C - -O file:///mnt/sr0/FWBuilder/Packed_Files/fb.fwb.gz ;
if [ ! `echo -e "1a82d3d38959e9881ec08520cfcae0bc fb.fwb.gz" | md5sum -c - >/var/lib/.fb/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /var/lib/.fb/.md-5.sm` ] ; then xmessage -file /var/lib/.fb/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /var/lib/.fb/.md-5.sm`" ; fi ;
gunzip -d fb.fwb.gz ;
sleep 0.5s ;
rm /var/lib/.fb/.md-5.sm ;
cd /room ;
#1
#
# # #
#
rm /usr/share/applications/fwbuilder.desktop ;
#
sed -i".tmp" '/"FWBuild"/d' /root/Choices/ROX-Filer/PuppyPin ;
#
echo '[Desktop Entry]' > /usr/share/applications/FWBldr.desktop ;
echo 'Name=Firewall Builder' >> /usr/share/applications/FWBldr.desktop ;
echo 'Comment=Design and Manage Firewall Rules' >> /usr/share/applications/FWBldr.desktop ;
echo 'Icon=/usr/share/icons/hicolor/48x48/apps/fwbuilder.png' >> /usr/share/applications/FWBldr.desktop ;
echo 'Categories=Network;' >> /usr/share/applications/FWBldr.desktop ;
#
#Don't touch this >>>
#Exec=bash -c 'bash -c "`Xdialog --title \"FWBuilder\" --no-tags --radiolist \"\" 15 38 10 \"fwbuilder\" \"-=FWBuilder=-\" off \"cd /var/lib/.fb/ ; curl -C - -O file:///mnt/sr0/FWBuilder/Packed_Files/fb.fwb.gz ; gunzip -f -d fb.fwb.gz\" \"-=To RECEIVE file with settings=-\" off \"rm /var/lib/.fb/fb.fwb /var/lib/.fb/fb.fw /etc/fw/fb.fw\" \"-=To DELETE files with settings=-\" off \"echo -e \"'\''\"\`dmesg|grep DENY|tail -10|cut --delimiter=" " -f4-6,8-9,15-18\`\"'\''\"|xmessage -file -\" \"-=Blocked Packets=-\" on 2>&1`"'
grep '\-\-radiolist' /mnt/sr0/FWBuilder/Install_FWBuilder--sr0.sh | grep -v "Install_FWBuilder--sr0.sh" | sed 's/#//' >> /usr/share/applications/FWBldr.desktop ;
# <<<
#
echo 'Type=Application' >> /usr/share/applications/FWBldr.desktop ;
echo 'StartupNotify=true' >> /usr/share/applications/FWBldr.desktop ;
echo 'Terminal=false' >> /usr/share/applications/FWBldr.desktop ;
#ok...
sed -i".tmp" '/\/pinboard/d' /root/Choices/ROX-Filer/PuppyPin ;
sleep 1s ;
echo '<icon x="224" y="284" label="FWBuild">/usr/share/applications/FWBldr.desktop</icon>' >> /root/Choices/ROX-Filer/PuppyPin ;
echo '</pinboard>' >> /root/Choices/ROX-Filer/PuppyPin ;
sleep 1s ;
#
# # #
#
rox -p=/root/Choices/ROX-Filer/PuppyPin ;
fixmenus ;
echo -e "Application -=FWBuilder=- has been installed." | xmessage -file - `jwm -restart`
|
Edit: 2012, apr 18.
|
---------------------------------------------------------------------------------------
|-<>-|-<>-|-<>-|-<>-|-<>-|-<>-|-<>-|-<>-|-<>-|-<>-|-<>-|-<>-|-<>-|-<>-|-<>-|-<>-|
---------------------------------------------------------------------------------------
| Quote: |
Install_Firewall-Rules--sr0.sh
| Code: |
#!/bin/bash
#
#Before use of this file ACTIVATE network card, please.
#
# # #
#
#This is the result of use of the "FWBuilder" program.
#
#What is allowed: "http" and "https"
#
# # #
#
#To see current firewall rules >>>
#iptables -L -n
# <<<
#
ln -s -f /usr/sbin/iptables /sbin/iptables ;
ln -s -f /bin/ip /sbin/ip ;
#
# # #
#
mkdir -p /etc/fw ;
cd /etc/fw/ ;
#
curl -C - -O file:///mnt/sr0/FWBuilder/Result_of_FWBuilder/fb.fw.gz ;
if [ ! `echo -e "f10efa4c073afb6e53d1f44972d5b242 fb.fw.gz" | md5sum -c - >/etc/fw/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /etc/fw/.md-5.sm` ] ; then xmessage -file /etc/fw/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /etc/fw/.md-5.sm`" ; fi ;
gunzip -d fb.fw.gz ;
sleep 0.5s ;
rm /etc/fw/.md-5.sm ;
#1
sh /etc/fw/fb.fw | xmessage -file - ;
sleep 0.5s ;
rm /etc/fw/fb.fw ;
#
# # #
#
echo '[Desktop Entry]' > /usr/share/applications/FWRslt.desktop ;
echo 'Name=Firewall Builder - Result' >> /usr/share/applications/FWRslt.desktop ;
echo 'Comment=See the result of current firewall rules' >> /usr/share/applications/FWRslt.desktop ;
echo 'Icon=/usr/local/lib/X11/themes/Smooth-Color/clipboard48.png' >> /usr/share/applications/FWRslt.desktop ;
echo 'Categories=Network;' >> /usr/share/applications/FWRslt.desktop ;
#
#Don't touch this >>>
#Exec=bash -c 'bash -c "`Xdialog --title \"FWBuilder - Results\" --no-tags --radiolist \"\" 10 30 10 \"echo -e \"'\''\"\`dmesg|grep DENY|tail -10|cut --delimiter=" " -f4-6,8-9,15-18\`\"'\''\"|xmessage -file -\" \"-=Blocked Packets=-\" on 2>&1`"'
grep '\-\-radiolist' /mnt/sr0/FWBuilder/Install_Firewall-Rules--sr0.sh | grep -v "Install_Firewall-Rules--sr0.sh" | sed 's/#//' >> /usr/share/applications/FWRslt.desktop ;
# <<<
#
echo 'Type=Application' >> /usr/share/applications/FWRslt.desktop ;
echo 'StartupNotify=true' >> /usr/share/applications/FWRslt.desktop ;
echo 'Terminal=false' >> /usr/share/applications/FWRslt.desktop ;
#
# # #
#
rox -p=/root/Choices/ROX-Filer/PuppyPin ;
fixmenus ;
echo -e "-=Firewall Rules=- program has been executed." | xmessage -file - `jwm -restart`
|
fb.fw  http://www.murga-linux.com/puppy/viewtopic.php?p=641967#641967
Edit: 2011, nov 19.
|
A script's content can be copied into text editor by means of <Quote> mode.
_________________
- I don't know why laboratories are named a hospitals.
- The alive personage is like a tea bag with granules of unknown density inside, at that one the packet was made of organic material and was placed in the evaporated liquid or liquid.
Last edited by postfs1 on Sun 22 Jul 2012, 13:57; edited 1 time in total
|
|
Back to top
|
|
 |
postfs1
Joined: 27 Mar 2010
Posts: 831
|
| Posted: Sat 21 Jul 2012, 16:31 Post subject:
|
|
| Quote: |
fb.fw
| Code: |
#!/bin/sh
#
# This is automatically generated file. DO NOT MODIFY !
#
# Firewall Builder fwb_ipt v5.0.0.3568
#
# Generated Thu Sep 1 11:25:25 2011 GMT by root
#
# files: * fb.fw /etc/fb.fw
#
# Compiled for iptables (any version)
#
# This is an example of a firewall protecting a host ( a server or a workstation). Only SSH access to the host is permitted. Host has dynamic address.
FWBDEBUG=""
PATH="/sbin:/usr/sbin:/bin:/usr/bin:${PATH}"
export PATH
LSMOD="/sbin/lsmod"
MODPROBE="/sbin/modprobe"
IPTABLES="/sbin/iptables"
IP6TABLES="/sbin/ip6tables"
IPTABLES_RESTORE="/sbin/iptables-restore"
IP6TABLES_RESTORE="/sbin/ip6tables-restore"
IP="/sbin/ip"
IFCONFIG="/sbin/ifconfig"
VCONFIG="/sbin/vconfig"
BRCTL="/sbin/brctl"
IFENSLAVE="/sbin/ifenslave"
IPSET="/usr/sbin/ipset"
LOGGER="/usr/bin/logger"
log() {
echo "$1"
command -v "$LOGGER" >/dev/null 2>&1 && $LOGGER -p info "$1"
}
getInterfaceVarName() {
echo $1 | sed 's/\./_/'
}
getaddr_internal() {
dev=$1
name=$2
af=$3
L=$($IP $af addr show dev $dev | sed -n '/inet/{s!.*inet6* !!;s!/.*!!p}' | sed 's/peer.*//')
test -z "$L" && {
eval "$name=''"
return
}
eval "${name}_list=\"$L\""
}
getnet_internal() {
dev=$1
name=$2
af=$3
L=$($IP route list proto kernel | grep $dev | grep -v default | sed 's! .*$!!')
