forked from jagerzhang/CCKiller
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathinstall.sh
384 lines (351 loc) · 10.7 KB
/
install.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
#!/bin/sh
###################################################################
# CCKiller version 1.0.7 Author: Jager <[email protected]> #
# For more information please visit https://zhangge.net/5066.html#
#-----------------------------------------------------------------#
# Copyright ©2015-2017 zhangge.net. All rights reserved. #
###################################################################
conf_env()
{
export PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
export DKName=CCKiller
export Base_Dir=/usr/local/cckiller
export DKVer=1.0.7
clear
}
check_env()
{
#wget -V || yum install -y wget
which sendmail || yum install -y sendmail
mailx -V || yum install -y mailx
test -x $0 || chmod +x $0
#Centos 7 install iptables
if [ -n "`grep 'Aliyun Linux release' /etc/issue`" -o -e /etc/redhat-release ];then
which iptables >/dev/null
if [ -n "`grep ' 7\.' /etc/redhat-release`" -a $? -eq 0 ] ; then
yum -y install iptables-services
systemctl mask firewalld.service
systemctl enable iptables.service
fi
fi
/etc/init.d/iptables start > /dev/null 2>&1
}
header()
{
printf "
###################################################################
# $DKName version $DKVer Author: Jager <[email protected]> #
# For more information please visit https://zhangge.net/5066.html#
#-----------------------------------------------------------------#
# Copyright @2015-2016 zhangge.net. All rights reserved. #
###################################################################
"
}
showhelp()
{
conf_env
header
echo 'Usage: cckiller [OPTIONS]'
echo
echo 'OPTIONS:'
echo "-h | --help : Show help of $DKName"
echo "-u | --update : update Check for $DKName"
echo "-c | --config : Edit The configure of $DKName again"
echo "-i | --install : install $DKName version $DKVer to This System"
echo "-U | --uninstall : Uninstall cckiller from This System"
echo
}
get_char()
{
SAVEDSTTY=`stty -g`
stty -echo
stty cbreak
dd if=/dev/tty bs=1 count=1 2> /dev/null
stty -raw
stty echo
stty $SAVEDSTTY
}
Check_U()
{
userid=$(id | awk '{print $1}' | sed -e 's/=/ /' -e 's/(/ /' -e 's/)/ /'|awk '{print $2}')
if [[ $userid -ne 0 ]]
then
echo "No root permissions,Please run with root user..."
exit
fi
}
Wget()
{
wgetBin=$(which wget)
$wgetBin --no-check-certificate -q -O $1 $2
}
Update()
{
conf_env
Wget $Base_Dir/log/version.txt https://zhangge.net/wp-content/uploads/files/cckiller/version.txt
CONF_FILE=$(awk -F":" '/configure/ {print $2}' $Base_Dir/log/version.txt)
FINAL_VER=$(awk -F":" '/version/ {print $2}' $Base_Dir/log/version.txt)
if [[ -f $Base_Dir/ck.conf ]]
then
source $Base_Dir/ck.conf
else
echo "Error: Not Found $Base_Dir/ck.conf, Please install CCkiller Again."
exit 1
fi
if [[ $DKVer != $FINAL_VER ]]
then
echo =============================================================================
echo "Local Version: $DKVer"
echo
echo "Remote information:"
echo
cat $Base_Dir/log/version.txt
echo
echo =============================================================================
read -p "New Version Found, Do You Want Update Now? (y/n, default y): " CHOICE
if [[ $CHOICE == 'y' ]] || [[ $CHOICE == 'Y' ]] || [[ $CHOICE == "" ]]
then
clear
Version=$FINAL_VER
install update
else
echo "It‘s Skiped."
fi
else
echo "Good, It's the latest versions."
