Inicio Explorar Ayuda
Iniciar sesión
yosoyhendrix
/
Multi_Script
1
0
Fork 0
Archivos Incidencias 0 Wiki
Rama: main
Ramas Etiquetas
Multi_Script
/
Otros
/
trojan-nao.sh

trojan-nao.sh 16 KB
Permalink Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494 
  1. #!/bin/bash
    2. 

  2. 

  3. function blue(){
    4. 

  4.     echo -e "\033[34m\033[01m$1\033[0m"
    5. 

  5. }
    6. 

  6. function green(){
    7. 

  7.     echo -e "\033[32m\033[01m$1\033[0m"
    8. 

  8. }
    9. 

  9. function red(){
    10. 

  10.     echo -e "\033[31m\033[01m$1\033[0m"
    11. 

  11. }
    12. 

  12. function version_lt(){
    13. 

  13.     test "$(echo "$@" | tr " " "\n" | sort -rV | head -n 1)" != "$1"; 
    14. 

  14. }
    15. 

  15. #copy from 秋水逸冰 ss scripts
    16. 

  16. if [[ -f /etc/redhat-release ]]; then
    17. 

  17.     release="centos"
    18. 

  18.     systemPackage="yum"
    19. 

  19. elif cat /etc/issue | grep -Eqi "debian"; then
    20. 

  20.     release="debian"
    21. 

  21.     systemPackage="apt-get"
    22. 

  22. elif cat /etc/issue | grep -Eqi "ubuntu"; then
    23. 

  23.     release="ubuntu"
    24. 

  24.     systemPackage="apt-get"
    25. 

  25. elif cat /etc/issue | grep -Eqi "centos|red hat|redhat"; then
    26. 

  26.     release="centos"
    27. 

  27.     systemPackage="yum"
    28. 

  28. elif cat /proc/version | grep -Eqi "debian"; then
    29. 

  29.     release="debian"
    30. 

  30.     systemPackage="apt-get"
    31. 

  31. elif cat /proc/version | grep -Eqi "ubuntu"; then
    32. 

  32.     release="ubuntu"
    33. 

  33.     systemPackage="apt-get"
    34. 

  34. elif cat /proc/version | grep -Eqi "centos|red hat|redhat"; then
    35. 

  35.     release="centos"
    36. 

  36.     systemPackage="yum"
    37. 

  37. fi
    38. 

  38. systempwd="/etc/systemd/system/"
    39. 

  39. 

  40. #install & config trojan
    41. 

  41. function install_trojan(){
    42. 

  42. $systemPackage install -y nginx
    43. 

  43. systemctl stop nginx
    44. 

  44. sleep 5
    45. 

  45. cat > /etc/nginx/nginx.conf <<-EOF
    46. 

  46. user  root;
    47. 

  47. worker_processes  1;
    48. 

  48. error_log  /var/log/nginx/error.log warn;
    49. 

  49. pid        /var/run/nginx.pid;
    50. 

  50. events {
    51. 

  51.     worker_connections  1024;
    52. 

  52. }
    53. 

  53. http {
    54. 

  54.     include       /etc/nginx/mime.types;
    55. 

  55.     default_type  application/octet-stream;
    56. 

  56.     log_format  main  '\$remote_addr - \$remote_user [\$time_local] "\$request" '
    57. 

  57.                       '\$status \$body_bytes_sent "\$http_referer" '
    58. 

  58.                       '"\$http_user_agent" "\$http_x_forwarded_for"';
    59. 

  59.     access_log  /var/log/nginx/access.log  main;
    60. 

  60.     sendfile        on;
    61. 

  61.     #tcp_nopush     on;
    62. 

  62.     keepalive_timeout  120;
    63. 

  63.     client_max_body_size 20m;
    64. 

  64.     #gzip  on;
    65. 

  65.     server {
    66. 

  66.         listen       80;
    67. 

  67.         server_name  $your_domain;
    68. 

  68.         root /usr/share/nginx/html;
    69. 

  69.         index index.php index.html index.htm;
    70. 

  70.     }
    71. 

  71. }
    72. 

  72. EOF
    73. 

  73. 	#设置伪装站
    74. 

