Decentrala/dmzconf
20
0
Fork 1
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: Decentrala:b58ddcdd0efdbcffd040358fcbe370df11f29d5e
Branches Tags
Decentrala:master Decentrala:man Decentrala:bydir
..
compare: Decentrala:man
Branches Tags
Decentrala:master Decentrala:man Decentrala:bydir

37 Commits
b58ddcdd0e ... man

Author SHA1 Message Date
Malin Freeborn
30c0774d62 draft: knowledge base makefile 2025-03-20 18:46:50 +01:00
Malin Freeborn
bbea859ffe split services by directory 2024-12-06 22:30:54 +01:00
Malin Freeborn
6882610a0e show git aliases 2024-12-06 22:29:42 +01:00
Txrpe
a62ddf2408 add note about webhooks for soft serve 2024-12-06 22:23:16 +01:00
Malin Freeborn
83c40a44a1 remove UTF8 crap 2024-12-05 17:12:10 +01:00
Malin Freeborn
c7eb11f603 add setup ssh-FAQ 2024-12-05 17:06:07 +01:00
Malin Freeborn
7bcf9b3ac5 fix man section feedback 2024-12-05 16:33:38 +01:00
Malin Freeborn
2d9fa2ab9b make man pages from readme files 2024-12-05 15:29:34 +01:00
Malin Freeborn
d1931d2e8b note soft collaborators 2024-12-04 20:03:14 +01:00
Malin Freeborn
7c28e70eb4 new structure checks and fixes 
- markdown formatting
- turn soft-serve.md into soft-serve/README.md
 2024-12-04 15:42:21 +01:00
Malin Freeborn
eb5d3b018b new structure 
This kicks off the basic tree structure, where the docs all mirror the
reality, like an ascii penumbra.
 2024-12-04 15:32:53 +01:00
Malin Freeborn
c3f34f9eea reformat soft-serve docs 2024-12-04 13:01:12 +01:00
Malin Freeborn
0a899d933b reorganize docs 
Each host gets a directory.  Containers will soon also have their own
directory.
 2024-12-03 22:54:47 +01:00
wingaxe
52b7c1f3e0 Adding .gitignore 2024-12-02 21:58:12 -05:00
wingaxe
ff241e6757 Adding help option in makefile 2024-12-02 21:42:15 -05:00
Malin Freeborn
c8283e1d08 add ability to remove unimportant items 2024-12-03 20:05:31 +01:00
Malin Freeborn
54c560bb4f add network map 2024-12-02 16:00:00 +01:00
Malin Freeborn
febce132d8 recognize password limits 2024-05-21 22:14:08 +02:00
Malin Freeborn
b86c84df60 add showpass.sh 2024-04-07 19:42:48 +02:00
fram3d
30efaeb4fa fix readme formating in hosts folder 2024-02-17 03:39:38 +01:00
fram3d
8a7d630102 move list of ct to readmes 2024-02-17 03:33:52 +01:00
fram3d
889cf9db0f add list of vms and update slapd script 2024-02-17 03:23:21 +01:00
fram3d
da563fd8be add onionadd script 2024-02-13 03:08:27 +01:00
fram3d
4b272c2929 fix scripts 2024-02-13 01:36:11 +01:00
fram3d
2e62c1b33b fix proxy host header in addsubdomain nginx config 2024-01-27 22:51:46 +01:00
fram3d
9cc158336b support ip address as new argument in addsub.sh 2024-01-27 22:37:26 +01:00
fram3d
935cfc0979 fix slapd acl generation scripts 2024-01-22 18:56:17 +01:00
fram3d
080a546bfb add support for mkdir when parent folders arent created 2024-01-22 18:40:10 +01:00
fram3d
2fef0f1c9f fix addsubdomain linking old files 2024-01-22 17:44:58 +01:00
fram3d
3ee717e7d1 generalize addsubdomain to work with different locations 2024-01-22 17:02:28 +01:00
fram3d
f1c39a5cf0 generalize luserinstall script to work with any deb package 2024-01-17 15:40:19 +01:00
fram3d
702c8f7bf7 fix ssh key path 2024-01-17 14:35:06 +01:00
fram3d
9be97947b5 add docs for slapd and dmzrsaccount 2024-01-05 12:33:19 +01:00
fram3d
5e4f55af5b add scripts from dmzscripts repo to scripts 2024-01-05 11:42:17 +01:00
fram3d
d3e2cec3a7 Merge branch 'master' of ssh://soft.dmz.rs/dmzconf 2024-01-05 11:39:36 +01:00
Malin Freeborn
6eb539b463 automatic network map creation 2023-11-28 19:48:39 +01:00
Malin Freeborn
a19f383672 complete http11 access 2023-11-28 19:48:39 +01:00
109 changed files with 3255 additions and 28 deletions
Expand all files Collapse all files

1
.gitignore vendored Normal file
View File

@@ -0,0 +1 @@
*.txt

52
Makefile Normal file
View File

@@ -0,0 +1,52 @@
.PHONY: help
help: ## Print the help message
@awk 'BEGIN {FS = ":.*?## "} /^[0-9a-zA-Z._-]+:.*?## / {printf "\033[36m%s\033[0m : %s\n", $$1, $$2}' $(MAKEFILE_LIST) | \
sort | \
column -s ':' -t
map.txt: map.ge ## Making map.txt
grep -v '# unimportant' $< | graph-easy --boxart > $@
cat $@
full_map.txt: map.ge ## Generating full_map.txt with graph-easy
graph-easy --boxart < $< > $@
cat $@
########## Man Pages ##########
mandir = $(HOME)/.local/man/man6
kralizec_docs != grep -rl "^section:" kralizec
kralmans = $(kralizec_docs:kralizec/%/README.md=$(mandir)/%.6)
$(mandir)/%.6: kralizec/%/README.md
lowdown -stman $< > $@
krov_docs != grep -rl "^section:" krov
krovmans = $(krov_docs:krov/%/README.md=$(mandir)/%.6)
$(mandir)/%.6: krov/%/README.md
lowdown -stman $< > $@
setup_docs != grep -rl "^section:" setup
setupmans = $(setup_docs:setup/%.md=$(mandir)/%.6)
$(mandir)/%.6: setup/%.md
lowdown -stman $< > $@
$(mandir):
mkdir -p $@
$(kralmans) $(krovmans) $(setupmans) :| $(mandir)
.PHONY: pages
pages: $(kralmans) $(krovmans) $(setupmans)
$(info $(kralmans))
@test ! $(command -v mandb) || mandb --user-db
$(info Open DMZ's man pages with 'man 6 <tab>')
##########
clean:
$(RM) $(kralmans) $(krovmans)

