HEX
Server: LiteSpeed
System: Linux rs4-or.serverhostgroup.com 4.18.0-553.111.1.lve.el8.x86_64 #1 SMP Fri Mar 13 13:42:17 UTC 2026 x86_64
User: carunloc (2240)
PHP: 7.4.33
Disabled: exec, passthru, shell_exec
$ pwd: /opt/
Upload Files
File: //opt/csf-auto-update.sh
#/usr/bin/env bash
ips_link='https://www.quic.cloud/ips?ln'
csf_allow_file='/etc/csf/csf.allow'
csf_allow_bak_file='/etc/csf/csf.allow.bak'
csf_ignore_file='/etc/csf/csf.ignore'
csf_ignore_bak_file='/etc/csf/csf.ignore.bak'
exit_flag=0
csf_reload=0
is_csf_allow_bak_file_exists=0
is_csf_ignore_bak_file_exists=0
EPACE='        '

check_input(){
    if [ -z "${1}" ]
    then
        help_message
        exit 1
    fi
}

check_environment(){
    if [ ! -f "$csf_allow_file" ]
    then
        echo "$csf_allow_file does not exists"
        exit_flag=1;
    elif [ ! -f "$csf_allow_bak_file" ]
    then
        echo "Backup $csf_allow_file to $csf_allow_bak_file"
        cp $csf_allow_file $csf_allow_bak_file
    fi

    if [ ! -f "$csf_ignore_file" ]
    then
        echo "$csf_ignore_file does not exists"
        exit_flag=1;
    elif [ ! -f "$csf_ignore_bak_file" ]
    then
        echo "Backup $csf_ignore_file to $csf_ignore_bak_file"
        cp $csf_ignore_file $csf_ignore_bak_file
    fi
    
    # if [ ${1} = "-r" ] && [ ! -f "$csf_ignore_bak_file" ]
    # then
    #     echo "$csf_ignore_bak_file does not exists"
    #     exit_flag=1;
    # fi

    if [ "$EUID" -ne 0 ]
    then
        echo "Please run as root user!"
        exit_flag=1;
    fi

    curl -m 5 -s https://www.quic.cloud/ips?ln >/dev/null 2>&1
    if [ ${?} != 0 ]
    then 
        echo "${ips_link} not working, please check!"
        exit_flag=1;
    fi

    if [ $exit_flag = "0" ]
    then
        echo "[Success] Environment checked!!"
    else
        echo "[ERROR] Failed Verificaion!!"
        exit 1;
    fi

}

echow(){
    FLAG=${1}
    shift
    echo -e "\033[1m${EPACE}${FLAG}\033[0m${@}"
}

help_message(){
    echo -e "\033[1mOPTIONS\033[0m"
    echow '-u, --update'
    echo "${EPACE}${EPACE}Backup csf.allow and csf.ignore to csf.allow.bak and csf.ignore.bak"
    echo "${EPACE}${EPACE}Update quic.cloud/ips whitelist to csf.allow and csf.ignore list"
    echow '-r, --restore'
    echo "${EPACE}${EPACE}Restore csf.allow and csf.ignore from csf.allow.bak and csf.ignore.bak"
    echow '-h, --help'
    echo "${EPACE}${EPACE}Display help."
}

resotre_csf_setting(){
    echo 'Restore csf'
    for line in `curl -ks https://quic.cloud/ips?ln`;
    do
        sed -i "/$line/d" $csf_allow_file
    done

    for line in `curl -ks https://quic.cloud/ips?ln`;
    do
        sed -i "/$line/d" $csf_ignore_file
    done  

    echo 'Restart csf'
    csf -ra >/dev/null 2>&1
}

update_csf_setting(){
    echo 'Update CSF csf.allow'
    for line in `curl -ks https://quic.cloud/ips?ln`;
    do
        if grep -q $line $csf_allow_file
        then
            echo "$line is in $csf_allow_file"
        else
            echo "Append $line to $csf_allow_file"
            echo "$line  # Quic.cloud whitelist IPs" >> $csf_allow_file
            csf_reload=1
        fi
    done

    echo 'Update CSF csf.ignore'
    for line in `curl -ks https://quic.cloud/ips?ln`;
    do
        if grep -q $line $csf_ignore_file
        then
            echo "$line is in $csf_ignore_file"
        else
            echo "Append $line to $csf_ignore_file"
            echo "$line  # Quic.cloud whitelist IPs" >> $csf_ignore_file
            csf_reload=1
        fi
    done

    if [ $csf_reload = 1 ]
    then
        echo 'Restart csf'
        csf -ra >/dev/null 2>&1
    fi

}

check_input ${1}
if [ ! -z "${1}" ]
then
    case ${1} in
        -[hH] | -help | --help)
            help_message
            ;;
        -[uU] | -update | --update)
            check_environment "-u"
            update_csf_setting
            ;;
        -[rR] | -restore | --restore)
            check_environment "-r"
            resotre_csf_setting
            ;;
        *)
            help_message
           ;;
    esac
fi
@ Telegram