  74. 	rm -rf /usr/share/nginx/html/*
    75. 

  75. 	cd /usr/share/nginx/html/
    76. 

  76. 	wget https://www.dropbox.com/s/m6d5gniodueiumv/web.zip >/dev/null 2>&1
    77. 

  77.     	unzip web.zip >/dev/null 2>&1
    78. 

  78. 	sleep 5
    79. 

  79. 	#申请https证书
    80. 

  80. 	if [ ! -d "/usr/src" ]; then
    81. 

  81. 	    mkdir /usr/src
    82. 

  82. 	fi
    83. 

  83. 	mkdir /usr/src/trojan-cert /usr/src/trojan-temp
    84. 

  84. 	curl https://get.acme.sh | sh
    85. 

  85. 	~/.acme.sh/acme.sh  --issue  -d $your_domain  --standalone
    86. 

  86. 	if test -s /root/.acme.sh/$your_domain/fullchain.cer; then
    87. 

  87. 	systemctl start nginx
    88. 

  88.         cd /usr/src
    89. 

  89. 	#wget https://github.com/trojan-gfw/trojan/releases/download/v1.13.0/trojan-1.13.0-linux-amd64.tar.xz
    90. 

  90. 	wget https://api.github.com/repos/trojan-gfw/trojan/releases/latest >/dev/null 2>&1
    91. 

  91. 	latest_version=`grep tag_name latest| awk -F '[:,"v]' '{print $6}'`
    92. 

  92. 	rm -f latest
    93. 

  93. 	wget https://www.dropbox.com/s/70swgj1gods17xu/trojan-1.13.0-linux-amd64.tar.xz >/dev/null 2>&1
    94. 

  94. 	tar xf trojan-1.13.0-linux-amd64.tar.xz >/dev/null 2>&1
    95. 

  95. 	#下载trojan客户端
    96. 

  96. 	wget https://www.dropbox.com/s/yegoxa4hfo5sf2z/trojan-cli.zip >/dev/null 2>&1
    97. 

  97. 	wget -P /usr/src/trojan-temp https://github.com/trojan-gfw/trojan/releases/download/v${latest_version}/trojan-${latest_version}-win.zip >/dev/null 2>&1
    98. 

  98. 	unzip trojan-cli.zip >/dev/null 2>&1
    99. 

  99. 	unzip /usr/src/trojan-temp/trojan-${latest_version}-win.zip -d /usr/src/trojan-temp/ >/dev/null 2>&1
    100. 

  100. 	mv -f /usr/src/trojan-temp/trojan/trojan.exe /usr/src/trojan-cli/ 
    101. 

  101. 	trojan_passwd=$(cat /dev/urandom | head -1 | md5sum | head -c 8)
    102. 

  102. 	unset porta
    103. 

  103. 	echo "================================================================="
    104. 

  104. 	read -p " INGRESE PUERTO TROJAN A USAR : " porta
    105. 

  105. 	echo "================================================================="
    106. 

  106. 	[[ -z $porta ]] && porta="443"
    107. 

  107. 	cat > /usr/src/trojan-cli/config.yml <<-EOF
    108. 

  108. port: 7890
    109. 

  109. socks-port: 7891
    110. 

  110. redir-port: 7892
    111. 

  111. allow-lan: true
    112. 

  112. mode: Global
    113. 

  113. log-level: info
    114. 

  114. external-controller: '0.0.0.0:9090'
    115. 

  115. secret: ''
    116. 

  116. 

  117. dns:
    118. 

  118.   enable: true
    119. 

  119.   nameserver:
    120. 

  120.     - 1.1.1.1
    121. 

  121. 	- 1.0.0.1
    122. 

  122. 

  123. proxies:
    124. 

  124. - name: Trojan 
    125. 

  125.   type: "trojan"
    126. 

  126.   server: $your_domain
    127. 

  127.   port: 443
    128. 

  128.   password: $trojan_passwd
    129. 

  129.   udp: true
    130. 

  130.   sni: www.tuhost.com
    131. 

  131.   alpn:
    132. 

  132.   - h2
    133. 

  133.   - http/1.1
    134. 

  134.   skip-cert-verify: true
    135. 

  135. 

