2023-11

1.Website data backup1-1.Backup under /var/www/html①Create backup script file# cd /var/www/system# vi backup_html.sh2.MySQL database backup①Create backup script file# cd /var/www/system# vi db_my_backup.sh3.Restore backup files under html①Store HTML backup files in "/ (root)" directory4.Restore Mysql backup file①Save the database backup file to any directory and（In the example, the directory is "/var/www/backup/db_bak".）Extracting data

Tripwire1.Install# dnf install -y tripwire2..Passphrase settingSet site passphrase and local passphraseLogwatch①Install# dnf install logwatch -y②Edit configuration fileIntroduce disk usage check script3.1  Script Creation# cd /var/www/system# vi disk_capacity_check.shContents of disk_capacity_check.sh

Snort3+Snortsnarf InstallImplement Snort, a network-based IDS, in the unauthorized access detection system.SnortSnarf will also be installed to enable the unauthorized access logs extracted by Snort to be checked on a Web browser.AlmaLinux8 does not have a Snort3 repository, so build, compile and install Snort3 from source codeAdvance preparation①Install required build tools and librariesInstall the EPEL repository and enable the Powertools repository.chkrootkit①Download and install chkrootkit# cd /usr/local/src# wget ftp://ftp.chkrootkit.org/pub/seg/pac/chkrootkit.tar.gz# tar xvf chkrootkit.tar.gz➁Create /root/bin directory and move chkrootkit command to that directory# mkdir -p /root/bin# mv chkrootkit-0.58b/chkrootkit /root/bin➂Check chkrootkit.

Mysql8 Install＃dnf module -y install mysql:8.0charset.cnf   Create a new one with the following contentsWordPress Install1. Create database for Word PressAs an example, assume database [wp_db] database user [wp_user] password [?W123456]

1.SSL Certificate Acquisition ( Let's Encrypt )Install the latest open ssl# dnf install openssl-devel1.1 advance preparation1.Package management system Snappy installationSince the SSL certificate issuing tool "certbot" of Let's Encrypt is recommended to be installed using "snap" after 2021, install Snapd first.(Can also be installed the traditional way with dnf or yum)2. Converting Apache to httpsInstall the following# dnf -y install mod_ssl3. SSL/TLS (Let's Encrypt) settings on the mail server3.1 Obtaining a certificate for the mail serverObtain a certificate for the mail server, but it cannot be obtained in the same way as above, so the following with the "--standalone" option fails.