rahulroshan96/bind-setup.sh

## bind-setup.sh
#!/bin/bash
sudo apt-get update
sudo apt-get install bind9 bind9utils -y

BINDVER=`curl -slL ftp://ftp.isc.org/isc/bind9/cur/9.11/ |grep ".tar.gz$" |sed 's/bind-//g' |sed 's/.tar.gz//g'`

if [ -f /usr/local/sbin/named ]; then
  CURRENTVER=`/usr/local/sbin/named -v |awk '{ print $2 }'`
elif [ -f /usr/sbin/named ]; then
  CURRENTVER=`/usr/sbin/named -v |awk '{ print $2 }'`
else
  CURRENTVER=0
fi

if [ $BINDVER != $CURRENTVER ]; then
    # Update the System before we start
    dpkg --get-selections |awk '{print $1}' |sed 's/:amd64//g' > /tmp/installed-packages.txt
    UPDATE="" # Start out with UPDATE being NULL
    for a in build-essential checkinstall libssl-dev libxml2 libxml2-dev libjson-c-dev haveged gnupg wget
    do
        if [ `egrep "^$a$" /tmp/installed-packages.txt |wc -l` != "1" ]; then
            echo "$a is not installed"
            UPDATE="$a $UPDATE"
        fi
    done
    rm -f /tmp/installed-packages.txt

    if [ ! -d /var/cache/bind ]; then
        mkdir -p /var/cache/bind
        chown -R bind:bind /var/cache/bind
    fi

    if [ ! -d /var/run/named ]; then
        mkdir -p /var/run/named
        chown -R bind:bind /var/run/named
        chmod 775 /var/run/named
    fi

    # Adding/updating /etc/passwd
    if [ `grep "^bind" /etc/passwd` ]; then
        if [ ! `grep "^bind:x:88:88::/var/lib/bind:/sbin/nologin" /etc/passwd` ]; then
            sed -i '/^bind:x:/c\bind:x:88:88::/var/lib/bind:/sbin/nologin' /etc/passwd
            echo "Updating bind user in /etc/passwd"
        fi
    else
        echo "bind:x:88:88::/var/lib/bind:/sbin/nologin" >> /etc/passwd
        echo "Adding User bind to /etc/passwd"
    fi

    # Adding/updating /etc/group
    if [ `grep "^bind" /etc/group` ]; then
        if [ ! `grep "^bind:x:88:" /etc/group` ]; then
            sed -i '/^bind/c\bind:x:88:' /etc/group
            echo "Updating bind group in /etc/group"
        fi
    else
        echo "bind:x:88:" >> /etc/group
        echo "Adding group bind to /etc/group"
    fi


    if [ "$UPDATE" != "" ]; then
        echo "Installing needed file(s): ${UPDATE}"
        apt update
        apt install -y $UPDATE
    fi

    # Build the GnuPG database if it hasn't yet.
    if [ ! -d ~/.gnupg ]; then
        echo -n "GnuPG is not inited yet, building the database: "
        gpg --update-trustdb -qq
        echo "Done!"
    fi

    # Download the needed OpenPGP keys
    for KEY in 6FA6EBC9911A4C02 F1B11BF05CF02E57
    do
        if [ `gpg --list-key |grep "${KEY}" |wc -w` == "0" ]; then
            echo "Downloading needed OpenPGP Key 0x${KEY}"
            gpg --recv-keys ${KEY}
        fi
    done

    # Move into the source directory
    mkdir -p /var/src && cd /var/src/ && rm -rf bind-${BINDVER}

    # If the bind9 default file is missing, donwload and install it.
    if [ ! -f /etc/default/bind9 ]; then
        echo -n "Downloading the bind9 default file:"
        wget https://gist.githubusercontent.com/mattrude/449c31d93b1544735a52/raw/bind9.default
        echo -n "."
        mv bind9.default /etc/default/bind9
        echo "Done!"
    fi

    # If the bind9 init file is missing, donwload and install it.
    if [ ! -f /etc/init.d/bind9 ]; then
        echo -n "Downloading the bind9 init file"
        wget https://gist.githubusercontent.com/mattrude/449c31d93b1544735a52/raw/bind9.init
        echo -n "."
        mv bind9.init /etc/init.d/bind9
        echo -n "."
        chmod 755 /etc/init.d/bind9
        echo -n "."
        update-rc.d bind9 defaults
        echo "Done!"
    fi

    # Once everything is setup, we can run the Bind9 build
    wget -c ftp://ftp.isc.org/isc/bind9/${BINDVER}/bind-${BINDVER}.tar.gz && \
    wget -c ftp://ftp.isc.org/isc/bind9/${BINDVER}/bind-${BINDVER}.tar.gz.asc && \
    tar -xzf bind-${BINDVER}.tar.gz && cd bind-${BINDVER} && \
    ./configure --prefix=/usr --with-openssl --enable-threads --with-libxml2 --with-json --sysconfdir /etc/bind && \
    make && make install && chown bind:bind /etc/bind/named.conf && chown -R bind:bind /var/cache/bind && service bind9 restart
fi
	#!/bin/bash
	sudo apt-get update
	sudo apt-get install bind9 bind9utils -y

