forked from JeannieStudio/jeannie
-
Notifications
You must be signed in to change notification settings - Fork 2
/
ssr-caddy-tls.sh
238 lines (238 loc) · 8.68 KB
/
ssr-caddy-tls.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
#!/usr/bin/env bash
# Author: Jeannie
#######color code########
RED_COLOR="\033[0;31m"
NO_COLOR="\033[0m"
GREEN="\033[32m\033[01m"
BLUE="\033[0;36m"
FUCHSIA="\033[0;35m"
echo "export PATH=/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin:/usr/local/sbin:~/bin:$PATH" >> ~/.bashrc
source ~/.bashrc
echo "先睡一会儿……"
sleep 3
mkdir /etc/caddy /etc/ssl/caddy /var/www
isRoot(){
if [[ "$EUID" -ne 0 ]]; then
echo "false"
else
echo "true"
fi
}
init_release(){
if [[ -f /etc/redhat-release ]]; then
release="centos"
elif cat /etc/issue | grep -q -E -i "debian"; then
release="debian"
elif cat /etc/issue | grep -q -E -i "ubuntu"; then
release="ubuntu"
elif cat /etc/issue | grep -q -E -i "centos|red hat|redhat"; then
release="centos"
elif cat /proc/version | grep -q -E -i "debian"; then
release="debian"
elif cat /proc/version | grep -q -E -i "ubuntu"; then
release="ubuntu"
elif cat /proc/version | grep -q -E -i "centos|red hat|redhat"; then
release="centos"
fi
if [[ $release = "ubuntu" || $release = "debian" ]]; then
PM='apt'
elif [[ $release = "centos" ]]; then
PM='yum'
else
exit 1
fi
# PM='apt'
}
tools_install(){
systemctl stop trojan
nginx -s stop
service v2ray start
caddy -service stop
/etc/init.d/shadowsocks-r stop
init_release
if [ $PM = 'apt' ] ; then
apt-get update -y
apt-get install -y dnsutils wget unzip zip curl tar git
elif [ $PM = 'yum' ]; then
yum update -y
yum -y install bind-utils wget unzip zip curl tar git
fi
}
left_second(){
seconds_left=30
while [ $seconds_left -gt 0 ];do
echo -n $seconds_left
sleep 1
seconds_left=$(($seconds_left - 1))
echo -ne "\r \r"
done
}
caddy_install(){
curl https://getcaddy.com | bash -s personal hook.service
}
caddy_conf(){
read -p "输入您的域名:" domainname
real_addr=`ping ${domainname} -c 1 | sed '1{s/[^(]*(//;s/).*//;q}'`
local_addr=`curl ipv4.icanhazip.com`
while [ "$real_addr" != "$local_addr" ]; do
read -p "本机ip和绑定域名的IP不一致,请检查域名是否解析成功,并重新输入域名:" domainname
real_addr=`ping ${domainname} -c 1 | sed '1{s/[^(]*(//;s/).*//;q}'`
local_addr=`curl ipv4.icanhazip.com`
done
read -p "请输入您的邮箱:" emailname
read -p "您输入的邮箱正确吗? [y/n]?" answer
if [ $answer != "y" ]; then
read -p "请重新输入您的邮箱:" emailname
fi
echo "http://${domainname}:80 {
redir https://${domainname}:1234{url}
}
https://${domainname}:1234 {
gzip
timeouts none
tls ${emailname}
root /var/www
}" > /etc/caddy/Caddyfile
}
ssr_install(){
/etc/init.d/shadowsocks-r stop
wget --no-check-certificate -O shadowsocks-all.sh https://raw.githubusercontent.com/teddysun/shadowsocks_install/master/shadowsocks-all.sh
chmod +x shadowsocks-all.sh
./shadowsocks-all.sh 2>&1 | tee shadowsocks-all.log
#分别将配置/etc/shadowsocks-r/config.json文件的第4行和第14行改为下面内容
sed -i '4c "server_port":443,' /etc/shadowsocks-r/config.json
sed -i "14c \"redirect\": [\"*:443#127.0.0.1:1234\"]," /etc/shadowsocks-r/config.json
}
web_get(){
rm -rf /var/www
mkdir /var/www
echo -e "下面提供了15个不同的伪装网站模板,按对应的数字进行安装,安装之前可以查看网站demo:
${GREEN}1. https://templated.co/intensify
${GREEN}2. https://templated.co/binary
${GREEN}3. https://templated.co/retrospect
${GREEN}4. https://templated.co/spatial
${GREEN}5. https://templated.co/monochromed
${GREEN}6. https://templated.co/transit
${GREEN}7. https://templated.co/interphase
${GREEN}8. https://templated.co/ion
${GREEN}9. https://templated.co/solarize
${GREEN}10. https://templated.co/phaseshift
${GREEN}11. https://templated.co/horizons
${GREEN}12. https://templated.co/grassygrass
${GREEN}13. https://templated.co/breadth
${GREEN}14. https://templated.co/undeviating
${GREEN}15. https://templated.co/lorikeet${NO_COLOR}
"
read -p "您输入你要安装的网站的数字:" aNum
case $aNum in
1)wget -O web.zip --no-check-certificate https://templated.co/intensify/download
;;
2)wget -O web.zip --no-check-certificate https://templated.co/binary/download