fi
}
Configure()
{
if [[ "$1" == "config" ]] && [[ ! -d "$Base_Dir" ]]
then
echo; echo; echo "Warn: CCkiller not found, Please used -i install first"
echo
exit 0
fi
if [[ "$1" == "default" ]]
then
SLEEP_TIME=20
BAN_PERIOD=600
EMAIL_TO=root@localhost
NO_OF_CONNECTIONS=100
IGNORE_PORT=
LOG_LEVEL=INFO
echo
echo "You choice the default configuration:"
echo 'Configure info,Please Review:'
echo "======================================="
echo " The Time interval : $SLEEP_TIME s"
echo
echo " The Forbidden Time: $BAN_PERIOD s"
echo
echo " Adminstrator Email: $EMAIL_TO"
echo
echo " Connections Allow: $NO_OF_CONNECTIONS"
echo
echo " Ignore Port: Null "
echo
echo " Log Level: $LOG_LEVEL "
echo "========================================"
echo "Press any key to continue..."
else
echo
read -p "Please Input The Rate(seconds) of CCkiller Check(default: 20): " SLEEP_TIME
if [[ -z $SLEEP_TIME ]] || [[ 0 -eq $SLEEP_TIME ]] ;then
echo "The Time interval of CCkiller Check will set default 20s"
SLEEP_TIME=20
fi
echo
read -p "Please Input the Forbidden Time(seconds) of banned IP(default: 600, if set 0 ip will banned until Restart System or iptables ): " BAN_PERIOD
if [[ -z $BAN_PERIOD ]];then
echo "The Forbidden Time will set default 600s"
BAN_PERIOD=600
fi
echo
read -p "Please Input the E-mail of Adminstrator(default: root@localhost): " EMAIL_TO
if [[ -z $EMAIL_TO ]];then
echo "The Adminstrator E-mail will set default root@localhost"
EMAIL_TO=root@localhost
fi
echo
read -p "Please Input the Maximum number of connections allowed(default 100): " NO_OF_CONNECTIONS
if [[ -z $NO_OF_CONNECTIONS ]];then
echo "The Max number for connections Allowed will set default 100"
NO_OF_CONNECTIONS=100
fi
echo
read -p "Please Input the ignore Ports of check like 21,8080,1080(default null): " IGNORE_PORT
if [[ -z $IGNORE_PORT ]];then
echo "The ignore Ports of check will set default null"
IGNORE_PORT=
fi
echo
read -p "Please Input the level of log like INFO,DEBUG,WARNING,OFF (default INFO): " LOG_LEVEL
if [[ -z LOG_LEVEL ]];then
echo "The ignore Ports of check will set default INFO"
LOG_LEVEL=INFO
fi
clear
echo
echo 'Configure info,Please Review:'
echo "======================================="
echo " The Time interval : $SLEEP_TIME s"
echo
echo " The Forbidden Time: $BAN_PERIOD s"
echo
echo " Adminstrator Email: $EMAIL_TO"
echo
echo " Connections Allow: $NO_OF_CONNECTIONS"
echo
echo " Ignore Port: $IGNORE_PORT"
echo
echo " Log Level : $LOG_LEVEL"
echo "========================================"
echo "Press any key to continue..."
fi
char=`get_char`
mkdir -p $Base_Dir/log
cat << EOF >$Base_Dir/ck.conf
##### Paths of the script and other files
PROGDIR="$Base_Dir"
LOGDIR="$Base_Dir/log"
PROG="$Base_Dir/cckiller"
IGNORE_IP_LIST="$Base_Dir/ignore.ip.list"
IPT=$(which iptables | awk '{print $1}')
IPT_SVR="/etc/init.d/iptables"
DKName=$DKName
DKVer=$DKVer
##### Rate of running the script in proccess mode(default 20s)
SLEEP_TIME=$SLEEP_TIME
##### How many connections define a bad IP? Indicate that below.
NO_OF_CONNECTIONS=$NO_OF_CONNECTIONS
##### An email is sent to the following address when an IP is banned.
EMAIL_TO="$EMAIL_TO"
##### The Forbidden seconds of banned IP(default:600 if set 0 ip will banned forever).
BAN_PERIOD=$BAN_PERIOD
##### The ignore Ports like 21,2121,8000 (default null)
IGNORE_PORT=$IGNORE_PORT
##### The level of log like INFO,DEBUG,WARNING,OFF (default INFO)
LOG_LEVEL=$LOG_LEVEL
EOF
echo
test -f /etc/init.d/cckiller && /etc/init.d/cckiller restart
echo
echo "Configure Completed."
