CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-07 09:42:46 +01:00
Code Issues Packages Projects Releases Wiki Activity

[feat][WIP] Add functionality to run setup through a proxy

Browse Source
This commit is contained in:
William Wernert
2020-05-26 14:49:22 -04:00
parent 29726e957f
commit 92c6a52496
1 changed files with 38 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

56
setup/so-functions
View File

@@ -550,6 +550,9 @@ detect_os() {
disable_onion_user() { disable_onion_user() {
# Disable the default account cause security. # Disable the default account cause security.
usermod -L onion usermod -L onion
# Remove the automated setup script from crontab, if it exists
crontab -u onion -r
} }
disable_misc_network_features() { disable_misc_network_features() {
@@ -955,29 +958,47 @@ parse_options() {
if [[ $is_master || $is_helix ]]; then if [[ $is_master || $is_helix ]]; then
local proxy local proxy
proxy=$(echo "$1" | tr -d '"' | awk -F'--turbo=' '{print $2}') proxy=$(echo "$1" | tr -d '"' | awk -F'--turbo=' '{print $2}')
proxy_addr="http://$proxy" proxy_url="http://$proxy"
use_proxy "$proxy_addr" TURBO="$proxy_url"
TURBO="$proxy_addr" use_turbo_proxy "$TURBO"
else else
echo "turbo is not supported on this install type" >> $setup_log 2>&1 echo "turbo is not supported on this install type" >> $setup_log 2>&1
fi fi
;; ;;
--proxy=*) --proxy=*)
echo "Unimplimented" local proxy
return proxy=$(echo "$1" | tr -d '"' | awk -F'--proxy=' '{print $2}')
if [[ $2 != --proxy-user=* ]] || [[ $3 != --proxy-pass=* ]]; then local proxy_protocol
echo "Invalid options passed for proxy. Order is --proxy-user=<user> --proxy-pass=<password>" proxy_protocol=$(echo "$proxy" |tr -d '"' | awk 'match($0, /http|https/) { print substr($0, RSTART, RLENGTH) }')
else
local proxy if [[ ! $proxy_protocol =~ ^(http|https) ]]; then
echo "Invalid proxy protocol"
echo "Ignoring proxy"
return
fi
if [[ $2 == --proxy-user=* && $3 == --proxy-pass=* ]]; then
local proxy_user local proxy_user
local proxy_password local proxy_password
proxy=$(echo "$1" | tr -d '"' | awk -F'--proxy=' '{print $2}')
proxy_user=$(echo "$2" | tr -d '"' | awk -F'--proxy-user=' '{print $2}') proxy_user=$(echo "$2" | tr -d '"' | awk -F'--proxy-user=' '{print $2}')
proxy_password=$(echo "$3" | tr -d '"' | awk -F'--proxy-pass=' '{print $2}') proxy_password=$(echo "$3" | tr -d '"' | awk -F'--proxy-pass=' '{print $2}')
use_proxy "$proxy" "$proxy_user" "$proxy_password" local proxy_addr
proxy_addr=$(echo "$proxy" | tr -d '"' | awk -F'http\:\/\/|https\:\/\/' '{print $2}')
export http_proxy="${proxy_protocol}://${proxy_user}:${proxy_password}@${proxy_addr}"
elif [[ (-z $2 || -z $3) && (-n $2 || -n $3) || ($2 != --proxy-user=* || $3 != --proxy-pass=*) ]]; then
echo "Invalid options passed for proxy. Order is --proxy-user=<user> --proxy-pass=<password>"
echo "Ignoring proxy"
return
else
export http_proxy="$proxy"
fi fi
export {https,ftp,rsync,all}_proxy="$http_proxy"
;; ;;
*) *)
echo "Invalid option" echo "Invalid option"
@@ -1479,18 +1500,17 @@ update_packages() {
fi fi
} }
use_proxy() { use_turbo_proxy() {
local proxy_addr=$1 local proxy_url=$1
#TODO: add options for username + pass #TODO: add options for username + pass
if [[ $OS == 'centos' ]]; then if [[ $OS == 'centos' ]]; then
printf '%s\n'\ printf '%s\n' "proxy=${proxy_url}:3142" >> /etc/yum.conf
"proxy=${proxy_addr}:3142" >> /etc/yum.conf
else else
printf '%s\n'\ printf '%s\n'\
"Acquire {"\ "Acquire {"\
"HTTP::proxy \"${proxy_addr}:3142\";"\ " HTTP::proxy \"${proxy_url}:3142\";"\
"HTTPS::proxy \"${proxy_addr}:3142\";"\ " HTTPS::proxy \"${proxy_url}:3142\";"\
"}" > /etc/apt/apt.conf.d/proxy.conf "}" > /etc/apt/apt.conf.d/proxy.conf
fi fi
} }