[people/pmueller/ipfire-2.x.git] / config / rootfiles / oldcore / 94 / update.sh

#!/bin/bash
############################################################################
#                                                                          #
# This file is part of the IPFire Firewall.                                #
#                                                                          #
# IPFire is free software; you can redistribute it and/or modify           #
# it under the terms of the GNU General Public License as published by     #
# the Free Software Foundation; either version 3 of the License, or        #
# (at your option) any later version.                                      #
#                                                                          #
# IPFire is distributed in the hope that it will be useful,                #
# but WITHOUT ANY WARRANTY; without even the implied warranty of           #
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the            #
# GNU General Public License for more details.                             #
#                                                                          #
# You should have received a copy of the GNU General Public License        #
# along with IPFire; if not, write to the Free Software                    #
# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307 USA #
#                                                                          #
# Copyright (C) 2015 IPFire-Team <info@ipfire.org>.                        #
#                                                                          #
############################################################################
#
. /opt/pakfire/lib/functions.sh
/usr/local/bin/backupctrl exclude >/dev/null 2>&1

# Remove old core updates from pakfire cache to save space...
core=94
for (( i=1; i<=$core; i++ ))
do
	rm -f /var/cache/pakfire/core-upgrade-*-$i.ipfire
done

# Stop services
/etc/init.d/squid stop
/etc/init.d/sshd stop
/etc/init.d/dnsmasq stop

# Extract files
extract_files

# Restart init after glibc update
telinit u

# Update Language cache
/usr/local/bin/update-lang-cache

# Update SSH configuration
sed -i /etc/ssh/sshd_config \
	-e 's/^#PermitRootLogin yes$/PermitRootLogin yes/' \
	-e 's|^#\?HostKey /etc/ssh/ssh_host_dsa_key$||' \
	-e 's|^#\?HostKey /etc/ssh/ssh_host_ecdsa_key$||' \
	-e 's|^#\?HostKey /etc/ssh/ssh_host_ed25519_key$||' \
	-e 's|^#\?HostKey /etc/ssh/ssh_host_rsa_key$|HostKey /etc/ssh/ssh_host_ecdsa_key\nHostKey /etc/ssh/ssh_host_ed25519_key\nHostKey /etc/ssh/ssh_host_rsa_key|' \

# Move away old and unsupported keys
mv -f /etc/ssh/ssh_host_dsa_key{,.old}
# Regenerating weak RSA keys
mv -f /etc/ssh/ssh_host_key{,.old}
mv -f /etc/ssh/ssh_host_rsa_key{,.old}

# Update crontab
sed -i /var/spool/cron/root.orig -e "/Force an update once a month/d"
sed -i /var/spool/cron/root.orig -e "/ddns update-all --force/d"

grep -q "dma -q" /var/spool/cron/root.orig || cat <<EOF >> /var/spool/cron/root.orig

# Retry sending spooled mails regularly
%hourly * /usr/sbin/dma -q

# Cleanup the mail spool directory
%weekly * * /usr/sbin/dma-cleanup-spool
EOF

fcrontab -z &>/dev/null

# DMA - reconfigure Postfix if exists
if [ -e /etc/postfix/main.cf ] && [ ! -e "/usr/sbin/sendmail.postfix" ]; then
	mv /usr/sbin/sendmail /usr/sbin/sendmail.postfix
	/usr/sbin/alternatives --install /usr/sbin/sendmail sendmail /usr/sbin/sendmail.postfix 15
	sed -i 's/usr\/sbin\/sendmail/usr/sbin/sendmail.postfix/' /opt/pakfire/db/rootfiles/postfix
fi
# DMA - configure dma as default mta
mkdir -p /etc/alternatives
mkdir -p /var/lib/alternatives
/usr/sbin/alternatives --install /usr/sbin/sendmail sendmail /usr/sbin/sendmail.dma 20

# Start services
/etc/init.d/dnsmasq start
/etc/init.d/sshd start
/etc/init.d/squid start

# This update need a reboot...
#touch /var/run/need_reboot

# Finish
/etc/init.d/fireinfo start
sendprofile
# Update grub config to display new core version
if [ -e /boot/grub/grub.cfg ]; then
	grub-mkconfig -o /boot/grub/grub.cfg
fi
sync

