.

diff --git a/.idea/.gitignore b/.idea/.gitignore
new file mode 100644 (file)
index 0000000..d9c7486
--- /dev/null
+++ b/.idea/.gitignore
@@ -0,0 +1,8 @@
+# Default ignored files
+/shelf/
+/workspace.xml
+# Datasource local storage ignored files
+/../../../../../../:\Users\vince\Works\Scripts\.idea/dataSources/
+/dataSources.local.xml
+# Editor-based HTTP Client requests
+/httpRequests/

diff --git a/.idea/Scripts.iml b/.idea/Scripts.iml
new file mode 100644 (file)
index 0000000..d6ebd48
--- /dev/null
+++ b/.idea/Scripts.iml
@@ -0,0 +1,9 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<module type="JAVA_MODULE" version="4">
+  <component name="NewModuleRootManager" inherit-compiler-output="true">
+    <exclude-output />
+    <content url="file://$MODULE_DIR$" />
+    <orderEntry type="inheritedJdk" />
+    <orderEntry type="sourceFolder" forTests="false" />
+  </component>
+</module>
\ No newline at end of file

diff --git a/.idea/deployment.xml b/.idea/deployment.xml
new file mode 100644 (file)
index 0000000..4d7d1a3
--- /dev/null
+++ b/.idea/deployment.xml
@@ -0,0 +1,343 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project version="4">
+  <component name="PublishConfigData" remoteFilesAllowedToDisappearOnAutoupload="false">
+    <serverData>
+      <paths name="apps.fluidbook.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="ccv-montpellier.fr">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="demo1.cubedesigners.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="dev-digital.danone.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="dev.cubedesigners.fr">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="dev.cubjeans.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="dev.enko-running-shoes.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="dev.extranet.cubedesigners.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="dev.fluidbook.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="dev.pm-instrumentation.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="dev.rbcmobilier.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="dev.renversez.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="digitaltoolbox.danone.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="etatpur.ei-plateforme1.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="extranet.cubedesigners.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="extranet.preventicom.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="hosting.fluidbook.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="m.cubjeans.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="magento.enko-running-shoes.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="parrotmail.dev.cubedesigners.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="preview.cubedesigners.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="pro.cubjeans.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="simeox.dev.cubedesigners.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="toolbox.fluidbook.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="workshop.fluidbook.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.adangelis.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.animeland.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.ccgm.fr">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.cesaretleonie.fr">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.cfgv.fr">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.cubedesigners.fr">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.cubjeans.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.enko-running-shoes.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.eurofinsadmebioanalyses.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.fluidbook.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.hf-customercare.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.kadreo.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.mdryvescouzy.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.microbas.se">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.mirakl.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.optimed-recrutement.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.pavillonmadeleine.fr">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.physioassist.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.pm-instrumentation.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.preventicom.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.rbcmobilier.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.renversez.com">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+      <paths name="www.sycomore-am.com (1)">
+        <serverdata>
+          <mappings>
+            <mapping local="$PROJECT_DIR$" web="/" />
+          </mappings>
+        </serverdata>
+      </paths>
+    </serverData>
+  </component>
+</project>
\ No newline at end of file

diff --git a/.idea/laravel-query-settings.xml b/.idea/laravel-query-settings.xml
new file mode 100644 (file)
index 0000000..7d5ef0a
--- /dev/null
+++ b/.idea/laravel-query-settings.xml
@@ -0,0 +1,6 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project version="4">
+  <component name="LaravelQuerySettings">
+    <option name="ignoreSettings" value="true" />
+  </component>
+</project>
\ No newline at end of file

diff --git a/.idea/misc.xml b/.idea/misc.xml
new file mode 100644 (file)
index 0000000..ae93866
--- /dev/null
+++ b/.idea/misc.xml
@@ -0,0 +1,8 @@
+<project version="4">
+  <component name="AhkProjectSettings">
+    <option name="defaultAhkSdk" value="AutoHotkey" />
+  </component>
+  <component name="ProjectRootManager" version="2" languageLevel="JDK_1_8" project-jdk-name="1.8" project-jdk-type="JavaSDK">
+    <output url="file://$PROJECT_DIR$/out" />
+  </component>
+</project>
\ No newline at end of file

diff --git a/.idea/modules.xml b/.idea/modules.xml
new file mode 100644 (file)
index 0000000..d038d5e
--- /dev/null
+++ b/.idea/modules.xml
@@ -0,0 +1,8 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project version="4">
+  <component name="ProjectModuleManager">
+    <modules>
+      <module fileurl="file://$PROJECT_DIR$/.idea/Scripts.iml" filepath="$PROJECT_DIR$/.idea/Scripts.iml" />
+    </modules>
+  </component>
+</project>
\ No newline at end of file

diff --git a/.idea/php-inspections-ea-ultimate.xml b/.idea/php-inspections-ea-ultimate.xml
new file mode 100644 (file)
index 0000000..26c2a68
--- /dev/null
+++ b/.idea/php-inspections-ea-ultimate.xml
@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project version="4">
+  <component name="EAUltimateProjectSettings">
+    <categories>
+      <STRICTNESS_CATEGORY_SECURITY enabled="yes" />
+      <STRICTNESS_CATEGORY_PROBABLE_BUGS enabled="yes" />
+      <STRICTNESS_CATEGORY_PERFORMANCE enabled="yes" />
+      <STRICTNESS_CATEGORY_ARCHITECTURE enabled="yes" />
+      <STRICTNESS_CATEGORY_CONTROL_FLOW enabled="yes" />
+      <STRICTNESS_CATEGORY_LANGUAGE_LEVEL_MIGRATION enabled="yes" />
+      <STRICTNESS_CATEGORY_CODE_STYLE enabled="yes" />
+      <STRICTNESS_CATEGORY_UNUSED enabled="yes" />
+      <STRICTNESS_CATEGORY_PHPUNIT enabled="yes" />
+    </categories>
+    <settings>
+      <ANALYZE_ONLY_MODIFIED_FILES value="no" />
+      <PREFER_YODA_COMPARISON_STYLE value="no" />
+    </settings>
+  </component>
+</project>
\ No newline at end of file

diff --git a/backup/backup-fridge.bat b/backup/backup-fridge.bat
new file mode 100644 (file)
index 0000000..d2ebcd3
--- /dev/null
+++ b/backup/backup-fridge.bat
@@ -0,0 +1,4 @@
+@echo off
+cmd /C %~dp0..\drives\mount-fridge.bat
+robocopy /W:0 /R:0 /E /XJ B:\ \\192.168.10.5\vincent\Fridge
+cmd /C %~dp0..\drives\unmount-fridge.bat

diff --git a/backup/backup-katana.bat b/backup/backup-katana.bat
new file mode 100644 (file)
index 0000000..5b1526b
--- /dev/null
+++ b/backup/backup-katana.bat
@@ -0,0 +1,6 @@
+@echo off
+cmd /C %~dp0..\drives\mount-katana.bat
+robocopy /W:0 /R:0 /MIR /XJ C:\Users\vince\Works\ K:\Works\
+copy /Y D:\Salsa.mp4 K:\UserData\
+robocopy C:\Users\vince\ K:\UserData\ /W:0 /R:0 /MIR /XD C:\Users\vince\Works /XD C:\Users\vince\AppData\Local /XD C:\Users\vince\AppData\LocalLow /XF C:\Users\vince\fridge.mkv /XJ
+cmd /C %~dp0..\drives\unmount-katana.bat
\ No newline at end of file

diff --git a/backup/backup-purge.bat b/backup/backup-purge.bat
new file mode 100644 (file)
index 0000000..79c4e5c
--- /dev/null
+++ b/backup/backup-purge.bat
@@ -0,0 +1,3 @@
+@echo off
+robocopy /W:0 /R:0 /MIR /XJ C:\Users\vince\Works\ \\192.168.10.5\vincent\Works
+robocopy C:\Users\vince\ \\192.168.10.5\vincent\UserData\ /W:0 /R:0 /MIR /XD C:\Users\vince\Works /XD C:\Users\vince\AppData\Local /XD C:\Users\vince\AppData\LocalLow /XF C:\Users\vince\fridge.mkv /XJ
\ No newline at end of file

diff --git a/backup/backup.bat b/backup/backup.bat
new file mode 100644 (file)
index 0000000..62bb49b
--- /dev/null
+++ b/backup/backup.bat
@@ -0,0 +1,4 @@
+@echo off
+robocopy /W:0 /R:0 /E /XJ D:\Works\ \\192.168.10.5\vincent\Works
+copy /Y D:\Salsa.mp4 \\192.168.10.5\vincent\UserData\
+robocopy C:\Users\vince\ \\192.168.10.5\vincent\UserData\ /W:0 /R:0 /E /XD C:\Users\vince\Works /XD C:\Users\vince\AppData\Local /XD C:\Users\vince\AppData\LocalLow /XF C:\Users\vince\fridge.mkv /XJ
\ No newline at end of file

diff --git a/bitwarden/SESSION b/bitwarden/SESSION
new file mode 100644 (file)
index 0000000..12d7d04
--- /dev/null
+++ b/bitwarden/SESSION
@@ -0,0 +1 @@
+G+QyauV7ITj9Cact6Q+rHhr77WazSnXJVqfJBbbOx9fAnaells1cAQxv6hLlYPvYQl2MSW2SdqXumYMxfNRXww==
\ No newline at end of file

diff --git a/bitwarden/bitwarden.php b/bitwarden/bitwarden.php
new file mode 100644 (file)
index 0000000..bd32bd8
--- /dev/null
+++ b/bitwarden/bitwarden.php
@@ -0,0 +1,73 @@
+<?php
+$bwSession = null;
+
+if (isset($argv[1]) && in_array($argv[1], ['clip', 'get', 'tmp'])) {
+    bwUnlock('vincent@enhydra.fr');
+    if (true || rand(1, 10)) {
+        _bw('sync');
+    }
+    if ($argv[1] === 'clip') {
+        bwClipPassword(trim($argv[2], '"'));
+        sleep(20);
+    } else if ($argv[1] === 'get') {
+        die(bwGetPassword(trim($argv[2], '"')));
+    } else if ($argv[1] === 'tmp') {
+        file_put_contents(__DIR__ . '/tmp', bwGetPassword(trim($argv[2], '"')));
+    }
+}
+
+function bwUnlock($email, $attempts = 3)
+{
+    global $bwSession;
+
+    _bw("login --check --quiet", $returnCode);
+    if ($returnCode == 1) {
+        // Need to login
+        $cmd = 'login ' . $email;
+    } else {
+        $cmd = 'unlock';
+    }
+
+    $cmd = '--raw ' . $cmd;
+    echo "Unlock BW ";
+    $res = _bw($cmd, $returnCode);
+
+    $bwSession = $res[0];
+    file_put_contents(__DIR__ . '/SESSION', $bwSession);
+}
+
+function bwGetPassword($name)
+{
+    $res = _bw('get password "' . $name . '"');
+    return trim($res[0]);
+}
+
+function bwClipPassword($name)
+{
+    shell_exec("echo " . winescape(bwGetPassword($name)) . "| clip");
+}
+
+function winescape($str)
+{
+    return str_replace('^', '^^', $str);
+}
+
+function bwLock()
+{
+    _bw('lock');
+}
+
+function _bw($cmd, &$returnCode = null)
+{
+    global $bwSession;
+    if (null === $bwSession && file_exists(__DIR__ . '/SESSION')) {
+        $bwSession = file_get_contents(__DIR__ . '/SESSION');
+    }
+    $baseCmd = 'bw ';
+    if (null !== $bwSession) {
+        $cmd .= ' --session=' . $bwSession;
+    }
+    exec($baseCmd . $cmd, $output, $returnCode);
+    return $output;
+}
+

