gamesme/bash-script
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

更新 trojan.sh

Browse Source
This commit is contained in:
gamesme
2023-11-22 05:38:21 +08:00
parent 6e4e96be35
commit dc2340ffcf
1 changed files with 25 additions and 24 deletions
Download Patch File Download Diff File Expand all files Collapse all files

49
trojan.sh
View File

@@ -65,7 +65,7 @@ EOF
sleep 3 sleep 3
rm -rf /usr/share/nginx/html/* rm -rf /usr/share/nginx/html/*
cd /usr/share/nginx/html/ cd /usr/share/nginx/html/
wget https://github.com/xxxbrian/trojan.sh/raw/main/fakesite.zip >/dev/null 2>&1 wget https://gitea.i00.org/gamesme/bash-script/raw/branch/main/fakesite.zip >/dev/null 2>&1
unzip fakesite.zip >/dev/null 2>&1 unzip fakesite.zip >/dev/null 2>&1
sleep 5 sleep 5
if [ ! -d "/usr/src" ]; then if [ ! -d "/usr/src" ]; then
@@ -79,7 +79,7 @@ EOF
exit 1 exit 1
fi fi
/root/.acme.sh/acme.sh --register-account -m myemail@example.com --server zerossl /root/.acme.sh/acme.sh --register-account -m myemail@example.com --server zerossl
/root/.acme.sh/acme.sh --issue -d $your_domain --nginx /root/.acme.sh/acme.sh --issue -d $your_domain --nginx --ecc
if test -s /root/.acme.sh/$your_domain_ecc/fullchain.cer; then if test -s /root/.acme.sh/$your_domain_ecc/fullchain.cer; then
cert_success="1" cert_success="1"
fi fi
@@ -90,7 +90,7 @@ EOF
minus=$(($now_time - $create_time )) minus=$(($now_time - $create_time ))
if [ $minus -gt 5184000 ]; then if [ $minus -gt 5184000 ]; then
/root/.acme.sh/acme.sh --register-account -m myemail@example.com --server zerossl /root/.acme.sh/acme.sh --register-account -m myemail@example.com --server zerossl
/root/.acme.sh/acme.sh --issue -d $your_domain --nginx /root/.acme.sh/acme.sh --issue -d $your_domain --nginx --ecc
if test -s /root/.acme.sh/$your_domain_ecc/fullchain.cer; then if test -s /root/.acme.sh/$your_domain_ecc/fullchain.cer; then
cert_success="1" cert_success="1"
fi fi
@@ -101,7 +101,7 @@ EOF
else else
mkdir /usr/src/trojan-cert/$your_domain mkdir /usr/src/trojan-cert/$your_domain
/root/.acme.sh/acme.sh --register-account -m myemail@example.com --server zerossl /root/.acme.sh/acme.sh --register-account -m myemail@example.com --server zerossl
/root/.acme.sh/acme.sh --issue -d $your_domain --nginx /root/.acme.sh/acme.sh --issue -d $your_domain --nginx --ecc
if test -s /root/.acme.sh/$your_domain_ecc/fullchain.cer; then if test -s /root/.acme.sh/$your_domain_ecc/fullchain.cer; then
cert_success="1" cert_success="1"
fi fi
@@ -245,7 +245,7 @@ EOF
rm -f /usr/src/trojan-cli.zip rm -f /usr/src/trojan-cli.zip
trojan_path=$(cat /dev/urandom | head -1 | md5sum | head -c 16) trojan_path=$(cat /dev/urandom | head -1 | md5sum | head -c 16)
#mkdir /usr/share/nginx/html/${trojan_path} #mkdir /usr/share/nginx/html/${trojan_path}
#mv /usr/src/trojan-cli/trojan-cli.zip /usr/share/nginx/html/${trojan_path}/ #mv /usr/src/trojan-cli/trojan-cli.zip /usr/share/nginx/html/${trojan_path}/
cat > ${systempwd}trojan.service <<-EOF cat > ${systempwd}trojan.service <<-EOF
[Unit] [Unit]
Description=trojan Description=trojan
@@ -266,10 +266,10 @@ EOF
chmod +x ${systempwd}trojan.service chmod +x ${systempwd}trojan.service
systemctl enable trojan.service systemctl enable trojan.service
cd /root cd /root
/root/.acme.sh/acme.sh --installcert -d $your_domain \ /root/.acme.sh/acme.sh --installcert --ecc -d $your_domain \
--key-file /usr/src/trojan-cert/$your_domain/private.key \ --key-file /usr/src/trojan-cert/$your_domain/private.key \