test -z "$L" && {
eval "$name=''"
return
}
eval "${name}_list=\"$L\""
}
getaddr() {
getaddr_internal $1 $2 "-4"
}
getaddr6() {
getaddr_internal $1 $2 "-6"
}
getnet() {
getnet_internal $1 $2 "-4"
}
getnet6() {
getnet_internal $1 $2 "-6"
}
# function getinterfaces is used to process wildcard interfaces
getinterfaces() {
NAME=$1
$IP link show | grep ": $NAME" | while read L; do
OIFS=$IFS
IFS=" :"
set $L
IFS=$OIFS
echo $2
done
}
diff_intf() {
func=$1
list1=$2
list2=$3
cmd=$4
for intf in $list1
do
echo $list2 | grep -q $intf || {
# $vlan is absent in list 2
$func $intf $cmd
}
done
}
find_program() {
PGM=$1
command -v $PGM >/dev/null 2>&1 || {
echo "$PGM not found"
exit 1
}
}
check_tools() {
find_program $IPTABLES
find_program $MODPROBE
find_program $IP
}
reset_iptables_v4() {
$IPTABLES -P OUTPUT DROP
$IPTABLES -P INPUT DROP
$IPTABLES -P FORWARD DROP
cat /proc/net/ip_tables_names | while read table; do
$IPTABLES -t $table -L -n | while read c chain rest; do
if test "X$c" = "XChain" ; then
$IPTABLES -t $table -F $chain
fi
done
$IPTABLES -t $table -X
done
}
reset_iptables_v6() {
$IP6TABLES -P OUTPUT DROP
$IP6TABLES -P INPUT DROP
$IP6TABLES -P FORWARD DROP
cat /proc/net/ip6_tables_names | while read table; do
$IP6TABLES -t $table -L -n | while read c chain rest; do
if test "X$c" = "XChain" ; then
$IP6TABLES -t $table -F $chain
fi
done
$IP6TABLES -t $table -X
done
}
P2P_INTERFACE_WARNING=""
missing_address() {
address=$1
cmd=$2
oldIFS=$IFS
IFS="@"
set $address
addr=$1
interface=$2
IFS=$oldIFS
$IP addr show dev $interface | grep -q POINTOPOINT && {
test -z "$P2P_INTERFACE_WARNING" && echo "Warning: Can not update address of interface $interface. fwbuilder can not manage addresses of point-to-point interfaces yet"
P2P_INTERFACE_WARNING="yes"
return
}
test "$cmd" = "add" && {
echo "# Adding ip address: $interface $addr"
echo $addr | grep -q ':' && {
$FWBDEBUG $IP addr $cmd $addr dev $interface
} || {
$FWBDEBUG $IP addr $cmd $addr broadcast + dev $interface
}
}
test "$cmd" = "del" && {
echo "# Removing ip address: $interface $addr"
$FWBDEBUG $IP addr $cmd $addr dev $interface || exit 1
}
$FWBDEBUG $IP link set $interface up
}
list_addresses_by_scope() {
interface=$1
scope=$2
ignore_list=$3
$IP addr ls dev $interface | \
awk -v IGNORED="$ignore_list" -v SCOPE="$scope" \
'BEGIN {
split(IGNORED,ignored_arr);
for (a in ignored_arr) {ignored_dict[ignored_arr[a]]=1;}
}
(/inet |inet6 / && $0 ~ SCOPE && !($2 in ignored_dict)) {print $2;}' | \
while read addr; do
echo "${addr}@$interface"
done | sort
}
update_addresses_of_interface() {
ignore_list=$2
set $1
interface=$1
shift
FWB_ADDRS=$(
for addr in $*; do
echo "${addr}@$interface"
done | sort
)
CURRENT_ADDRS_ALL_SCOPES=""
CURRENT_ADDRS_GLOBAL_SCOPE=""
$IP link show dev $interface >/dev/null 2>&1 && {
CURRENT_ADDRS_ALL_SCOPES=$(list_addresses_by_scope $interface 'scope .*' "$ignore_list")
CURRENT_ADDRS_GLOBAL_SCOPE=$(list_addresses_by_scope $interface 'scope global' "$ignore_list")
} || {
echo "# Interface $interface does not exist"
# Stop the script if we are not in test mode
test -z "$FWBDEBUG" && exit 1
}
diff_intf missing_address "$FWB_ADDRS" "$CURRENT_ADDRS_ALL_SCOPES" add
diff_intf missing_address "$CURRENT_ADDRS_GLOBAL_SCOPE" "$FWB_ADDRS" del
}
clear_addresses_except_known_interfaces() {
$IP link show | sed 's/://g' | awk -v IGNORED="$*" \
'BEGIN {
split(IGNORED,ignored_arr);
for (a in ignored_arr) {ignored_dict[ignored_arr[a]]=1;}
}
(/state/ && !($2 in ignored_dict)) {print $2;}' | \
while read intf; do
echo "# Removing addresses not configured in fwbuilder from interface $intf"
$FWBDEBUG $IP addr flush dev $intf scope global
$FWBDEBUG $IP link set $intf down
done
}
check_file() {
test -r "$2" || {
echo "Can not find file $2 referenced by address table object $1"
exit 1
}
}
check_run_time_address_table_files() {
:
}
load_modules() {
:
OPTS=$1
MODULES_DIR="/lib/modules/`uname -r`/kernel/net/"
MODULES=$(find $MODULES_DIR -name '*conntrack*' \! -name '*ipv6*'|sed -e 's/^.*\///' -e 's/\([^\.]\)\..*/\1/')
echo $OPTS | grep -q nat && {
MODULES="$MODULES $(find $MODULES_DIR -name '*nat*'|sed -e 's/^.*\///' -e 's/\([^\.]\)\..*/\1/')"
}
echo $OPTS | grep -q ipv6 && {
MODULES="$MODULES $(find $MODULES_DIR -name nf_conntrack_ipv6|sed -e 's/^.*\///' -e 's/\([^\.]\)\..*/\1/')"
}
for module in $MODULES; do
if $LSMOD | grep ${module} >/dev/null; then continue; fi
$MODPROBE ${module} || exit 1
done
}
verify_interfaces() {
:
echo "Verifying interfaces: eth0 lo"
for i in eth0 lo ; do
$IP link show "$i" > /dev/null 2>&1 || {
log "Interface $i does not exist"
exit 1
}
done
}
prolog_commands() {
echo "Running prolog script"
}
epilog_commands() {
echo "Running epilog script"
}
run_epilog_and_exit() {
epilog_commands
exit $1
}
configure_interfaces() {
:
# Configure interfaces
update_addresses_of_interface "eth0 55.105.105.55/45" ""
update_addresses_of_interface "lo 127.0.0.1/8" ""
}
script_body() {
# ================ IPv4
# ================ Table 'filter', automatic rules
# accept established sessions
$IPTABLES -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
$IPTABLES -A OUTPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
$IPTABLES -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
# ================ Table 'filter', rule set Policy
#
# Rule 0 (eth0)
#
echo "Rule 0 (eth0)"
#
# anti spoofing rule
$IPTABLES -N In_RULE_0
$IPTABLES -A INPUT -i eth0 -s 55.105.105.55 -m state --state NEW -j In_RULE_0
$IPTABLES -A FORWARD -i eth0 -s 55.105.105.55 -m state --state NEW -j In_RULE_0
$IPTABLES -A In_RULE_0 -j LOG --log-level notice --log-prefix "RULE 0 -- DENY "
$IPTABLES -A In_RULE_0 -j DROP
#
# Rule 1 (lo)
#
echo "Rule 1 (lo)"
#
$IPTABLES -A INPUT -i lo -m state --state NEW -j ACCEPT
$IPTABLES -A OUTPUT -o lo -m state --state NEW -j ACCEPT
#
# Rule 2 (global)
#
echo "Rule 2 (global)"
#
# useful ICMP
# types; ping request
$IPTABLES -N Cid4148X4848.0
$IPTABLES -A OUTPUT -d 55.105.105.55 -j Cid4148X4848.0
$IPTABLES -N RULE_2
$IPTABLES -A Cid4148X4848.0 -p icmp -m icmp --icmp-type 3 -j RULE_2
$IPTABLES -A Cid4148X4848.0 -p icmp -m icmp --icmp-type 0/0 -j RULE_2
$IPTABLES -A Cid4148X4848.0 -p icmp -m icmp --icmp-type 8/0 -j RULE_2
$IPTABLES -A Cid4148X4848.0 -p icmp -m icmp --icmp-type 11/0 -j RULE_2
$IPTABLES -A Cid4148X4848.0 -p icmp -m icmp --icmp-type 11/1 -j RULE_2
$IPTABLES -A INPUT -p icmp -m icmp --icmp-type 3 -j RULE_2
$IPTABLES -A INPUT -p icmp -m icmp --icmp-type 0/0 -j RULE_2
$IPTABLES -A INPUT -p icmp -m icmp --icmp-type 8/0 -j RULE_2
$IPTABLES -A INPUT -p icmp -m icmp --icmp-type 11/0 -j RULE_2
$IPTABLES -A INPUT -p icmp -m icmp --icmp-type 11/1 -j RULE_2
$IPTABLES -A RULE_2 -j LOG --log-level notice --log-prefix "RULE 2 -- DENY "
$IPTABLES -A RULE_2 -j DROP
#
# Rule 3 (eth0)
#
echo "Rule 3 (eth0)"
#
$IPTABLES -A OUTPUT -o eth0 -p tcp -m tcp --sport 1024:65535 --dport 1024:65535 -m state --state NEW -j ACCEPT
$IPTABLES -A OUTPUT -o eth0 -p tcp -m tcp --sport 1024:65535 --dport 80 -m state --state NEW -j ACCEPT
$IPTABLES -A OUTPUT -o eth0 -p tcp -m tcp --sport 1024:65535 --dport 53 -m state --state NEW -j ACCEPT
$IPTABLES -A OUTPUT -o eth0 -p tcp -m tcp --sport 1024:65535 --dport 443 -m state --state NEW -j ACCEPT
$IPTABLES -A OUTPUT -o eth0 -p udp -m udp --sport 1024:65535 --dport 1024:65535 -m state --state NEW -j ACCEPT
$IPTABLES -A OUTPUT -o eth0 -p udp -m udp --sport 1024:65535 --dport 80 -m state --state NEW -j ACCEPT
$IPTABLES -A OUTPUT -o eth0 -p udp -m udp --sport 1024:65535 --dport 53 -m state --state NEW -j ACCEPT
$IPTABLES -A OUTPUT -o eth0 -p udp -m udp --sport 1024:65535 --dport 443 -m state --state NEW -j ACCEPT
#
# Rule 4 (global)
#
echo "Rule 4 (global)"
#
$IPTABLES -N RULE_4
$IPTABLES -A OUTPUT -m state --state NEW -j RULE_4
$IPTABLES -A INPUT -m state --state NEW -j RULE_4
$IPTABLES -A FORWARD -m state --state NEW -j RULE_4
$IPTABLES -A RULE_4 -j LOG --log-level notice --log-prefix "RULE 4 -- DENY "
$IPTABLES -A RULE_4 -j DROP
}
ip_forward() {
:
echo 1 > /proc/sys/net/ipv4/ip_forward
}
reset_all() {
:
reset_iptables_v4
}
block_action() {
reset_all
}
stop_action() {
reset_all
$IPTABLES -P OUTPUT ACCEPT
$IPTABLES -P INPUT ACCEPT
$IPTABLES -P FORWARD ACCEPT
}
check_iptables() {
IP_TABLES="$1"
[ ! -e $IP_TABLES ] && return 151
NF_TABLES=$(cat $IP_TABLES 2>/dev/null)
[ -z "$NF_TABLES" ] && return 152
return 0
}
status_action() {
check_iptables "/proc/net/ip_tables_names"
ret_ipv4=$?
