|
|
@@ -0,0 +1,211 @@
|
|
|
1
|
+#!/bin/bash
|
|
|
2
|
+#
|
|
|
3
|
+# .---. . .
|
|
|
4
|
+# | | |
|
|
|
5
|
+# |--- .--. .-. .-. .-.| .-. .--.--. |.-. .-. .--. .-.
|
|
|
6
|
+# | | (.-' (.-' ( | ( )| | | | )( )| | (.-'
|
|
|
7
|
+# ' ' --' --' -' - -' ' ' -' -' -' ' - --'
|
|
|
8
|
+#
|
|
|
9
|
+# Freedom in the Cloud
|
|
|
10
|
+#
|
|
|
11
|
+# pi-hole ad blocker
|
|
|
12
|
+#
|
|
|
13
|
+# Adapted from instructions at:
|
|
|
14
|
+# http://jacobsalmela.com/block-millions-ads-network-wide-with-a-raspberry-pi-hole-2-0/#manualsetup
|
|
|
15
|
+#
|
|
|
16
|
+# License
|
|
|
17
|
+# =======
|
|
|
18
|
+#
|
|
|
19
|
+# Copyright (C) 2016 Bob Mottram <bob@robotics.uk.to>
|
|
|
20
|
+#
|
|
|
21
|
+# This program is free software: you can redistribute it and/or modify
|
|
|
22
|
+# it under the terms of the GNU Affero General Public License as published by
|
|
|
23
|
+# the Free Software Foundation, either version 3 of the License, or
|
|
|
24
|
+# (at your option) any later version.
|
|
|
25
|
+#
|
|
|
26
|
+# This program is distributed in the hope that it will be useful,
|
|
|
27
|
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
28
|
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
29
|
+# GNU Affero General Public License for more details.
|
|
|
30
|
+#
|
|
|
31
|
+# You should have received a copy of the GNU Affero General Public License
|
|
|
32
|
+# along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
33
|
+
|
|
|
34
|
+VARIANTS=''
|
|
|
35
|
+
|
|
|
36
|
+PIHOLE_IFACE=eth0
|
|
|
37
|
+PIHOLE_DNS1='8.8.8.8'
|
|
|
38
|
+PIHOLE_DNS2='8.8.4.4'
|
|
|
39
|
+
|
|
|
40
|
+piholeBasename=pihole
|
|
|
41
|
+piholeDir=/etc/$piholeBasename
|
|
|
42
|
+PIHOLE_ADLIST=$piholeDir/gravity.list
|
|
|
43
|
+PIHOLE_BLACKLIST=$piholeDir/blacklist.txt
|
|
|
44
|
+PIHOLE_WHITELIST=$piholeDir/whitelist.txt
|
|
|
45
|
+
|
|
|
46
|
+PIHOLE_REPO="https://github.com/pi-hole/pi-hole"
|
|
|
47
|
+PIHOLE_COMMIT='dce24df37922171cef1dd3c3a025c09cb4a6a818'
|
|
|
48
|
+
|
|
|
49
|
+pihole_variables=(ONION_ONLY
|
|
|
50
|
+ PIHOLE_IFACE
|
|
|
51
|
+ PIHOLE_DNS1
|
|
|
52
|
+ PIHOLE_DNS2)
|
|
|
53
|
+
|
|
|
54
|
+function pihole_update {
|
|
|
55
|
+ if [ ! -f /usr/local/bin/gravity.sh ]; then
|
|
|
56
|
+ return
|
|
|
57
|
+ fi
|
|
|
58
|
+
|
|
|
59
|
+ IPv4dev=$(ip route get 8.8.8.8 | awk '{for(i=1;i<=NF;i++)if($i~/dev/)print $(i+1)}')
|
|
|
60
|
+ IPv4_address=$(ip -o -f inet addr show dev "$IPv4dev" | awk '{print $4}' | awk 'END {print}')
|
|
|
61
|
+ IPv6_address=$(ip -6 route get 2001:4860:4860::8888 | awk -F " " '{ for(i=1;i<=NF;i++) if ($i == "src") print $(i+1) }')
|
|
|
62
|
+
|
|
|
63
|
