#!/bin/bash

echo "INSTALLING REMOTE ACCESS TOOLS..."
sudo apt install -y --ignore-missing ssh openssh-server openssl xrdp cockpit cockpit-networkmanager cockpit-storaged cockpit-files cockpit-packagekit ufw fail2ban portsentry libapache2-mod-security2 remmina avahi-daemon #cockpit-pcp cockpit-sosreport cockpit-podman cockpit-machines #guacamole
sudo apt install -y --ignore-missing snort
sudo apt install -y --ignore-missing suricata suricata-update
sudo suricata-update
wget https://servzero.net/arc/tools/f2b/jail.local; sudo mv jail.local /etc/fail2ban/
wget https://servzero.net/arc/tools/f2b/ufw.f2b; sudo mv ufw.f2b ufw.f2b.conf; sudo mv ufw.f2b.conf /etc/fail2ban/filter.d/
sudo cp /etc/modsecurity/modsecurity.conf-recommended /etc/modsecurity/modsecurity.conf; sudo sh -c 'echo "SecRuleEngine DetectionOnly" >> /etc/modsecurity/modsecurity.conf'
sudo ufw allow ssh
sudo ufw allow http
sudo ufw allow https
sudo ufw allow 9090
sudo ufw enable
echo "DONE."
read -n1