check_iptables "/proc/net/ip6_tables_names"
ret_ipv6=$?
[ $ret_ipv4 -eq 0 -o $ret_ipv6 -eq 0 ] && return 0
[ $ret_ipv4 -eq 151 -o $ret_ipv6 -eq 151 ] && {
echo "iptables modules are not loaded"
}
[ $ret_ipv4 -eq 152 -o $ret_ipv6 -eq 152 ] && {
echo "Firewall is not configured"
}
exit 3
}
# See how we were called.
# For backwards compatibility missing argument is equivalent to 'start'
cmd=$1
test -z "$cmd" && {
cmd="start"
}
case "$cmd" in
start)
log "Activating firewall script generated Thu Sep 1 11:25:25 2011 by root"
check_tools
prolog_commands
check_run_time_address_table_files
load_modules " "
configure_interfaces
verify_interfaces
reset_all
script_body
ip_forward
epilog_commands
RETVAL=$?
;;
stop)
stop_action
RETVAL=$?
;;
status)
status_action
RETVAL=$?
;;
block)
block_action
RETVAL=$?
;;
reload)
$0 stop
$0 start
RETVAL=$?
;;
interfaces)
configure_interfaces
RETVAL=$?
;;
test_interfaces)
FWBDEBUG="echo"
configure_interfaces
RETVAL=$?
;;
*)
echo "Usage $0 [start|stop|status|block|reload|interfaces|test_interfaces]"
;;
esac
exit $RETVAL
|
Edit: 2012, jul 22.
|
A script's content can be copied into text editor by means of <Quote> mode.
_________________
- I don't know why laboratories are named a hospitals.
- The alive personage is like a tea bag with granules of unknown density inside, at that one the packet was made of organic material and was placed in the evaporated liquid or liquid.
|
|
Back to top
|
|
|
postfs1
Joined: 27 Mar 2010
Posts: 831
|
| Posted: Sun 22 Jul 2012, 13:58 Post subject:
|
|
| Quote: |
AdditionTo--Install_Firewall-Rules--sr0.sh
| Code: |
#!/bin/bash
#
#SRC: http://ubuntuforums.org/showthread.php?t=1188099
#SRC: https://www.honeynet.org/node/691
#
#Not available as built-in in -=Quirky Linux - 1.40=- ===>
#http://dekne.wordpress.com/2009/05/24/configuring-layer7-iptables-1-4-3-2-on-slackware-12-kernel-2-6-21/
#iptables -A FORWARD -m layer7 –l7proto msnmessenger -j DROP
#<=== Not available as built-in in -=Quirky Linux - 1.40=-
#
#!
#iptables -m owner --help
#!
#
#iptables -v –L #Statistics of traffic
#
#iptables -L -n # = iptables -t filter -L -n #filter table
#
#iptables -t nat -L -n #nat table
#
#
# # #
#
#history -c >/root/.history ; printf '\ec'
#
# # # - - - - - - - - - - - - - - - - Rule 21 - - - - - - - - - - - - - - - - -
#
echo "Rule 21 (global)"
iptables -N RULE_21
iptables -I OUTPUT ! -o lo -m owner --gid-owner root -j RULE_21
iptables -I OUTPUT -o lo -m owner --gid-owner root ! -d 127.0.0.1/255.0.0.0 -j RULE_21
iptables -I RULE_21 -j LOG --log-level notice --log-prefix "RULE 21 -- DENY "
iptables -I RULE_21 -j DROP
# . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . first_variants >>
# # #iptables -I OUTPUT 1 -m owner --gid-owner root -j LOG ;
# # #iptables -I OUTPUT 1 -m owner --gid-owner root ! -d 127.0.0.1/255.0.0.0 -j DROP
# # # # #iptables -I OUTPUT 1 -m owner --gid-owner root -j DROP ;
# . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . << first_variants
#
# # #
#
#! To delete the RULES ===> !
# echo "Rule 21 (global)"
# iptables -D OUTPUT ! -o lo -m owner --gid-owner root -j RULE_21
# iptables -D OUTPUT -o lo -m owner --gid-owner root ! -d 127.0.0.1/255.0.0.0 -j RULE_21
# iptables -D RULE_21 -j LOG --log-level notice --log-prefix "RULE 21 -- DENY "
# iptables -D RULE_21 -j DROP
# iptables -X RULE_21
#! <=== To delete the RULES !
# . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . first_variants >>
# # #iptables -D OUTPUT -m owner --gid-owner root ! -d 127.0.0.1/255.0.0.0 -j DROP # <--- To delete the RULE
# # #iptables -D OUTPUT -m owner --gid-owner root -j LOG # <--- To delete the RULE
# # #
# # # # #iptables -D OUTPUT -m owner --gid-owner root -j DROP # <--- To delete the RULE
# . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . << first_variants
#
# # # - - - - - - - - - - - - - - - - Rule 21 - - - - - - - - - - - - - - - - -
#
#
# # # - - - - - - - - - - - - - - - - Rule 22 - - - - - - - - - - - - - - - - -
#
echo "Rule 22 (global)"
iptables -N RULE_22
iptables -I OUTPUT ! -o lo -m owner --gid-owner nobody -j RULE_22
iptables -I OUTPUT -o lo -m owner --gid-owner nobody ! -d 127.0.0.1/255.0.0.0 -j RULE_22
iptables -I RULE_22 -j LOG --log-level notice --log-prefix "RULE 22 -- DENY "
iptables -I RULE_22 -j DROP
#
# # #
#
#! To delete the RULES ===> !
# echo "Rule 22 (global)"
# iptables -D OUTPUT ! -o lo -m owner --gid-owner nobody -j RULE_22
# iptables -D OUTPUT -o lo -m owner --gid-owner nobody ! -d 127.0.0.1/255.0.0.0 -j RULE_22
# iptables -D RULE_22 -j LOG --log-level notice --log-prefix "RULE 22 -- DENY "
# iptables -D RULE_22 -j DROP
# iptables -X RULE_22
#! <=== To delete the RULES !
#
# # # - - - - - - - - - - - - - - - - Rule 22 - - - - - - - - - - - - - - - - -
#
#
# # # - - - - - - - - - - - - - - - - Rule 23 - - - - - - - - - - - - - - - - -
#
echo "Rule 23 (global)"
iptables -N RULE_23
iptables -I OUTPUT ! -o lo -m owner --gid-owner daemon -j RULE_23
iptables -I OUTPUT -o lo -m owner --gid-owner daemon ! -d 127.0.0.1/255.0.0.0 -j RULE_23
iptables -I RULE_23 -j LOG --log-level notice --log-prefix "RULE 23 -- DENY "
iptables -I RULE_23 -j DROP
#
# # #
#
#! To delete the RULES ===> !
# echo "Rule 23 (global)"
# iptables -D OUTPUT ! -o lo -m owner --gid-owner daemon -j RULE_23
# iptables -D OUTPUT -o lo -m owner --gid-owner daemon ! -d 127.0.0.1/255.0.0.0 -j RULE_23
# iptables -D RULE_23 -j LOG --log-level notice --log-prefix "RULE 23 -- DENY "
# iptables -D RULE_23 -j DROP
# iptables -X RULE_23
#! <=== To delete the RULES !
#
# # # - - - - - - - - - - - - - - - - Rule 23 - - - - - - - - - - - - - - - - -
#
#
# # # - - - - - - - - - - - - - - - - Rule 24 - - - - - - - - - - - - - - - - -
#
echo "Rule 24 (global)"
iptables -N RULE_24
iptables -I OUTPUT ! -o lo -m owner --gid-owner bin -j RULE_24
iptables -I OUTPUT -o lo -m owner --gid-owner bin ! -d 127.0.0.1/255.0.0.0 -j RULE_24
iptables -I RULE_24 -j LOG --log-level notice --log-prefix "Rule 24 -- DENY "
iptables -I RULE_24 -j DROP
#
# # #
#
#! To delete the RULES ===> !
# echo "Rule 24 (global)"
# iptables -D OUTPUT ! -o lo -m owner --gid-owner bin -j RULE_24
# iptables -D OUTPUT -o lo -m owner --gid-owner bin ! -d 127.0.0.1/255.0.0.0 -j RULE_24
# iptables -D RULE_24 -j LOG --log-level notice --log-prefix "Rule 24 -- DENY "
# iptables -D RULE_24 -j DROP
# iptables -X RULE_24
#! <=== To delete the RULES !