4
Network.md
View File

@@ -13,5 +13,7 @@
## http11
- Function: dmz.rs website (nginx)
- Access: `ssh -J $USER@rmvm4vrp352yhgtr73w5nafbrtsrsdgj2x7jolpy7b4czqxstt5abfid.onion root@192.168.1.41`
- Access:
1. Start `tor` service.
2. `torsocks ssh -J $USER@rmvm4vrp352yhgtr73w5nafbrtsrsdgj2x7jolpy7b4czqxstt5abfid.onion root@192.168.1.41`
- IP: 192.168.1.41

2
README.md
View File

@@ -13,5 +13,5 @@ These setup files provide the text-only configurations for DMZ.
- Idempotency.
- All secrets stored elsewhere (probably in the `dmzadmin` repo)
- Any maintenance scripts.
- Configurations should reside in shadow-directories, e.g. a backup of `/etc/soft/config` should reside in this repo under `etc/soft/config`.
- Configurations should reside in shadow-directories, e.g. a backup `soft-serve`'s `config.yaml` should reside in this repo under `splint.rs/soft-serve/etc/soft/config.yaml`.

26
docs/dmzrs/README.md
View File

@@ -1,26 +0,0 @@
Add this configuration to ~/.ssh/config file
Host dmzkrovdmzrs12
Hostname veyxphzuqnooc7wb7utfza3joaoopgqgwp6l6d4en5yfmyr7kxvminqd.onion
User root
IdentityFile ~/.ssh/id_rsa
PasswordAuthentication no
Now you can log in by typing:
torsocks ssh dmzkrovdmzrs12
Install all needed packages
apt install rsync git nginx
git clone https://gitea.dmz.rs/Decentrala/website
Run updatewebsite.sh script every minute using crontab (run "crontab -e")
This fill automaticlly pull from git repo and regenerate events page
Add nginx-dmz.rs.conf to /etc/nginx/sites-available/dmz.rs and create a symlink
from /etc/nginx/sites-enabled/dmz.rs to that file
You can do this by running:
ln -s /etc/nginx/sites-available/dmz.rs /etc/nginx/sites-enabled/dmz.rs
Increase server_names_hash_bucket_size to 256 in /etc/nginx/nginx.conf in order to support onion addresses.
In the nginx configuration /account/ is redirected to luser (https://gitea.dmz.rs/fram3d/luser) instance running at 192.168.1.211

18
kn.mk Normal file
View File

@@ -0,0 +1,18 @@
all_docs != find krov/serverko -name README.md
path_to_docs = $(patsubst krov/%/README.md, docs/%.md, $(all_docs))
stripped_docs = $(notdir $(path_to_docs))
x:
$(info $(all_docs))
$(info $(stripped_docs))
docs/kralizec/%.md: kralizec/%/README.md
mkdir -p $(@D)
cp $< $@
docs/serverko/%.md: krov/serverko/%/README.md
mkdir -p $(@D)
cp $< $@

27
kralizec/README.md Normal file
View File

@@ -0,0 +1,27 @@
# List of containers
VMID Name
101 tor11
102 xmppmirror11
104 http11
105 postgresql11
106 ejabberd11
108 nginx
109 flaskldap11
111 dynamicdns11
112 sshfs11
113 postfix11
114 ssh11
115 cgit11
116 radionice11
117 gitea11
118 dmzrsflask11
119 elinearch
120 wiki11
121 krovhttp11
122 dmzrs12
123 roundcube12
124 donationcalc12
125 webring12
126 cryptpad-deb-12
127 openldap12

3
kralizec/cgit11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 115
---

3
kralizec/cryptpad-deb-12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 126
---

40
kralizec/dmzrs/README.md Normal file
View File

@@ -0,0 +1,40 @@
Add this configuration to `~/.ssh/config` file
```
Host dmzkrovdmzrs12
Hostname veyxphzuqnooc7wb7utfza3joaoopgqgwp6l6d4en5yfmyr7kxvminqd.onion
User root
IdentityFile ~/.ssh/id_rsa
PasswordAuthentication no
```
Now you can log in by typing:
```bash
torsocks ssh dmzkrovdmzrs12
```
Install all needed packages:
```bash
apt install rsync git nginx
git clone https://gitea.dmz.rs/Decentrala/website
```
Run `updatewebsite.sh` script every minute using `crontab` (run "`crontab -e`")
This fill automatically pull from git repo and regenerate events page
Add `nginx-dmz.rs.conf` to `/etc/nginx/sites-available/dmz.rs` and create a symlink
from `/etc/nginx/sites-enabled/dmz.rs` to that file.
You can do this by running:
```bash
ln -s /etc/nginx/sites-available/dmz.rs /etc/nginx/sites-enabled/dmz.rs
```
Increase `server_names_hash_bucket_size` to 256 in `/etc/nginx/nginx.conf` in order to support onion addresses.
In the `nginx` configuration /account/ is redirected to the `luser` [instance](https://gitea.dmz.rs/fram3d/luser) running at `192.168.1.211`.

