mirror of
https://github.com/billz/raspap-webgui.git
synced 2023-10-10 13:37:24 +02:00
d07fd0a327
- cleanup firewall.php - add function updateFirewall - add standalone script update_firewall.sh to update the firewall rules
71 lines
4.5 KiB
Plaintext
71 lines
4.5 KiB
Plaintext
www-data ALL=(ALL) NOPASSWD:/sbin/ifdown
|
|
www-data ALL=(ALL) NOPASSWD:/sbin/ifup
|
|
www-data ALL=(ALL) NOPASSWD:/bin/cat /etc/wpa_supplicant/wpa_supplicant.conf
|
|
www-data ALL=(ALL) NOPASSWD:/bin/cat /etc/wpa_supplicant/wpa_supplicant-wlan[0-9].conf
|
|
www-data ALL=(ALL) NOPASSWD:/bin/cp /tmp/wifidata /etc/wpa_supplicant/wpa_supplicant.conf
|
|
www-data ALL=(ALL) NOPASSWD:/bin/cp /tmp/wifidata /etc/wpa_supplicant/wpa_supplicant-wlan[0-9].conf
|
|
www-data ALL=(ALL) NOPASSWD:/sbin/wpa_supplicant -B -Dnl80211 -c/etc/wpa_supplicant/wpa_supplicant.conf -iwlan[0-9]
|
|
www-data ALL=(ALL) NOPASSWD:/bin/rm /var/run/wpa_supplicant/wlan[0-9]
|
|
www-data ALL=(ALL) NOPASSWD:/sbin/wpa_cli -i wlan[0-9] scan_results
|
|
www-data ALL=(ALL) NOPASSWD:/sbin/wpa_cli -i wlan[0-9] scan
|
|
www-data ALL=(ALL) NOPASSWD:/sbin/wpa_cli -i wlan[0-9] reconfigure
|
|
www-data ALL=(ALL) NOPASSWD:/sbin/wpa_cli -i wlan[0-9] select_network [0-9]*
|
|
www-data ALL=(ALL) NOPASSWD:/bin/cp /tmp/hostapddata /etc/hostapd/hostapd.conf
|
|
www-data ALL=(ALL) NOPASSWD:/bin/systemctl start hostapd.service
|
|
www-data ALL=(ALL) NOPASSWD:/bin/systemctl stop hostapd.service
|
|
www-data ALL=(ALL) NOPASSWD:/bin/systemctl start dnsmasq.service
|
|
www-data ALL=(ALL) NOPASSWD:/bin/systemctl stop dnsmasq.service
|
|
www-data ALL=(ALL) NOPASSWD:/bin/systemctl restart dnsmasq.service
|
|
www-data ALL=(ALL) NOPASSWD:/bin/systemctl start openvpn-client@client
|
|
www-data ALL=(ALL) NOPASSWD:/bin/systemctl enable openvpn-client@client
|
|
www-data ALL=(ALL) NOPASSWD:/bin/systemctl stop openvpn-client@client
|
|
www-data ALL=(ALL) NOPASSWD:/bin/systemctl disable openvpn-client@client
|
|
www-data ALL=(ALL) NOPASSWD:/bin/mv /tmp/ovpn/* /etc/openvpn/client/*.conf
|
|
www-data ALL=(ALL) NOPASSWD:/usr/bin/ln -s /etc/openvpn/client/*.conf /etc/openvpn/client/*.conf
|
|
www-data ALL=(ALL) NOPASSWD:/bin/rm /etc/openvpn/client/*.conf
|
|
www-data ALL=(ALL) NOPASSWD:/bin/cp /tmp/dnsmasqdata /etc/dnsmasq.d/090_*.conf
|
|
www-data ALL=(ALL) NOPASSWD:/bin/rm /etc/dnsmasq.d/090_*.conf
|
|
www-data ALL=(ALL) NOPASSWD:/bin/cp /tmp/dhcpddata /etc/dhcpcd.conf
|
|
www-data ALL=(ALL) NOPASSWD:/sbin/shutdown -h now
|
|
www-data ALL=(ALL) NOPASSWD:/sbin/reboot
|
|
www-data ALL=(ALL) NOPASSWD:/sbin/ip link set wlan[0-9] down
|
|