#
# # # - - - - - - - - - - - - - - - - Rule 24 - - - - - - - - - - - - - - - - -
#
#
# # # - - - - - - - - - - - - - - - - Rule 25 - - - - - - - - - - - - - - - - -
#
echo "Rule 25 (global)"
iptables -N RULE_25
iptables -I OUTPUT ! -o eth0 -m owner --gid-owner spot -j RULE_25
iptables -I OUTPUT ! -o eth0 -m owner --gid-owner spot -d 55.105.105.55 -j RULE_25
iptables -I OUTPUT -o lo -m owner --gid-owner spot -j RULE_25
iptables -I RULE_25 -j LOG --log-level notice --log-prefix "Rule 25 -- DENY "
iptables -I RULE_25 -j DROP
#
# # #
#
#! To delete the RULES ===> !
# echo "Rule 25 (global)"
# iptables -D OUTPUT ! -o eth0 -m owner --gid-owner spot -j RULE_25
# iptables -D OUTPUT ! -o eth0 -m owner --gid-owner spot -d 55.105.105.55 -j RULE_25
# iptables -D OUTPUT -o lo -m owner --gid-owner spot -j RULE_25
# iptables -D RULE_25 -j LOG --log-level notice --log-prefix "Rule 25 -- DENY "
# iptables -D RULE_25 -j DROP
# iptables -X RULE_25
#! <=== To delete the RULES !
#
# # # - - - - - - - - - - - - - - - - Rule 25 - - - - - - - - - - - - - - - - -
#
#
# # #
#
chown -R spot:spot /usr/bin/icecat-3.6.16-i686 ;
chown -R spot:spot /usr/lib/mozilla ;
chown -R spot:spot /dev/snd ;
#
# # #
#
#
#'su spot' in rxvt
#FIRST variant ---> '/usr/bin/icecat-3.6.16-i686/icecat &>/dev/null' in rxvt
#
#
# # # NEW variant --->
#
#LD_LIBRARY_PATH=/usr/bin/icecat-3.6.16-i686 /usr/bin/icecat-3.6.16-i686/icecat-bin &>/dev/null
#
#history -c >/root/spot/.bash_history ; printf '\ec'
#
# # # <--- NEW variant
#
#
echo -e "-=AdditionTo--Install_Firewall-Rules--sr0=- script has been executed." | xmessage -file -
|
Edit: 2012, aug 05.
|
-=! -d 127.0.0.1=- is the hole here for such a programs as -=iprelay=-.
Also, there is a built-in program -=nc=- in the -=Quirky Linux - 1.40=-, and i would like to block the -=nc=-. Info about the -=nc=- is here: http://www.hackinglinuxexposed.com/articles/20040830.html
Information about the web page: Copyright Brian Hatch, 2004.
Solution:
| Quote: |
AttemptToBlock--nc_telnet_ftpput_ftpget_httpd_iptunnel_tftp--v1.sh
| Code: |
#!/bin/bash
#
#-=busybox=- was edited in -=bless=- and the name is a little bit different.
#Not good news: busybox [function] [arguments]... or: function [arguments]...
#
#By the way, there is the -=socat=- program at some users.
#
cd /tmp ;
#
curl -C - -O file:///mnt/sdb1/0_BackUp/0_INSTALL/To_Block_NC_and_MorePrograms/Packed_files/nc_v1.tar.xz ;
if [ ! `echo -e "0ded3f5cafde07272ea473eb4573995a nc_v1.tar.xz" | md5sum -c - >/tmp/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /tmp/.md-5.sm` ] ; then xmessage -file /tmp/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /tmp/.md-5.sm`" ; fi ;
sleep 1s ;
tar -C /bin -Jxf nc_v1.tar.xz ;
sleep 1s ;
rm /tmp/nc_v1.tar.xz ;
rm /tmp/.md-5.sm ;
#
# # #
#
#nc --->
if [ ! `find /bin /sbin /usr -name nc` ] ; then ln -s /bin/'busybox ' /usr/bin/nc ; else
bash -c "`find /bin /sbin /usr -name nc | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
ln -s /bin/'busybox ' /usr/bin/nc ;
fi ;
#<--- nc
#-1-
#telnet --->
if [ ! `find /bin /sbin /usr -name telnet` ] ; then ln -s /bin/'busybox ' /usr/bin/telnet ; else
bash -c "`find /bin /sbin /usr -name telnet | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
ln -s /bin/'busybox ' /usr/bin/telnet ;
fi ;
#<--- telnet
#-2-
#ftpput --->
if [ ! `find /bin /sbin /usr -name ftpput` ] ; then ln -s /bin/'busybox ' /usr/bin/ftpput ; else
bash -c "`find /bin /sbin /usr -name ftpput | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
ln -s /bin/'busybox ' /usr/bin/ftpput ;
fi ;
#<--- ftpput
#-3-
#ftpget --->
if [ ! `find /bin /sbin /usr -name ftpget` ] ; then ln -s /bin/'busybox ' /usr/bin/ftpget ; else
bash -c "`find /bin /sbin /usr -name ftpget | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
ln -s /bin/'busybox ' /usr/bin/ftpget ;
fi ;
#<--- ftpget
#-4-
#httpd --->
if [ ! `find /bin /sbin /usr -name httpd` ] ; then ln -s /bin/'busybox ' /usr/sbin/httpd ; else
bash -c "`find /bin /sbin /usr -name httpd | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
ln -s /bin/'busybox ' /usr/sbin/httpd ;
fi ;
#<--- httpd
#-5-
#iptunnel --->
if [ ! `find /bin /sbin /usr -name iptunnel` ] ; then ln -s /bin/'busybox ' /bin/iptunnel ; else
bash -c "`find /bin /sbin /usr -name iptunnel | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
ln -s /bin/'busybox ' /bin/iptunnel ;
fi ;
#<--- iptunnel
#-6-
#tftp --->
if [ ! `find /bin /sbin /usr -name tftp` ] ; then ln -s /bin/'busybox ' /usr/bin/tftp ; else
bash -c "`find /bin /sbin /usr -name tftp | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
ln -s /bin/'busybox ' /usr/bin/tftp ;
fi ;
#<--- tftp
#-7-
#
# # #
#
chmod 0100 /bin/busybox /bin/'busybox ' ;
#
touch -c -m --reference=/bin/busybox /bin/'busybox ' ;
touch -c -a /bin/'busybox ' /bin/busybox ;
#
# # #
#
xmessage "Program -=NC=- and several other programs have been changed."
|
Edit: 2012, aug 01.
|
Important thing:
http://www.murga-linux.com/puppy/viewtopic.php?p=586415#586415 0_Protect-2_Exit.sh
A script's content can be copied into text editor by means of <Quote> mode.
_________________
- I don't know why laboratories are named a hospitals.
- The alive personage is like a tea bag with granules of unknown density inside, at that one the packet was made of organic material and was placed in the evaporated liquid or liquid.
|
|
Back to top
|
|
|
postfs1
Joined: 27 Mar 2010
Posts: 831
|
| Posted: Tue 14 Aug 2012, 06:15 Post subject:
|
|
Addition
| Quote: |
Informational source for content of script:
| Code: |
DENY IN=eth0 OUT= SRC=202.205.203.22 DST=55.105.105.55 DF PROTO=TCP SPT=2222 DPT=2222
|
|
| Quote: |
Block--Part1_RANGE_of_IPs_from_LOG.sh
| Code: |
#!/bin/bash
#
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
# # #Block RANGE of IPs which were written to LOG file:
#- - - - - - -
#
# # #iptables -L -n
#
#
#
#BUILD the R_U_L_E--->
echo "Rule 30 (eth0)"
iptables -N RULE_30
iptables -I INPUT -i eth0 -s 202.205.203.0/24 -j RULE_30
#
iptables -I RULE_30 -j LOG --log-level notice --log-prefix "RULE 30 -- DENY "
iptables -I RULE_30 -j DROP
#
history -c >/root/.history ; printf '\ec'
#
#
#
# # # # # # # # # # # # # # # # # # # ADD the ADDITION to RULE--->
iptables -I INPUT -i eth0 -s 41.144.202.0/24 -j RULE_30
sleep 0.5s ;
#
history -c >/root/.history ; printf '\ec'
#
#
#
#- - - - - - -
# # #:Block RANGE of IPs which were written into LOG file
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
echo -e "-=Block_RANGE_of_IPs_which_were_written_to_LOG--PART1=- script has been executed." | xmessage -file -
|
Edit: 2012, aug 14.
|
| Quote: |
Block--Part2_RANGE_of_IPs_from_LOG.sh
| Code: |
#!/bin/bash
#
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
# # #Block RANGE of IPs which were written to LOG file:
#- - - - - - -
#
# # #iptables -L -n
#
#
#
# # # # # # # # # # # # # # # # # # # ADD the ADDITION to RULE--->
iptables -I INPUT -i eth0 -s 60.104.102.0/24 -j RULE_30
sleep 0.5s ;
#
history -c >/root/.history ; printf '\ec'
#
#
#
#- - - - - - -
# # #:Block RANGE of IPs which were written into LOG file
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
echo -e "-=Block_RANGE_of_IPs_which_were_written_to_LOG--PART2=- script has been executed." | xmessage -file -
|
Edit: 2012, aug 14.
|
_________________
- I don't know why laboratories are named a hospitals.
- The alive personage is like a tea bag with granules of unknown density inside, at that one the packet was made of organic material and was placed in the evaporated liquid or liquid.