diff --git a/browser/browser.ahk b/browser/browser.ahk
new file mode 100644 (file)
index 0000000..98611b0
--- /dev/null
+++ b/browser/browser.ahk
@@ -0,0 +1,18 @@
+NeedleWSEditor := "https://workshop.fluidbook.com/editor/"
+StringGetPos, posws, 1, %NeedleWSEditor%
+
+if(posws==0)
+    Run "C:\\Program Files (x86)\\Fluidbook-Workshop\\workshop.exe" %1%
+else
+    Needle := "https://team.cubedesigners.com/redmine/"
+    StringGetPos, pos, 1, %Needle%
+
+    Needle1 := "https://redmine.cubedesigners.com/"
+    StringGetPos, pos1, 1, %Needle1%
+
+    if(pos==0 || pos1==0)
+        Browser := "C:\\Program Files\\Mozilla Firefox\\firefox.exe"
+    else
+        Browser := "C:\\Program Files\\Firefox Developer Edition\\firefox.exe"
+
+    Run %Browser% --new-tab %1%
\ No newline at end of file

diff --git a/browser/browser.exe b/browser/browser.exe
new file mode 100644 (file)
index 0000000..694f9d3
Binary files /dev/null and b/browser/browser.exe differ

diff --git a/browser/register.reg b/browser/register.reg
new file mode 100644 (file)
index 0000000..01ced1d
--- /dev/null
+++ b/browser/register.reg
@@ -0,0 +1,77 @@
+Windows Registry Editor Version 5.00
+
+[HKEY_CLASSES_ROOT\CubeBrowserURL]
+@="CubeBrowser Document"
+"FriendlyTypeName"="CubeBrowser Document"
+
+[HKEY_CLASSES_ROOT\CubeBrowserURL\shell]
+
+[HKEY_CLASSES_ROOT\CubeBrowserURL\shell\open]
+
+[HKEY_CLASSES_ROOT\CubeBrowserURL\shell\open\command]
+@="\"D:\\Works\\Scripts\\browser\\browser.exe\" \"%1\""
+
+[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\CubeBrowser]
+@="CubeBrowser"
+
+[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\CubeBrowser\Capabilities]
+"ApplicationName"="CubeBrowser"
+"ApplicationIcon"="D:\\Works\\Scripts\\browser\\browser.exe,0"
+"ApplicationDescription"="CubeBrowser"
+
+[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\CubeBrowser\Capabilities\FileAssociations]
+"crx"="CubeBrowserExt"
+".xhtml"="CubeBrowserHTML"
+".xht"="CubeBrowserHTML"
+".shtml"="CubeBrowserHTML"
+".html"="CubeBrowserHTML"
+".htm"="CubeBrowserHTML"
+
+[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\CubeBrowser\Capabilities\StartMenu]
+"StartMenuInternet"="CubeBrowser"
+
+[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\CubeBrowser\Capabilities\URLAssociations]
+"https"="CubeBrowserHTML"
+"http"="CubeBrowserHTML"
+"ftp"="CubeBrowserHTML"
+
+[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\CubeBrowser\DefaultIcon]
+@="D:\\Works\\Scripts\\browser\\browser.exe,0"
+
+[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\CubeBrowser\InstallInfo]
+"IconsVisible"=dword:00000001
+"ShowIconsCommand"="\"D:\\Works\\Scripts\\browser\\browser.exe\" --show-icons"
+"HideIconsCommand"="\"D:\\Works\\Scripts\\browser\\browser.exe\" --hide-icons"
+"ReinstallCommand"="\"D:\\Works\\Scripts\\browser\\browser.exe\" --make-default-browser"
+
+[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\CubeBrowser\shell]
+
+[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\CubeBrowser\shell\open]
+
+[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\CubeBrowser\shell\open\command]
+@="\"D:\\Works\\Scripts\\browser\\browser.exe\""
+
+[HKEY_LOCAL_MACHINE\SOFTWARE\RegisteredApplications]
+'CubeBrowser'='Software\Clients\StartMenuInternet\CubeBrowser\Capabilities'
+
+[HKEY_CURRENT_USER\Software\Microsoft\Windows\Shell\Associations\UrlAssociations]
+
+[HKEY_CURRENT_USER\Software\Microsoft\Windows\Shell\Associations\UrlAssociations\crx]
+
+[HKEY_CURRENT_USER\Software\Microsoft\Windows\Shell\Associations\UrlAssociations\crx\UserChoice]
+"Progid"="CubeBrowserExt"
+
+[HKEY_CURRENT_USER\Software\Microsoft\Windows\Shell\Associations\UrlAssociations\ftp]
+
+[HKEY_CURRENT_USER\Software\Microsoft\Windows\Shell\Associations\UrlAssociations\ftp\UserChoice]
+"Progid"="CubeBrowserHTML"
+
+[HKEY_CURRENT_USER\Software\Microsoft\Windows\Shell\Associations\UrlAssociations\http]
+
+[HKEY_CURRENT_USER\Software\Microsoft\Windows\Shell\Associations\UrlAssociations\http\UserChoice]
+"Progid"="CubeBrowserHTML"
+
+[HKEY_CURRENT_USER\Software\Microsoft\Windows\Shell\Associations\UrlAssociations\https]
+
+[HKEY_CURRENT_USER\Software\Microsoft\Windows\Shell\Associations\UrlAssociations\https\UserChoice]
+"Progid"="CubeBrowserHTML"
\ No newline at end of file

diff --git a/drives/hdrive.bat b/drives/hdrive.bat
new file mode 100644 (file)
index 0000000..5916443
--- /dev/null
+++ b/drives/hdrive.bat
@@ -0,0 +1,3 @@
+@echo off
+REM subst H: C:\Users\vince\H
+REM subst E: C:\Users\vince\E
\ No newline at end of file

diff --git a/drives/mount-archives.bat b/drives/mount-archives.bat
new file mode 100644 (file)
index 0000000..32847a0
--- /dev/null
+++ b/drives/mount-archives.bat
@@ -0,0 +1,2 @@
+@echo off
+php -f %~dp0mount.php -- mount archives
\ No newline at end of file

diff --git a/drives/mount-data.bat b/drives/mount-data.bat
new file mode 100644 (file)
index 0000000..289e3f4
--- /dev/null
+++ b/drives/mount-data.bat
@@ -0,0 +1,2 @@
+@echo off
+php -f %~dp0mount.php -- mount data
\ No newline at end of file

diff --git a/drives/mount-fridge.bat b/drives/mount-fridge.bat
new file mode 100644 (file)
index 0000000..8f625b7
--- /dev/null
+++ b/drives/mount-fridge.bat
@@ -0,0 +1,2 @@
+@echo off
+php -f %~dp0mount.php -- mount fridge
\ No newline at end of file

diff --git a/drives/mount-katana.bat b/drives/mount-katana.bat
new file mode 100644 (file)
index 0000000..8cb87cb
--- /dev/null
+++ b/drives/mount-katana.bat
@@ -0,0 +1,2 @@
+@echo off
+php -f %~dp0mount.php -- mount katana
\ No newline at end of file

diff --git a/drives/mount-salsa.bat b/drives/mount-salsa.bat
new file mode 100644 (file)
index 0000000..8021bc6
--- /dev/null
+++ b/drives/mount-salsa.bat
@@ -0,0 +1,2 @@
+@echo off
+php -f %~dp0mount.php -- mount salsa
\ No newline at end of file

diff --git a/drives/mount.php b/drives/mount.php
new file mode 100644 (file)
index 0000000..080d991
--- /dev/null
+++ b/drives/mount.php
@@ -0,0 +1,56 @@
+<?php
+require_once __DIR__ . "/../bitwarden/bitwarden.php";
+
+$drives = ['archives' => ['Archives', 'A', 'ID:44A88864E5DBC663B95F05372F0BE7F81E1585ED34E99390DDFD9AB155BEC0A0'],
+    'data' => ['Data', 'G', 'ID:35920334237F5604D11982FA3C2A1F28E4C46D1BEF4D8DE6335E6A4031EA02A4'],
+    'fridge' => ['Fridge', 'F', 'D:\Fridge.mkv'],
+    'salsa' => ['Salsa', 'S', 'D:\Salsa.mp4'],
+    'katana' => ['Katana', 'K', 'ID:CE9F392FB9D23B891C3A6D4B30FA641E12C4941733BA67D66294C0EAB8D108C4']];
+
+function mount($drive)
+{
+    global $drives;
+    $d = $drives[$drive];
+    _mount($d[0], $d[1], $d[2]);
+}
+
+function unmount($drive)
+{
+    global $drives;
+    if ($drive === 'all') {
+        foreach ($drives as $d => $data) {
+            unmount($d);
+        }
+        return;
+    }
+    $d = $drives[$drive];
+    _unmount($d[1]);
+}
+
+function _mount($pass, $letter, $location)
+{
+    if (file_exists($letter . ':\\')) {
+        return;
+    }
+    $email = "vincent@enhydra.fr";
+    bwUnlock($email);
+    $pw = addcslashes(bwGetPassword('VeraCrypt ' . $pass), '"');
+    $cmd = '"C:\Program Files\VeraCrypt\VeraCrypt.exe" /letter ' . $letter . ' /password "' . $pw . '" /q /s /v ' . $location;
+    `$cmd`;
+    bwLock();
+}
+
+function _unmount($letter)
+{
+    if (file_exists($letter . ':\\')) {
+        $cmd = '"C:\Program Files\VeraCrypt\VeraCrypt.exe" /q /s /d ' . $letter;
+        `$cmd`;
+    }
+}
+
+if ($argv[1] === 'mount') {
+    mount($argv[2]);
+} else if ($argv[1] === 'unmount') {
+    unmount($argv[2]);
+}
+exit(0);
\ No newline at end of file