  136. # Eliminar "#" si configura v2ray
    137. 

  137. #- name: V2ray
    138. 

  138. #  type: vmess
    139. 

  139. #  server: 123.0.0.0
    140. 

  140. #  port: 
    141. 

  141. #  uuid: 
    142. 

  142. #  alterId: 
    143. 

  143. #  cipher: auto
    144. 

  144. #  udp: true
    145. 

  145. #  tls: true
    146. 

  146. #  skip-cert-verify: true
    147. 

  147. #  network: ws
    148. 

  148. #  ws-path: /
    149. 

  149. #  ws-headers: {host: www.tuhost.com}
    150. 

  150.   
    151. 

  151. ###################################
    152. 

  152. EOF
    153. 

  153. 	rm -rf /usr/local/etc/trojan/config.json
    154. 

  154. 	cat > /usr/local/etc/trojan/config.json <<-EOF
    155. 

  155. {
    156. 

  156.     "run_type": "server",
    157. 

  157.     "local_addr": "0.0.0.0",
    158. 

  158.     "local_port": 443,
    159. 

  159.     "remote_addr": "127.0.0.1",
    160. 

  160.     "remote_port": 80,
    161. 

  161.     "password": [
    162. 

  162.         "$trojan_passwd"
    163. 

  163. 		 ,"chumoghscript"
    164. 

  164.     ],
    165. 

  165.     "log_level": 1,
    166. 

  166.     "ssl": {
    167. 

  167.         "cert": "/usr/src/trojan-cert/fullchain.cer",
    168. 

  168.         "key": "/usr/src/trojan-cert/private.key",
    169. 

  169.         "key_password": "",
    170. 

  170.         "cipher_tls13":"TLS_AES_128_GCM_SHA256:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_256_GCM_SHA384",
    171. 

  171. 	"prefer_server_cipher": true,
    172. 

  172.         "alpn": [
    173. 

  173.             "http/1.1"
    174. 

  174.         ],
    175. 

  175.         "reuse_session": true,
    176. 

  176.         "session_ticket": false,
    177. 

  177.         "session_timeout": 600,
    178. 

  178.         "plain_http_response": "",
    179. 

  179.         "curves": "",
    180. 

  180.         "dhparam": ""
    181. 

  181.     },
    182. 

  182.     "tcp": {
    183. 

  183.         "no_delay": true,
    184. 

  184.         "keep_alive": true,
    185. 

  185.         "fast_open": false,
    186. 

  186.         "fast_open_qlen": 20
    187. 

  187.     },
    188. 

  188.     "mysql": {
    189. 

  189.         "enabled": false,
    190. 

  190.         "server_addr": "127.0.0.1",
    191. 

  191.         "server_port": 3306,
    192. 

  192.         "database": "trojan",
    193. 

  193.         "username": "trojan",
    194. 

  194.         "password": ""
    195. 

  195.     }
    196. 

  196. }
    197. 

  197. EOF
    198. 

  198. 	cd /usr/src/trojan-cli/
    199. 

  199. 	config.yml /usr/src/trojan-cli/
    200. 

  200. 	trojan_path=$(cat /dev/urandom | head -1 | md5sum | head -c 16)
    201. 

  201. 	mkdir /usr/share/nginx/html/${trojan_path}
    202. 

  202. 	mv /usr/src/trojan-cli/config.yml /usr/share/nginx/html/${trojan_path}/
    203. 

  203. 	#增加启动脚本
    204. 

  204. 	
    205. 

  205. cat > ${systempwd}trojan.service <<-EOF
    206. 

  206. [Unit]  
    207. 

  207. Description=trojan  
    208. 

  208. After=network.target  
    209. 

  209.    
    210. 

  210. [Service]  
    211. 

  211. Type=simple  
    212. 

  212. PIDFile=/usr/src/trojan/trojan/trojan.pid
    213. 

  213. ExecStart=/usr/src/trojan/trojan -c "/usr/local/etc/trojan/config.json"  
    214. 

  214. ExecReload=/bin/kill -HUP \$MAINPID
    215. 

  215. Restart=on-failure
    216. 

  216. RestartSec=1s
    217. 

  217.    
    218. 

  218. [Install]  
    219. 

