mirror of https://github.com/jrbrtsn/ban2fail
Imroved install script
This commit is contained in:
parent
9000172d8a
commit
98d577d503
21
install.sh
21
install.sh
|
@ -11,15 +11,20 @@ BIN=ban2fail
|
|||
CONF=ban2fail.cfg
|
||||
SVC=ban2fail.service
|
||||
SVCSH=ban2fail.sh
|
||||
CACHEDIR=/var/cache/ban2fail
|
||||
TEST_CACHEDIR=${CACHEDIR}-test
|
||||
LOCKDIR=/run/lock/ban2fail
|
||||
TEST_LOCKDIR=${LOCKDIR}-test
|
||||
|
||||
# Make sure directories exist with correct ownership & mode
|
||||
[[ -e $OTHERDIR ]] || sudo mkdir $OTHERDIR
|
||||
sudo chown .adm $OTHERDIR
|
||||
sudo chmod 2755 $OTHERDIR
|
||||
sudo chown .adm $OTHERDIR
|
||||
|
||||
[[ -e $CONFDIR ]] || sudo mkdir $CONFDIR
|
||||
sudo chown .adm $CONFDIR
|
||||
sudo chmod 2750 $CONFDIR
|
||||
sudo chown .adm $CONFDIR
|
||||
# TODO: substitute correct hostname in config
|
||||
[[ -e $CONFDIR/$CONF ]] || sudo cp $CONF $CONFDIR
|
||||
|
||||
[[ -e $BINDIR ]] || sudo mkdir $BINDIR
|
||||
|
@ -27,18 +32,24 @@ sudo chmod 2750 $CONFDIR
|
|||
# No need for debugging symbols in binary
|
||||
strip release/$BIN
|
||||
sudo cp -f release/$BIN $BINDIR/
|
||||
sudo chown .adm $BINDIR/$BIN
|
||||
# Need suid bit so non-root can run iptables
|
||||
sudo chmod 4750 $BINDIR/$BIN
|
||||
sudo chmod 4755 $BINDIR/$BIN
|
||||
|
||||
chmod +x $SVCSH
|
||||
sudo cp -f $SVCSH $OTHERDIR/
|
||||
|
||||
systemctl status ban2fail &>/dev/null && sudo systemctl stop ban2fail
|
||||
sudo /bin/cp $SVC $SVCDIR/
|
||||
# Clean out cache and lockfiles
|
||||
[[ -e $CACHEDIR ]] && sudo rm -r $CACHEDIR
|
||||
[[ -e $TEST_CACHEDIR ]] && sudo rm -r $TEST_CACHEDIR
|
||||
[[ -e $LOCKDIR ]] && sudo rm -r $LOCKDIR
|
||||
[[ -e $TEST_LOCKDIR ]] && sudo rm -r $TEST_LOCKDIR
|
||||
sudo cp $SVC $SVCDIR/
|
||||
sudo systemctl daemon-reload
|
||||
sudo systemctl start ban2fail
|
||||
sudo systemctl enable ban2fail
|
||||
|
||||
echo "Installation completed successfully"
|
||||
|
||||
systemctl status ban2fail
|
||||
exit 0
|
||||
|
|
Loading…
Reference in New Issue