diff --git a/drives/unmount-all.bat b/drives/unmount-all.bat
new file mode 100644 (file)
index 0000000..381d552
--- /dev/null
+++ b/drives/unmount-all.bat
@@ -0,0 +1,4 @@
+@echo off
+php -f %~dp0mount.php -- unmount all
+manage-bde -lock "I:" -ForceDismount
+mountvol /R
\ No newline at end of file

diff --git a/drives/unmount-archives.bat b/drives/unmount-archives.bat
new file mode 100644 (file)
index 0000000..50b82e3
--- /dev/null
+++ b/drives/unmount-archives.bat
@@ -0,0 +1,2 @@
+@echo off
+php -f %~dp0mount.php -- unmount archives
\ No newline at end of file

diff --git a/drives/unmount-data.bat b/drives/unmount-data.bat
new file mode 100644 (file)
index 0000000..7b8b875
--- /dev/null
+++ b/drives/unmount-data.bat
@@ -0,0 +1,2 @@
+@echo off
+php -f %~dp0mount.php -- unmount data
\ No newline at end of file

diff --git a/drives/unmount-fridge.bat b/drives/unmount-fridge.bat
new file mode 100644 (file)
index 0000000..08bcc3c
--- /dev/null
+++ b/drives/unmount-fridge.bat
@@ -0,0 +1,2 @@
+@echo off
+php -f %~dp0mount.php -- unmount fridge
\ No newline at end of file

diff --git a/drives/unmount-katana.bat b/drives/unmount-katana.bat
new file mode 100644 (file)
index 0000000..cc0d17d
--- /dev/null
+++ b/drives/unmount-katana.bat
@@ -0,0 +1,2 @@
+@echo off
+php -f %~dp0mount.php -- unmount katana
\ No newline at end of file

diff --git a/drives/unmount-salsa.bat b/drives/unmount-salsa.bat
new file mode 100644 (file)
index 0000000..a721d0d
--- /dev/null
+++ b/drives/unmount-salsa.bat
@@ -0,0 +1,3 @@
+@echo off
+php -f %~dp0mount.php -- unmount salsa
+cmd /C %~dp0..\vpn\disconnect.bat
\ No newline at end of file

diff --git a/rdp/Paye.rdp b/rdp/Paye.rdp
new file mode 100644 (file)
index 0000000..092a714
Binary files /dev/null and b/rdp/Paye.rdp differ

diff --git a/rdp/VMHost.rdp b/rdp/VMHost.rdp
new file mode 100644 (file)
index 0000000..89e5122
Binary files /dev/null and b/rdp/VMHost.rdp differ

diff --git a/rdp/Vincent.rdp b/rdp/Vincent.rdp
new file mode 100644 (file)
index 0000000..277344b
Binary files /dev/null and b/rdp/Vincent.rdp differ

diff --git a/rdp/paye.bat b/rdp/paye.bat
new file mode 100644 (file)
index 0000000..fe435cf
--- /dev/null
+++ b/rdp/paye.bat
@@ -0,0 +1,10 @@
+@echo off
+D:
+cd D:\Works\Scripts
+php -f .\bitwarden\bitwarden.php -- tmp "Microsoft (paie@cubedesigners.com)"
+set /p PASSWORD= < .\bitwarden\tmp
+del /Q .\bitwarden\tmp
+cmdkey /generic:TERMSRV/192.168.10.150 /user:"paie@cubedesigners.com" /pass:%PASSWORD%
+START /B mstsc .\rdp\Paye.rdp
+timeout 10 /nobreak
+cmdkey /delete:TERMSRV/192.168.10.150
\ No newline at end of file

diff --git a/rdp/vincent.bat b/rdp/vincent.bat
new file mode 100644 (file)
index 0000000..0627c5d
--- /dev/null
+++ b/rdp/vincent.bat
@@ -0,0 +1,10 @@
+@echo off
+D:
+cd D:\Works\Scripts
+php -f .\bitwarden\bitwarden.php -- tmp "Microsoft (vincent@enhydra.fr)"
+set /p PASSWORD= < .\bitwarden\tmp
+del /Q .\bitwarden\tmp
+cmdkey /generic:TERMSRV/192.168.13.3 /user:"vincent" /pass:%PASSWORD%
+START /B mstsc .\rdp\Vincent.rdp
+timeout 10 /nobreak
+cmdkey /delete:TERMSRV/192.168.13.3
\ No newline at end of file

diff --git a/rdp/vmhost.bat b/rdp/vmhost.bat
new file mode 100644 (file)
index 0000000..4ff090d
--- /dev/null
+++ b/rdp/vmhost.bat
@@ -0,0 +1,10 @@
+@echo off
+D:
+cd D:\Works\Scripts
+php -f .\bitwarden\bitwarden.php -- tmp "Microsoft (vincent@cubedesigners.com)"
+set /p PASSWORD= < .\bitwarden\tmp
+del /Q .\bitwarden\tmp
+cmdkey /generic:TERMSRV/vmhost.paris.cubedesigners.com /user:"vincent@cubedesigners.com" /pass:%PASSWORD%
+START /B mstsc .\rdp\VMHost.rdp
+timeout 10 /nobreak
+cmdkey /delete:TERMSRV/vmhost.paris.cubedesigners.com
\ No newline at end of file

diff --git a/servers/alphaville/firewall b/servers/alphaville/firewall
new file mode 100644 (file)
index 0000000..1fa9862
--- /dev/null
+++ b/servers/alphaville/firewall
@@ -0,0 +1,83 @@
+#!/bin/bash
+
+export DEBIAN_FRONTEND=noninteractive
+apt install --no-install-recommends -y dnsutils
+# Reset all rules
+ufw --force reset
+# Disable firewall
+ufw disable
+
+ufw default allow outgoing
+
+b0=24.104.34.225
+b1=62.99.220.220
+b2=50.62.177.177
+b3=195.70.4.231
+blacklist=($b0 $b1 $b2 $b3)
+
+s0=`dig +short alphaville.cubedesigners.com | tail -1`
+s0_0=`dig +short toolbox.fluidbook.com | tail -1`
+s1=`dig +short brazil.cubedesigners.com | tail -1`
+s2=`dig +short dracula.cubedesigners.com | tail -1`
+s2_0=`dig +short devdock.cubedesigners.com | tail -1`
+s3=`dig +short dobermann.cubedesigners.com | tail -1`
+s4=`dig +short elephantman.cubedesigners.com | tail -1`
+s5=`dig +short godzilla.cubedesigners.com | tail -1`
+s5_0=`dig +short hostingdev.cubedesigners.com | tail -1`
+s5_1=`dig +short hosting.cubedesigners.com | tail -1`
+s5_2=`dig +short hosting2.fluidbook.com | tail -1`
+s5_3=`dig +short hosting.fluidbook.com | tail -1`
+s6=`dig +short her2.cubedesigners.com | tail -1`
+s6_0=`dig +short her.cubedesigners.com | tail -1`
+s6_1=`dig +short mail.cubedesigners.com | tail -1`
+s6_2=`dig +short mail2.cubedesigners.com | tail -1`
+s7=`dig +short kingkong.cubedesigners.com | tail -1`
+s8=`dig +short fastandfurious.cubedesigners.com | tail -1`
+
+i0=127.0.0.0/8
+i1=10.0.0.0/8
+i2=172.16.0.0/12
+i3=192.168.0.0/16
+i4=`dig +short paris.cubedesigners.com | tail -1`
+i5=`dig +short montpellier.cubedesigners.com | tail -1`
+i6=`dig +short tortuga.enhydra.fr | tail -1`
+
+auth=($s0 $s0_0 $s1 $s2 $s2_0 $s3 $s4 $s5 $s5_0 $s5_1 $s5_2 $s5_3 $s6 $s6_0 $s6_1 $s6_2 $s7 $s8 $i0 $i1 $i2 $i3 $i4 $i5 $i6)
+
+ufw allow 80
+ufw allow 443
+
+for ip in "${blacklist[@]}"
+do
+        ufw deny in from $ip
+        ufw deny in to $ip
+done
+
+for ip in "${auth[@]}"
+do
+       ufw allow from $ip
+       ufw allow to $ip
+       ufw allow out from $ip
+       ufw allow out to $ip
+done
+
+#SSH
+ufw deny out 22
+ufw deny out 22022
+ufw deny out 22822
+ufw deny out 22222
+# Finally enable firewall
+ufw --force enable
+
+# Enable loging
+ufw logging on
+
+# Display status
+ufw status verbose
+
+rm /etc/ufw/after.rules.*
+rm /etc/ufw/after6.rules.*
+rm /etc/ufw/before.rules.*
+rm /etc/ufw/before6.rules.*
+rm /lib/ufw/user6.rules.*
+rm /lib/ufw/user.rules.*

diff --git a/servers/brazil/firewall b/servers/brazil/firewall
new file mode 100644 (file)
index 0000000..543f3c2
--- /dev/null
+++ b/servers/brazil/firewall
@@ -0,0 +1,81 @@
+#!/bin/bash
+
+export DEBIAN_FRONTEND=noninteractive
+apt install --no-install-recommends -y dnsutils
+# Reset all rules
+ufw --force reset
+# Disable firewall
+ufw disable
+
+ufw default allow outgoing
+
+b0=24.104.34.225
+b1=62.99.220.220
+b2=50.62.177.177
+b3=195.70.4.231
+blacklist=($b0 $b1 $b2 $b3)
+
+s0=`dig +short alphaville.cubedesigners.com | tail -1`
+s0_0=`dig +short toolbox.fluidbook.com | tail -1`
+s1=`dig +short brazil.cubedesigners.com | tail -1`
+s2=`dig +short dracula.cubedesigners.com | tail -1`
+s2_0=`dig +short devdock.cubedesigners.com | tail -1`
+s3=`dig +short dobermann.cubedesigners.com | tail -1`
+s4=`dig +short elephantman.cubedesigners.com | tail -1`
+s5=`dig +short godzilla.cubedesigners.com | tail -1`
+s5_0=`dig +short hostingdev.cubedesigners.com | tail -1`
+s5_1=`dig +short hosting.cubedesigners.com | tail -1`
+s5_2=`dig +short hosting2.fluidbook.com | tail -1`
+s5_3=`dig +short hosting.fluidbook.com | tail -1`
+s6=`dig +short her2.cubedesigners.com | tail -1`
+s6_0=`dig +short her.cubedesigners.com | tail -1`
+s6_1=`dig +short mail.cubedesigners.com | tail -1`
+s6_2=`dig +short mail2.cubedesigners.com | tail -1`
+s7=`dig +short kingkong.cubedesigners.com | tail -1`
+s8=`dig +short fastandfurious.cubedesigners.com | tail -1`
+
+i0=127.0.0.0/8
+i1=10.0.0.0/8
+i2=172.16.0.0/12
+i3=192.168.0.0/16
+i4=`dig +short paris.cubedesigners.com | tail -1`
+i5=`dig +short montpellier.cubedesigners.com | tail -1`
+i6=`dig +short tortuga.enhydra.fr | tail -1`
+
+auth=($s0 $s0_0 $s1 $s2 $s2_0 $s3 $s4 $s5 $s5_0 $s5_1 $s5_2 $s5_3 $s6 $s6_0 $s6_1 $s6_2 $s7 $s8 $i0 $i1 $i2 $i3 $i4 $i5 $i6)
+
+
+for ip in "${blacklist[@]}"
+do
+        ufw deny in from $ip
+        ufw deny in to $ip
+done
+
+for ip in "${auth[@]}"
+do
+       ufw allow from $ip
+       ufw allow to $ip
+       ufw allow out from $ip
+       ufw allow out to $ip
+done
+
+#SSH
+ufw deny out 22
+ufw deny out 22022
+ufw deny out 22822
+ufw deny out 22222
+# Finally enable firewall
+ufw --force enable
+
+# Enable loging
+ufw logging on
+
+# Display status
+ufw status verbose
+
+rm /etc/ufw/after.rules.*
+rm /etc/ufw/after6.rules.*
+rm /etc/ufw/before.rules.*
+rm /etc/ufw/before6.rules.*
+rm /lib/ufw/user6.rules.*
+rm /lib/ufw/user.rules.*