0
docs/dmzrs/nginx-dmz.rs.conf → kralizec/dmzrs/nginx-dmz.rs.conf
View File

0
docs/dmzrs/updatewebsite.sh → kralizec/dmzrs/updatewebsite.sh
View File

3
kralizec/dmzrs12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 122
---

13
kralizec/dmzrsaccount/README.md Normal file
View File

@@ -0,0 +1,13 @@
install luser.deb
change /var/luser/luser/config.ini
add ldap.krov.dmz.rs to /etc/hosts with the IP address op slapd vm by adding a line like "192.168.1.205 ldap.krov.dmz.rs"
config.ini should contain following:
LDAPHOST = ldap.krov.dmz.rs
LDAPADMINNAME = cn=admin,dc=dmz,dc=rs
LDAPPASS = <admin password set during installation of slapd program and dpkg-reconfigure on slapd vm>
USERBASE = ou=Users,dc=dmz,dc=rs
run prepare.py

12
kralizec/dmzrsaccount/listuserskralizec.py Executable file
View File

@@ -0,0 +1,12 @@
#!/usr/bin/env python3
import ldap3
LDAPADMINNAME='uid=krovslapd,ou=xmpp,dc=dmz,dc=rs'
LDAPPASS='<krovslapd password>'
USERATTRIBUTES=['cn' , 'sn', 'givenName', 'uid', 'uidNumber' , 'gidNumber', 'homeDirectory', 'loginShell', 'gecos' , 'shadowLastChange', 'shadowMax', 'userPassword', 'mail']
ldapserver=ldap3.Server('2001:470:1f1a:1a4:0:1:0:1d',use_ssl=True)
ldapconnection = ldap3.Connection(ldapserver, LDAPADMINNAME,LDAPPASS, auto_bind=True)
ldapconnection.search(search_base=f'ou=xmpp,dc=dmz,dc=rs',search_filter='(objectClass=person)', attributes=USERATTRIBUTES)
print(str(ldapconnection.response))

17
kralizec/dmzrsaccount/listuserskrov.py Executable file
View File

@@ -0,0 +1,17 @@
#!/usr/bin/env python3
import ldap3
import configparser
CONFIG_PATH = '/var/luser/luser/config.ini'
config = configparser.ConfigParser()
config.read(CONFIG_PATH)
LDAPHOST = config.get('credentials', 'LDAPHOST')
LDAPADMINNAME = config.get('credentials', 'LDAPADMINNAME')
LDAPPASS = config.get('credentials', 'LDAPPASS')
USERBASE = config.get('credentials', 'USERBASE')
USERATTRIBUTES=['cn' , 'sn', 'givenName', 'uid', 'uidNumber' , 'gidNumber', 'homeDirectory', 'loginShell', 'gecos' , 'shadowLastChange', 'shadowMax', 'userPassword', 'mail']
ldapserver=ldap3.Server(LDAPHOST,use_ssl=True)
ldapconnection = ldap3.Connection(ldapserver, LDAPADMINNAME,LDAPPASS, auto_bind=True)
ldapconnection.search(search_base=f'{USERBASE}',search_filter='(objectClass=person)', attributes=USERATTRIBUTES)
print(str(ldapconnection.response))

18
kralizec/dmzrsaccount/prepare.py Executable file
View File

@@ -0,0 +1,18 @@
#!/usr/bin/env python3
import ldap3
import configparser
CONFIG_PATH = "/var/luser/luser/config.ini"
config = configparser.ConfigParser()
config.read(CONFIG_PATH)
LDAPHOST = config.get('credentials', 'LDAPHOST')
LDAPADMINNAME = config.get('credentials', 'LDAPADMINNAME')
LDAPPASS = config.get('credentials', 'LDAPPASS')
USERBASE = config.get('credentials', 'USERBASE')
ldapserver=ldap3.Server(LDAPHOST,use_ssl=True)
ldapconnection = ldap3.Connection(ldapserver, LDAPADMINNAME, LDAPPASS, auto_bind=True)
rcode1=ldapconnection.add(f'{USERBASE}', ['dcObject', 'organization'], {'o' : "dmz", 'dc' : "dmz"})
rcode2=ldapconnection.add(USERBASE, ['top', 'organizationalUnit'], {'ou' : "Users"})
print(str(rcode1))
print(str(rcode2))

18
kralizec/dmzrsaccount/testanon.py Executable file
View File

@@ -0,0 +1,18 @@
#!/usr/bin/env python3
import ldap3
import configparser
CONFIG_PATH = '/var/luser/luser/config.ini'
config = configparser.ConfigParser()
config.read(CONFIG_PATH)
LDAPHOST = config.get('credentials', 'LDAPHOST')
USERBASE = config.get('credentials', 'USERBASE')
USERATTRIBUTES=['cn' , 'sn', 'givenName', 'uid', 'uidNumber' , 'gidNumber', 'homeDirectory', 'loginShell', 'gecos' , 'shadowLastChange', 'shadowMax', 'userPassword', 'mail']
LDAPADMINNAME=''
LDAPPASS=""
ldapserver=ldap3.Server(LDAPHOST,use_ssl=True)
ldapconnection = ldap3.Connection(ldapserver, LDAPADMINNAME,LDAPPASS, auto_bind=True)
ldapconnection.search(search_base=f'{USERBASE}',search_filter='(objectClass=person)', attributes=USERATTRIBUTES)
print(str(ldapconnection.response))