--fullchain-file /usr/src/trojan-cert/$your_domain/fullchain.cer \ --fullchain-file /usr/src/trojan-cert/$your_domain/fullchain.cer \
--reloadcmd "systemctl restart trojan" --reloadcmd "systemctl restart trojan"
green "===========================================================================" green "==========================================================================="
green "windows客户端路径/usr/src/trojan-cli/trojan-cli.zip, 此客户端已配置好所有参数" green "windows客户端路径/usr/src/trojan-cli/trojan-cli.zip, 此客户端已配置好所有参数"
green "===========================================================================" green "==========================================================================="
@@ -279,6 +279,7 @@ EOF
green "===========================================================================" green "==========================================================================="
cat /usr/src/trojan-cli/config.json cat /usr/src/trojan-cli/config.json
green "===========================================================================" green "==========================================================================="
port_forward
else else
red "===================================" red "==================================="
red "https证书没有申请成功, 本次安装失败" red "https证书没有申请成功, 本次安装失败"
@@ -433,31 +434,31 @@ function repair_cert(){
if [ $real_addr == $local_addr ] ; then if [ $real_addr == $local_addr ] ; then
if [ -f "/usr/src/trojan-cert/$your_domain/fullchain.cer" ]; then if [ -f "/usr/src/trojan-cert/$your_domain/fullchain.cer" ]; then
cd /usr/src/trojan-cert/$your_domain cd /usr/src/trojan-cert/$your_domain
create_time=`stat -c %Y fullchain.cer` create_time=`stat -c %Y fullchain.cer`
now_time=`date +%s` now_time=`date +%s`
minus=$(($now_time - $create_time )) minus=$(($now_time - $create_time ))
if [ $minus -gt 5184000 ]; then if [ $minus -gt 5184000 ]; then
/root/.acme.sh/acme.sh --register-account -m myemail@example.com --server zerossl /root/.acme.sh/acme.sh --register-account -m myemail@example.com --server zerossl
/root/.acme.sh/acme.sh --issue -d $your_domain --standalone /root/.acme.sh/acme.sh --issue -d $your_domain --standalone --ecc
/root/.acme.sh/acme.sh --installcert -d $your_domain \ /root/.acme.sh/acme.sh --installcert --ecc -d $your_domain \
--key-file /usr/src/trojan-cert/$your_domain/private.key \
--fullchain-file /usr/src/trojan-cert/$your_domain/fullchain.cer \
--reloadcmd "systemctl restart trojan"
if test -s /usr/src/trojan-cert/$your_domain/fullchain.cer; then
green "证书申请成功"
systemctl restart trojan
systemctl start nginx
else
red "申请证书失败"
fi
else
~/.acme.sh/acme.sh --installcert -d $your_domain \
--key-file /usr/src/trojan-cert/$your_domain/private.key \ --key-file /usr/src/trojan-cert/$your_domain/private.key \
--fullchain-file /usr/src/trojan-cert/$your_domain/fullchain.cer \ --fullchain-file /usr/src/trojan-cert/$your_domain/fullchain.cer \
--reloadcmd "systemctl restart trojan" --reloadcmd "systemctl restart trojan"
if test -s /usr/src/trojan-cert/$your_domain/fullchain.cer; then
green "证书申请成功"
systemctl restart trojan
systemctl start nginx
else
red "申请证书失败"
fi
else
/root/.acme.sh/acme.sh --installcert --ecc -d $your_domain \
--key-file /usr/src/trojan-cert/$your_domain/private.key \
--fullchain-file /usr/src/trojan-cert/$your_domain/fullchain.cer \
--reloadcmd "systemctl restart trojan"
green "检测到域名$your_domain证书存在且未超过60天,无需重新申请" green "检测到域名$your_domain证书存在且未超过60天,无需重新申请"
cert_success="1" cert_success="1"
fi fi
fi fi
else else
red "================================" red "================================"