diff --git a/servers/clockwork/firewall b/servers/clockwork/firewall
new file mode 100644 (file)
index 0000000..950a393
--- /dev/null
+++ b/servers/clockwork/firewall
@@ -0,0 +1,88 @@
+#!/bin/bash
+
+export DEBIAN_FRONTEND=noninteractive
+apt install --no-install-recommends -y bind9 dnsutils
+service bind9 restart
+
+# Reset all rules
+ufw --force reset
+# Disable firewall
+ufw disable
+
+ufw default allow outgoing
+
+b0=24.104.34.225
+b1=62.99.220.220
+b2=50.62.177.177
+b3=195.70.4.231
+blacklist=($b0 $b1 $b2 $b3)
+
+s0=`dig +short alphaville.cubedesigners.com | tail -1`
+s0_0=`dig +short toolbox.fluidbook.com | tail -1`
+s1=`dig +short brazil.cubedesigners.com | tail -1`
+s2=`dig +short clockwork.cubedesigners.com | tail -1`
+s2_0=`dig +short hosting.fluidbook.com | tail -1`
+s2_1=`dig +short hosting.cubedesigners.com | tail -1`
+s3=`dig +short dracula.cubedesigners.com | tail -1`
+s4=`dig +short dobermann.cubedesigners.com | tail -1`
+s5=`dig +short elephantman.cubedesigners.com | tail -1`
+s6=`dig +short godzilla.cubedesigners.com | tail -1`
+s6_0=`dig +short hostingdev.cubedesigners.com | tail -1`
+s7=`dig +short her2.cubedesigners.com | tail -1`
+s7_0=`dig +short her.cubedesigners.com | tail -1`
+s7_1=`dig +short mail.cubedesigners.com | tail -1`
+s7_2=`dig +short mail2.cubedesigners.com | tail -1`
+s7_3=`dig +short devdock.cubedesigners.com | tail -1`
+s8=`dig +short kingkong.cubedesigners.com | tail -1`
+s9=`dig +short matrix.cubedesigners.com | tail -1`
+s10=`dig +short nakedgun.cubedesigners.com | tail -1`
+s11=`dig +short fastandfurious.cubedesigners.com | tail -1`
+
+i0=127.0.0.0/8
+i1=10.0.0.0/8
+i2=172.16.0.0/12
+i3=192.168.0.0/16
+i4=`dig +short paris.cubedesigners.com | tail -1`
+i5=`dig +short montpellier.cubedesigners.com | tail -1`
+i6=`dig +short tortuga.enhydra.fr | tail -1`
+
+auth=($s0 $s0_0 $s1 $s2 $s2_0 $s2_1 $s3 $s4 $s5 $s6 $s6_0 $s7 $s7_0 $s7_1 $s7_2 $s7_3 $s8 $s9 $s10 $s11 $i0 $i1 $i2 $i3 $i4 $i5 $i6)
+
+ufw allow 53
+ufw allow 80
+ufw allow 443
+
+for ip in "${blacklist[@]}"
+do
+        ufw deny in from $ip
+        ufw deny in to $ip
+done
+
+for ip in "${auth[@]}"
+do
+       ufw allow from $ip
+       ufw allow to $ip
+       ufw allow out from $ip
+       ufw allow out to $ip
+done
+
+#SSH
+ufw deny out 22
+ufw deny out 22022
+ufw deny out 22822
+ufw deny out 22222
+# Finally enable firewall
+ufw --force enable
+
+# Enable loging
+ufw logging on
+
+# Display status
+ufw status verbose
+
+rm /etc/ufw/after.rules.*
+rm /etc/ufw/after6.rules.*
+rm /etc/ufw/before.rules.*
+rm /etc/ufw/before6.rules.*
+rm /lib/ufw/user6.rules.*
+rm /lib/ufw/user.rules.*

diff --git a/servers/dobermann/firewall b/servers/dobermann/firewall
new file mode 100644 (file)
index 0000000..d625dad
--- /dev/null
+++ b/servers/dobermann/firewall
@@ -0,0 +1,92 @@
+#!/bin/bash
+
+export DEBIAN_FRONTEND=noninteractive
+apt install --no-install-recommends -y dnsutils
+# Reset all rules
+ufw --force reset
+# Disable firewall
+ufw disable
+
+ufw default allow outgoing
+
+b0=24.104.34.225
+b1=62.99.220.220
+b2=50.62.177.177
+b3=195.70.4.231
+blacklist=($b0 $b1 $b2 $b3)
+
+s0=`dig +short alphaville.cubedesigners.com | tail -1`
+s0_0=`dig +short toolbox.fluidbook.com | tail -1`
+s1=`dig +short brazil.cubedesigners.com | tail -1`
+s2=`dig +short dracula.cubedesigners.com | tail -1`
+s2_0=`dig +short devdock.cubedesigners.com | tail -1`
+s3=`dig +short dobermann.cubedesigners.com | tail -1`
+s4=`dig +short elephantman.cubedesigners.com | tail -1`
+s5=`dig +short godzilla.cubedesigners.com | tail -1`
+s5_0=`dig +short hostingdev.cubedesigners.com | tail -1`
+s5_1=`dig +short hosting.cubedesigners.com | tail -1`
+s5_2=`dig +short hosting2.fluidbook.com | tail -1`
+s5_3=`dig +short hosting.fluidbook.com | tail -1`
+s6=`dig +short her2.cubedesigners.com | tail -1`
+s6_0=`dig +short her.cubedesigners.com | tail -1`
+s6_1=`dig +short mail.cubedesigners.com | tail -1`
+s6_2=`dig +short mail2.cubedesigners.com | tail -1`
+s7=`dig +short kingkong.cubedesigners.com | tail -1`
+s8=`dig +short fastandfurious.cubedesigners.com | tail -1`
+
+i0=127.0.0.0/8
+i1=10.0.0.0/8
+i2=172.16.0.0/12
+i3=192.168.0.0/16
+i4=`dig +short paris.cubedesigners.com | tail -1`
+i5=`dig +short montpellier.cubedesigners.com | tail -1`
+i6=`dig +short tortuga.enhydra.fr | tail -1`
+
+auth=($s0 $s0_0 $s1 $s2 $s2_0 $s3 $s4 $s5 $s5_0 $s5_1 $s5_2 $s5_3 $s6 $s6_0 $s6_1 $s6_2 $s7 $s8 $i0 $i1 $i2 $i3 $i4 $i5 $i6)
+
+c0=`dig +short s1.adangelis.com | tail -1`
+c1=`dig +short www.fondation-sycomore.com | tail -1`
+backup=($c0 $c1)
+ufw allow 53
+ufw allow 80
+ufw allow 443
+
+for ip in "${blacklist[@]}"
+do
+        ufw deny in from $ip
+        ufw deny in to $ip
+done
+
+for ip in "${auth[@]}"
+do
+       ufw allow from $ip
+       ufw allow to $ip
+       ufw allow out from $ip
+       ufw allow out to $ip
+done
+
+for ip in "${backup[@]}"
+do
+        ufw allow in from $ip port 22
+done
+
+#SSH
+ufw deny out 22
+ufw deny out 22022
+ufw deny out 22822
+ufw deny out 22222
+# Finally enable firewall
+ufw --force enable
+
+# Enable loging
+ufw logging on
+
+# Display status
+ufw status verbose
+
+rm /etc/ufw/after.rules.*
+rm /etc/ufw/after6.rules.*
+rm /etc/ufw/before.rules.*
+rm /etc/ufw/before6.rules.*
+rm /lib/ufw/user6.rules.*
+rm /lib/ufw/user.rules.*