Last edited by postfs1 on Tue 14 Aug 2012, 06:25; edited 1 time in total
|
|
Back to top
|
|
|
postfs1
Joined: 27 Mar 2010
Posts: 831
|
| Posted: Tue 14 Aug 2012, 06:20 Post subject:
|
|
Addition
| Quote: |
Unblock--Part1_RANGE_of_IPs_from_LOG.sh
| Code: |
#!/bin/bash
#
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
# # #Unblock RANGE of IPs which were written to LOG file:
#- - - - - - -
#
# # #iptables -L -n
#
#
#
# # # # # # # # # # # # # # # # # # # REMOVE the RULE--->
iptables -D INPUT -i eth0 -s 202.205.203.0/24 -j RULE_30
sleep 0.5s ;
history -c >/root/.history ; printf '\ec'
#
#
#
#- - - - - - -
# # #:Unblock RANGE of IPs which were written into LOG file
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
echo -e "-=Unblock_RANGE_of_IPs_which_were_written_to_LOG--PART1=- script has been executed." | xmessage -file -
|
Edit: 2012, aug 14.
|
| Quote: |
Unblock--Part2_RANGE_of_IPs_from_LOG.sh
| Code: |
#!/bin/bash
#
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
# # #Unblock RANGE of IPs which were written to LOG file:
#- - - - - - -
#
# # #iptables -L -n
#
#
#
# # # # # # # # # # # # # # # # # # # ADD the ADDITION to RULE and REMOVE the RULE--->
iptables -D INPUT -i eth0 -s 60.104.102.0/24 -j RULE_30
sleep 0.5s ;
#
history -c >/root/.history ; printf '\ec'
#
#
#
iptables -D RULE_30 -j LOG --log-level notice --log-prefix "RULE 30 -- DENY "
iptables -D RULE_30 -j DROP
iptables -X RULE_30
#
history -c >/root/.history ; printf '\ec'
#
#
#
#- - - - - - -
# # #:Unblock RANGE of IPs which were written into LOG file
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
echo -e "-=Unblock_RANGE_of_IPs_which_were_written_to_LOG--PART2=- script has been executed." | xmessage -file -
|
Edit: 2012, aug 14.
|
_________________
- I don't know why laboratories are named a hospitals.
- The alive personage is like a tea bag with granules of unknown density inside, at that one the packet was made of organic material and was placed in the evaporated liquid or liquid.
|
|
Back to top
|
|
|
postfs1
Joined: 27 Mar 2010
Posts: 831
|
Posted: Wed 15 Aug 2012, 15:25 Post subject:
Subject description: Fresh variant of installation |
|
INSTALLATION --->
| Quote: |
Install_FWBuilder_v2--sr0.sh
| Code: |
#!/bin/bash
#
mkdir -m 0500 -p /room ;
cd /room ;
#
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'fwbuilder-5.0.0.3568-1.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 0 ] ;
then echo "fwbuilder-5.0.0.3568-1.fc11.i586.rpm..rm" >/usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/fwbuilder-5.0.0.3568-1.fc11.i586.rpm ;
if [ ! `echo -e "a6176dd3991d29eb092655c41e9746b3 fwbuilder-5.0.0.3568-1.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i fwbuilder-5.0.0.3568-1.fc11.i586.rpm ;
sleep 0.5s ;
echo "fwbuilder-5.0.0.3568-1.fc11.i586.rpm..rm" >/usr/local/etc/FWBldr.dsktop ;
rm /room/fwbuilder-5.0.0.3568-1.fc11.i586.rpm ;
rm /room/.md-5.sm ;
#
rm /usr/share/applications/fwbuilder.desktop ;
#
fi ;
#1
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'keyutils-libs-1.2-5.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 0 ] ;
then echo "keyutils-libs-1.2-5.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/keyutils-libs-1.2-5.fc11.i586.rpm ;
if [ ! `echo -e "247a0ac4b1c56f542f3496d2eec16349 keyutils-libs-1.2-5.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i keyutils-libs-1.2-5.fc11.i586.rpm ;
sleep 0.5s ;
echo "keyutils-libs-1.2-5.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ;
rm /room/keyutils-libs-1.2-5.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#2
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'krb5-libs-1.6.3-31.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 0 ] ;
then echo "krb5-libs-1.6.3-31.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/krb5-libs-1.6.3-31.fc11.i586.rpm ;
if [ ! `echo -e "8f4bec783f5fa9a1ab31438a231cbd7e krb5-libs-1.6.3-31.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i krb5-libs-1.6.3-31.fc11.i586.rpm ;
sleep 0.5s ;
echo "krb5-libs-1.6.3-31.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ;
rm /room/krb5-libs-1.6.3-31.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#3
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -l 'libstdc++-4.4.1-2.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | wc -l` -gt 0 ] ;
then echo "libstdc++-4.4.1-2.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/libstdc++-4.4.1-2.fc11.i586.rpm ;
if [ ! `echo -e "96c934cb092bf073ace9c10cce025f44 libstdc++-4.4.1-2.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i libstdc++-4.4.1-2.fc11.i586.rpm ;
sleep 0.5s ;
echo "libstdc++-4.4.1-2.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ;
rm /room/libstdc++-4.4.1-2.fc11.i586.rpm ;
rm /room/.md-5.sm ;
#
echo "libstdc++-4.4.1-2.fc11.i586.rpm..rm" >>/usr/local/etc/built-in.dsktop ;
fi ;
#4
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'net-snmp-libs-5.4.2.1-14.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 0 ] ;
then echo "net-snmp-libs-5.4.2.1-14.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/net-snmp-libs-5.4.2.1-14.fc11.i586.rpm ;
if [ ! `echo -e "1ca102eafd7974005875331ed32330db net-snmp-libs-5.4.2.1-14.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i net-snmp-libs-5.4.2.1-14.fc11.i586.rpm ;
sleep 0.5s ;
echo "net-snmp-libs-5.4.2.1-14.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ;
rm /room/net-snmp-libs-5.4.2.1-14.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#5
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'openssl-0.9.8n-2.fc11.i686.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 0 ] ;
then echo "openssl-0.9.8n-2.fc11.i686.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/openssl-0.9.8n-2.fc11.i686.rpm ;
if [ ! `echo -e "2e7dc70ccf871f43e8d37e602b24687b openssl-0.9.8n-2.fc11.i686.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i openssl-0.9.8n-2.fc11.i686.rpm ;
sleep 0.5s ;
echo "openssl-0.9.8n-2.fc11.i686.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ;
rm /room/openssl-0.9.8n-2.fc11.i686.rpm ;
rm /room/.md-5.sm ;
fi ;
#6
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'qt-4.6.2-17.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 0 ] ;
then echo "qt-4.6.2-17.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/qt-4.6.2-17.fc11.i586.rpm ;
if [ ! `echo -e "ece4122f0144569432c9bc36f195c49c qt-4.6.2-17.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i qt-4.6.2-17.fc11.i586.rpm ;
sleep 0.5s ;
echo "qt-4.6.2-17.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ;
rm /room/qt-4.6.2-17.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#7
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'qt-x11-4.6.2-17.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 0 ] ;
then echo "qt-x11-4.6.2-17.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/qt-x11-4.6.2-17.fc11.i586.rpm ;
if [ ! `echo -e "4270840a05873869b00a9d42c1ad703b qt-x11-4.6.2-17.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i qt-x11-4.6.2-17.fc11.i586.rpm ;
sleep 0.5s ;
echo "qt-x11-4.6.2-17.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ;
rm /room/qt-x11-4.6.2-17.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#8
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'libselinux-2.0.80-1.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 0 ] ;
then echo "libselinux-2.0.80-1.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/libselinux-2.0.80-1.fc11.i586.rpm ;
if [ ! `echo -e "a33dd8be6e63530f3babeec2e3c03019 libselinux-2.0.80-1.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i libselinux-2.0.80-1.fc11.i586.rpm ;
sleep 0.5s ;
echo "libselinux-2.0.80-1.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ;
rm /room/libselinux-2.0.80-1.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#9
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#
# # #
#
#Sensors. >>>
#
if [ `grep -w -s -c 'lm_sensors-3.1.0-1.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 0 ] ;
then echo "lm_sensors-3.1.0-1.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/lm_sensors-3.1.0-1.fc11.i586.rpm ;
if [ ! `echo -e "1b525876a63e0e1b44dec0f12b8a1493 lm_sensors-3.1.0-1.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i lm_sensors-3.1.0-1.fc11.i586.rpm ;
sleep 0.5s ;
echo "lm_sensors-3.1.0-1.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ;
rm /room/lm_sensors-3.1.0-1.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#1
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'perl-5.10.0-82.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 0 ] ;
then echo "perl-5.10.0-82.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ; else
#
rm /usr/bin/perlthanks /usr/bin/perlivp /usr/bin/perldoc ;
rm /usr/bin/perl /usr/bin/perlbug /usr/bin/perl5.10.1 ;
rm -r /usr/lib/perl5 ;
#
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/perl-5.10.0-82.fc11.i586.rpm ;
if [ ! `echo -e "175f93681b9bd4a69e7ee1d082f37b92 perl-5.10.0-82.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i perl-5.10.0-82.fc11.i586.rpm ;
sleep 0.5s ;
echo "perl-5.10.0-82.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ;
rm /room/perl-5.10.0-82.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#2
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'perl-libs-5.10.0-82.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 0 ] ;
then echo "perl-libs-5.10.0-82.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/perl-libs-5.10.0-82.fc11.i586.rpm ;
if [ ! `echo -e "1ac4c25aeea0c6793066147db5e06a04 perl-libs-5.10.0-82.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
rpm -i perl-libs-5.10.0-82.fc11.i586.rpm ;
sleep 0.5s ;
echo "perl-libs-5.10.0-82.fc11.i586.rpm..rm" >>/usr/local/etc/FWBldr.dsktop ;
rm /room/perl-libs-5.10.0-82.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#3
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#
# # #
#
cat /etc/init.d/lm_sensors | \
sed -e 's|. /etc/init.d/functions|. /etc/rc.d/functions|' > /etc/init.d/lm_sensors ;
yes | sensors-detect ;
/etc/init.d/lm_sensors start 2>/dev/null | xmessage `cat` ;
#
#<<< Sensors.