	BINDVER=`curl -slL ftp://ftp.isc.org/isc/bind9/cur/9.11/ \|grep ".tar.gz$" \|sed 's/bind-//g' \|sed 's/.tar.gz//g'`

	if [ -f /usr/local/sbin/named ]; then
	CURRENTVER=`/usr/local/sbin/named -v \|awk '{ print $2 }'`
	elif [ -f /usr/sbin/named ]; then
	CURRENTVER=`/usr/sbin/named -v \|awk '{ print $2 }'`
	else
	CURRENTVER=0
	fi

	if [ $BINDVER != $CURRENTVER ]; then
	# Update the System before we start
	dpkg --get-selections \|awk '{print $1}' \|sed 's/:amd64//g' > /tmp/installed-packages.txt
	UPDATE="" # Start out with UPDATE being NULL
	for a in build-essential checkinstall libssl-dev libxml2 libxml2-dev libjson-c-dev haveged gnupg wget
	do
	if [ `egrep "^$a$" /tmp/installed-packages.txt \|wc -l` != "1" ]; then
	echo "$a is not installed"
	UPDATE="$a $UPDATE"
	fi
	done
	rm -f /tmp/installed-packages.txt

	if [ ! -d /var/cache/bind ]; then
	mkdir -p /var/cache/bind
	chown -R bind:bind /var/cache/bind
	fi

	if [ ! -d /var/run/named ]; then
	mkdir -p /var/run/named
	chown -R bind:bind /var/run/named
	chmod 775 /var/run/named
	fi

	# Adding/updating /etc/passwd
	if [ `grep "^bind" /etc/passwd` ]; then
	if [ ! `grep "^bind:x:88:88::/var/lib/bind:/sbin/nologin" /etc/passwd` ]; then
	sed -i '/^bind:x:/c\bind:x:88:88::/var/lib/bind:/sbin/nologin' /etc/passwd
	echo "Updating bind user in /etc/passwd"
	fi
	else
	echo "bind:x:88:88::/var/lib/bind:/sbin/nologin" >> /etc/passwd
	echo "Adding User bind to /etc/passwd"
	fi

	# Adding/updating /etc/group
	if [ `grep "^bind" /etc/group` ]; then
	if [ ! `grep "^bind:x:88:" /etc/group` ]; then
	sed -i '/^bind/c\bind:x:88:' /etc/group
	echo "Updating bind group in /etc/group"
	fi
	else
	echo "bind:x:88:" >> /etc/group
	echo "Adding group bind to /etc/group"
	fi


	if [ "$UPDATE" != "" ]; then
	echo "Installing needed file(s): ${UPDATE}"
	apt update
	apt install -y $UPDATE
	fi

	# Build the GnuPG database if it hasn't yet.
	if [ ! -d ~/.gnupg ]; then
	echo -n "GnuPG is not inited yet, building the database: "
	gpg --update-trustdb -qq
	echo "Done!"
	fi

	# Download the needed OpenPGP keys
	for KEY in 6FA6EBC9911A4C02 F1B11BF05CF02E57
	do
	if [ `gpg --list-key \|grep "${KEY}" \|wc -w` == "0" ]; then
	echo "Downloading needed OpenPGP Key 0x${KEY}"
	gpg --recv-keys ${KEY}
	fi
	done

	# Move into the source directory
	mkdir -p /var/src && cd /var/src/ && rm -rf bind-${BINDVER}

	# If the bind9 default file is missing, donwload and install it.
	if [ ! -f /etc/default/bind9 ]; then
	echo -n "Downloading the bind9 default file:"
	wget https://gist.githubusercontent.com/mattrude/449c31d93b1544735a52/raw/bind9.default
	echo -n "."
	mv bind9.default /etc/default/bind9
	echo "Done!"
	fi

	# If the bind9 init file is missing, donwload and install it.
	if [ ! -f /etc/init.d/bind9 ]; then
	echo -n "Downloading the bind9 init file"
	wget https://gist.githubusercontent.com/mattrude/449c31d93b1544735a52/raw/bind9.init
	echo -n "."
	mv bind9.init /etc/init.d/bind9
	echo -n "."
	chmod 755 /etc/init.d/bind9
	echo -n "."
	update-rc.d bind9 defaults
	echo "Done!"
	fi

	# Once everything is setup, we can run the Bind9 build
	wget -c ftp://ftp.isc.org/isc/bind9/${BINDVER}/bind-${BINDVER}.tar.gz && \
	wget -c ftp://ftp.isc.org/isc/bind9/${BINDVER}/bind-${BINDVER}.tar.gz.asc && \
	tar -xzf bind-${BINDVER}.tar.gz && cd bind-${BINDVER} && \
	./configure --prefix=/usr --with-openssl --enable-threads --with-libxml2 --with-json --sysconfdir /etc/bind && \
	make && make install && chown bind:bind /etc/bind/named.conf && chown -R bind:bind /var/cache/bind && service bind9 restart
	fi