201309090

decryptAESFile.sh

@@ -0,0 +1,5 @@
+#!/bin/bash
+KEY=$1
+IN=$2
+OUT=$3
+openssl rsautl -decrypt -inkey $KEY -in $IN -out $OUT

decryptFileByRSA.sh

@@ -0,0 +1,9 @@
+#!/bin/bash
+FILE=$1
+KEY=$2
+openssl base64 -d -in key.b64 -out key.enc
+openssl base64 -d -in $FILE.b64 -out $FILE.enc
+openssl rsautl -decrypt -inkey $KEY -in key.enc -out key
+openssl enc -d -aes-256-cbc -salt -in $FILE.enc -out $FILE.dec -kfile key
+mv $FILE.dec $FILE
+rm key key.enc $FILE.enc

encryptAESFile.sh

@@ -0,0 +1,5 @@
+#!/bin/bash
+KEY=$1
+IN=$2
+OUT=$3
+openssl rsautl -encrypt -inkey $KEY -pubin -in $IN -out $OUT

encryptFileByRSA.sh

@@ -0,0 +1,12 @@
+#!/bin/bash
+FILE=$1
+KEY=$2
+openssl rand 128 > key
+ssh-keygen -f $KEY -e -m PKCS8 > key.pub
+openssl rsautl -encrypt -inkey key.pub -pubin -in key -out key.enc
+openssl enc -aes-256-cbc -salt -in $FILE -out $FILE.enc -kfile key
+openssl base64 -in key.enc -out key.b64
+openssl base64 -in $FILE.enc -out $FILE.b64
+sha512sum key.b64 >  key.b64.sha512
+sha512sum $FILE.b64 >  $FILE.b64.sha512
+rm key key.enc key.pub $FILE $FILE.enc

exportPwsafe.sh

@@ -0,0 +1,8 @@
+#!/bin/bash
+KEY=$1
+FOLDER=`date +"%Y%m%d"`
+mkdir $FOLDER
+cd $FOLDER
+pwsafe --exportdb > expo.dat
+~/bin/encryptFileByRSA.sh expo.dat $KEY
+

sshRsaToPem.sh

@@ -0,0 +1,3 @@
+#!/bin/bash
+PKEY=$1
+ssh-keygen -f $PKEY -e -m PKCS8 

startDevEnvQemu.sh

@@ -1,6 +1,4 @@
 #!/bin/bash 
-#sudo dhcpcd vboxnet0
-#sudo qemu-system-x86_64 ~/vms/MoversightStudent.img -m 1024 -enable-kvm -redir tcp:2222::22 -net nic -net bridge,br=br0
 qemu-system-x86_64 ~/vms/MoversightStudent.img -m 1024 -enable-kvm -redir tcp:2222::22 &
 sleep 60
 sshfs moversight:/home/student/ubeeme /home/stubbfel/Dokumente/masterarbeit/masterarbeit/src

startDevEnvQemu.sh~

@@ -0,0 +1,11 @@
+#!/bin/bash 
+#sudo dhcpcd vboxnet0
+#sudo qemu-system-x86_64 ~/vms/MoversightStudent.img -m 1024 -enable-kvm -redir tcp:2222::22 -net nic -net bridge,br=br0
+qemu-system-x86_64 ~/vms/MoversightStudent.img -m 1024 -enable-kvm -redir tcp:2222::22 &
+sleep 60
+sshfs moversight:/home/student/ubeeme /home/stubbfel/Dokumente/masterarbeit/masterarbeit/src
+gnome-terminal --working-directory=/home/stubbfel/Dokumente/masterarbeit/masterarbeit/scripts
+netbeans &
+ssh moversight
+
+

startDevEnvQemu2.sh

@@ -0,0 +1,10 @@
+#!/bin/bash 
+sudo systemctl start sshd.service
+sudo /etc/qemu-ifup
+sudo qemu-system-x86_64 ~/vms/MoversightStudent.img -m 1024 -enable-kvm -net nic -net bridge,br=br0 &
+sleep 60
+gnome-terminal --working-directory=/home/stubbfel/Dokumente/masterarbeit/masterarbeit/scripts
+netbeans &
+ssh moversight "sh mountSrc.sh"
+
+

startDevEnvQemu2.sh~

@@ -0,0 +1,10 @@
+#!/bin/bash 
+sudo systemctl start sshd.service
+sudo /etc/qemu-ifup
+sudo qemu-system-x86_64 ~/vms/MoversightStudent.img -m 1024 -enable-kvm -net nic -net bridge,br=br0
+sleep 60
+gnome-terminal --working-directory=/home/stubbfel/Dokumente/masterarbeit/masterarbeit/scripts
+netbeans &
+ssh moversight "sh mountSrc.sh"
+
+