18
kralizec/dmzrsaccount/testuser.py Executable file
View File

@@ -0,0 +1,18 @@
#!/usr/bin/env python3
import ldap3
import configparser
CONFIG_PATH = '/var/luser/luser/config.ini'
config = configparser.ConfigParser()
config.read(CONFIG_PATH)
LDAPHOST = config.get('credentials', 'LDAPHOST')
USERBASE = config.get('credentials', 'USERBASE')
USERATTRIBUTES=['cn' , 'sn', 'givenName', 'uid', 'uidNumber' , 'gidNumber', 'homeDirectory', 'loginShell', 'gecos' , 'shadowLastChange', 'shadowMax', 'userPassword', 'mail']
LDAPADMINNAME="uid=korisnik,ou=Users,dc=dmz,dc=rs"
LDAPPASS="<password of korisnik>"
ldapserver=ldap3.Server(LDAPHOST,use_ssl=True)
ldapconnection = ldap3.Connection(ldapserver, LDAPADMINNAME,LDAPPASS, auto_bind=True)
ldapconnection.search(search_base=f'{USERBASE}',search_filter='(objectClass=person)', attributes=USERATTRIBUTES)
print(str(ldapconnection.response))

3
kralizec/dmzrsflask11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 118
---

3
kralizec/donationcalc12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 124
---

3
kralizec/dynamicdns11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 111
---

6
docs/ejabberd/README.md → kralizec/ejabberd/README.md
View File

@@ -1,3 +1,9 @@
---
title: ejabberd configurations
section: 6
source: Decentrala
---
#On your PC
Add this configuration to ~/.ssh/config

0
docs/ejabberd/ejabberd.yml → kralizec/ejabberd/ejabberd.yml
View File

3
kralizec/ejabberd11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 106
---

3
kralizec/elinearch/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 119
---

3
kralizec/flaskldap11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 109
---

3
kralizec/gitea11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 117
---

3
kralizec/http11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 104
---

3
kralizec/krovhttp11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 121
---

3
kralizec/nginx/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 108
---

3
kralizec/openldap12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 127
---

3
kralizec/postfix11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 113
---

3
kralizec/postgresql11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 105
---

3
kralizec/radionice11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 116
---

3
kralizec/roundcube12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 123
---

2
kralizec/slapd/.gitignore vendored Normal file
View File

@@ -0,0 +1,2 @@
acladd.ldif
*gpg

18
kralizec/slapd/README.md Normal file
View File

@@ -0,0 +1,18 @@
Create ldap users at dmz.rs/account for users in the servicesaccounts.txt
these accounts should be listed in /root/ldifs/addacl.ldif
to generate addacl.ldif run generateacl.sh
add tls keys in /etc/ssl/certs/ldap.krov.dmz.rs
# Generate password for admin user on this server only and add it when asked during installation
apt install slapd
# For domain set dmz.rs for Organization set Users for admin password use previously generated password
dpkg-reconfigure slapd
# change /etc/default/slapd to replace ldap:// with ldaps:// under SLAPD_SERVICES
service slapd restart
./setup.sh
dmzrsaccount vm should run prepare.py
ldapsync vm should run sync.py

18
kralizec/slapd/acladd-template.ldif Normal file
View File

@@ -0,0 +1,18 @@
dn: olcDatabase={1}mdb,cn=config
add: olcAccess
olcAccess: {1}to attrs=userPassword by self write by anonymous auth
dn: olcDatabase={1}mdb,cn=config
add: olcAccess
#olcAccess: {2}to * by * none
olcAccess: {2}to * by self write READUSERS by anonymous none
dn: olcDatabase={-1}frontend,cn=config
add: olcAccess
olcAccess: {1}to attrs=userPassword by self write by anonymous auth
dn: olcDatabase={-1}frontend,cn=config
add: olcAccess
#olcAccess: {2}to * by * none
olcAccess: {2}to * by self READUSERS by anonymous none

7
kralizec/slapd/generateacl.sh Executable file
View File

@@ -0,0 +1,7 @@
#!/bin/bash
READUSERS=""
for i in $(cat servicesaccounts.txt); do READUSERS="$READUSERS by dn=\"$i\" read" ; done
sed 's/READUSERS/'"$READUSERS"'/g' acladd-template.ldif > acladd.ldif

8
kralizec/slapd/generatecreds.sh Executable file
View File

@@ -0,0 +1,8 @@
#!/bin/bash
function genpass(){
echo $(shuf ../../scripts/shared/english.txt | head) | sed "s/ //g"
}
for i in $(cat servicesaccounts.txt) ; do printf "%s\n" $(echo -n $i | cut -d"," -f 1 | cut -d"=" -f2 ; genpass) | gpg -e -r fram3d@dmz.rs -r sienna@dmz.rs --output creds/$(echo -n $i | cut -d"," -f 1 | cut -d"=" -f2).gpg ; done

9
kralizec/slapd/servicesaccounts.txt Normal file
View File

@@ -0,0 +1,9 @@
uid=readonlykrov,ou=Users,dc=dmz,dc=rs
uid=wikildapkrov,ou=Users,dc=dmz,dc=rs
uid=forumldapkrov,ou=Users,dc=dmz,dc=rs
uid=gitealdapkrov,ou=Users,dc=dmz,dc=rs
uid=xmppldapkrov,ou=Users,dc=dmz,dc=rs
uid=dovecotldapkrov,ou=Users,dc=dmz,dc=rs
uid=postfixldapkrov,ou=Users,dc=dmz,dc=rs
uid=smtpdldapkrov,ou=Users,dc=dmz,dc=rs
uid=kralizecslapd,ou=Users,dc=dmz,dc=rs

3
kralizec/ssh11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 114
---

3
kralizec/sshfs11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 112
---

3
kralizec/tor11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 101
---

3
kralizec/webring12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 125
---

3
kralizec/wiki11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 120
---

3
kralizec/xmppmirror11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 102
---

19
krov/serverko/README.md Normal file
View File

@@ -0,0 +1,19 @@
# List of containers
## serverko
VMID Name
100 nginx12
101 ddns12
102 dmzrs12
103 tor12
104 slapd12
105 wireguard12
106 opensmptd12
107 ipv6tunnel12
108 postgres12
109 ejabberd12
110 dmzrsaccount
111 taskmanager12
112 stopreklamama12

3
krov/serverko/ddns12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 101
---

3
krov/serverko/dmzrs12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 102
---

3
krov/serverko/dmzrsaccount/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 110
---