;;
3)wget -O web.zip --no-check-certificate https://templated.co/retrospect/download
;;
4)wget -O web.zip --no-check-certificate https://templated.co/spatial/download
;;
5)wget -O web.zip --no-check-certificate https://templated.co/monochromed/download
;;
6)wget -O web.zip --no-check-certificate https://templated.co/transit/download
;;
7)wget -O web.zip --no-check-certificate https://templated.co/interphase/download
;;
8)wget -O web.zip --no-check-certificate https://templated.co/ion/download
;;
9)wget -O web.zip --no-check-certificate https://templated.co/solarize/download
;;
10)wget -O web.zip --no-check-certificate https://templated.co/phaseshift/download
;;
11)wget -O web.zip --no-check-certificate https://templated.co/horizons/download
;;
12)wget -O web.zip --no-check-certificate https://templated.co/grassygrass/download
;;
13)wget -O web.zip --no-check-certificate https://templated.co/breadth/download
;;
14)wget -O web.zip --no-check-certificate https://templated.co/undeviating/download
;;
15)wget -O web.zip --no-check-certificate https://templated.co/lorikeet/download
;;
*)wget -O web.zip --no-check-certificate https://templated.co/intensify/download
;;
esac
unzip -o -d /var/www web.zip
}
check_CA(){
end_time=$(echo | openssl s_client -servername $domainname -connect $domainname:443 2>/dev/null | openssl x509 -noout -dates |grep 'After'| awk -F '=' '{print $2}'| awk -F ' +' '{print $1,$2,$4 }' )
end_times=$(date +%s -d "$end_time")
now_time=$(date +%s -d "$(date | awk -F ' +' '{print $2,$3,$6}')")
RST=$(($(($end_times-$now_time))/(60*60*24)))
}
CA_exist(){
if [ -d "/root/.caddy/acme/acme-v02.api.letsencrypt.org/sites/$domainname" -o -d "/.caddy/acme/acme-v02.api.letsencrypt.org/sites/$domainname" ]; then
FLAG="YES"
else
FLAG="NO"
fi
}
main(){
isRoot=$( isRoot )
if [[ "${isRoot}" != "true" ]]; then
echo -e "${RED_COLOR}error:${NO_COLOR}Please run this script as as root"
exit 1
else
tools_install
web_get
caddy_install
caddy_conf
ssr_install
caddy -service stop
caddy -service uninstall
caddy -service install -agree -email ${emailname} -conf /etc/caddy/Caddyfile
caddy -service start
echo -e " ${GREEN}正在下载证书,请稍等……${NO_COLOR}"
left_second
caddy -service start
/etc/init.d/shadowsocks-r restart
caddy -service restart
pwd=$(sed -n '7p' /etc/shadowsocks-r/config.json)
method=$(sed -n '9p' /etc/shadowsocks-r/config.json)
Protocol=$(sed -n '10p' /etc/shadowsocks-r/config.json)
obfs=$(sed -n '12p' /etc/shadowsocks-r/config.json)
check_CA
CA_exist
echo "再睡一会儿……"
sleep 5
if [ $FLAG = "YES" ]; then
echo -e "
${GREEN} ===================================================
${GREEN} 恭喜你,SSR安装和配置成功
${GREEN} ===================================================
${BLUE}域名: ${GREEN}\"${domainname}\"
${BLUE}端口: ${GREEN}\"443\"
${BLUE}密码: ${GREEN}${pwd##*:}
${BLUE}加密方式: ${GREEN}${method##*:}
${BLUE}协议: ${GREEN}${Protocol##*:}
${BLUE}混淆: ${GREEN}${obfs##*:}
${BLUE}伪装网站访问:${GREEN}https://${domainname}
${GREEN}=========================================================
${BLUE} Windows客户端请从这里下载: $GREEN https://github.com/shadowsocksrr/shadowsocksr-csharp/releases
${BLUE} macOS客户端请从这里下载: $GREEN https://github.com/qinyuhang/ShadowsocksX-NG-R/releases
$BLUE ios客户端到应用商店下载:$GREEN shadowrocket;
$BLUE 安卓请客户端下载:$GREEN https://github.com/shadowsocksrr/shadowsocksr-android/releases
$BLUE 关注jeannie studio:$GREEN https://bit.ly/2X042ea
${GREEN}=========================================================
${GREEN}当前检测的域名: $domainname
${GREEN}证书有效期剩余天数: ${RST}
${GREEN}不用担心,证书会自动更新 $NO_COLOR " 2>&1 | tee info
elif [ $FLAG = "NO" ]; then
echo -e "
$RED=====================================================
$RED 很遗憾,安装和配置失败
$RED=====================================================
${RED}由于证书申请失败,无法科学上网,请重装或更换一个域名重新安装, 详情:https://letsencrypt.org/docs/rate-limits/
进一步验证证书申请情况,参考:https://www.ssllabs.com/ssltest/${NO_COLOR}" 2>&1 | tee info
fi
touch /etc/motd
cat info > /etc/motd
fi
}
main