2016-11-16 21:34:43 +01:00
#!/usr/bin/env bash
# Pi-hole: A black hole for Internet advertisements
# Network-wide ad blocking via your Raspberry Pi
# http://pi-hole.net
2016-11-16 22:13:47 +01:00
# Web interface settings
2016-11-16 21:34:43 +01:00
#
# Pi-hole is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 2 of the License, or
# (at your option) any later version.
2016-11-16 21:36:19 +01:00
args = ( " $@ " )
2016-11-16 21:34:43 +01:00
helpFunc( ) {
cat << EOM
2016-11-20 15:15:27 +01:00
::: Set admin options for the web interface of pihole
2016-11-16 21:34:43 +01:00
:::
2016-11-20 15:15:27 +01:00
::: Usage: pihole -a [ options]
2016-11-16 21:34:43 +01:00
:::
::: Options:
2016-11-19 21:57:42 +01:00
::: -p, password Set web interface password, an empty input will remove any previously set password
2016-11-16 21:34:43 +01:00
::: -c, celsius Set Celcius temperature unit
::: -f, fahrenheit Set Fahrenheit temperature unit
::: -h, --help Show this help dialog
EOM
2016-12-02 00:10:06 +01:00
exit 0
2016-11-16 21:34:43 +01:00
}
SetTemperatureUnit( ) {
# Remove setting from file (create backup setupVars.conf.bak)
2016-11-16 22:33:28 +01:00
sed -i.bak '/TEMPERATUREUNIT/d' /etc/pihole/setupVars.conf
2016-11-16 21:34:43 +01:00
# Save setting to file
if [ [ $unit = = "F" ] ] ; then
2016-11-16 22:33:28 +01:00
echo "TEMPERATUREUNIT=F" >> /etc/pihole/setupVars.conf
2016-11-16 21:34:43 +01:00
else
2016-11-16 22:33:28 +01:00
echo "TEMPERATUREUNIT=C" >> /etc/pihole/setupVars.conf
2016-11-16 21:34:43 +01:00
fi
}
SetWebPassword( ) {
2016-12-13 15:54:41 +01:00
if [ " ${ SUDO_USER } " = = "www-data" ] ; then
2016-12-13 15:52:28 +01:00
echo "Security measure: user www-data is not allowed to change webUI password!"
echo "Exiting"
exit 1
fi
2016-12-13 15:54:41 +01:00
if [ " ${ SUDO_USER } " = = "lighttpd" ] ; then
2016-12-13 15:52:28 +01:00
echo "Security measure: user lighttpd is not allowed to change webUI password!"
echo "Exiting"
exit 1
fi
2016-11-16 21:34:43 +01:00
# Remove password from file (create backup setupVars.conf.bak)
2016-11-16 22:33:28 +01:00
sed -i.bak '/WEBPASSWORD/d' /etc/pihole/setupVars.conf
2016-11-19 21:50:15 +01:00
# Set password only if there is one to be set
if ( ( ${# args [2] } > 0 ) ) ; then
# Compute password hash twice to avoid rainbow table vulnerability
hash = $( echo -n ${ args [2] } | sha256sum | sed 's/\s.*$//' )
hash = $( echo -n ${ hash } | sha256sum | sed 's/\s.*$//' )
# Save hash to file
echo " WEBPASSWORD= ${ hash } " >> /etc/pihole/setupVars.conf
echo "New password set"
else
echo "Password removed"
fi
2016-11-16 21:34:43 +01:00
}
2016-12-11 16:54:27 +01:00
SetDNSServers( ) {
# Remove setting from file (create backup setupVars.conf.bak)
2016-12-14 16:09:57 +01:00
sed -i.bak '/PIHOLE_DNS_1/d;/PIHOLE_DNS_2/d;/DNS_FQDN_REQUIRED/d;' /etc/pihole/setupVars.conf
2016-12-11 16:54:27 +01:00
# Save setting to file
echo " PIHOLE_DNS_1= ${ args [2] } " >> /etc/pihole/setupVars.conf
2016-12-19 13:42:42 +01:00
if [ [ " ${ args [3] } " != "none" ] ] ; then
echo " PIHOLE_DNS_2= ${ args [3] } " >> /etc/pihole/setupVars.conf
else
echo "PIHOLE_DNS_2=" >> /etc/pihole/setupVars.conf
fi
2016-12-11 16:54:27 +01:00
2016-12-12 14:16:13 +01:00
# Replace within actual dnsmasq config file
sed -i '/server=/d;' /etc/dnsmasq.d/01-pihole.conf
echo " server= ${ args [2] } " >> /etc/dnsmasq.d/01-pihole.conf