}
install()
{
if [[ -d "$Base_Dir" ]] && [[ -z $1 ]]; then
echo; echo; echo "Warn: cckiller is already installed, Please used -U uninstall first"
echo
exit 0
fi
if [[ $CONF_FILE == 'updated' ]] || [[ -z $CONF_FILE ]];then
read -p 'Do you want to use the default configuration? (y/n): ' CHOICE
if [[ $CHOICE == "n" ]]
then
Configure
else
Configure default
fi
fi
source $Base_Dir/ck.conf
clear
echo; echo "Installing $DKName version ${FINAL_VER:-$DKVer} by zhangge.net"; echo
echo; echo -n 'Downloading source files...'
check_env >/dev/null 2>&1
echo -n '.'
Wget $Base_Dir/cckiller https://zhangge.net/wp-content/uploads/files/cckiller/cckiller.sh?ver=$(date +%M|md5sum|awk '{print $1}')
test -d /etc/init.d || mkdir -p /etc/init.d
Wget /etc/init.d/cckiller https://zhangge.net/wp-content/uploads/files/cckiller/cckiller_service.sh?ver=$(date +%M|md5sum|awk '{print $1}')
chmod 0755 $Base_Dir/cckiller
chmod 0755 /etc/init.d/cckiller
chkconfig cckiller on 2>/dev/null || \
test -f /etc/rc.d/rc.local && \
echo "/etc/init.d/cckiller start" >>/etc/rc.d/rc.local
ln -sf $Base_Dir/cckiller /bin/cckiller
cp -f $0 $Base_Dir/ >/dev/null 2>&1
#ifconfig |awk -F '[ :]+' '/inet addr/{print $4}' > /usr/local/cckiller/ignore.ip.list
if [[ -z $1 ]]
then
ip addr | awk -F '[ /]+' '/inet / {print $3}' | grep -v '127.0.' > $Base_Dir/ignore.ip.list
fi
echo "...done"
echo
echo
if [[ -z $1 ]]
then
/etc/init.d/cckiller start
echo
echo "Installation has completed."
echo
echo "Config file is at $Base_Dir/ck.conf"
else
/etc/init.d/cckiller restart
echo
echo "Update success."
fi
echo
echo 'Your can post comments or suggestions on https://zhangge.net/5066.html'
echo
}
function uninstall()
{
echo "Uninstalling cckiller..."
echo;
test -f /etc/init.d/cckiller && /etc/init.d/cckiller stop
echo; echo; echo -n "Deleting script files....."
if [ -e "$Base_Dir/cckiller" ]; then
rm -f $Base_Dir/cckiller
rm -f /bin/cckiller
echo -n ".."
fi
if [ -d "$Base_Dir" ]; then
rm -rf $Base_Dir
echo -n ".."
fi
echo "done"
echo; echo -n "Deleting system service....."
if [ -e '/etc/init.d/cckiller' ]; then
rm -f /etc/init.d/cckiller
echo -n ".."
fi
echo "done"
echo; echo "Uninstall Complete"; echo
}
conf_env
if [[ -z $1 ]];then
showhelp
exit
fi
header
Check_U
while [ $1 ]; do
case $1 in
'-h' | '--help' | '?' )
showhelp
exit
;;
'--install' | '-i' )
install
exit
;;
'--uninstall' | '-U' )
uninstall
exit
;;
'--update' | '-u' )
Update
exit
;;
'--config' | '-c' )
Configure config
exit
;;
* )
showhelp
exit
;;
esac
shift
done