forked from masdzub/tools-for-work
-
Notifications
You must be signed in to change notification settings - Fork 0
/
change_port_ssh.sh
94 lines (85 loc) · 3.21 KB
/
change_port_ssh.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
#!/bin/bash
# (c) 2022 Dzub
# Color
RED='\033[0;31m'
GREEN='\033[0;32m'
YELLOW='\033[1;33m'
PURPLE='\033[0;35m'
NC='\033[0m' # No Color
# Clearing promt after run this script.
clear
printf "${PURPLE}
#######################################################################
# Tools For Change Port SSH #
#######################################################################
${NC}"
echo -e "\n"
# Check if user is root
[ $(id -u) != "0" ] && { echo -e "${RED}Error: You must be root to run this script.${NC} \nScript Will exit in 5 Seconds\n"; sleep 5; exit 1; }
# Get OS Version and Play
play(){
if [ -e "/etc/os-release" ]; then
. /etc/os-release
else
echo "${RED}/etc/os-release does not exist!${NC}"
kill -9 $$; exit 1;
fi
Platform=${ID,,}
VERSION_ID=${VERSION_ID%%.*}
if [[ "${Platform}" =~ ^centos$|^almalinux$|^rocky$|^fedora$ ]]; then
RHEL_ver=${VERSION_ID}
if [[ "${Platform}" =~ ^centos$ ]] && [ "${VERSION_ID}" == '8' ]; then
sed -i 's/mirrorlist/#mirrorlist/g' /etc/yum.repos.d/CentOS-*
sed -i 's|#baseurl=http://mirror.centos.org|baseurl=http://vault.centos.org|g' /etc/yum.repos.d/CentOS-*
echo -e "\n\n${GREEN}We'll check update on your OS and Install some utilities${NC}\n"
yum check-update
yum install policycoreutils-python-utils -y
echo -e "\n=====> changing port you want <=====\n"
echo -e "=====> please wait <=====\n"
semanage port -a -t ssh_port_t -p tcp $portbewant
change_port
else
yum install policycoreutils-python-utils -y
semanage port -a -t ssh_port_t -p tcp $portbewant
change_port
fi
elif [[ "${Platform}" =~ ^debian$|^ubuntu$|^opensuse-leap$ ]]; then
echo -e "\n=====> changing port you want <=====\n"
echo -e "=====> please wait <=====\n"
change_port
else
echo -e "\n${RED}Sorry, Script does not support this OS.${NC}"
kill -9 $$; exit 1;
fi
}
change_port(){
# Create backup of current SSH config
NOW=$(date +"%m_%d_%Y-%H_%M_%S")
cp /etc/ssh/sshd_config /etc/ssh/sshd_config.inst.bckup.$NOW
# Apply changes to sshd_config
sed -i -e "s/#Port .*\|Port .*/Port $portbewant/g" /etc/ssh/sshd_config
echo -e "\nRestarting SSH service in 5 seconds. Please wait.\n"
sleep 5
# Restart SSH service
service sshd restart
echo ""
echo -e "${GREEN}The SSH port has been changed to $portbewant.${NC} \n${YELLOW}Please login using that port to test BEFORE ending this session.${NC}\n"
read -p "Do you want to check ssh status [y/n] ? " sshstatus
echo ""
if [[ $sshstatus = y ]]; then
systemctl status sshd
else
exit 1
fi
}
# Ask port and then play it
read -p "Please input port SSH you want : " portbewant
if [[ "$portbewant" =~ ^[0-9]{2,5} || "$portbewant" == 22 ]]; then
if [[ "$portbewant" -ge 1024 && "$portbewant" -le 65535 || "$portbewant" == 22 ]]; then
play
else
echo -e "\n${RED}Invalid port: must be 22, or between 1024 and 65535.${NC}\n"
fi
else
echo -e "${RED}Invalid port: must be numeric!${NC}\n"
fi