18 lines
976 B
Plaintext
18 lines
976 B
Plaintext
|
#!/bin/bash
|
||
|
|
|
||
|
|
echo "INSTALLING REMOTE ACCESS TOOLS..."
|
||
|
|
sudo apt install -y --ignore-missing ssh openssh-server openssl xrdp cockpit cockpit-networkmanager cockpit-storaged cockpit-files cockpit-packagekit ufw fail2ban portsentry libapache2-mod-security2 remmina avahi-daemon #cockpit-pcp cockpit-sosreport cockpit-podman cockpit-machines #guacamole
|
||
|
|
sudo apt install -y --ignore-missing snort
|
||
|
|
sudo apt install -y --ignore-missing suricata suricata-update
|
||
|
|
sudo suricata-update
|
||
|
|
wget https://servzero.net/arc/tools/f2b/jail.local; sudo mv jail.local /etc/fail2ban/
|
||
|
|
wget https://servzero.net/arc/tools/f2b/ufw.f2b; sudo mv ufw.f2b ufw.f2b.conf; sudo mv ufw.f2b.conf /etc/fail2ban/filter.d/
|
||
|
|
sudo cp /etc/modsecurity/modsecurity.conf-recommended /etc/modsecurity/modsecurity.conf; sudo sh -c 'echo "SecRuleEngine DetectionOnly" >> /etc/modsecurity/modsecurity.conf'
|
||
|
|
sudo ufw allow ssh
|
||
|
|
sudo ufw allow http
|
||
|
|
sudo ufw allow https
|
||
|
|
sudo ufw allow 9090
|
||
|
|
sudo ufw enable
|
||
|
|
echo "DONE."
|
||
|
|
read -n1
|