+ setupVars=$piholeDir/setupVars.conf
|
|
|
64
|
+ echo "piholeInterface=${PIHOLE_IFACE}" > ${setupVars}
|
|
|
65
|
+ echo "IPv4_address=${IPv4_address}" >> ${setupVars}
|
|
|
66
|
+ echo "IPv6_address=${IPv6_address}" >> ${setupVars}
|
|
|
67
|
+ echo "piholeDNS1=${PIHOLE_DNS1}" >> ${setupVars}
|
|
|
68
|
+ echo "piholeDNS2=${PIHOLE_DNS1}" >> ${setupVars}
|
|
|
69
|
+
|
|
|
70
|
+ /usr/local/bin/gravity.sh
|
|
|
71
|
+}
|
|
|
72
|
+
|
|
|
73
|
+function configure_interactive_pihole {
|
|
|
74
|
+ echo -n ''
|
|
|
75
|
+ # TODO allow editing of blacklist
|
|
|
76
|
+}
|
|
|
77
|
+
|
|
|
78
|
+function install_interactive_pihole {
|
|
|
79
|
+ APP_INSTALLED=1
|
|
|
80
|
+}
|
|
|
81
|
+
|
|
|
82
|
+function change_password_pihole {
|
|
|
83
|
+ echo -n ''
|
|
|
84
|
+}
|
|
|
85
|
+
|
|
|
86
|
+function reconfigure_pihole {
|
|
|
87
|
+ echo -n ''
|
|
|
88
|
+}
|
|
|
89
|
+
|
|
|
90
|
+function upgrade_pihole {
|
|
|
91
|
+ pihole_update
|
|
|
92
|
+}
|
|
|
93
|
+
|
|
|
94
|
+function backup_local_pihole {
|
|
|
95
|
+ echo -n ''
|
|
|
96
|
+}
|
|
|
97
|
+
|
|
|
98
|
+function restore_local_pihole {
|
|
|
99
|
+ echo -n ''
|
|
|
100
|
+}
|
|
|
101
|
+
|
|
|
102
|
+function backup_remote_pihole {
|
|
|
103
|
+ echo -n ''
|
|
|
104
|
+}
|
|
|
105
|
+
|
|
|
106
|
+function restore_remote_pihole {
|
|
|
107
|
+ echo -n ''
|
|
|
108
|
+}
|
|
|
109
|
+
|
|
|
110
|
+function remove_pihole {
|
|
|
111
|
+ apt-get -y remove --purge dnsmasq
|
|
|
112
|
+
|
|
|
113
|
+ if [ ! -d /var/www/pihole ]; then
|
|
|
114
|
+ rm -rf /var/www/pihole
|
|
|
115
|
+ fi
|
|
|
116
|
+
|
|
|
117
|
+ if [ -f /usr/local/bin/gravity.sh ]; then
|
|
|
118
|
+ rm /usr/local/bin/gravity.sh
|
|
|
119
|
+ fi
|
|
|
120
|
+
|
|
|
121
|
+ if [ -f /usr/local/bin/pihole ]; then
|
|
|
122
|
+ rm /usr/local/bin/pihole
|
|
|
123
|
+ fi
|
|
|
124
|
+
|
|
|
125
|
+ if [ -d /opt/pihole ]; then
|
|
|
126
|
+ rm -rf /opt/pihole
|
|
|
127
|
+ fi
|
|
|
128
|
+
|
|
|
129
|
+ if [ -d $piholeDir ]; then
|
|
|
130
|
+ rm -rf $piholeDir
|
|
|
131
|
+ fi
|
|
|
132
|
+
|
|
|
133
|
+ if [ -f /var/log/pihole.log ]; then
|
|
|
134
|
+ rm /var/log/pihole.log
|
|
|
135
|
+ fi
|
|
|
136
|
+
|
|
|
137
|
+ if [ -f /etc/cron.d/pihole ]; then
|
|
|
138
|
+ rm /etc/cron.d/pihole
|
|
|
139
|
+ fi
|
|
|
140
|
+
|
|
|
141
|
+ userdel -r pihole
|
|
|
142
|
+}
|
|
|
143
|
+
|
|
|
144
|
+function install_pihole {
|
|
|
145
|
+ apt-get -y install dnsmasq curl
|
|
|
146
|
+ adduser --disabled-login --gecos 'pi-hole' pihole
|
|
|
147
|
+ usermod -a -G www-data pihole
|
|
|
148
|
+
|
|
|
149
|
+ if [ ! -d $INSTALL_DIR ]; then
|
|
|
150
|
+ mkdir -p $INSTALL_DIR
|
|
|
151
|
+ fi
|
|
|
152
|
+
|