2016-12-19 13:42:42 +01:00
if [ [ " ${ args [3] } " != "none" ] ] ; then
echo " server= ${ args [3] } " >> /etc/dnsmasq.d/01-pihole.conf
fi
2016-12-12 14:16:13 +01:00
2016-12-14 16:09:57 +01:00
# Remove domain-needed entry
sed -i '/domain-needed/d;' /etc/dnsmasq.d/01-pihole.conf
# Readd it if required
if [ [ " ${ args [4] } " = = "domain-needed" ] ] ; then
echo "domain-needed" >> /etc/dnsmasq.d/01-pihole.conf
echo "DNS_FQDN_REQUIRED=true" >> /etc/pihole/setupVars.conf
else
2016-12-14 16:16:25 +01:00
# Leave it deleted if not wanted
2016-12-14 16:09:57 +01:00
echo "DNS_FQDN_REQUIRED=false" >> /etc/pihole/setupVars.conf
fi
2016-12-14 16:16:25 +01:00
# Remove bogus-priv entry
sed -i '/bogus-priv/d;' /etc/dnsmasq.d/01-pihole.conf
# Readd it if required
if [ [ " ${ args [5] } " = = "bogus-priv" ] ] ; then
echo "bogus-priv" >> /etc/dnsmasq.d/01-pihole.conf
echo "DNS_BOGUS_PRIV=true" >> /etc/pihole/setupVars.conf
else
# Leave it deleted if not wanted
echo "DNS_BOGUS_PRIV=false" >> /etc/pihole/setupVars.conf
fi
2016-12-14 16:09:57 +01:00
2016-12-12 14:16:13 +01:00
# Restart dnsmasq to load new configuration
RestartDNS
2016-12-11 16:54:27 +01:00
}
2016-12-11 19:30:04 +01:00
SetExcludeDomains( ) {
# Remove setting from file (create backup setupVars.conf.bak)
sed -i.bak '/API_EXCLUDE_DOMAINS/d;' /etc/pihole/setupVars.conf
# Save setting to file
echo " API_EXCLUDE_DOMAINS= ${ args [2] } " >> /etc/pihole/setupVars.conf
}
SetExcludeClients( ) {
# Remove setting from file (create backup setupVars.conf.bak)
sed -i.bak '/API_EXCLUDE_CLIENTS/d;' /etc/pihole/setupVars.conf
# Save setting to file
echo " API_EXCLUDE_CLIENTS= ${ args [2] } " >> /etc/pihole/setupVars.conf
}
2016-12-11 22:33:27 +01:00
Reboot( ) {
2016-12-13 12:42:40 +01:00
nohup bash -c "sleep 5; reboot" & > /dev/null </dev/null &
2016-12-11 22:33:27 +01:00
}
2016-12-12 10:38:21 +01:00
RestartDNS( ) {
if [ -x " $( command -v systemctl) " ] ; then
systemctl restart dnsmasq & > /dev/null
else
service dnsmasq restart & > /dev/null
fi
}
2016-12-12 13:15:07 +01:00
SetQueryLogOptions( ) {
# Remove setting from file (create backup setupVars.conf.bak)
sed -i.bak '/API_QUERY_LOG_SHOW/d;' /etc/pihole/setupVars.conf
# Save setting to file
echo " API_QUERY_LOG_SHOW= ${ args [2] } " >> /etc/pihole/setupVars.conf
}
2016-12-12 15:34:05 +01:00
EnableDHCP( ) {
# Remove setting from file (create backup setupVars.conf.bak)
sed -i.bak '/DHCP_/d;' /etc/pihole/setupVars.conf
echo "DHCP_ACTIVE=true" >> /etc/pihole/setupVars.conf
echo " DHCP_START= ${ args [2] } " >> /etc/pihole/setupVars.conf
echo " DHCP_END= ${ args [3] } " >> /etc/pihole/setupVars.conf
echo " DHCP_ROUTER= ${ args [4] } " >> /etc/pihole/setupVars.conf
# Remove setting from file
2016-12-14 12:12:36 +01:00
sed -i '/dhcp-/d;/quiet-dhcp/d;' /etc/dnsmasq.d/01-pihole.conf
2016-12-12 15:34:05 +01:00
# Save setting to file
echo " dhcp-range= ${ args [2] } , ${ args [3] } ,infinite " >> /etc/dnsmasq.d/01-pihole.conf
echo " dhcp-option=option:router, ${ args [4] } " >> /etc/dnsmasq.d/01-pihole.conf
# Changes the behaviour from strict RFC compliance so that DHCP requests on unknown leases from unknown hosts are not ignored. This allows new hosts to get a lease without a tedious timeout under all circumstances. It also allows dnsmasq to rebuild its lease database without each client needing to reacquire a lease, if the database is lost.