diff --git a/servers/dracula/firewall b/servers/dracula/firewall
new file mode 100644 (file)
index 0000000..df44850
--- /dev/null
+++ b/servers/dracula/firewall
@@ -0,0 +1,84 @@
+#!/bin/bash
+
+export DEBIAN_FRONTEND=noninteractive
+apt install --no-install-recommends -y dnsutils
+# Reset all rules
+ufw --force reset
+# Disable firewall
+ufw disable
+
+ufw default allow outgoing
+
+b0=24.104.34.225
+b1=62.99.220.220
+b2=50.62.177.177
+b3=195.70.4.231
+blacklist=($b0 $b1 $b2 $b3)
+
+s0=`dig +short alphaville.cubedesigners.com | tail -1`
+s0_0=`dig +short toolbox.fluidbook.com | tail -1`
+s1=`dig +short brazil.cubedesigners.com | tail -1`
+s2=`dig +short dracula.cubedesigners.com | tail -1`
+s2_0=`dig +short devdock.cubedesigners.com | tail -1`
+s3=`dig +short dobermann.cubedesigners.com | tail -1`
+s4=`dig +short elephantman.cubedesigners.com | tail -1`
+s5=`dig +short godzilla.cubedesigners.com | tail -1`
+s5_0=`dig +short hostingdev.cubedesigners.com | tail -1`
+s5_1=`dig +short hosting.cubedesigners.com | tail -1`
+s5_2=`dig +short hosting2.fluidbook.com | tail -1`
+s5_3=`dig +short hosting.fluidbook.com | tail -1`
+s6=`dig +short her2.cubedesigners.com | tail -1`
+s6_0=`dig +short her.cubedesigners.com | tail -1`
+s6_1=`dig +short mail.cubedesigners.com | tail -1`
+s6_2=`dig +short mail2.cubedesigners.com | tail -1`
+s7=`dig +short kingkong.cubedesigners.com | tail -1`
+s8=`dig +short fastandfurious.cubedesigners.com | tail -1`
+
+i0=127.0.0.0/8
+i1=10.0.0.0/8
+i2=172.16.0.0/12
+i3=192.168.0.0/16
+i4=`dig +short paris.cubedesigners.com | tail -1`
+i5=`dig +short montpellier.cubedesigners.com | tail -1`
+i6=`dig +short tortuga.enhydra.fr | tail -1`
+
+auth=($s0 $s0_0 $s1 $s2 $s2_0 $s3 $s4 $s5 $s5_0 $s5_1 $s5_2 $s5_3 $s6 $s6_0 $s6_1 $s6_2 $s7 $s8 $i0 $i1 $i2 $i3 $i4 $i5 $i6)
+
+ufw allow 53
+ufw allow 80
+ufw allow 443
+
+for ip in "${blacklist[@]}"
+do
+        ufw deny in from $ip
+        ufw deny in to $ip
+done
+
+for ip in "${auth[@]}"
+do
+       ufw allow from $ip
+       ufw allow to $ip
+       ufw allow out from $ip
+       ufw allow out to $ip
+done
+
+#SSH
+ufw deny out 22
+ufw deny out 22022
+ufw deny out 22822
+ufw deny out 22222
+# Finally enable firewall
+ufw --force enable
+
+# Enable loging
+ufw logging on
+
+# Display status
+ufw status verbose
+
+rm /etc/ufw/after.rules.*
+rm /etc/ufw/after6.rules.*
+rm /etc/ufw/before.rules.*
+rm /etc/ufw/before6.rules.*
+rm /lib/ufw/user6.rules.*
+rm /lib/ufw/user.rules.*

diff --git a/servers/elephantman/firewall b/servers/elephantman/firewall
new file mode 100644 (file)
index 0000000..1dc0eef
--- /dev/null
+++ b/servers/elephantman/firewall
@@ -0,0 +1,86 @@
+#!/bin/bash
+
+export DEBIAN_FRONTEND=noninteractive
+apt install --no-install-recommends -y dnsutils
+# Reset all rules
+ufw --force reset
+# Disable firewall
+ufw disable
+
+ufw default allow outgoing
+
+b0=24.104.34.225
+b1=62.99.220.220
+b2=50.62.177.177
+b3=195.70.4.231
+blacklist=($b0 $b1 $b2 $b3)
+
+s0=`dig +short alphaville.cubedesigners.com | tail -1`
+s0_0=`dig +short toolbox.fluidbook.com | tail -1`
+s1=`dig +short brazil.cubedesigners.com | tail -1`
+s2=`dig +short dracula.cubedesigners.com | tail -1`
+s2_0=`dig +short devdock.cubedesigners.com | tail -1`
+s3=`dig +short dobermann.cubedesigners.com | tail -1`
+s4=`dig +short elephantman.cubedesigners.com | tail -1`
+s5=`dig +short godzilla.cubedesigners.com | tail -1`
+s5_0=`dig +short hostingdev.cubedesigners.com | tail -1`
+s5_1=`dig +short hosting.cubedesigners.com | tail -1`
+s5_2=`dig +short hosting2.fluidbook.com | tail -1`
+s5_3=`dig +short hosting.fluidbook.com | tail -1`
+s6=`dig +short her2.cubedesigners.com | tail -1`
+s6_0=`dig +short her.cubedesigners.com | tail -1`
+s6_1=`dig +short mail.cubedesigners.com | tail -1`
+s6_2=`dig +short mail2.cubedesigners.com | tail -1`
+s7=`dig +short kingkong.cubedesigners.com | tail -1`
+s8=`dig +short fastandfurious.cubedesigners.com | tail -1`
+
+i0=127.0.0.0/8
+i1=10.0.0.0/8
+i2=172.16.0.0/12
+i3=192.168.0.0/16
+i4=`dig +short paris.cubedesigners.com | tail -1`
+i5=`dig +short montpellier.cubedesigners.com | tail -1`
+i6=`dig +short tortuga.enhydra.fr | tail -1`
+
+auth=($s0 $s0_0 $s1 $s2 $s2_0 $s3 $s4 $s5 $s5_0 $s5_1 $s5_2 $s5_3 $s6 $s6_0 $s6_1 $s6_2 $s7 $s8 $i0 $i1 $i2 $i3 $i4 $i5 $i6)
+
+
+for ip in "${blacklist[@]}"
+do
+        ufw deny in from $ip
+        ufw deny in to $ip
+done
+
+for ip in "${auth[@]}"
+do
+       ufw allow from $ip
+       ufw allow to $ip
+       ufw allow out from $ip
+       ufw allow out to $ip
+done
+
+for ip in "${backup[@]}"
+do
+        ufw allow in from $ip port 22
+done
+
+#SSH
+ufw deny out 22
+ufw deny out 22022
+ufw deny out 22822
+ufw deny out 22222
+# Finally enable firewall
+ufw --force enable
+
+# Enable loging
+ufw logging on
+
+# Display status
+ufw status verbose
+
+rm /etc/ufw/after.rules.*
+rm /etc/ufw/after6.rules.*
+rm /etc/ufw/before.rules.*
+rm /etc/ufw/before6.rules.*
+rm /lib/ufw/user6.rules.*
+rm /lib/ufw/user.rules.*

diff --git a/servers/fastandfurious/firewall b/servers/fastandfurious/firewall
new file mode 100644 (file)
index 0000000..b503226
--- /dev/null
+++ b/servers/fastandfurious/firewall
@@ -0,0 +1,87 @@
+#!/bin/bash
+
+export DEBIAN_FRONTEND=noninteractive
+apt install --no-install-recommends -y dnsutils
+# Reset all rules
+ufw --force reset
+# Disable firewall
+ufw disable
+
+ufw default allow outgoing
+
+b0=24.104.34.225
+b1=62.99.220.220
+b2=50.62.177.177
+b3=195.70.4.231
+blacklist=($b0 $b1 $b2 $b3)
+
+s0=`dig +short alphaville.cubedesigners.com | tail -1`
+s0_0=`dig +short toolbox.fluidbook.com | tail -1`
+s1=`dig +short brazil.cubedesigners.com | tail -1`
+s2=`dig +short dracula.cubedesigners.com | tail -1`
+s2_0=`dig +short devdock.cubedesigners.com | tail -1`
+s3=`dig +short dobermann.cubedesigners.com | tail -1`
+s4=`dig +short elephantman.cubedesigners.com | tail -1`
+s5=`dig +short godzilla.cubedesigners.com | tail -1`
+s5_0=`dig +short hostingdev.cubedesigners.com | tail -1`
+s5_1=`dig +short hosting.cubedesigners.com | tail -1`
+s5_2=`dig +short hosting2.fluidbook.com | tail -1`
+s5_3=`dig +short hosting.fluidbook.com | tail -1`
+s6=`dig +short her2.cubedesigners.com | tail -1`
+s6_0=`dig +short her.cubedesigners.com | tail -1`
+s6_1=`dig +short mail.cubedesigners.com | tail -1`
+s6_2=`dig +short mail2.cubedesigners.com | tail -1`
+s7=`dig +short kingkong.cubedesigners.com | tail -1`
+s8=`dig +short fastandfurious.cubedesigners.com | tail -1`
+
+i0=127.0.0.0/8
+i1=10.0.0.0/8
+i2=172.16.0.0/12
+i3=192.168.0.0/16
+i4=`dig +short paris.cubedesigners.com | tail -1`
+i5=`dig +short montpellier.cubedesigners.com | tail -1`
+i6=`dig +short tortuga.enhydra.fr | tail -1`
+
+auth=($s0 $s0_0 $s1 $s2 $s2_0 $s3 $s4 $s5 $s5_0 $s5_1 $s5_2 $s5_3 $s6 $s6_0 $s6_1 $s6_2 $s7 $s8 $i0 $i1 $i2 $i3 $i4 $i5 $i6)
+
+ufw allow 51820
+
+for ip in "${blacklist[@]}"
+do
+        ufw deny in from $ip
+        ufw deny in to $ip
+done
+
+for ip in "${auth[@]}"
+do
+       ufw allow from $ip
+       ufw allow to $ip
+       ufw allow out from $ip
+       ufw allow out to $ip
+done
+
+for ip in "${backup[@]}"
+do
+        ufw allow in from $ip port 22
+done
+
+#SSH
+ufw deny out 22
+ufw deny out 22022
+ufw deny out 22822
+ufw deny out 22222
+# Finally enable firewall
+ufw --force enable
+
+# Enable loging
+ufw logging on
+
+# Display status
+ufw status verbose
+
+rm /etc/ufw/after.rules.*
+rm /etc/ufw/after6.rules.*
+rm /etc/ufw/before.rules.*
+rm /etc/ufw/before6.rules.*
+rm /lib/ufw/user6.rules.*
+rm /lib/ufw/user.rules.*

