free
/
freedomboneeee
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Firewall for keyserver

This commit is contained in:
Bob Mottram 2017-07-28 22:46:36 +01:00
parent 077d14df35
commit 3714095c0d
1 changed files with 16 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
src/freedombone-app-keyserver
View File

@ -46,6 +46,16 @@ keyserver_variables=(ONION_ONLY
KEYSERVER_DOMAIN_NAME KEYSERVER_DOMAIN_NAME
KEYSERVER_CODE) KEYSERVER_CODE)
function configure_firewall_for_keyserver {
if [[ $ONION_ONLY != "no" ]]; then
return
fi
firewall_add keyserver 11370 tcp
firewall_add keyserver 11371 tcp
firewall_add keyserver 11372 tcp
mark_completed $FUNCNAME
}
function logging_on_keyserver { function logging_on_keyserver {
echo -n '' echo -n ''
} }
@ -133,6 +143,10 @@ function remove_keyserver {
remove_onion_service keyserver ${KEYSERVER_ONION_PORT} remove_onion_service keyserver ${KEYSERVER_ONION_PORT}
remove_completion_param "install_keyserver" remove_completion_param "install_keyserver"
firewall_remove 11370 tcp
firewall_remove 11371 tcp
firewall_remove 11372 tcp
sed -i '/keyserver/d' $COMPLETION_FILE sed -i '/keyserver/d' $COMPLETION_FILE
if [ -d /var/lib/sks ]; then if [ -d /var/lib/sks ]; then
rm -rf /var/lib/sks rm -rf /var/lib/sks
@ -373,6 +387,8 @@ function install_keyserver {
function_check nginx_ensite function_check nginx_ensite
nginx_ensite $KEYSERVER_DOMAIN_NAME nginx_ensite $KEYSERVER_DOMAIN_NAME
configure_firewall_for_keyserver
systemctl restart nginx systemctl restart nginx
set_completion_param "keyserver domain" "$KEYSERVER_DOMAIN_NAME" set_completion_param "keyserver domain" "$KEYSERVER_DOMAIN_NAME"