  219. WantedBy=multi-user.target
    220. 

  220. EOF
    221. 

  221. 

  222. 	chmod +x ${systempwd}trojan.service
    223. 

  223. 	systemctl enable trojan.service
    224. 

  224. 	cd /root
    225. 

  225. 	~/.acme.sh/acme.sh  --installcert  -d  $your_domain   \
    226. 

  226.         --key-file   /usr/src/trojan-cert/private.key \
    227. 

  227.         --fullchain-file  /usr/src/trojan-cert/fullchain.cer \
    228. 

  228. 	--reloadcmd  "systemctl restart trojan"	
    229. 

  229. 	green "=============================================================="
    230. 

  230. 	green "Se ha instalado trojan, utilice el siguiente enlace para\ndescargar el archivo .yml para configurar en Clash."
    231. 

  231. 	blue "http://${your_domain}/$trojan_path/config.yml"
    232. 

  232. 	red "Link único y generado de manera aleatoria."
    233. 

  233. 	green "=============================================================="
    234. 

  234. 	green "Puede modificar el archivo .yml abriéndolo como Texto. "
    235. 

  235. 	green "Recuerde modificar el dominio por la ip en el archivo yml. "
    236. 

  236. 	green "Todo viene configurado, pero para que funcione correctamente\ntiene que modificar el host."
    237. 

  237. 	green "=============================================================="
    238. 

  238. 	red "Si gusta configurar manualmente, esta es la información:"
    239. 

  239. 	blue "Dominio: $your_domain"
    240. 

  240. 	blue "Puerto: 443"
    241. 

  241. 	blue "Contraseña: $trojan_passwd"
    242. 

  242. 	green "=============================================================="
    243. 

  243. 	else
    244. 

  244.         red "==================================="
    245. 

  245. 	red "Si el certificado https no obtuvo resultados\nde solicitud y la instalación automática falló"
    246. 

  246. 	green "No se preocupe, puede reparar manualmente la solicitud del certificado."
    247. 

  247. 	green "1. Reinicie la VPS."
    248. 

  248. 	green "2. Vuelva a ejecutar el script y use la función de reparación de certificado."
    249. 

  249. 	red "==================================="
    250. 

  250. 	fi
    251. 

  251. }
    252. 

  252. function preinstall_check(){
    253. 

  253. 

  254. nginx_status=`ps -aux | grep "nginx: worker" |grep -v "grep"`
    255. 

  255. if [ -n "$nginx_status" ]; then
    256. 

  256.     systemctl stop nginx
    257. 

  257. fi
    258. 

  258. $systemPackage -y install net-tools socat
    259. 

  259. Port80=`netstat -tlpn | awk -F '[: ]+' '$1=="tcp"{print $5}' | grep -w 80`
    260. 

  260. Port443=`netstat -tlpn | awk -F '[: ]+' '$1=="tcp"{print $5}' | grep -w 443`
    261. 

  261. if [ -n "$Port80" ]; then
    262. 

  262.     process80=`netstat -tlpn | awk -F '[: ]+' '$5=="80"{print $9}'`
    263. 

  263.     red "==========================================================="
    264. 

  264.     red "Se detectó que el puerto 80 está ocupado, el proceso que lo\nocupa es:${process80},La instalación ha finalizado."
    265. 

  265.     red "==========================================================="
    266. 

  266.     exit 1
    267. 

  267. fi
    268. 

  268. if [ -n "$Port443" ]; then
    269. 

  269.     process443=`netstat -tlpn | awk -F '[: ]+' '$5=="443"{print $9}'`
    270. 

  270.     red "============================================================="
    271. 

  271.     red "Se detectó que el puerto 443 está ocupado, el proceso que lo\nocupa es::${process443},La instalación ha finalizado."
    272. 

  272.     red "============================================================="
    273. 

  273.     exit 1
    274. 

  274. fi
    275. 

  275. if [ -f "/etc/selinux/config" ]; then
    276. 

  276.     CHECK=$(grep SELINUX= /etc/selinux/config | grep -v "#")
    277. 

  277.     if [ "$CHECK" != "SELINUX=disabled" ]; then
    278. 