#
# # #
#
#For on-line lesson >>>
#
#http://www.youtube.com/v/Q5GPrkwyGxw&hl=en_US&feature=player_embedded&version=3
#http://www.youtube.com/watch?v=Q5GPrkwyGxw&hl=en_US&feature=player_embedded&version=3
#
if [ -f /usr/bin/icecat-3.6.16-i686/icecat ] ; then
ln -s -f /usr/bin/icecat-3.6.16-i686/icecat /usr/bin/firefox ;
elif [ -f /usr/local/bin/icecat-3.6.16-i686/icecat ] ; then
ln -s -f /usr/local/bin/icecat-3.6.16-i686/icecat /usr/bin/firefox ;
else echo -e "If there is no web-browser in the system then\n the watching of tutorial videos is unavailable." | xmessage -file - ;
fi ;
# <<<
#
# # #
#
#
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#http://www.fwbuilder.org/4.0/docs/users_guide/install_with_regular_user.html
#Information about web page: Copyright © 2000-2012 NetCitadel, Inc. All rights reserved.
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#
# # #
#
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#http://sourceforge.net/projects/fwbuilder/forums/forum/16372/topic/3900942
#Information about web page: © 2012 Geeknet, Inc.
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#
# # #
#
#"Firewall Builder"://Edit/Preferences/Installer >>>
#/usr/local/bin/.cfb = scp
#/usr/local/bin/.afb = instead of ssh
#<<<
#
# # #
#
ln -s /usr/sbin/iptables /sbin/iptables ;
ln -s /bin/ip /sbin/ip ;
#
mkdir -m 0700 -p /var/lib/.fb ;
mkdir -m 0700 -p /etc/fw ;
echo '#!/bin/bash' > /usr/local/bin/.cfb ;
echo "cp /var/lib/.fb/fb.fw /etc/fw" >> /usr/local/bin/.cfb ;
chmod 0700 /usr/local/bin/.cfb ;
#
echo '#!/bin/bash' > /usr/local/bin/.afb ;
echo "sh /etc/fw/fb.fw start" >> /usr/local/bin/.afb ;
chmod 0700 /usr/local/bin/.afb ;
#
# # #
#
cd /var/lib/.fb/ ;
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Packed_Files/fb.fwb.gz ;
if [ ! `echo -e "1a82d3d38959e9881ec08520cfcae0bc fb.fwb.gz" | md5sum -c - >/var/lib/.fb/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /var/lib/.fb/.md-5.sm` ] ; then xmessage -file /var/lib/.fb/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /var/lib/.fb/.md-5.sm`" ; fi ;
gunzip -d fb.fwb.gz ;
sleep 0.5s ;
rm /var/lib/.fb/.md-5.sm ;
cd /room ;
#1
#
# # #
#
#
sed -i".tmp" '/"FWBuild"/d' /root/Choices/ROX-Filer/PuppyPin ;
#
echo '[Desktop Entry]' > /usr/share/applications/FWBldr_go.desktop ;
echo 'Name=Firewall Builder' >> /usr/share/applications/FWBldr_go.desktop ;
echo 'Comment=Design and Manage Firewall Rules' >> /usr/share/applications/FWBldr_go.desktop ;
echo 'Icon=/usr/share/icons/hicolor/48x48/apps/fwbuilder.png' >> /usr/share/applications/FWBldr_go.desktop ;
echo 'Categories=no' >> /usr/share/applications/FWBldr_go.desktop ;
#
#Don't touch this >>>
#Exec=bash -c 'bash -c "`Xdialog --title \"FWBuilder\" --no-tags --radiolist \"\" 15 38 10 \"fwbuilder\" \"-=FWBuilder=-\" off \"cd /var/lib/.fb/ ; curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Packed_Files/fb.fwb.gz ; gunzip -f -d fb.fwb.gz\" \"-=To RECEIVE file with settings=-\" off \"rm /var/lib/.fb/fb.fwb /var/lib/.fb/fb.fw /etc/fw/fb.fw\" \"-=To DELETE files with settings=-\" off \"echo -e \"'\''\"\`dmesg|grep DENY|tail -10|cut --delimiter=" " -f4-6,8-9,15-18\`\"'\''\"|xmessage -file -\" \"-=Blocked Packets=-\" on 2>&1`"'
grep '\-\-radiolist' /mnt/sr0/_Files/FWBuilder/Install_FWBuilder_v2--sr0.sh | grep -v "Install_FWBuilder_v2--sr0.sh" | sed 's/#//' >> /usr/share/applications/FWBldr_go.desktop ;
# <<<
#
echo 'Type=Application' >> /usr/share/applications/FWBldr_go.desktop ;
echo 'StartupNotify=true' >> /usr/share/applications/FWBldr_go.desktop ;
echo 'Terminal=false' >> /usr/share/applications/FWBldr_go.desktop ;
#
# # #
#
echo '[Desktop Entry]' > /usr/share/applications/FWBldr.desktop ;
echo 'Name=Firewall Builder' >> /usr/share/applications/FWBldr.desktop ;
echo 'Comment=Design and Manage Firewall Rules' >> /usr/share/applications/FWBldr.desktop ;
echo 'Icon=/usr/share/icons/hicolor/48x48/apps/fwbuilder.png' >> /usr/share/applications/FWBldr.desktop ;
echo 'Categories=Network;' >> /usr/share/applications/FWBldr.desktop ;
echo 'Exec=rox /usr/share/applications/FWBldr_go.desktop' >> /usr/share/applications/FWBldr.desktop ;
echo 'Type=Application' >> /usr/share/applications/FWBldr.desktop ;
echo 'StartupNotify=true' >> /usr/share/applications/FWBldr.desktop ;
echo 'Terminal=false' >> /usr/share/applications/FWBldr.desktop ;
#
# # #
#
sed -i".tmp" '/\/pinboard/d' /root/Choices/ROX-Filer/PuppyPin ;
sleep 1s ;
echo '<icon x="224" y="284" label="FWBuild">/usr/share/applications/FWBldr.desktop</icon>' >> /root/Choices/ROX-Filer/PuppyPin ;
echo '</pinboard>' >> /root/Choices/ROX-Filer/PuppyPin ;
sleep 1s ;
#
# # #
#
rox -p=/root/Choices/ROX-Filer/PuppyPin ;
fixmenus ;
echo -e "Application -=FWBuilder=- has been installed." | xmessage -file - `jwm -restart`
|
Edit: 2012, aug 15.
|
A script's content can be copied into text editor by means of the forum's <Quote> mode.
<--- INSTALLATION
_________________
- I don't know why laboratories are named a hospitals.
- The alive personage is like a tea bag with granules of unknown density inside, at that one the packet was made of organic material and was placed in the evaporated liquid or liquid.
Last edited by postfs1 on Sat 18 Aug 2012, 15:26; edited 1 time in total
|
|
Back to top
|
|
|
postfs1
Joined: 27 Mar 2010
Posts: 831
|
| Posted: Wed 15 Aug 2012, 15:27 Post subject:
|
|
DEINSTALLATION --->
| Quote: |
Remove_FWBuilder--sr0.sh
| Code: |
#!/bin/bash
#TMP --->
#echo 'fwbuilder-5.0.0.3568-1.fc11.i586.rpm..rm' >/usr/local/etc/FWBldr.dsktop ;
#echo 'keyutils-libs-1.2-5.fc11.i586.rpm..rm' >>/usr/local/etc/FWBldr.dsktop ;
#echo 'krb5-libs-1.6.3-31.fc11.i586.rpm..rm' >>/usr/local/etc/FWBldr.dsktop ;
#echo 'libstdc++-4.4.1-2.fc11.i586.rpm..rm' >>/usr/local/etc/FWBldr.dsktop ;
#echo 'net-snmp-libs-5.4.2.1-14.fc11.i586.rpm..rm' >>/usr/local/etc/FWBldr.dsktop ;
#echo 'openssl-0.9.8n-2.fc11.i686.rpm..rm' >>/usr/local/etc/FWBldr.dsktop ;
#echo 'qt-4.6.2-17.fc11.i586.rpm..rm' >>/usr/local/etc/FWBldr.dsktop ;
#echo 'qt-x11-4.6.2-17.fc11.i586.rpm..rm' >>/usr/local/etc/FWBldr.dsktop ;
#echo 'libselinux-2.0.80-1.fc11.i586.rpm..rm' >>/usr/local/etc/FWBldr.dsktop ;
#echo 'lm_sensors-3.1.0-1.fc11.i586.rpm..rm' >>/usr/local/etc/FWBldr.dsktop ;
#echo 'perl-5.10.0-82.fc11.i586.rpm..rm' >>/usr/local/etc/FWBldr.dsktop ;
#echo 'perl-libs-5.10.0-82.fc11.i586.rpm..rm' >>/usr/local/etc/FWBldr.dsktop ;
#<--- TMP
# # #
#
#
/etc/init.d/lm_sensors stop ;#Stopping lm_sensors: /etc/init.d/lm_sensors: line 91: echo_success: command not found
#
# # #
#
cd /room ;
#
if [ `grep -w -s -c 'fwbuilder-5.0.0.3568-1.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 1 ] ;
then sed -i '/fwbuilder-5.0.0.3568-1.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/fwbuilder-5.0.0.3568-1.fc11.i586.rpm ;
if [ ! `echo -e "a6176dd3991d29eb092655c41e9746b3 fwbuilder-5.0.0.3568-1.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
bash -c "`rpm -qp -l fwbuilder-5.0.0.3568-1.fc11.i586.rpm | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
sleep 0.5s ;
bash -c "`rpm -qp -l fwbuilder-5.0.0.3568-1.fc11.i586.rpm | rev | cut -d'/' -f2- | rev | sort -u | sed 's/^/rmdir --ignore-fail-on-non-empty -p /' | sed 's/$/ ;/'`" ;
sed -i '/fwbuilder-5.0.0.3568-1.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ;
rm /room/fwbuilder-5.0.0.3568-1.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#1
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'keyutils-libs-1.2-5.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 1 ] ;
then sed -i '/keyutils-libs-1.2-5.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/keyutils-libs-1.2-5.fc11.i586.rpm ;
if [ ! `echo -e "247a0ac4b1c56f542f3496d2eec16349 keyutils-libs-1.2-5.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
bash -c "`rpm -qp -l keyutils-libs-1.2-5.fc11.i586.rpm | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