3
krov/serverko/ejabberd12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 109
---

3
krov/serverko/ipv6tunnel12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 107
---

0
hosts/krov/ipv6tunnel12/etc/network/interfaces → krov/serverko/ipv6tunnel12/etc/network/interfaces
View File

0
hosts/krov/ipv6tunnel12/lib/systemd/system/ifuptunnel.service → krov/serverko/ipv6tunnel12/lib/systemd/system/ifuptunnel.service
View File

0
hosts/krov/ipv6tunnel12/root/scripts/netstart.sh → krov/serverko/ipv6tunnel12/root/scripts/netstart.sh
View File

3
krov/serverko/nginx12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 100
---

3
krov/serverko/opensmptd12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 106
---

0
hosts/krov/opensmtpd12/crontab → krov/serverko/opensmtpd12/crontab
View File

0
hosts/krov/opensmtpd12/etc/mailname → krov/serverko/opensmtpd12/etc/mailname
View File

0
hosts/krov/opensmtpd12/etc/smtpd.conf → krov/serverko/opensmtpd12/etc/smtpd.conf
View File

3
krov/serverko/postgres12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 108
---

3
krov/serverko/slapd12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 104
---

45
krov/serverko/slapd12/etc/default/slapd Normal file
View File

@@ -0,0 +1,45 @@
# Default location of the slapd.conf file or slapd.d cn=config directory. If
# empty, use the compiled-in default (/etc/ldap/slapd.d with a fallback to
# /etc/ldap/slapd.conf).
SLAPD_CONF=
# System account to run the slapd server under. If empty the server
# will run as root.
SLAPD_USER="openldap"
# System group to run the slapd server under. If empty the server will
# run in the primary group of its user.
SLAPD_GROUP="openldap"
# Path to the pid file of the slapd server. If not set the init.d script
# will try to figure it out from $SLAPD_CONF (/etc/ldap/slapd.d by
# default)
SLAPD_PIDFILE=
# slapd normally serves ldap only on all TCP-ports 389. slapd can also
# service requests on TCP-port 636 (ldaps) and requests via unix
# sockets.
# Example usage:
# SLAPD_SERVICES="ldap://127.0.0.1:389/ ldaps:/// ldapi:///"
SLAPD_SERVICES="ldaps:/// ldapi:///"
# If SLAPD_NO_START is set, the init script will not start or restart
# slapd (but stop will still work). Uncomment this if you are
# starting slapd via some other means or if you don't want slapd normally
# started at boot.
#SLAPD_NO_START=1
# If SLAPD_SENTINEL_FILE is set to path to a file and that file exists,
# the init script will not start or restart slapd (but stop will still
# work). Use this for temporarily disabling startup of slapd (when doing
# maintenance, for example, or through a configuration management system)
# when you don't want to edit a configuration file.
SLAPD_SENTINEL_FILE=/etc/ldap/noslapd
# For Kerberos authentication (via SASL), slapd by default uses the system
# keytab file (/etc/krb5.keytab). To use a different keytab file,
# uncomment this line and change the path.
#export KRB5_KTNAME=/etc/krb5.keytab
# Additional options to pass to slapd
SLAPD_OPTIONS=""

4
krov/serverko/slapd12/root/aclupdate.sh Executable file
View File

@@ -0,0 +1,4 @@
#!/bin/bash
./modify.sh ldifs/acldel.ldif
./modify.sh ldifs/acladd.ldif

18
krov/serverko/slapd12/root/ldifs/acladd.ldif Normal file
View File

@@ -0,0 +1,18 @@
dn: olcDatabase={1}mdb,cn=config
add: olcAccess
olcAccess: {1}to attrs=userPassword by self write by anonymous auth
dn: olcDatabase={1}mdb,cn=config
add: olcAccess
#olcAccess: {2}to * by * none
olcAccess: {2}to * by self write by dn="uid=readonlykrov,ou=Users,dc=dmz,dc=rs" read by dn="uid=wikildapkrov,ou=Users,dc=dmz,dc=rs" read by dn="uid=forumldapkrov,ou=Users,dc=dmz,dc=rs" read by dn="uid=gitealdapkrov,ou=Users,dc=dmz,dc=rs" read by dn="uid=xmppldapkrov,ou=Users,dc=dmz,dc=rs" read by dn="uid=dovecotldapkrov,ou=Users,dc=dmz,dc=rs" read by dn="uid=postfixldapkrov,ou=Users,dc=dmz,dc=rs" read by dn="uid=smtpdldapkrov,ou=Users,dc=dmz,dc=rs" read by dn="uid=kralizecslapd,ou=Users,dc=dmz,dc=rs" read by anonymous none
dn: olcDatabase={-1}frontend,cn=config
add: olcAccess
olcAccess: {1}to attrs=userPassword by self write by anonymous auth
dn: olcDatabase={-1}frontend,cn=config
add: olcAccess
#olcAccess: {2}to * by * none
olcAccess: {2}to * by self write by dn="uid=readonlykrov,ou=Users,dc=dmz,dc=rs" read by dn="uid=wikildapkrov,ou=Users,dc=dmz,dc=rs" read by dn="uid=forumldapkrov,ou=Users,dc=dmz,dc=rs" read by dn="uid=gitealdapkrov,ou=Users,dc=dmz,dc=rs" read by dn="uid=xmppldapkrov,ou=Users,dc=dmz,dc=rs" read by dn="uid=dovecotldapkrov,ou=Users,dc=dmz,dc=rs" read by dn="uid=postfixldapkrov,ou=Users,dc=dmz,dc=rs" read by dn="uid=smtpdldapkrov,ou=Users,dc=dmz,dc=rs" read by dn="uid=kralizecslapd,ou=Users,dc=dmz,dc=rs" read by anonymous none

5
krov/serverko/slapd12/root/ldifs/acldel.ldif Normal file
View File

@@ -0,0 +1,5 @@
dn: olcDatabase={-1}frontend,cn=config
delete: olcAccess
dn: olcDatabase={1}mdb,cn=config
delete: olcAccess