diff --git a/servers/godzilla/firewall b/servers/godzilla/firewall
new file mode 100644 (file)
index 0000000..ec7ff67
--- /dev/null
+++ b/servers/godzilla/firewall
@@ -0,0 +1,89 @@
+#!/bin/bash
+
+export DEBIAN_FRONTEND=noninteractive
+apt install --no-install-recommends -y dnsutils
+# Reset all rules
+ufw --force reset
+# Disable firewall
+ufw disable
+
+ufw default allow outgoing
+
+b0=24.104.34.225
+b1=62.99.220.220
+b2=50.62.177.177
+b3=195.70.4.231
+blacklist=($b0 $b1 $b2 $b3)
+
+s0=`dig +short alphaville.cubedesigners.com | tail -1`
+s0_0=`dig +short toolbox.fluidbook.com | tail -1`
+s1=`dig +short brazil.cubedesigners.com | tail -1`
+s2=`dig +short dracula.cubedesigners.com | tail -1`
+s2_0=`dig +short devdock.cubedesigners.com | tail -1`
+s3=`dig +short dobermann.cubedesigners.com | tail -1`
+s4=`dig +short elephantman.cubedesigners.com | tail -1`
+s5=`dig +short godzilla.cubedesigners.com | tail -1`
+s5_0=`dig +short hostingdev.cubedesigners.com | tail -1`
+s5_1=`dig +short hosting.cubedesigners.com | tail -1`
+s5_2=`dig +short hosting2.fluidbook.com | tail -1`
+s5_3=`dig +short hosting.fluidbook.com | tail -1`
+s6=`dig +short her2.cubedesigners.com | tail -1`
+s6_0=`dig +short her.cubedesigners.com | tail -1`
+s6_1=`dig +short mail.cubedesigners.com | tail -1`
+s6_2=`dig +short mail2.cubedesigners.com | tail -1`
+s7=`dig +short kingkong.cubedesigners.com | tail -1`
+s8=`dig +short fastandfurious.cubedesigners.com | tail -1`
+
+i0=127.0.0.0/8
+i1=10.0.0.0/8
+i2=172.16.0.0/12
+i3=192.168.0.0/16
+i4=`dig +short paris.cubedesigners.com | tail -1`
+i5=`dig +short montpellier.cubedesigners.com | tail -1`
+i6=`dig +short tortuga.enhydra.fr | tail -1`
+
+auth=($s0 $s0_0 $s1 $s2 $s2_0 $s3 $s4 $s5 $s5_0 $s5_1 $s5_2 $s5_3 $s6 $s6_0 $s6_1 $s6_2 $s7 $s8 $i0 $i1 $i2 $i3 $i4 $i5 $i6)
+
+ufw allow 53
+ufw allow 80
+ufw allow 443
+
+for ip in "${blacklist[@]}"
+do
+        ufw deny in from $ip
+        ufw deny in to $ip
+done
+
+for ip in "${auth[@]}"
+do
+       ufw allow from $ip
+       ufw allow to $ip
+       ufw allow out from $ip
+       ufw allow out to $ip
+done
+
+for ip in "${backup[@]}"
+do
+        ufw allow in from $ip port 22
+done
+
+#SSH
+ufw deny out 22
+ufw deny out 22022
+ufw deny out 22822
+ufw deny out 22222
+# Finally enable firewall
+ufw --force enable
+
+# Enable loging
+ufw logging on
+
+# Display status
+ufw status verbose
+
+rm /etc/ufw/after.rules.*
+rm /etc/ufw/after6.rules.*
+rm /etc/ufw/before.rules.*
+rm /etc/ufw/before6.rules.*
+rm /lib/ufw/user6.rules.*
+rm /lib/ufw/user.rules.*

diff --git a/servers/her/firewall b/servers/her/firewall
new file mode 100644 (file)
index 0000000..8813583
--- /dev/null
+++ b/servers/her/firewall
@@ -0,0 +1,72 @@
+#!/bin/bash
+
+apt install bind9 dnsutils
+service bind9 restart
+
+blacklist=(24.104.34.225 62.99.220.220 50.62.177.177 195.70.4.231)
+s0=`dig +short alphaville.cubedesigners.com | tail -1`
+s0_0=`dig +short toolbox.fluidbook.com | tail -1`
+s1=`dig +short brazil.cubedesigners.com | tail -1`
+s2=`dig +short clockwork.cubedesigners.com | tail -1`
+s2_0=`dig +short hosting.fluidbook.com | tail -1`
+s2_1=`dig +short hosting.cubedesigners.com | tail -1`
+s3=`dig +short dracula.cubedesigners.com | tail -1`
+s4=`dig +short dobermann.cubedesigners.com | tail -1`
+s5=`dig +short elephantman.cubedesigners.com | tail -1`
+s6=`dig +short fastandfurious.cubedesigners.com | tail -1`
+s7=`dig +short godzilla.cubedesigners.com | tail -1`
+s7_0=`dig +short hostingdev.cubedesigners.com | tail -1`
+s8=`dig +short her.cubedesigners.com | tail -1`
+s8_0=`dig +short her2.cubedesigners.com | tail -1`
+s8_1=`dig +short mail.cubedesigners.com | tail -1`
+s8_2=`dig +short mail2.cubedesigners.com | tail -1`
+s8_3=`dig +short devdock.cubedesigners.com | tail -1`
+s9=`dig +short kingkong.cubedesigners.com | tail -1`
+s10=`dig +short matrix.cubedesigners.com | tail -1`
+s11=`dig +short nakedgun.cubedesigners.com | tail -1`
+
+i0=`dig +short paris.cubedesigners.com | tail -1`
+i1=`dig +short montpellier.cubedesigners.com | tail -1`
+i2=`dig +short tortuga.enhydra.fr | tail -1`
+
+auth=($s0 $s0_0 $s1 $s2 $s2_0 $s2_1 $s3 $s4 $s5 $s6 $s7 $s7_0 $s8 $s8_0 $s8_1 $s8_2 $s8_3 $s9 $s10 $s11 $i0 $i1 $i2)
+ufw allow 
+ufw allow 53
+ufw allow 80
+ufw allow 443
+
+for ip in "${blacklist[@]}"
+do
+        ufw deny in from $ip
+        ufw deny in to $ip
+        ufw deny out from $ip
+        ufw deny out to $ip
+done
+
+for ip in "${auth[@]}"
+do
+        ufw allow out to $ip port 22
+        ufw allow from $ip
+        ufw allow to $ip
+done
+
+for ip in "${auth[@]}"
+do
+        ufw allow in from $ip port 22
+done
+
+#SSH
+ufw deny out 22
+# Finally enable firewall
+ufw --force enable
+# Enable loging
+ufw logging on
+# Display status
+ufw status verbose
+
+rm /etc/ufw/after.rules.*
+rm /etc/ufw/after6.rules.*
+rm /etc/ufw/before.rules.*
+rm /etc/ufw/before6.rules.*
+rm /lib/ufw/user6.rules.*
+rm /lib/ufw/user.rules.*

diff --git a/servers/her2/firewall b/servers/her2/firewall
new file mode 100644 (file)
index 0000000..4421c8b
--- /dev/null
+++ b/servers/her2/firewall
@@ -0,0 +1,95 @@
+#!/bin/bash
+
+export DEBIAN_FRONTEND=noninteractive
+apt install --no-install-recommends -y dnsutils
+# Reset all rules
+ufw --force reset
+# Disable firewall
+ufw disable
+
+ufw default allow outgoing
+
+b0=24.104.34.225
+b1=62.99.220.220
+b2=50.62.177.177
+b3=195.70.4.231
+blacklist=($b0 $b1 $b2 $b3)
+
+s0=`dig +short alphaville.cubedesigners.com | tail -1`
+s0_0=`dig +short toolbox.fluidbook.com | tail -1`
+s1=`dig +short brazil.cubedesigners.com | tail -1`
+s2=`dig +short dracula.cubedesigners.com | tail -1`
+s2_0=`dig +short devdock.cubedesigners.com | tail -1`
+s3=`dig +short dobermann.cubedesigners.com | tail -1`
+s4=`dig +short elephantman.cubedesigners.com | tail -1`
+s5=`dig +short godzilla.cubedesigners.com | tail -1`
+s5_0=`dig +short hostingdev.cubedesigners.com | tail -1`
+s5_1=`dig +short hosting.cubedesigners.com | tail -1`
+s5_2=`dig +short hosting2.fluidbook.com | tail -1`
+s5_3=`dig +short hosting.fluidbook.com | tail -1`
+s6=`dig +short her2.cubedesigners.com | tail -1`
+s6_0=`dig +short her.cubedesigners.com | tail -1`
+s6_1=`dig +short mail.cubedesigners.com | tail -1`
+s6_2=`dig +short mail2.cubedesigners.com | tail -1`
+s7=`dig +short kingkong.cubedesigners.com | tail -1`
+s8=`dig +short fastandfurious.cubedesigners.com | tail -1`
+
+i0=127.0.0.0/8
+i1=10.0.0.0/8
+i2=172.16.0.0/12
+i3=192.168.0.0/16
+i4=`dig +short paris.cubedesigners.com | tail -1`
+i5=`dig +short montpellier.cubedesigners.com | tail -1`
+i6=`dig +short tortuga.enhydra.fr | tail -1`
+
+auth=($s0 $s0_0 $s1 $s2 $s2_0 $s3 $s4 $s5 $s5_0 $s5_1 $s5_2 $s5_3 $s6 $s6_0 $s6_1 $s6_2 $s7 $s8 $i0 $i1 $i2 $i3 $i4 $i5 $i6)
+
+ufw allow 53
+ufw allow 80
+ufw allow 443
+ufw allow 25
+ufw allow 143
+ufw allow 465
+ufw allow 487
+ufw allow 993
+ufw allow 4190
+
+for ip in "${blacklist[@]}"
+do
+        ufw deny in from $ip
+        ufw deny in to $ip
+done
+
+for ip in "${auth[@]}"
+do
+       ufw allow from $ip
+       ufw allow to $ip
+       ufw allow out from $ip
+       ufw allow out to $ip
+done
+
+for ip in "${backup[@]}"
+do
+        ufw allow in from $ip port 22
+done
+
+#SSH
+ufw deny out 22
+ufw deny out 22022
+ufw deny out 22822
+ufw deny out 22222
+# Finally enable firewall
+ufw --force enable
+
+# Enable loging
+ufw logging on
+
+# Display status
+ufw status verbose
+
+rm /etc/ufw/after.rules.*
+rm /etc/ufw/after6.rules.*
+rm /etc/ufw/before.rules.*
+rm /etc/ufw/before6.rules.*
+rm /lib/ufw/user6.rules.*
+rm /lib/ufw/user.rules.*