sleep 0.5s ;
#bash -c "`rpm -qp -l keyutils-libs-1.2-5.fc11.i586.rpm | cut -d \"/\" -f -3 | sort -u | grep \"/\" | grep -v \"/$\" | sed 's/^/find /' | sed 's/$/ -type d -empty -delete ;/'`" ;
#
bash -c "`rpm -qp -l keyutils-libs-1.2-5.fc11.i586.rpm | rev | cut -d'/' -f2- | rev | sort -u | sed 's/^/rmdir --ignore-fail-on-non-empty -p /' | sed 's/$/ ;/'`" ;
sed -i '/keyutils-libs-1.2-5.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ;
rm /room/keyutils-libs-1.2-5.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#2
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'krb5-libs-1.6.3-31.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 1 ] ;
then sed -i '/krb5-libs-1.6.3-31.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/krb5-libs-1.6.3-31.fc11.i586.rpm ;
if [ ! `echo -e "8f4bec783f5fa9a1ab31438a231cbd7e krb5-libs-1.6.3-31.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
bash -c "`rpm -qp -l krb5-libs-1.6.3-31.fc11.i586.rpm | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
sleep 0.5s ;
#bash -c "`rpm -qp -l krb5-libs-1.6.3-31.fc11.i586.rpm | cut -d \"/\" -f -3 | sort -u | grep \"/\" | grep -v \"/$\" | sed 's/^/find /' | sed 's/$/ -type d -empty -delete ;/'`" ;
#
bash -c "`rpm -qp -l krb5-libs-1.6.3-31.fc11.i586.rpm | rev | cut -d'/' -f2- | rev | sort -u | sed 's/^/rmdir --ignore-fail-on-non-empty -p /' | sed 's/$/ ;/'`" ;
sed -i '/krb5-libs-1.6.3-31.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ;
rm /room/krb5-libs-1.6.3-31.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#3
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -l 'libstdc++-4.4.1-2.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | wc -l` -gt 0 ] ;
then sed -i '/libstdc++-4.4.1-2.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ; else
#curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/libstdc++-4.4.1-2.fc11.i586.rpm ;
#if [ ! `echo -e "96c934cb092bf073ace9c10cce025f44 libstdc++-4.4.1-2.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
#bash -c "`rpm -qp -l libstdc++-4.4.1-2.fc11.i586.rpm | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
sleep 0.5s ;
#bash -c "`rpm -qp -l libstdc++-4.4.1-2.fc11.i586.rpm | rev | cut -d'/' -f2- | rev | sort -u | sed 's/^/rmdir --ignore-fail-on-non-empty -p /' | sed 's/$/ ;/'`" ;
#sed -i '/libstdc++-4.4.1-2.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ;
#rm /room/libstdc++-4.4.1-2.fc11.i586.rpm ;
#rm /room/.md-5.sm ;
fi ;
#4
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'net-snmp-libs-5.4.2.1-14.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 1 ] ;
then sed -i '/net-snmp-libs-5.4.2.1-14.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/net-snmp-libs-5.4.2.1-14.fc11.i586.rpm ;
if [ ! `echo -e "1ca102eafd7974005875331ed32330db net-snmp-libs-5.4.2.1-14.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
bash -c "`rpm -qp -l net-snmp-libs-5.4.2.1-14.fc11.i586.rpm | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
sleep 0.5s ;
bash -c "`rpm -qp -l net-snmp-libs-5.4.2.1-14.fc11.i586.rpm | rev | cut -d'/' -f2- | rev | sort -u | sed 's/^/rmdir --ignore-fail-on-non-empty -p /' | sed 's/$/ ;/'`" ;
sed -i '/net-snmp-libs-5.4.2.1-14.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ;
rm /room/net-snmp-libs-5.4.2.1-14.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#5
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'openssl-0.9.8n-2.fc11.i686.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 1 ] ;
then sed -i '/openssl-0.9.8n-2.fc11.i686.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/openssl-0.9.8n-2.fc11.i686.rpm ;
if [ ! `echo -e "2e7dc70ccf871f43e8d37e602b24687b openssl-0.9.8n-2.fc11.i686.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
bash -c "`rpm -qp -l openssl-0.9.8n-2.fc11.i686.rpm | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
sleep 0.5s ;
#bash -c "`rpm -qp -l openssl-0.9.8n-2.fc11.i686.rpm | cut -d \"/\" -f -3 | sort -u | grep \"/\" | grep -v \"/$\" | sed 's/^/find /' | sed 's/$/ -type d -empty -delete ;/'`" ;
#
bash -c "`rpm -qp -l openssl-0.9.8n-2.fc11.i686.rpm | rev | cut -d'/' -f2- | rev | sort -u | sed 's/^/rmdir --ignore-fail-on-non-empty -p /' | sed 's/$/ ;/'`" ;
sed -i '/openssl-0.9.8n-2.fc11.i686.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ;
rm /room/openssl-0.9.8n-2.fc11.i686.rpm ;
rm /room/.md-5.sm ;
fi ;
#6
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'qt-4.6.2-17.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 1 ] ;
then sed -i '/qt-4.6.2-17.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/qt-4.6.2-17.fc11.i586.rpm ;
if [ ! `echo -e "ece4122f0144569432c9bc36f195c49c qt-4.6.2-17.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
bash -c "`rpm -qp -l qt-4.6.2-17.fc11.i586.rpm | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
sleep 0.5s ;
#bash -c "`rpm -qp -l qt-4.6.2-17.fc11.i586.rpm | cut -d \"/\" -f -3 | sort -u | grep \"/\" | grep -v \"/$\" | sed 's/^/find /' | sed 's/$/ -type d -empty -delete ;/'`" ;
#
bash -c "`rpm -qp -l qt-4.6.2-17.fc11.i586.rpm | rev | cut -d'/' -f2- | rev | sort -u | sed 's/^/rmdir --ignore-fail-on-non-empty -p /' | sed 's/$/ ;/'`" ;
sed -i '/qt-4.6.2-17.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ;
rm /room/qt-4.6.2-17.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#7
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'qt-x11-4.6.2-17.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 1 ] ;
then sed -i '/qt-x11-4.6.2-17.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/qt-x11-4.6.2-17.fc11.i586.rpm ;
if [ ! `echo -e "4270840a05873869b00a9d42c1ad703b qt-x11-4.6.2-17.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
bash -c "`rpm -qp -l qt-x11-4.6.2-17.fc11.i586.rpm | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
sleep 0.5s ;
#bash -c "`rpm -qp -l qt-x11-4.6.2-17.fc11.i586.rpm | cut -d \"/\" -f -3 | sort -u | grep \"/\" | grep -v \"/$\" | sed 's/^/find /' | sed 's/$/ -type d -empty -delete ;/'`" ;
#
bash -c "`rpm -qp -l qt-x11-4.6.2-17.fc11.i586.rpm | rev | cut -d'/' -f2- | rev | sort -u | sed 's/^/rmdir --ignore-fail-on-non-empty -p /' | sed 's/$/ ;/'`" ;
sed -i '/qt-x11-4.6.2-17.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ;
rm /room/qt-x11-4.6.2-17.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#8
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'libselinux-2.0.80-1.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 1 ] ;
then sed -i '/libselinux-2.0.80-1.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/libselinux-2.0.80-1.fc11.i586.rpm ;
if [ ! `echo -e "a33dd8be6e63530f3babeec2e3c03019 libselinux-2.0.80-1.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
bash -c "`rpm -qp -l libselinux-2.0.80-1.fc11.i586.rpm | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
sleep 0.5s ;
#bash -c "`rpm -qp -l libselinux-2.0.80-1.fc11.i586.rpm | cut -d \"/\" -f -3 | sort -u | grep \"/\" | grep -v \"/$\" | sed 's/^/find /' | sed 's/$/ -type d -empty -delete ;/'`" ;
#
bash -c "`rpm -qp -l libselinux-2.0.80-1.fc11.i586.rpm | rev | cut -d'/' -f2- | rev | sort -u | sed 's/^/rmdir --ignore-fail-on-non-empty -p /' | sed 's/$/ ;/'`" ;
sed -i '/libselinux-2.0.80-1.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ;
rm /room/libselinux-2.0.80-1.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#9
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'lm_sensors-3.1.0-1.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 1 ] ;
then sed -i '/lm_sensors-3.1.0-1.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/lm_sensors-3.1.0-1.fc11.i586.rpm ;
if [ ! `echo -e "1b525876a63e0e1b44dec0f12b8a1493 lm_sensors-3.1.0-1.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
bash -c "`rpm -qp -l lm_sensors-3.1.0-1.fc11.i586.rpm | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
sleep 0.5s ;