stopDevEnvQemu2.sh

@@ -0,0 +1,2 @@
+#!/bin/bash  
+sudo systemctl stop sshd.service

thirparty/qemu-ifup

@@ -0,0 +1,130 @@
+#!/bin/sh
+#
+# Copyright IBM, Corp. 2010  
+#
+# Authors:
+#  Anthony Liguori <aliguori@us.ibm.com>
+#
+# This work is licensed under the terms of the GNU GPL, version 2.  See
+# the COPYING file in the top-level directory.
+
+# Set to the name of your bridge
+BRIDGE=br0
+
+# Network information
+NETWORK=192.168.53.0
+NETMASK=255.255.255.0
+GATEWAY=192.168.53.1
+DHCPRANGE=192.168.53.2,192.168.53.254
+
+# Optionally parameters to enable PXE support
+TFTPROOT=
+BOOTP=
+
+do_brctl() {
+    brctl "$@"
+}
+
+do_ifconfig() {
+    ifconfig "$@"
+}
+
+do_dd() {
+    dd "$@"
+}
+
+do_iptables_restore() {
+    iptables-restore "$@"
+}
+
+do_dnsmasq() {
+    dnsmasq "$@"
+}
+
+check_bridge() {
+    if do_brctl show | grep "^$1" > /dev/null 2> /dev/null; then
+	return 1
+    else
+	return 0
+    fi
+}
+
+create_bridge() {
+    do_brctl addbr "$1"
+    do_brctl stp "$1" off
+    do_brctl setfd "$1" 0
+    do_ifconfig "$1" "$GATEWAY" netmask "$NETMASK" up
+}
+
+enable_ip_forward() {
+    echo 1 | do_dd of=/proc/sys/net/ipv4/ip_forward > /dev/null
+}
+
+add_filter_rules() {
+do_iptables_restore <<EOF
+# Generated by iptables-save v1.3.6 on Fri Aug 24 15:20:25 2007
+*nat
+:PREROUTING ACCEPT [61:9671]
+:POSTROUTING ACCEPT [121:7499]
+:OUTPUT ACCEPT [132:8691]
+-A POSTROUTING -s $NETWORK/$NETMASK -j MASQUERADE 
+COMMIT
+# Completed on Fri Aug 24 15:20:25 2007
+# Generated by iptables-save v1.3.6 on Fri Aug 24 15:20:25 2007
+*filter
+:INPUT ACCEPT [1453:976046]
+:FORWARD ACCEPT [0:0]
+:OUTPUT ACCEPT [1605:194911]
+-A INPUT -i $BRIDGE -p tcp -m tcp --dport 67 -j ACCEPT 
+-A INPUT -i $BRIDGE -p udp -m udp --dport 67 -j ACCEPT 
+-A INPUT -i $BRIDGE -p tcp -m tcp --dport 53 -j ACCEPT 
+-A INPUT -i $BRIDGE -p udp -m udp --dport 53 -j ACCEPT 
+-A FORWARD -i $1 -o $1 -j ACCEPT 
+-A FORWARD -s $NETWORK/$NETMASK -i $BRIDGE -j ACCEPT 
+-A FORWARD -d $NETWORK/$NETMASK -o $BRIDGE -m state --state RELATED,ESTABLISHED -j ACCEPT 
+-A FORWARD -o $BRIDGE -j REJECT --reject-with icmp-port-unreachable 
+-A FORWARD -i $BRIDGE -j REJECT --reject-with icmp-port-unreachable 
+COMMIT
+# Completed on Fri Aug 24 15:20:25 2007
+EOF
+}
+
+start_dnsmasq() {
+    do_dnsmasq \
+	--strict-order \
+	--except-interface=lo \
+	--interface=$BRIDGE \
+	--listen-address=$GATEWAY \
+	--bind-interfaces \
+	--dhcp-range=$DHCPRANGE \
+	--conf-file="" \
+	--pid-file=/var/run/qemu-dnsmasq-$BRIDGE.pid \
+	--dhcp-leasefile=/var/run/qemu-dnsmasq-$BRIDGE.leases \
+	--dhcp-no-override \
+	${TFTPROOT:+"--enable-tftp"} \
+	${TFTPROOT:+"--tftp-root=$TFTPROOT"} \
+	${BOOTP:+"--dhcp-boot=$BOOTP"}
+}
+
+setup_bridge_nat() {
+    if check_bridge "$1" ; then
+	create_bridge "$1"
+	enable_ip_forward
+	add_filter_rules "$1"
+	start_dnsmasq "$1"
+    fi
+}
+
+setup_bridge_vlan() {
+    if check_bridge "$1" ; then
+	create_bridge "$1"
+	start_dnsmasq "$1"
+    fi
+}
+
+setup_bridge_nat "$BRIDGE"
+
+if test "$1" ; then
+    do_ifconfig "$1" 0.0.0.0 up
+    do_brctl addif "$BRIDGE" "$1"
+fi