diff --git a/servers/kingkong/firewall b/servers/kingkong/firewall
new file mode 100644 (file)
index 0000000..3aafb3d
--- /dev/null
+++ b/servers/kingkong/firewall
@@ -0,0 +1,88 @@
+#!/bin/bash
+
+export DEBIAN_FRONTEND=noninteractive
+apt install --no-install-recommends -y dnsutils
+# Reset all rules
+ufw --force reset
+# Disable firewall
+ufw disable
+
+ufw default allow outgoing
+
+b0=24.104.34.225
+b1=62.99.220.220
+b2=50.62.177.177
+b3=195.70.4.231
+blacklist=($b0 $b1 $b2 $b3)
+
+s0=`dig +short alphaville.cubedesigners.com | tail -1`
+s0_0=`dig +short toolbox.fluidbook.com | tail -1`
+s1=`dig +short brazil.cubedesigners.com | tail -1`
+s2=`dig +short dracula.cubedesigners.com | tail -1`
+s2_0=`dig +short devdock.cubedesigners.com | tail -1`
+s3=`dig +short dobermann.cubedesigners.com | tail -1`
+s4=`dig +short elephantman.cubedesigners.com | tail -1`
+s5=`dig +short godzilla.cubedesigners.com | tail -1`
+s5_0=`dig +short hostingdev.cubedesigners.com | tail -1`
+s5_1=`dig +short hosting.cubedesigners.com | tail -1`
+s5_2=`dig +short hosting2.fluidbook.com | tail -1`
+s5_3=`dig +short hosting.fluidbook.com | tail -1`
+s6=`dig +short her2.cubedesigners.com | tail -1`
+s6_0=`dig +short her.cubedesigners.com | tail -1`
+s6_1=`dig +short mail.cubedesigners.com | tail -1`
+s6_2=`dig +short mail2.cubedesigners.com | tail -1`
+s7=`dig +short kingkong.cubedesigners.com | tail -1`
+s8=`dig +short fastandfurious.cubedesigners.com | tail -1`
+
+i0=127.0.0.0/8
+i1=10.0.0.0/8
+i2=172.16.0.0/12
+i3=192.168.0.0/16
+i4=`dig +short paris.cubedesigners.com | tail -1`
+i5=`dig +short montpellier.cubedesigners.com | tail -1`
+i6=`dig +short tortuga.enhydra.fr | tail -1`
+
+auth=($s0 $s0_0 $s1 $s2 $s2_0 $s3 $s4 $s5 $s5_0 $s5_1 $s5_2 $s5_3 $s6 $s6_0 $s6_1 $s6_2 $s7 $s8 $i0 $i1 $i2 $i3 $i4 $i5 $i6)
+
+ufw allow 80
+ufw allow 443
+
+for ip in "${blacklist[@]}"
+do
+        ufw deny in from $ip
+        ufw deny in to $ip
+done
+
+for ip in "${auth[@]}"
+do
+       ufw allow from $ip
+       ufw allow to $ip
+       ufw allow out from $ip
+       ufw allow out to $ip
+done
+
+for ip in "${backup[@]}"
+do
+        ufw allow in from $ip port 22
+done
+
+#SSH
+ufw deny out 22
+ufw deny out 22022
+ufw deny out 22822
+ufw deny out 22222
+# Finally enable firewall
+ufw --force enable
+
+# Enable loging
+ufw logging on
+
+# Display status
+ufw status verbose
+
+rm /etc/ufw/after.rules.*
+rm /etc/ufw/after6.rules.*
+rm /etc/ufw/before.rules.*
+rm /etc/ufw/before6.rules.*
+rm /lib/ufw/user6.rules.*
+rm /lib/ufw/user.rules.*

diff --git a/servers/matrix/firewall b/servers/matrix/firewall
new file mode 100644 (file)
index 0000000..523fa68
--- /dev/null
+++ b/servers/matrix/firewall
@@ -0,0 +1,92 @@
+#!/bin/bash
+
+export DEBIAN_FRONTEND=noninteractive
+apt install --no-install-recommends -y bind9 dnsutils
+service bind9 restart
+
+# Reset all rules
+ufw --force reset
+# Disable firewall
+ufw disable
+
+ufw default allow outgoing
+
+b0=24.104.34.225
+b1=62.99.220.220
+b2=50.62.177.177
+b3=195.70.4.231
+blacklist=($b0 $b1 $b2 $b3)
+
+s0=`dig +short alphaville.cubedesigners.com | tail -1`
+s0_0=`dig +short toolbox.fluidbook.com | tail -1`
+s1=`dig +short brazil.cubedesigners.com | tail -1`
+s2=`dig +short clockwork.cubedesigners.com | tail -1`
+s2_0=`dig +short hosting.fluidbook.com | tail -1`
+s2_1=`dig +short hosting.cubedesigners.com | tail -1`
+s3=`dig +short dracula.cubedesigners.com | tail -1`
+s4=`dig +short dobermann.cubedesigners.com | tail -1`
+s5=`dig +short elephantman.cubedesigners.com | tail -1`
+s6=`dig +short godzilla.cubedesigners.com | tail -1`
+s6_0=`dig +short hostingdev.cubedesigners.com | tail -1`
+s7=`dig +short her2.cubedesigners.com | tail -1`
+s7_0=`dig +short her.cubedesigners.com | tail -1`
+s7_1=`dig +short mail.cubedesigners.com | tail -1`
+s7_2=`dig +short mail2.cubedesigners.com | tail -1`
+s7_3=`dig +short devdock.cubedesigners.com | tail -1`
+s8=`dig +short kingkong.cubedesigners.com | tail -1`
+s9=`dig +short matrix.cubedesigners.com | tail -1`
+s10=`dig +short nakedgun.cubedesigners.com | tail -1`
+s11=`dig +short fastandfurious.cubedesigners.com | tail -1`
+
+i0=127.0.0.0/8
+i1=10.0.0.0/8
+i2=172.16.0.0/12
+i3=192.168.0.0/16
+i4=`dig +short paris.cubedesigners.com | tail -1`
+i5=`dig +short montpellier.cubedesigners.com | tail -1`
+i6=`dig +short tortuga.enhydra.fr | tail -1`
+
+auth=($s0 $s0_0 $s1 $s2 $s2_0 $s2_1 $s3 $s4 $s5 $s6 $s6_0 $s7 $s7_0 $s7_1 $s7_2 $s7_3 $s8 $s9 $s10 $s11 $i0 $i1 $i2 $i3 $i4 $i5 $i6)
+
+ufw allow 80
+ufw allow 443
+
+for ip in "${blacklist[@]}"
+do
+        ufw deny in from $ip
+        ufw deny in to $ip
+done
+
+for ip in "${auth[@]}"
+do
+       ufw allow from $ip
+       ufw allow to $ip
+       ufw allow out from $ip
+       ufw allow out to $ip
+done
+
+for ip in "${backup[@]}"
+do
+        ufw allow in from $ip port 22
+done
+
+#SSH
+ufw deny out 22
+ufw deny out 22022
+ufw deny out 22822
+ufw deny out 22222
+# Finally enable firewall
+ufw --force enable
+
+# Enable loging
+ufw logging on
+
+# Display status
+ufw status verbose
+
+rm /etc/ufw/after.rules.*
+rm /etc/ufw/after6.rules.*
+rm /etc/ufw/before.rules.*
+rm /etc/ufw/before6.rules.*
+rm /lib/ufw/user6.rules.*
+rm /lib/ufw/user.rules.*

diff --git a/servers/nakedgun/firewall b/servers/nakedgun/firewall
new file mode 100644 (file)
index 0000000..523fa68
--- /dev/null
+++ b/servers/nakedgun/firewall
@@ -0,0 +1,92 @@
+#!/bin/bash
+
+export DEBIAN_FRONTEND=noninteractive
+apt install --no-install-recommends -y bind9 dnsutils
+service bind9 restart
+
+# Reset all rules
+ufw --force reset
+# Disable firewall
+ufw disable
+
+ufw default allow outgoing
+
+b0=24.104.34.225
+b1=62.99.220.220
+b2=50.62.177.177
+b3=195.70.4.231
+blacklist=($b0 $b1 $b2 $b3)
+
+s0=`dig +short alphaville.cubedesigners.com | tail -1`
+s0_0=`dig +short toolbox.fluidbook.com | tail -1`
+s1=`dig +short brazil.cubedesigners.com | tail -1`
+s2=`dig +short clockwork.cubedesigners.com | tail -1`
+s2_0=`dig +short hosting.fluidbook.com | tail -1`
+s2_1=`dig +short hosting.cubedesigners.com | tail -1`
+s3=`dig +short dracula.cubedesigners.com | tail -1`
+s4=`dig +short dobermann.cubedesigners.com | tail -1`
+s5=`dig +short elephantman.cubedesigners.com | tail -1`
+s6=`dig +short godzilla.cubedesigners.com | tail -1`
+s6_0=`dig +short hostingdev.cubedesigners.com | tail -1`
+s7=`dig +short her2.cubedesigners.com | tail -1`
+s7_0=`dig +short her.cubedesigners.com | tail -1`
+s7_1=`dig +short mail.cubedesigners.com | tail -1`
+s7_2=`dig +short mail2.cubedesigners.com | tail -1`
+s7_3=`dig +short devdock.cubedesigners.com | tail -1`
+s8=`dig +short kingkong.cubedesigners.com | tail -1`
+s9=`dig +short matrix.cubedesigners.com | tail -1`
+s10=`dig +short nakedgun.cubedesigners.com | tail -1`
+s11=`dig +short fastandfurious.cubedesigners.com | tail -1`
+
+i0=127.0.0.0/8
+i1=10.0.0.0/8
+i2=172.16.0.0/12
+i3=192.168.0.0/16
+i4=`dig +short paris.cubedesigners.com | tail -1`
+i5=`dig +short montpellier.cubedesigners.com | tail -1`
+i6=`dig +short tortuga.enhydra.fr | tail -1`
+
+auth=($s0 $s0_0 $s1 $s2 $s2_0 $s2_1 $s3 $s4 $s5 $s6 $s6_0 $s7 $s7_0 $s7_1 $s7_2 $s7_3 $s8 $s9 $s10 $s11 $i0 $i1 $i2 $i3 $i4 $i5 $i6)
+
+ufw allow 80
+ufw allow 443
+
+for ip in "${blacklist[@]}"
+do
+        ufw deny in from $ip
+        ufw deny in to $ip
+done
+
+for ip in "${auth[@]}"
+do
+       ufw allow from $ip
+       ufw allow to $ip
+       ufw allow out from $ip
+       ufw allow out to $ip
+done
+
+for ip in "${backup[@]}"
+do
+        ufw allow in from $ip port 22
+done
+
+#SSH
+ufw deny out 22
+ufw deny out 22022
+ufw deny out 22822
+ufw deny out 22222
+# Finally enable firewall
+ufw --force enable
+
+# Enable loging
+ufw logging on
+
+# Display status
+ufw status verbose
+
+rm /etc/ufw/after.rules.*
+rm /etc/ufw/after6.rules.*
+rm /etc/ufw/before.rules.*
+rm /etc/ufw/before6.rules.*
+rm /lib/ufw/user6.rules.*
+rm /lib/ufw/user.rules.*