echo "dhcp-authoritative" >> /etc/dnsmasq.d/01-pihole.conf
# Use the specified file to store DHCP lease information
echo "dhcp-leasefile=/etc/pihole/dhcp.leases" >> /etc/dnsmasq.d/01-pihole.conf
2016-12-12 17:14:52 +01:00
# Suppress logging of the routine operation of these protocols. Errors and problems will still be logged, though.
echo "quiet-dhcp" >> /etc/dnsmasq.d/01-pihole.conf
echo "quiet-dhcp6" >> /etc/dnsmasq.d/01-pihole.conf
2016-12-12 15:34:05 +01:00
RestartDNS
}
DisableDHCP( ) {
# Remove setting from file (create backup setupVars.conf.bak)
sed -i.bak '/DHCP_ACTIVE/d;' /etc/pihole/setupVars.conf
echo "DHCP_ACTIVE=false" >> /etc/pihole/setupVars.conf
# Remove setting from file
2016-12-14 12:12:36 +01:00
sed -i '/dhcp-/d;/quiet-dhcp/d;' /etc/dnsmasq.d/01-pihole.conf
2016-12-12 15:34:05 +01:00
RestartDNS
}
2016-12-13 14:59:52 +01:00
SetWebUILayout( ) {
# Remove setting from file (create backup setupVars.conf.bak)
sed -i.bak '/WEBUIBOXEDLAYOUT/d;' /etc/pihole/setupVars.conf
echo " WEBUIBOXEDLAYOUT= ${ args [2] } " >> /etc/pihole/setupVars.conf
}
2016-12-14 14:24:09 +01:00
SetDNSDomainName( ) {
# Remove setting from file (create backup setupVars.conf.bak)
sed -i.bak '/PIHOLE_DOMAIN/d;' /etc/pihole/setupVars.conf
# Save setting to file
echo " PIHOLE_DOMAIN= ${ args [2] } " >> /etc/pihole/setupVars.conf
# Replace within actual dnsmasq config file
sed -i '/domain=/d;' /etc/dnsmasq.d/01-pihole.conf
echo " domain= ${ args [2] } " >> /etc/dnsmasq.d/01-pihole.conf
# Restart dnsmasq to load new configuration
RestartDNS
}
case " ${ args [1] } " in
"-p" | "password" ) SetWebPassword; ;
"-c" | "celsius" ) unit = "C" ; SetTemperatureUnit; ;
"-f" | "fahrenheit" ) unit = "F" ; SetTemperatureUnit; ;
"setdns" ) SetDNSServers; ;
"setexcludedomains" ) SetExcludeDomains; ;
"setexcludeclients" ) SetExcludeClients; ;
"reboot" ) Reboot; ;
"restartdns" ) RestartDNS; ;
"setquerylog" ) SetQueryLogOptions; ;
"enabledhcp" ) EnableDHCP; ;
"disabledhcp" ) DisableDHCP; ;
"layout" ) SetWebUILayout; ;
"-h" | "--help" ) helpFunc; ;
"domainname" ) SetDNSDomainName; ;
* ) helpFunc; ;
esac
2016-11-16 21:34:43 +01:00
shift
if [ [ $# = 0 ] ] ; then
helpFunc
fi