10
krov/serverko/slapd12/root/ldifs/tls.ldif Normal file
View File

@@ -0,0 +1,10 @@
dn: cn=config
changetype: modify
replace: olcTLSCertificateFile
olcTLSCertificateFile: /etc/ssl/certs/ldap.krov.dmz.rs/cert.pem
-
replace: olcTLSCertificateKeyFile
olcTLSCertificateKeyFile: /etc/ssl/certs/ldap.krov.dmz.rs/privkey.pem
-
replace: olcTLSCACertificateFile
olcTLSCACertificateFile: /etc/ssl/certs/ldap.krov.dmz.rs/chain.pem

3
krov/serverko/slapd12/root/modify.sh Executable file
View File

@@ -0,0 +1,3 @@
#!/bin/bash
ldapmodify -H ldapi:/// -Y EXTERNAL -f $1

4
krov/serverko/slapd12/root/setup.sh Executable file
View File

@@ -0,0 +1,4 @@
#!/bin/bash
./modify.sh ldifs/tls.ldif
./aclupdate.sh

3
krov/serverko/stopreklamama12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 112
---

3
krov/serverko/taskmanager12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 111
---

3
krov/serverko/tor12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 103
---

3
krov/serverko/wireguard12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 105
---

15
krov/srv1/README.md Normal file
View File

@@ -0,0 +1,15 @@
# List of containers
## srv1
VMID Name
102 tor12
103 dendrite
106 icecast12
107 mariadb12
108 mpd12
109 ympd
111 sshfs11
113 ollama12
114 chatbot12
115 goodvibes12

3
krov/srv1/chatbot12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 114
---

3
krov/srv1/dendrite/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 103
---

3
krov/srv1/goodvibes12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 115
---

3
krov/srv1/icecast12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 106
---

3
krov/srv1/mariadb12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 107
---

3
krov/srv1/mpd12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 108
---

3
krov/srv1/ollama12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 113
---

3
krov/srv1/sshfs11/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 111
---

3
krov/srv1/tor12/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 102
---

3
krov/srv1/ympd/README.md Normal file
View File

@@ -0,0 +1,3 @@
---
VMID: 109
---

39
map.ge Normal file
View File

@@ -0,0 +1,39 @@
# Network map of Decentrala. Use with:
# graph-easy --boxart < netmap.txt
(Mox
[ m_router ]{label: router ;}
[ wireguard ] --> [ m_nginx ]{label: nginx-11 ;}
[ wiki ] --> [ m_nginx ]
[ gitea ] --> [ m_nginx ]
[ tor11 ] --> [ m_nginx ] --> [ m_router ]
[ smtp ]
)
(Serverko
[ s_nginx ]{label: nginx-12 ;}
[ s_router ]{label: router ;}
[ s_nginx ] --> [ nextcloud ]
[ s_nginx ] --> [ tor12 ]
[ s_nginx ] --> [ s_router ]
)
(splint.rs # unimportant
[ soft-serve ] # unimportant
[ mail-cache ]# unimportant
) # unimportant
[ tor12 ] <..> [ onions ] <..> [ tor11 ]
[ m_router ] <..> [ BGP ] <..> [ madness ] <..> [ s_router ]
[ smtp ] <..> [ madness ]
[ madness ] <..> [ mail-cache ]# unimportant
[ A ]{label: "" ;}
[ B ]{label: "" ;}
[ C ]{label: "" ;}
[ D ]{label: "" ;}
[ onions ] <..> [ A ]
[ onions ] <..> [ B ]
[ A ] <..> [ C ]
[ B ] <..> [ D ]
(Sharks! [ D ])

31
scripts/addsubdomain/addsub.sh Executable file
View File

@@ -0,0 +1,31 @@
#!/bin/bash
## Generate TLS certificate for a new subdomain
DMZKEYFILE=$(echo -n ~)"/.ssh/dmz"
NGINXHOST=$1
SUBDOMAIN=$2
CTIPADDRESS=$3
if [[ -z "$NGINXHOST" ]]; then
echo "Set Nginx Host"
exit 1
fi
if [[ -z "$SUBDOMAIN" ]]; then
echo "Set subdomain"
exit 1
fi
ssh-add -t 200 $DMZKEYFILE
torsocks scp ./remotecmd $NGINXHOST:/root/remotecmd.sh
torsocks scp ./subdomain.dmz.rs.http $NGINXHOST:/etc/nginx/sites-available/
torsocks scp ./subdomain.dmz.rs.https $NGINXHOST:/etc/nginx/sites-available/
if [[ -z "$CTIPADDRESS" ]]; then
torsocks scp ./subdomain.dmz.rs.proxy $NGINXHOST:/etc/nginx/sites-available/
fi
torsocks ssh $NGINXHOST "chmod +x /root/remotecmd.sh; /root/remotecmd.sh $SUBDOMAIN"