# Don't report the exitcode last command
exit 0
Commit	Line	Data
5b64ed2e MT	1	#!/bin/bash
	2	############################################################################
	3	# #
	4	# This file is part of the IPFire Firewall. #
	5	# #
	6	# IPFire is free software; you can redistribute it and/or modify #
	7	# it under the terms of the GNU General Public License as published by #
	8	# the Free Software Foundation; either version 3 of the License, or #
	9	# (at your option) any later version. #
	10	# #
	11	# IPFire is distributed in the hope that it will be useful, #
	12	# but WITHOUT ANY WARRANTY; without even the implied warranty of #
	13	# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
	14	# GNU General Public License for more details. #
	15	# #
	16	# You should have received a copy of the GNU General Public License #
	17	# along with IPFire; if not, write to the Free Software #
	18	# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA #
	19	# #
	20	# Copyright (C) 2015 IPFire-Team <info@ipfire.org>. #
	21	# #
	22	############################################################################
	23	#
	24	. /opt/pakfire/lib/functions.sh
	25	/usr/local/bin/backupctrl exclude >/dev/null 2>&1
	26
	27	# Remove old core updates from pakfire cache to save space...
7383bf2b	28	core=94
5b64ed2e MT	29	for (( i=1; i<=$core; i++ ))
	30	do
	31	rm -f /var/cache/pakfire/core-upgrade-*-$i.ipfire
	32	done
	33
	34	# Stop services
e9358dcc	35	/etc/init.d/squid stop
45b6ea63	36	/etc/init.d/sshd stop
4b332b6d	37	/etc/init.d/dnsmasq stop
5b64ed2e MT	38
	39	# Extract files
	40	extract_files
	41
c5a5e4ab AF	42	# Restart init after glibc update
	43	telinit u
	44
5b64ed2e MT	45	# Update Language cache
	46	/usr/local/bin/update-lang-cache
	47
45b6ea63 MT	48	# Update SSH configuration
45b6ea63 MT	49	sed -i /etc/ssh/sshd_config \
d7b82e7c	50	-e 's/^#PermitRootLogin yes$/PermitRootLogin yes/' \
3a6784c0 AF	51	-e 's\|^#\?HostKey /etc/ssh/ssh_host_dsa_key$\|\|' \
	52	-e 's\|^#\?HostKey /etc/ssh/ssh_host_ecdsa_key$\|\|' \
	53	-e 's\|^#\?HostKey /etc/ssh/ssh_host_ed25519_key$\|\|' \
	54	-e 's\|^#\?HostKey /etc/ssh/ssh_host_rsa_key$\|HostKey /etc/ssh/ssh_host_ecdsa_key\nHostKey /etc/ssh/ssh_host_ed25519_key\nHostKey /etc/ssh/ssh_host_rsa_key\|' \
45b6ea63	55
04da8aa7 MT	56	# Move away old and unsupported keys
04da8aa7 MT	57	mv -f /etc/ssh/ssh_host_dsa_key{,.old}
ea0033d9 MT	58	# Regenerating weak RSA keys
	59	mv -f /etc/ssh/ssh_host_key{,.old}
	60	mv -f /etc/ssh/ssh_host_rsa_key{,.old}
04da8aa7	61
a6b15086 MT	62	# Update crontab
	63	sed -i /var/spool/cron/root.orig -e "/Force an update once a month/d"
	64	sed -i /var/spool/cron/root.orig -e "/ddns update-all --force/d"
7577ec1e	65
8f1fe7c5	66	grep -q "dma -q" /var/spool/cron/root.orig \|\| cat <<EOF >> /var/spool/cron/root.orig
7577ec1e MT	67
	68	# Retry sending spooled mails regularly
	69	%hourly * /usr/sbin/dma -q
08ebd823 MT	70
	71	# Cleanup the mail spool directory
	72	%weekly * * /usr/sbin/dma-cleanup-spool
7577ec1e MT	73	EOF
7577ec1e MT	74
a6b15086 MT	75	fcrontab -z &>/dev/null
a6b15086 MT	76
ee97ade8	77	# DMA - reconfigure Postfix if exists
38b7997f	78	if [ -e /etc/postfix/main.cf ] && [ ! -e "/usr/sbin/sendmail.postfix" ]; then
ee97ade8 AM	79	mv /usr/sbin/sendmail /usr/sbin/sendmail.postfix
	80	/usr/sbin/alternatives --install /usr/sbin/sendmail sendmail /usr/sbin/sendmail.postfix 15
	81	sed -i 's/usr\/sbin\/sendmail/usr/sbin/sendmail.postfix/' /opt/pakfire/db/rootfiles/postfix
	82	fi
	83	# DMA - configure dma as default mta
38b7997f MT	84	mkdir -p /etc/alternatives
38b7997f MT	85	mkdir -p /var/lib/alternatives
13adb7ae AM	86	/usr/sbin/alternatives --install /usr/sbin/sendmail sendmail /usr/sbin/sendmail.dma 20
13adb7ae AM	87
3dc6dced	88	# Start services
4b332b6d	89	/etc/init.d/dnsmasq start
45b6ea63	90	/etc/init.d/sshd start
e9358dcc	91	/etc/init.d/squid start
3dc6dced	92
5b64ed2e MT	93	# This update need a reboot...
	94	#touch /var/run/need_reboot
	95
	96	# Finish
	97	/etc/init.d/fireinfo start
	98	sendprofile
	99	# Update grub config to display new core version
	100	if [ -e /boot/grub/grub.cfg ]; then
7383bf2b	101	grub-mkconfig -o /boot/grub/grub.cfg
5b64ed2e MT	102	fi
	103	sync
	104
	105	# Don't report the exitcode last command
	106	exit 0