free
/
freedombone
關註 1
收藏 0
複製 0
程式碼 問題管理 0 合併請求 0 版本發佈 0 Wiki Activity
瀏覽代碼

Firewall for keyserver

Bob Mottram 8 年之前
父節點
077d14df35
當前提交
3714095c0d
共有 1 個文件被更改,包括 16 次插入0 次删除
統一視圖 顯示文件統計
  1. 16
    0
      src/freedombone-app-keyserver

+ 16
- 0
src/freedombone-app-keyserver 查看文件

46 
                      KEYSERVER_DOMAIN_NAME
 46 
                      KEYSERVER_DOMAIN_NAME
47 
                      KEYSERVER_CODE)
 47 
                      KEYSERVER_CODE)
48
48
49 
+function configure_firewall_for_keyserver {
50 
+    if [[ $ONION_ONLY != "no" ]]; then
51 
+        return
52 
+    fi
53 
+    firewall_add keyserver 11370 tcp
54 
+    firewall_add keyserver 11371 tcp
55 
+    firewall_add keyserver 11372 tcp
56 
+    mark_completed $FUNCNAME
57 
+}
58 
+
49 
 function logging_on_keyserver {
 59 
 function logging_on_keyserver {
50 
     echo -n ''
 60 
     echo -n ''
51 
 }
 61 
 }
133 
     remove_onion_service keyserver ${KEYSERVER_ONION_PORT}
 143 
     remove_onion_service keyserver ${KEYSERVER_ONION_PORT}
134 
     remove_completion_param "install_keyserver"
 144 
     remove_completion_param "install_keyserver"
135
145
146 
+    firewall_remove 11370 tcp
147 
+    firewall_remove 11371 tcp
148 
+    firewall_remove 11372 tcp
149 
+
136 
     sed -i '/keyserver/d' $COMPLETION_FILE
 150 
     sed -i '/keyserver/d' $COMPLETION_FILE
137 
     if [ -d /var/lib/sks ]; then
 151 
     if [ -d /var/lib/sks ]; then
138 
         rm -rf /var/lib/sks
 152 
         rm -rf /var/lib/sks
373 
     function_check nginx_ensite
 387 
     function_check nginx_ensite
374 
     nginx_ensite $KEYSERVER_DOMAIN_NAME
 388 
     nginx_ensite $KEYSERVER_DOMAIN_NAME
375
389
390 
+    configure_firewall_for_keyserver
391 
+
376 
     systemctl restart nginx
 392 
     systemctl restart nginx
377
393
378 
     set_completion_param "keyserver domain" "$KEYSERVER_DOMAIN_NAME"
 394 
     set_completion_param "keyserver domain" "$KEYSERVER_DOMAIN_NAME"