  278.         green "Se detectó que SELinux está activado, se agregaran las reglas del puerto 80/443"
    279. 

  279.         yum install -y policycoreutils-python >/dev/null 2>&1
    280. 

  280.         semanage port -m -t http_port_t -p tcp 80
    281. 

  281.         semanage port -m -t http_port_t -p tcp 443
    282. 

  282.     fi
    283. 

  283. fi
    284. 

  284. if [ "$release" == "centos" ]; then
    285. 

  285.     if  [ -n "$(grep ' 6\.' /etc/redhat-release)" ] ;then
    286. 

  286.     red "==============="
    287. 

  287.     red "El sistema actual no es compatible."
    288. 

  288.     red "==============="
    289. 

  289.     exit
    290. 

  290.     fi
    291. 

  291.     if  [ -n "$(grep ' 5\.' /etc/redhat-release)" ] ;then
    292. 

  292.     red "==============="
    293. 

  293.     red "El sistema actual no es compatible."
    294. 

  294.     red "==============="
    295. 

  295.     exit
    296. 

  296.     fi
    297. 

  297.     firewall_status=`systemctl status firewalld | grep "Active: active"`
    298. 

  298.     if [ -n "$firewall_status" ]; then
    299. 

  299.         green "Se detectó que el firewall está activado, se agregaran las reglas del puerto 80/443"
    300. 

  300.         firewall-cmd --zone=public --add-port=80/tcp --permanent
    301. 

  301. 	firewall-cmd --zone=public --add-port=443/tcp --permanent
    302. 

  302. 	firewall-cmd --reload
    303. 

  303.     fi
    304. 

  304.     rpm -Uvh http://nginx.org/packages/centos/7/noarch/RPMS/nginx-release-centos-7-0.el7.ngx.noarch.rpm
    305. 

  305. elif [ "$release" == "ubuntu" ]; then
    306. 

  306.     if  [ -n "$(grep ' 14\.' /etc/os-release)" ] ;then
    307. 

  307.     red "==============="
    308. 

  308.     red "El sistema actual no es compatible."
    309. 

  309.     red "==============="
    310. 

  310.     exit
    311. 

  311.     fi
    312. 

  312.     if  [ -n "$(grep ' 12\.' /etc/os-release)" ] ;then
    313. 

  313.     red "==============="
    314. 

  314.     red "El sistema actual no es compatible."
    315. 

  315.     red "==============="
    316. 

  316.     exit
    317. 

  317.     fi
    318. 

  318.     ufw_status=`systemctl status ufw | grep "Active: active"`
    319. 

  319.     if [ -n "$ufw_status" ]; then
    320. 

  320.         ufw allow 80/tcp
    321. 

  321.         ufw allow 443/tcp
    322. 

  322.     fi
    323. 

  323.     apt-get update
    324. 

  324. elif [ "$release" == "debian" ]; then
    325. 

  325.     ufw_status=`systemctl status ufw | grep "Active: active"`
    326. 

  326.     if [ -n "$ufw_status" ]; then
    327. 

  327.         ufw allow 80/tcp
    328. 

  328.         ufw allow 443/tcp
    329. 

  329.     fi
    330. 

  330.     apt-get update
    331. 

  331. fi
    332. 

  332. $systemPackage -y install  wget unzip zip curl tar >/dev/null 2>&1
    333. 

  333. green "======================="
    334. 

  334. blue "Ingrese el dominio vinculado a esta VPS " && read -p ": " your_domain
    335. 

  335. green "======================="
    336. 

  336. 

  337. real_addr=`ping ${your_domain} -c 1 | sed '1{s/[^(]*(//;s/).*//;q}'`
    338. 

  338. local_addr=`curl ipv4.icanhazip.com`
    339. 

  339. if [ $real_addr == $local_addr ] ; then
    340. 

  340. 	green "=========================================="
    341. 

  341. 	green "La resolución del dominio es normal, se intalará trojan"
    342. 

  342. 	green "=========================================="
    343. 

  343. 	sleep 1s
    344. 

  344.         install_trojan
    345. 

  345. 	
    346. 

  346. else
    347. 

  347.         red "===================================="
    348. 

  348. 	red "La resolución de dominio es inconsistente con la dirección IP de la VPS"
    349. 

