-
Notifications
You must be signed in to change notification settings - Fork 0
/
pushCommands.py
102 lines (84 loc) · 4.01 KB
/
pushCommands.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
# netfilterManager
#Copyright (C) 2010 Antoine Benkemoun
#
#This program is free software: you can redistribute it and/or modify
#it under the terms of the GNU General Public License as published by
#the Free Software Foundation, either version 3 of the License, or
#(at your option) any later version.
#
#This program is distributed in the hope that it will be useful,
#but WITHOUT ANY WARRANTY; without even the implied warranty of
#MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
#GNU General Public License for more details.
#
#You should have received a copy of the GNU General Public License
#along with this program. If not, see <http://www.gnu.org/licenses/>.
import checkCommands
import configuration
import showCommands
import subprocess
import os
def pushSSH(command):
# Check if length of command is correct
if len(command.split()) == 2:
# Give variables a friendlier name
host = command.split()[1]
# Check if host exists
if checkCommands.checkIfHostsExists(host):
# Ask for user
user = raw_input('Username: ')
# Ask for remote directory
directory = raw_input('Copy iptables script in directory [default: /usr/bin]: ')
# Default if no directory given
if directory == '':
directory = '/usr/bin'
# Get IP of the host
ip = checkCommands.getHostIp(host).strip('\n')
if ip == -1:
print 'Push rules failed : Could not get IP or hostname of host'
return
try:
# Create temporary file with all the rules
tempfile = open(configuration.basedir+configuration.datadir+'/nm-iptables.sh','w')
# Try to get the start template for the script.
try:
starttpl = open(configuration.basedir+configuration.tpldir+'/'+configuration.starttpl,'r')
for line in starttpl:
tempfile.write(str(line))
except:
# If it fails doesn't matter. It just means there is not start template
pass
# Write all the rules
tempfile.write(str(showCommands.showAccessList(host,1)))
# Close file
tempfile.close()
except IOError as (errno, strerror):
print "I/O error({0}): {1}".format(errno, strerror)
print "Push rules failed : Unable to create temporary file."
return
# scp our file
subprocess.Popen([ '/usr/bin/scp', configuration.basedir+configuration.datadir+'/nm-iptables.sh', user+'@'+ip+':'+directory+'/' ]).wait()
# If username is root
if user == 'root':
# Ask our user if he wants us to execute the script
answer = '?'
while answer != 'n' and answer != 'y':
answer = raw_input('Do you wish to execute the iptables script on the host ? [y/n]: ')
if answer == 'y':
# Send a little command via SSH
subprocess.Popen([ '/usr/bin/ssh', user+'@'+ip, "'/bin/bash "+directory+"/nm-iptables.sh'" ]).wait()
else:
# Ask our user if he wants us to execute the script via sudo
answer = '?'
while answer != 'n' and answer != 'Y':
answer = raw_input('Do you wish to execute the iptables script via sudo on the host ? [Y/n]: ')
if answer == 'Y':
# Send a little command via SSH using sudo
subprocess.Popen("/usr/bin/ssh "+user+"@"+ip+" 'sudo bash "+directory+"/nm-iptables.sh'", shell=True).wait()
# Remove the temporary file
os.remove(configuration.basedir+configuration.datadir+'/nm-iptables.sh')
else:
print 'Unknown host'
return
else:
print 'Push rules failed : Too few arguments. Type help for help.'