diff --git a/servers/update.bat b/servers/update.bat
new file mode 100644 (file)
index 0000000..6b3760d
--- /dev/null
+++ b/servers/update.bat
@@ -0,0 +1,32 @@
+@echo off
+cd /D D:\Works\Scripts
+scp -P 58745 -r toolbox@toolbox.fluidbook.com:/application/resources/servers/ ./
+cd /D D:\Works\Scripts\servers
+
+scp -P 22 ./alphaville/firewall root@alphaville.cubedesigners.com:/usr/local/bin/fw
+ssh -p 22 root@alphaville.cubedesigners.com 'chmod 755 /usr/local/bin/fw;/usr/local/bin/fw'
+
+scp -P 22 ./brazil/firewall root@brazil.cubedesigners.com:/usr/local/bin/fw
+ssh -p 22 root@brazil.cubedesigners.com 'chmod 755 /usr/local/bin/fw;/usr/local/bin/fw'
+
+scp -P 22 ./dracula/firewall root@dracula.cubedesigners.com:/usr/local/bin/fw
+ssh -p 22 root@dracula.cubedesigners.com 'chmod 755 /usr/local/bin/fw;/usr/local/bin/fw'
+
+scp -P 22 ./dobermann/firewall root@dobermann.cubedesigners.com:/usr/local/bin/fw
+ssh -p 22 root@dobermann.cubedesigners.com 'chmod 755 /usr/local/bin/fw;/usr/local/bin/fw'
+
+scp -P 22822 ./elephantman/firewall root@elephantman.cubedesigners.com:/usr/local/bin/fw
+ssh -p 22822 root@elephantman.cubedesigners.com 'chmod 755 /usr/local/bin/fw;/usr/local/bin/fw'
+
+scp -P 22 ./godzilla/firewall root@godzilla.cubedesigners.com:/usr/local/bin/fw
+ssh -p 22 root@godzilla.cubedesigners.com 'chmod 755 /usr/local/bin/fw;/usr/local/bin/fw'
+
+scp -P 22 ./her2/firewall root@her2.cubedesigners.com:/usr/local/bin/fw
+ssh -p 22 root@her2.cubedesigners.com 'chmod 755 /usr/local/bin/fw;/usr/local/bin/fw'
+
+scp -P 22 ./kingkong/firewall root@kingkong.cubedesigners.com:/usr/local/bin/fw
+ssh -p 22 root@kingkong.cubedesigners.com 'chmod 755 /usr/local/bin/fw;/usr/local/bin/fw'
+
+scp -P 22822 ./fastandfurious/firewall root@fastandfurious.cubedesigners.com:/usr/local/bin/fw
+ssh -p 22822 root@fastandfurious.cubedesigners.com 'chmod 755 /usr/local/bin/fw;/usr/local/bin/fw'
+

diff --git a/shortcuts/cubeshortcuts.ahk b/shortcuts/cubeshortcuts.ahk
new file mode 100644 (file)
index 0000000..53e57be
--- /dev/null
+++ b/shortcuts/cubeshortcuts.ahk
@@ -0,0 +1,53 @@
+#+d::
+RunWait "D:\\Works\\Scripts\\drives\\mount-data.bat"
+Run explorer g:
+return
+
+#+s::
+Run "D:\\Works\\Scripts\\drives\\mount-salsa.bat"
+return
+
+#+f::
+RunWait "D:\\Works\\Scripts\\drives\\mount-fridge.bat"
+Run explorer f:
+return
+
+#+a::
+RunWait "D:\\Works\\Scripts\\drives\\mount-archives.bat"
+Run explorer a:
+return
+
+#+u::
+Run "D:\\Works\\Scripts\\drives\\unmount-all.bat"
+RunWait "D:\\Works\\Scripts\\vpn\\disconnect.bat"
+return
+
+#+l::
+RunWait "D:\\Works\\Scripts\\drives\\unmount-all.bat"
+RunWait "D:\\Works\\Scripts\\vpn\\disconnect.bat"
+DllCall("LockWorkStation")
+return
+
+#+t::
+Run "D:\\Works\\Scripts\\tortuga\\opendrive.bat"
+return
+
+#+w::
+Run "D:\\Works\\Scripts\\theme\\switch.bat"
+return
+
+#+v::
+Run "D:\\Works\\Scripts\\rdp\\Vincent.bat"
+return
+
+^+"::
+Send {U+00AB}{Space}{Space}{U+00BB}{Left}{Left}
+
+RunWaitOne(command) {
+    ; WshShell object: http://msdn.microsoft.com/en-us/library/aew9yb99
+    shell := ComObjCreate("WScript.Shell")
+    ; Execute a single command via cmd.exe
+    exec := shell.Exec(ComSpec " /C " command)
+    ; Read and return the command's output
+    return exec.StdOut.ReadAll()
+}
\ No newline at end of file

diff --git a/shortcuts/cubeshortcuts.exe b/shortcuts/cubeshortcuts.exe
new file mode 100644 (file)
index 0000000..bda63ab
Binary files /dev/null and b/shortcuts/cubeshortcuts.exe differ

diff --git a/startup/sshd.ps1 b/startup/sshd.ps1
new file mode 100644 (file)
index 0000000..14657f9
--- /dev/null
+++ b/startup/sshd.ps1
@@ -0,0 +1,13 @@
+# Start the sshd service
+Start-Service sshd
+
+# OPTIONAL but recommended:
+Set-Service -Name sshd -StartupType 'Automatic'
+
+# Confirm the Firewall rule is configured. It should be created automatically by setup. Run the following to verify
+if (!(Get-NetFirewallRule -Name "OpenSSH-Server-In-TCP" -ErrorAction SilentlyContinue | Select-Object Name, Enabled)) {
+    Write-Output "Firewall Rule 'OpenSSH-Server-In-TCP' does not exist, creating it..."
+    New-NetFirewallRule -Name 'OpenSSH-Server-In-TCP' -DisplayName 'OpenSSH Server (sshd)' -Enabled True -Direction Inbound -Protocol TCP -Action Allow -LocalPort 22
+} else {
+    Write-Output "Firewall rule 'OpenSSH-Server-In-TCP' has been created and exists."
+}
\ No newline at end of file

diff --git a/startup/startup.ahk b/startup/startup.ahk
new file mode 100644 (file)
index 0000000..607a944
--- /dev/null
+++ b/startup/startup.ahk
@@ -0,0 +1,7 @@
+Run "D:\\Works\\Scripts\\vm\\fluidbookfarmer.bat"
+Run "D:\\Works\\Scripts\\drives\\hdrive.bat"
+Run "D:\\Works\\Scripts\\backup\\backup.bat"
+Run "D:\\Works\\Scripts\\backup\\backup-katana.bat"
+Run "C:\Users\vince\AppData\Local\JetBrains\Toolbox\bin\jetbrains-toolbox.exe" --minimize
+DllCall("LockWorkStation")
+Run, *RunAs powershell.exe -noexit -file "D:\\Works\\Scripts\\startup\\sshd.ps1"
\ No newline at end of file

diff --git a/startup/startup.exe b/startup/startup.exe
new file mode 100644 (file)
index 0000000..6c0731c
Binary files /dev/null and b/startup/startup.exe differ

diff --git a/theme/switch.bat b/theme/switch.bat
new file mode 100644 (file)
index 0000000..fedce7b
--- /dev/null
+++ b/theme/switch.bat
@@ -0,0 +1,15 @@
+@echo off
+
+setlocal ENABLEEXTENSIONS
+set KEY_NAME="HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Themes\Personalize"
+set VALUE_NAME=AppsUseLightTheme
+
+FOR /F "tokens=2*" %%A IN ('REG.exe query "%KEY_NAME%" /v "%VALUE_NAME%"') DO (set current=%%B)
+
+@echo %current%
+
+set theme=0
+if %current% == 0x0 set theme=1
+
+%SystemRoot%\system32\WindowsPowerShell\v1.0\powershell.exe New-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Themes\Personalize -Name AppsUseLightTheme -Value %theme% -Type Dword -Force
+%SystemRoot%\system32\WindowsPowerShell\v1.0\powershell.exe New-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Themes\Personalize -Name SystemUsesLightTheme -Value %theme% -Type Dword -Force
\ No newline at end of file

diff --git a/tortuga/opendrive.bat b/tortuga/opendrive.bat
new file mode 100644 (file)
index 0000000..6c64898
--- /dev/null
+++ b/tortuga/opendrive.bat
@@ -0,0 +1,2 @@
+@echo off
+explorer \\192.168.13.1\1.42.6-25556
\ No newline at end of file

diff --git a/tortuga/wakeup.bat b/tortuga/wakeup.bat
new file mode 100644 (file)
index 0000000..ac0e3b2
--- /dev/null
+++ b/tortuga/wakeup.bat
@@ -0,0 +1,2 @@
+@echo off
+curl -k "https://admin:BDQw479qbJST4u@tortuga.enhydra.fr:9652/wakeup.cgi" -H "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" -H "Accept: */*" -H "Accept-Language: fr-FR,en;q=0.5" --compressed -H "Content-Type: text/plain;charset=UTF-8" -H "Origin: https://tortuga.enhydra.fr:9652" -H "Authorization: Basic YWRtaW46QkRRdzQ3OXFiSlNUNHU=" -H "Connection: keep-alive" -H "Referer: https://tortuga.enhydra.fr:9652/tools-wol.asp" -H "Cookie: tomato_status_overview_refresh=3; tomato_vpn_server_tab=server1; tomato_vpn_server0_section=status; tomato_vpn_server1_section=status; tomato_ipt_tab=192.168.13.91; tomato_vpn_client_tab=client2; tomato_vpn_client0_section=policy; tomato_vpn_client1_section=basic; tomato_advanced_wlanvifs_tab=overview; tomato_pingaddr=192.168.13.5; tomato_pingcount=5; tomato_pingsize=56; tomato_wakemac=E0"%"3AD5"%"3A5E"%"3A68"%"3A67"%"3AB9; tomato_home_ethports_visibility=1; tomato_menu_status=devices.asp; tomato_menu_admin=access.asp; tomato_menu_vpn=server.asp; tomato_menu_tools=wol.asp; tomato_iperf_mode=false; tomato_iperf_transmit_address=; tomato_iperf_port=5201; tomato_iperf_time_limit_value=10; tomato_iperf_byte_limit_value=1024; tomato_iperf_time_limited=true; tomato_menu_ipt=realtime.asp; tomato_menu_nas=usb.asp" --data-raw "_ajax=1&_redirect=tools-wol.asp&_nextwait=1&mac=E0"%"3AD5"%"3A5E"%"3A68"%"3A67"%"3AB9&_http_id=TID36da5a4b681c99ef"
\ No newline at end of file

diff --git a/update/update.bat b/update/update.bat
new file mode 100644 (file)
index 0000000..1aaac4e
--- /dev/null
+++ b/update/update.bat
@@ -0,0 +1,2 @@
+@echo off
+choco upgrade all -y

diff --git a/vm/fluidbookfarmer.bat b/vm/fluidbookfarmer.bat
new file mode 100644 (file)
index 0000000..897d607
--- /dev/null
+++ b/vm/fluidbookfarmer.bat
@@ -0,0 +1,3 @@
+@echo off
+"C:\Program Files (x86)\VMware\VMware Workstation\vmrun.exe" start "D:\VM\Fluidbook Farmer\Fluidbook Farmer.vmx" nogui
+"C:\Program Files (x86)\VMware\VMware Workstation\vmrun.exe" start "D:\VM\HomeAssistant\HomeAssistant.vmx" nogui
\ No newline at end of file