  349. 	red "Si cree que el análisis es correcto, puede forzar a que el script continúe"
    350. 

  350. 	red "===================================="
    351. 

  351. 	read -p "¿Forzar el script? Seleccione [Y/n] :" yn
    352. 

  352. 	[ -z "${yn}" ] && yn="y"
    353. 

  353. 	if [[ $yn == [Yy] ]]; then
    354. 

  354.             green "Forzar el script"
    355. 

  355. 	    sleep 1s
    356. 

  356. 	    install_trojan
    357. 

  357. 	else
    358. 

  358. 	    exit 1
    359. 

  359. 	fi
    360. 

  360. fi
    361. 

  361. }
    362. 

  362. 

  363. function repair_cert(){
    364. 

  364. systemctl stop nginx
    365. 

  365. iptables -I INPUT -p tcp --dport 80 -j ACCEPT
    366. 

  366. iptables -I INPUT -p tcp --dport 443 -j ACCEPT
    367. 

  367. Port80=`netstat -tlpn | awk -F '[: ]+' '$1=="tcp"{print $5}' | grep -w 80`
    368. 

  368. if [ -n "$Port80" ]; then
    369. 

  369.     process80=`netstat -tlpn | awk -F '[: ]+' '$5=="80"{print $9}'`
    370. 

  370.     red "==========================================================="
    371. 

  371.     red "Se detectó que el puerto 80 está ocupado, el proceso que lo\nocupa es:${process80},La instalación ha finalizado."
    372. 

  372.     red "==========================================================="
    373. 

  373.     exit 1
    374. 

  374. fi
    375. 

  375. green "======================="
    376. 

  376. blue "Ingrese el dominio vinculado a esta VPS."
    377. 

  377. blue "Debe ser el mismo dominio que no pudo usar antes."
    378. 

  378. green "======================="
    379. 

  379. read your_domain
    380. 

  380. real_addr=`ping ${your_domain} -c 1 | sed '1{s/[^(]*(//;s/).*//;q}'`
    381. 

  381. local_addr=`curl ipv4.icanhazip.com`
    382. 

  382. if [ $real_addr == $local_addr ] ; then
    383. 

  383.     ~/.acme.sh/acme.sh  --issue  -d $your_domain  --standalone
    384. 

  384.     ~/.acme.sh/acme.sh  --installcert  -d  $your_domain   \
    385. 

  385.         --key-file   /usr/src/trojan-cert/private.key \
    386. 

  386.         --fullchain-file /usr/src/trojan-cert/fullchain.cer \
    387. 

  387. 	--reloadcmd  "systemctl restart trojan"
    388. 

  388.     if test -s /usr/src/trojan-cert/fullchain.cer; then
    389. 

  389.         green "Solicitud de certificado exitosa."
    390. 

  390. 	green "Descargue fullchain.cer en /usr/src/trojan-cert/ en la carpeta del cliente trojan-cli"
    391. 

  391. 	systemctl restart trojan
    392. 

  392. 	systemctl start nginx
    393. 

  393.     else
    394. 

  394.     	red "No se pudo solicitar el certificado."
    395. 

  395.     fi
    396. 

  396. else
    397. 

  397.     red "================================"
    398. 

  398.     red "La resolución de dominio es inconsistente con la dirección IP de la VPS"
    399. 

  399.     red "La instalación falló, asegúrese de que la resolución del dominio sea normal"
    400. 

  400.     red "================================"
    401. 

  401. fi	
    402. 

  402. }
    403. 

  403. 

  404. function remove_trojan(){
    405. 

  405.     red "================================"
    406. 

  406.     red "Trojan se desintalará"
    407. 

  407.     red "Nginx también se desintalará"
    408. 

  408.     red "================================"
    409. 

  409.     systemctl stop trojan
    410. 

  410.     systemctl disable trojan
    411. 

  411.     rm -f ${systempwd}trojan.service
    412. 

  412.     if [ "$release" == "centos" ]; then
    413. 

  413.         yum remove -y nginx
    414. 

  414.     else
    415. 

  415.         apt autoremove -y nginx
    416. 

  416.     fi
    417. 

  417.     rm -rf /usr/src/trojan*
    418. 