35
scripts/addsubdomain/remotecmd Executable file
View File

@@ -0,0 +1,35 @@
#!/bin/bash
SUBDOMAIN=$1
SUBNODOT=$(echo -n $1 | cut -d"." -f1- --output-delimiter="" )
if [[ -z "$SUBDOMAIN" ]]; then
echo "Set subdomain"
exit 1
fi
if [[ -z "$CTIPADDRESS" ]]; then
sed -i 's/CTIPADDRESS/'$CTIPADDRESS'/g' /etc/nginx/sites-available/subdomain.dmz.rs.proxy
mv /etc/nginx/sites-available/subdomain.dmz.rs.proxy /etc/nginx/sites-available/subdomain.dmz.rs.https
fi
sed -i 's/subdomain/'$SUBDOMAIN'/g' /etc/nginx/sites-available/subdomain.dmz.rs.http
sed -i 's/subdomain/'$SUBDOMAIN'/g' /etc/nginx/sites-available/subdomain.dmz.rs.https
sed -i 's/subnodot/'$SUBNODOT'/g' /etc/nginx/sites-available/subdomain.dmz.rs.http
sed -i 's/subnodot/'$SUBNODOT'/g' /etc/nginx/sites-available/subdomain.dmz.rs.https
mkdir /var/www/"$SUBNODOT"dmzrs/
mv /etc/nginx/sites-available/subdomain.dmz.rs.http /etc/nginx/sites-available/"$SUBDOMAIN".dmz.rs.http
mv /etc/nginx/sites-available/subdomain.dmz.rs.https /etc/nginx/sites-available/"$SUBDOMAIN".dmz.rs.https
ln -s /etc/nginx/sites-available/"$SUBDOMAIN".dmz.rs.http /etc/nginx/sites-enabled/"$SUBDOMAIN".dmz.rs.http
service nginx reload
certbot certonly -d "$SUBDOMAIN".dmz.rs,"$SUBDOMAIN".decentrala.org --webroot -w /var/www/"$SUBNODOT"dmzrs
unlink /etc/nginx/sites-enabled/"$SUBDOMAIN".dmz.rs.http
cat /etc/nginx/sites-available/"$SUBDOMAIN".dmz.rs.http /etc/nginx/sites-available/"$SUBDOMAIN".dmz.rs.https > /etc/nginx/sites-available/"$SUBDOMAIN".dmz.rs.all
mv /etc/nginx/sites-available/"$SUBDOMAIN".dmz.rs.all /etc/nginx/sites-available/"$SUBDOMAIN".dmz.rs
ln -s /etc/nginx/sites-available/"$SUBDOMAIN".dmz.rs /etc/nginx/sites-enabled/"$SUBDOMAIN".dmz.rs
rm /etc/nginx/sites-available/"$SUBDOMAIN".dmz.rs.https
rm /etc/nginx/sites-available/"$SUBDOMAIN".dmz.rs.http
service nginx reload
rm /root/remotecmd.sh

10
scripts/addsubdomain/subdomain.dmz.rs.http Normal file
View File

@@ -0,0 +1,10 @@
server {
listen 80;
listen [::]:80;
index index.html index.htm index.nginx-debian.html;
server_name subdomain.dmz.rs subdomain.decentrala.org;
root /var/www/subnodotdmzrs;
}

18
scripts/addsubdomain/subdomain.dmz.rs.https Normal file
View File

@@ -0,0 +1,18 @@
server {
listen 443 ssl ;
listen [::]:443 ssl ;
index index.html index.htm index.nginx-debian.html;
server_name subdomain.dmz.rs subdomain.decentrala.org;
ssl_certificate /etc/letsencrypt/live/subdomain.dmz.rs/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/subdomain.dmz.rs/privkey.pem;
ssl_dhparam /etc/ssl/dhparam.pem;
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers HIGH:!aNULL:!MD5;
root /var/www/subnodotdmzrs;
resolver 9.9.9.9;
}

29
scripts/addsubdomain/subdomain.dmz.rs.proxy Normal file
View File

@@ -0,0 +1,29 @@
server {
listen 443 ssl ;
listen [::]:443 ssl ;
index index.html index.htm index.nginx-debian.html;
server_name subdomain.dmz.rs subdomain.decentrala.org;
ssl_certificate /etc/letsencrypt/live/subdomain.dmz.rs/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/subdomain.dmz.rs/privkey.pem;
ssl_dhparam /etc/ssl/dhparam.pem;
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers HIGH:!aNULL:!MD5;
location / {
proxy_set_header Host subdomain.dmz.rs;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_pass http://CTIPADDRESS$request_uri;
}
location /.well-known/acme-challenge/ {
root /var/www/subnodotdmzrs;
}
resolver 9.9.9.9;
}

52
scripts/ctcreate/ctcreate.sh Executable file
View File

@@ -0,0 +1,52 @@
#!/bin/bash
## Create new Linux contanier at a proxmox host
DMZKEYFILE=$(echo -n ~)"/.ssh/dmz"
USER=$(cut -d" " -f3 $DMZKEYFILE.pub | cut -d "@" -f1)
USEREMAIL=$(cut -d" " -f3 $DMZKEYFILE.pub)
PROXMOXHOST=$1
CTHOST=$2
GENPASS=$( echo $(shuf ../shared/english.txt | head) | sed "s/ //g")
if [[ -z "$PROXMOXHOST" ]]; then
echo "Set Proxmox Host"
exit 1
fi
if [[ -z "$CTHOST" ]]; then
echo "Set CT hostname"
exit 1
fi
if [[ -z "$GENPASS" ]]; then
echo "Set CT password"
exit 1
fi
ssh-add -t 600 $DMZKEYFILE
torsocks scp ./remotecmd $PROXMOXHOST:/root/ctcreate.sh
torsocks scp $DMZKEYFILE.pub $PROXMOXHOST:/root/.ssh/$USER.pub
torsocks ssh $PROXMOXHOST "chmod +x /root/ctcreate.sh; /root/ctcreate.sh $CTHOST $GENPASS $USER" >> cmdoutput.txt
CREDS=$( tail -3 cmdoutput.txt)
rm cmdoutput.txt
printf "$CREDS\n" | gpg -e -r $USEREMAIL --output $CTHOST.gpg
CTIP=$(printf "$CREDS" | head -1 | cut -d'@' -f 2)
echo "Host dmzkrov"$CTHOST >> ~/.ssh/autoconfig
echo " Hostname "$CTIP >> ~/.ssh/autoconfig
echo " ProxyJump dmzkrovtor12" >> ~/.ssh/autoconfig
echo " User root" >> ~/.ssh/autoconfig
echo " IdentityFile "$DMZKEYFILE >> ~/.ssh/autoconfig
echo " PasswordAuthentication no" >> ~/.ssh/autoconfig
ssh -R $CTIP
torsocks scp ./newct dmzkrov$CTHOST:/root/newct.sh
torsocks ssh dmzkrov$CTHOST "bash newct.sh; rm newct.sh"
torsocks ssh dmzkrov$CTHOST