|
|
153
|
+ cd $INSTALL_DIR
|
|
|
154
|
+ git_clone $PIHOLE_REPO pihole
|
|
|
155
|
+ if [ ! -d $INSTALL_DIR/pihole ]; then
|
|
|
156
|
+ exit 523925
|
|
|
157
|
+ fi
|
|
|
158
|
+ cd $INSTALL_DIR/pihole
|
|
|
159
|
+ git checkout $PIHOLE_COMMIT -b $PIHOLE_COMMIT
|
|
|
160
|
+
|
|
|
161
|
+ if [ ! -d /var/www/pihole/htdocs ]; then
|
|
|
162
|
+ mkdir -p /var/www/pihole/htdocs
|
|
|
163
|
+ fi
|
|
|
164
|
+
|
|
|
165
|
+ # blank file which takes the place of ads
|
|
|
166
|
+ echo '<html>' > /var/www/pihole/htdocs/index.html
|
|
|
167
|
+ echo '<body>' >> /var/www/pihole/htdocs/index.html
|
|
|
168
|
+ echo '</body>' >> /var/www/pihole/htdocs/index.html
|
|
|
169
|
+ echo '</html>' >> /var/www/pihole/htdocs/index.html
|
|
|
170
|
+
|
|
|
171
|
+ echo 'domain-needed' > /etc/dnsmasq.conf
|
|
|
172
|
+ echo 'bogus-priv' >> /etc/dnsmasq.conf
|
|
|
173
|
+ echo 'no-resolv' >> /etc/dnsmasq.conf
|
|
|
174
|
+ echo "server=${PIHOLE_DNS1}" >> /etc/dnsmasq.conf
|
|
|
175
|
+ echo "server=${PIHOLE_DNS2}" >> /etc/dnsmasq.conf
|
|
|
176
|
+ echo "interface=${PIHOLE_IFACE}" >> /etc/dnsmasq.conf
|
|
|
177
|
+ echo 'listen-address=127.0.0.1' >> /etc/dnsmasq.conf
|
|
|
178
|
+ echo 'cache-size=10000' >> /etc/dnsmasq.conf
|
|
|
179
|
+ echo 'log-queries' >> /etc/dnsmasq.conf
|
|
|
180
|
+ echo 'log-facility=/var/log/pihole.log' >> /etc/dnsmasq.conf
|
|
|
181
|
+ echo 'local-ttl=300' >> /etc/dnsmasq.conf
|
|
|
182
|
+ echo 'log-async' >> /etc/dnsmasq.conf
|
|
|
183
|
+
|
|
|
184
|
+ if [ ! -f $INSTALL_DIR/pihole/gravity.sh ]; then
|
|
|
185
|
+ exit 26738
|
|
|
186
|
+ fi
|
|
|
187
|
+ cp $INSTALL_DIR/pihole/gravity.sh /usr/local/bin/gravity.sh
|
|
|
188
|
+ cp $INSTALL_DIR/pihole/pihole /usr/local/bin/pihole
|
|
|
189
|
+ chmod 755 /usr/local/bin/gravity.sh
|
|
|
190
|
+ chmod 755 /usr/local/bin/pihole
|
|
|
191
|
+
|
|
|
192
|
+ if [ ! -d $piholeDir ]; then
|
|
|
193
|
+ mkdir $piholeDir
|
|
|
194
|
+ fi
|
|
|
195
|
+ if [ ! -d /opt/pihole ]; then
|
|
|
196
|
+ mkdir -p /opt/pihole
|
|
|
197
|
+ fi
|
|
|
198
|
+ cp $INSTALL_DIR/pihole/adlists.default $piholeDir/adlists.default:
|
|
|
199
|
+ cp $INSTALL_DIR/pihole/advanced/Scripts/* /opt/$piholeBasename
|
|
|
200
|
+ cp $INSTALL_DIR/pihole/advanced/01-pihole.conf /etc/dnsmasq.d/01-pihole.conf
|
|
|
201
|
+ cp $INSTALL_DIR/pihole/advanced/pihole.cron /etc/cron.d/pihole
|
|
|
202
|
+
|
|
|
203
|
+ systemctl enable dnsmasq
|
|
|
204
|
+ chown -R www-data:www-data /var/www/pihole/htdocs
|
|
|
205
|
+
|
|
|
206
|
+ pihole_update
|
|
|
207
|
+
|
|
|
208
|
+ APP_INSTALLED=1
|
|
|
209
|
+}
|
|
|
210
|
+
|
|
|
211
|
+# NOTE: deliberately no exit 0
|
Bob Mottram
8 years ago