www-data ALL=(ALL) NOPASSWD:/sbin/ip link set wlan[0-9] up
|
|
www-data ALL=(ALL) NOPASSWD:/sbin/ip -s a f label wlan[0-9]
|
|
www-data ALL=(ALL) NOPASSWD:/sbin/ifup *
|
|
www-data ALL=(ALL) NOPASSWD:/sbin/ifdown *
|
|
www-data ALL=(ALL) NOPASSWD:/sbin/iw
|
|
www-data ALL=(ALL) NOPASSWD:/bin/cp /etc/raspap/networking/dhcpcd.conf /etc/dhcpcd.conf
|
|
www-data ALL=(ALL) NOPASSWD:/etc/raspap/hostapd/enablelog.sh
|
|
www-data ALL=(ALL) NOPASSWD:/etc/raspap/hostapd/disablelog.sh
|
|
www-data ALL=(ALL) NOPASSWD:/etc/raspap/hostapd/servicestart.sh
|
|
www-data ALL=(ALL) NOPASSWD:/etc/raspap/lighttpd/configport.sh
|
|
www-data ALL=(ALL) NOPASSWD:/etc/raspap/openvpn/configauth.sh
|
|
www-data ALL=(ALL) NOPASSWD:/etc/raspap/openvpn/openvpnlog.sh
|
|
www-data ALL=(ALL) NOPASSWD:/bin/chmod o+r /tmp/hostapd.log
|
|
www-data ALL=(ALL) NOPASSWD:/bin/chmod o+r /tmp/dnsmasq.log
|
|
www-data ALL=(ALL) NOPASSWD:/bin/chmod o+r /tmp/wireguard.log
|
|
www-data ALL=(ALL) NOPASSWD:/bin/cp /tmp/dnsmasqdata /etc/dnsmasq.d/090_adblock.conf
|
|
www-data ALL=(ALL) NOPASSWD:/bin/cp /tmp/dnsmasq_custom /etc/raspap/adblock/custom.txt
|
|
www-data ALL=(ALL) NOPASSWD:/bin/cp /tmp/wgdata /etc/wireguard/*.conf
|
|
www-data ALL=(ALL) NOPASSWD:/bin/mv /tmp/wg-*.key /etc/wireguard/wg-*.key
|
|
www-data ALL=(ALL) NOPASSWD:/bin/mv /tmp/wg/* /etc/wireguard/*.conf
|
|
www-data ALL=(ALL) NOPASSWD:/etc/raspap/adblock/update_blocklist.sh
|
|
www-data ALL=(ALL) NOPASSWD:/usr/bin/socat - /dev/ttyUSB[0-9]
|
|
www-data ALL=(ALL) NOPASSWD:/usr/local/sbin/onoff_huawei_hilink.sh *
|
|
www-data ALL=(ALL) NOPASSWD:/bin/sed -i * /etc/wvdial.conf
|
|
www-data ALL=(ALL) NOPASSWD:/bin/sed -i * /etc/udev/rules.d/80-raspap-net-devices.rules
|
|
www-data ALL=(ALL) NOPASSWD:/usr/bin/tee -a /etc/udev/rules.d/80-raspap-net-devices.rules
|
|
www-data ALL=(ALL) NOPASSWD:/usr/bin/tee /tmp/wireguard.log
|
|
www-data ALL=(ALL) NOPASSWD:/bin/systemctl * wg-quick@wg0
|
|
www-data ALL=(ALL) NOPASSWD:/usr/bin/wg
|
|
www-data ALL=(ALL) NOPASSWD:/bin/cat /etc/wireguard/*.conf
|
|
www-data ALL=(ALL) NOPASSWD:/bin/cat /etc/wireguard/wg-*.key
|
|
www-data ALL=(ALL) NOPASSWD:/bin/rm /etc/wireguard/*.conf
|
|
www-data ALL=(ALL) NOPASSWD:/bin/rm /etc/wireguard/wg-*.key
|
|
www-data ALL=(ALL) NOPASSWD:/tmp/iptables_raspap.sh
|
|
www-data ALL=(ALL) NOPASSWD:/tmp/ip6tables_raspap.sh
|
|
www-data ALL=(ALL) NOPASSWD:/usr/sbin/iptables-save
|
|
www-data ALL=(ALL) NOPASSWD:/usr/sbin/ip6tables-save
|
|
www-data ALL=(ALL) NOPASSWD:/usr/bin/tee /etc/iptables/rules.v4
|
|
www-data ALL=(ALL) NOPASSWD:/usr/bin/tee /etc/iptables/rules.v6
|