5
scripts/ctcreate/newct Normal file
View File

@@ -0,0 +1,5 @@
#!/bin/bash
apt update
apt -y dist-upgrade
apt -y install unattended-upgrades
dpkg-reconfigure unattended-upgrades

47
scripts/ctcreate/remotecmd Normal file
View File

@@ -0,0 +1,47 @@
#!/bin/bash
CTHOSTNAME=$1
CTPASS=$2
USER=$3
echo Creating $CTHOSTNAME ...
# Find last CT and get its ID
LASTID=$(pct list | cut -d" " -f1 | tail -1)
if [[ -z "$CTHOSTNAME" ]]; then
echo "CT hostname not set"
exit 1
fi
if [[ -z "$CTPASS" ]]; then
echo "CT password not set"
exit 1
fi
if [[ -z "$USER" ]]; then
echo "USER not set"
exit 1
fi
if [[ -z "$LASTID" ]]; then
LASTID=99
fi
NEWID=$(($LASTID + 1))
echo ID of new CT is: $NEWID
## Find the biggest free IP
for i in $(seq $((NEWID + 101)) 254); do ping -W 3 -c 3 192.168.1.$i || break; done
CTIP="192.168.1.$i"
pct create $NEWID local:vztmpl/debian-12-standard_12.2-1_amd64.tar.zst --arch amd64 --cores 2 --features nesting=1 --hostname $CTHOSTNAME --memory 2048 --net0 name=eth0,bridge=vmbr0,firewall=1,gw=192.168.1.1,gw6=2001:470:1f1a:1a4::5,ip=$CTIP/24,ip6=2001:470:1f1a:1a4::$(printf '%x' $((NEWID - 87)))/96,type=veth --onboot 1 --ostype debian --swap 1024 --unprivileged 1 --storage local-lvm --ssh-public-keys /root/.ssh/fram3d.pub --password $CTPASS
pct set $NEWID --rootfs local-lvm:vm-$NEWID-disk-0,size=32G
pct start $NEWID
echo "Creds:"
echo "root@$CTIP"
echo "root@2001:470:1f1a:1a4::$(printf '%x' $((NEWID - 87)))"
echo $CTPASS

25
scripts/installdeb/installdeb.sh Executable file
View File

@@ -0,0 +1,25 @@
#!/bin/bash
## Install luser.deb to remote host
DMZKEYFILE=$(echo -n ~)"/.ssh/dmz"
HOST="$1"
DEB="$2"
if [[ -z "$HOST" ]]; then
echo "Set Luser Host"
echo "Usage: ./installdeb.sh HOSTNAME DEB_FILE"
exit 1
fi
if [[ -z "$DEB" ]]; then
echo "Set Deb package name"
echo "Usage: ./installdeb.sh HOSTNAME DEB_FILE"
exit 1
fi
cd ~/src/$DEB/build-deb
make
ssh-add -t 100 $DMZKEYFILE
torsocks scp $DEB.deb $HOST:~/
torsocks ssh $HOST "apt install -y /root/$DEB.deb ; rm /root/$DEB.deb"

1
scripts/onionadd/cmdoutput.txt Normal file
View File

@@ -0,0 +1 @@
j3kztfnedlfhikhr7uro7uxzf35xbrtcu4omzbl2bqb6ygakipcw62yd.onion

36
scripts/onionadd/onionadd.sh Executable file
View File

@@ -0,0 +1,36 @@
#!/bin/bash
## Create new Linux contanier at a proxmox host
DMZKEYFILE=$(echo -n ~)"/.ssh/dmz"
TORHOST=$1
CTHOST=$2
CTIP=$3
if [[ -z "$TORHOST" ]]; then
echo "Set Tor Host"
exit 1
fi
if [[ -z "$CTHOST" ]]; then
echo "Set CT hostname"
exit 1
fi
if [[ -z "$CTIP" ]]; then
CTIP=$(grep -C 1 $CTHOST ~/.ssh/autoconfig | tail -1 | cut -d" " -f4)
fi
ssh-add -t 600 $DMZKEYFILE
torsocks scp ./remotecmd $TORHOST:/root/onionadd.sh
torsocks ssh $TORHOST "chmod +x /root/onionadd.sh; /root/onionadd.sh $CTHOST $CTIP" >> cmdoutput.txt
torsocks ssh $TORHOST "rm /root/onionadd.sh"
HOSTNAME=$(tail -1 cmdoutput.txt)
echo "Host "$CTHOST"onion" >> ~/.ssh/autoconfig
echo " Hostname "$HOSTNAME >> ~/.ssh/autoconfig
echo " User root" >> ~/.ssh/autoconfig
echo " IdentityFile "$DMZKEYFILE >> ~/.ssh/autoconfig
echo " PasswordAuthentication no" >> ~/.ssh/autoconfig

23
scripts/onionadd/remotecmd Normal file
View File

@@ -0,0 +1,23 @@
#!/bin/bash
CTHOST=$1
CTIP=$2
if [[ -z "$CTHOST" ]]; then
echo "Set CT hostname"
exit 1
fi
if [[ -z "$CTIP" ]]; then
echo "Set CT IP"
exit 1
fi
echo "" >> /etc/tor/onions/dmz
echo "HiddenServiceDir /var/lib/tor/"$CTHOST"/" >> /etc/tor/onions/dmz
echo "HiddenServicePort 22 "$CTIP":22" >> /etc/tor/onions/dmz
service tor reload
sleep 30
cat "/var/lib/tor/"$CTHOST"/hostname"

2048
scripts/shared/english.txt Normal file
View File

File diff suppressed because it is too large Load Diff

Some files were not shown because too many files have changed in this diff Show More