  418.     rm -rf /usr/share/nginx/html/*
    419. 

  419.     rm -rf /root/.acme.sh/
    420. 

  420.     green "=============="
    421. 

  421.     green "Trojan desinstalado."
    422. 

  422.     green "=============="
    423. 

  423. }
    424. 

  424. 

  425. function update_trojan(){
    426. 

  426.     /usr/src/trojan/trojan -v 2>trojan.tmp
    427. 

  427.     curr_version=`cat trojan.tmp | grep "trojan" | awk '{print $4}'`
    428. 

  428.     wget https://api.github.com/repos/trojan-gfw/trojan/releases/latest >/dev/null 2>&1
    429. 

  429.     latest_version=`grep tag_name latest| awk -F '[:,"v]' '{print $6}'`
    430. 

  430.     rm -f latest
    431. 

  431.     rm -f trojan.tmp
    432. 

  432.     if version_lt "$curr_version" "$latest_version"; then
    433. 

  433.         green "Versión actual: $curr_version, Última versión: $latest_version, actualizando……"
    434. 

  434.         mkdir trojan_update_temp && cd trojan_update_temp
    435. 

  435.         wget https://github.com/trojan-gfw/trojan/releases/download/v${latest_version}/trojan-${latest_version}-linux-amd64.tar.xz >/dev/null 2>&1
    436. 

  436.         tar xf trojan-${latest_version}-linux-amd64.tar.xz >/dev/null 2>&1
    437. 

  437.         mv ./trojan/trojan /usr/src/trojan/
    438. 

  438.         cd .. && rm -rf trojan_update_temp
    439. 

  439.         systemctl restart trojan
    440. 

  440. 	/usr/src/trojan/trojan -v 2>trojan.tmp
    441. 

  441. 	green "Se completó la actualización de trojan, la versión actual es:`cat trojan.tmp | grep "trojan" | awk '{print $4}'`"
    442. 

  442. 	rm -f trojan.tmp
    443. 

  443.     else
    444. 

  444.         green "Versión actual: $curr_version, Última versión: $latest_version, no es necesario actualizar."
    445. 

  445.     fi
    446. 

  446.    
    447. 

  447.    
    448. 

  448. }
    449. 

  449. 

  450. start_menu(){
    451. 

  451.     clear
    452. 

  452.     green " ======================================="
    453. 

  453.     green " Script de Instalación de Trojan      "
    454. 

  454.     green " Sistemas:centos7+/debian9+/ubuntu16.04+"
    455. 

  455.     green " Edicion ChumoGH - ADM         "
    456. 

  456.     blue " Declaración:"
    457. 

  457.     red " *No use este script en ningún entorno de producción."
    458. 

  458.     red " *No debe tener ocupados los puertos 80/443."
    459. 

  459. 	red " *Siga las instrucciones."
    460. 

  460.     green " ======================================="
    461. 

  461.     echo
    462. 

  462.     green " 1. Instalar trojan"
    463. 

  463.     red " 2. Desinstalar trojan"
    464. 

  464.     green " 3. Actualizar trojan"
    465. 

  465.     green " 4. Reparar certificado"
    466. 

  466.     blue " 0. Salir del script"
    467. 

  467.     echo
    468. 

  468.     read -p "Ingrese una opción:" num
    469. 

  469.     case "$num" in
    470. 

  470.     1)
    471. 

  471.     preinstall_check
    472. 

  472.     ;;
    473. 

  473.     2)
    474. 

  474.     remove_trojan 
    475. 

  475.     ;;
    476. 

  476.     3)
    477. 

  477.     update_trojan 
    478. 

  478.     ;;
    479. 

  479.     4)
    480. 

  480.     repair_cert 
    481. 

  481.     ;;
    482. 

  482.     0)
    483. 

  483.     adm 1
    484. 

  484.     ;;
    485. 

  485.     *)
    486. 

  486.     clear
    487. 

  487.     red "Ingrese una opción correcta."
    488. 

  488.     sleep 1s
    489. 

  489.     start_menu
    490. 

  490.     ;;
    491. 

  491.     esac
    492. 

  492. }
    493. 

  493. 

  494. start_menu
    495.