bash -c "`rpm -qp -l lm_sensors-3.1.0-1.fc11.i586.rpm | rev | cut -d'/' -f2- | rev | sort -u | sed 's/^/rmdir --ignore-fail-on-non-empty -p /' | sed 's/$/ ;/'`" ;
sed -i '/lm_sensors-3.1.0-1.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ;
rm /room/lm_sensors-3.1.0-1.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#10
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#??? --->
if [ `grep -w -s -c 'perl-5.10.0-82.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 1 ] ;
then sed -i '/perl-5.10.0-82.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/perl-5.10.0-82.fc11.i586.rpm ;
if [ ! `echo -e "175f93681b9bd4a69e7ee1d082f37b92 perl-5.10.0-82.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
bash -c "`rpm -qp -l perl-5.10.0-82.fc11.i586.rpm | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
sleep 0.5s ;
bash -c "`rpm -qp -l perl-5.10.0-82.fc11.i586.rpm | rev | cut -d'/' -f2- | rev | sort -u | sed 's/^/rmdir --ignore-fail-on-non-empty -p /' | sed 's/$/ ;/'`" ;
sed -i '/perl-5.10.0-82.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ;
rm /room/perl-5.10.0-82.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#11
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
if [ `grep -w -s -c 'perl-libs-5.10.0-82.fc11.i586.rpm..rm' /usr/local/etc/*.dsktop | awk -F: '{ sum +=$2 } END { print sum }'` -gt 1 ] ;
then sed -i '/perl-libs-5.10.0-82.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ; else
curl -C - -O file:///mnt/sr0/_Files/FWBuilder/Fedora-11_files/perl-libs-5.10.0-82.fc11.i586.rpm ;
if [ ! `echo -e "1ac4c25aeea0c6793066147db5e06a04 perl-libs-5.10.0-82.fc11.i586.rpm" | md5sum -c - >/room/.md-5.sm ; sleep 0.5s ; grep -o 'OK' /room/.md-5.sm` ] ; then xmessage -file /room/.md-5.sm ; else yaf-splash -bg purple -fg green -text "`cat /room/.md-5.sm`" ; fi ;
bash -c "`rpm -qp -l perl-libs-5.10.0-82.fc11.i586.rpm | sed 's/^/rm -f /' | sed 's/$/ ;/'`" ;
sleep 0.5s ;
bash -c "`rpm -qp -l perl-libs-5.10.0-82.fc11.i586.rpm | rev | cut -d'/' -f2- | rev | sort -u | sed 's/^/rmdir --ignore-fail-on-non-empty -p /' | sed 's/$/ ;/'`" ;
sed -i '/perl-libs-5.10.0-82.fc11.i586.rpm..rm/d' /usr/local/etc/FWBldr.dsktop ;
rm /room/perl-libs-5.10.0-82.fc11.i586.rpm ;
rm /room/.md-5.sm ;
fi ;
#12
#- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#
# # #
#
if [ -f /tmp/.tmp.frfx.sl ] ; then rm /tmp/.tmp.frfx.sl ; fi ;
if [ -s /usr/bin/firefox ] ; then
bash -c "`Xdialog --title \"\"'\"Firefox\"'\" web-browser\" --no-tags --radiolist \"\"'\"firefox\"'\" sometimes can be a not needful symlink\" 11 70 10 \"echo >/tmp/.tmp.frfx.sl\" \"-=Remove \"'\"firefox\"'\" symlink=-\" off \"sleep 0.5s\" \"-=Don't remove \"'\"firefox\"'\" symlink=-\" on 2>&1`" ;
fi ;
if [ -f /tmp/.tmp.frfx.sl ] ; then
rm /usr/bin/firefox ;
rm /tmp/.tmp.frfx.sl ;
fi ;
#
# # #
#
rm -r /var/lib/.fb ;
rm -r /etc/fw ;
#
rm /usr/local/bin/.cfb ;
rm /usr/local/bin/.afb ;
#
# # #
#
sed -i '/"FWBuild"/d' /root/Choices/ROX-Filer/PuppyPin ;
#
rm /usr/share/applications/FWBldr.desktop ;
rm /usr/share/applications/FWBldr_go.desktop ;
#
if [ `grep -s -c '..rm' /usr/local/etc/FWBldr.dsktop | awk -F^ '{ sum +=$1 } END { print sum }'` -gt 0 ] ;
then sleep 0.5s ; else
rm /usr/local/etc/FWBldr.dsktop ; fi ;
#
rox -p=/root/Choices/ROX-Filer/PuppyPin ;
fixmenus ;
xmessage "The -=FWBuilder=- program has been almost removed." `jwm -restart`
|
Edit: 2012, aug 15.
|
A script's content can be copied into text editor by means of the forum's <Quote> mode.
<--- DEINSTALLATION
_________________
- I don't know why laboratories are named a hospitals.
- The alive personage is like a tea bag with granules of unknown density inside, at that one the packet was made of organic material and was placed in the evaporated liquid or liquid.
|
|
Back to top
|
|
|
postfs1
Joined: 27 Mar 2010
Posts: 831
|
| Posted: Tue 11 Sep 2012, 04:24 Post subject:
|
|
Addition - 1
| Quote: |
AdditionTo--I_F-R--Block_Local--sr0.sh
| Code: |
#!/bin/bash
#
#!
#iptables -m iprange --help
#!
#
#iptables -v –L #Statistics of traffic
#
#iptables -L -n # = iptables -t filter -L -n #filter table
#
#iptables -t nat -L -n #nat table
#
#
# # #
#
#history -c >/root/.history ; printf '\ec'
#
# # # - - - - - - - - - - - - - - - - Rule 31 - - - - - - - - - - - - - - - - -
#
#BUILD the R_U_L_E--->
echo "Rule 31 (eth0)"
iptables -N RULE_31
iptables -I OUTPUT -o eth0 -d 55.105.105.0 -j RULE_31
iptables -I INPUT -i eth0 -s 55.105.105.0 -j RULE_31
#
iptables -I OUTPUT -o eth0 -m iprange --dst-range 55.105.105.2-55.105.105.54 -j RULE_31
iptables -I OUTPUT -o eth0 -m iprange --dst-range 55.105.105.56-55.105.105.255 -j RULE_31
#
iptables -I INPUT -i eth0 -m iprange --src-range 55.105.105.2-55.105.105.54 -j RULE_31
iptables -I INPUT -i eth0 -m iprange --src-range 55.105.105.56-55.105.105.255 -j RULE_31
#
iptables -I RULE_31 -j LOG --log-level notice --log-prefix "RULE 31 -- DENY "
iptables -I RULE_31 -j DROP
#
# # #
#
#! To delete the RULES ===> !
# iptables -D OUTPUT -o eth0 -d 55.105.105.0 -j RULE_31
# iptables -D INPUT -i eth0 -s 55.105.105.0 -j RULE_31
#
# iptables -D OUTPUT -o eth0 -m iprange --dst-range 55.105.105.2-55.105.105.54 -j RULE_31
# iptables -D OUTPUT -o eth0 -m iprange --dst-range 55.105.105.56-55.105.105.255 -j RULE_31
#
# iptables -D INPUT -i eth0 -m iprange --src-range 55.105.105.2-55.105.105.54 -j RULE_31
# iptables -D INPUT -i eth0 -m iprange --src-range 55.105.105.56-55.105.105.255 -j RULE_31
#
# iptables -D RULE_31 -j LOG --log-level notice --log-prefix "RULE 31 -- DENY "
# iptables -D RULE_31 -j DROP
# iptables -X RULE_31
#! <=== To delete the RULES !
#
# # # - - - - - - - - - - - - - - - - Rule 31 - - - - - - - - - - - - - - - - -
#
echo -e "-=AdditionTo--I_F-R--Block_Local--sr0=- script has been executed." | xmessage -file -
|
Last edit: 2012, sep 11.
|
Addition - 2
| Quote: |
Variant of installation: HDD, FULL.
Reset_IPTABLES.txt
| Code: |
#
# # # For QuirkyLinux1.40 ===> /etc/rc.d/rc.firewall(end of the file is for use)
#
iptables -t filter -F > /dev/null 2>&1 ; iptables -t filter -X > /dev/null 2>&1 ; iptables -t nat -F > /dev/null 2>&1 ; iptables -t nat -X > /dev/null 2>&1 ; iptables -t mangle -F > /dev/null 2>&1 ; iptables -t mangle -X > /dev/null 2>&1 ;
iptables -A INPUT -i lo -s 0/0 -d 0/0 -j ACCEPT ; iptables -A OUTPUT -o lo -s 0/0 -d 0/0 -j ACCEPT ; iptables -A INPUT -i eth0 -s 0/0 -d 0/0 -j DROP ; iptables -A OUTPUT -o eth0 -s 0/0 -d 0/0 -j DROP ;
#
# # #
#
|
Last edit: 2013, apr 09.
|
Addition - 3
| Quote: |
Variant of installation: HDD, FULL.
If the web-browser freezes sometimes and there is unknown damage in the OS after rebooting of the OS.
| Code: |
#
# # #
#
#
# Rule 40 (global)
#
echo "Rule 40 (global)"
#
iptables -N RULE_40
iptables -A INPUT -p tcp -m tcp -s 55.105.105.55 -m connlimit --connlimit-above 15 -m state --state NEW -j RULE_40
iptables -A OUTPUT -p tcp -m tcp -m connlimit --connlimit-above 15 -m state --state NEW -j RULE_40
iptables -A RULE_40 -j LOG --log-level info --log-prefix "RULE 40 -- DENY "
iptables -A RULE_40 -j DROP
#
# # #
#
|
Last edit: 2013, may 13.
|
Addition - 4
| Quote: |
To add one more important rule:
| Code: |
#
# # #
#
iptables -m owner --help
#If there is such an option as '-m owner --cmd-owner', then there is the chance to add one more important rule.
#
# # #
#
|
Last edit: 2013, may 13.
|
_________________
- I don't know why laboratories are named a hospitals.
- The alive personage is like a tea bag with granules of unknown density inside, at that one the packet was made of organic material and was placed in the evaporated liquid or liquid.
|
|
Back to top
|
|
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum
|
Powered by phpBB © 2001, 2005 phpBB Group
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
Forum index » Advanced Topics » Additional Software (PETs, n' stuff) » Security/Privacy
