nuy

1.Obtain an SSL Certificate (Let's Encrypt)PreparationEnable mod_ssl1.1Certificate Installation2. Web server SSL conversion2.1 SSL Configuration

1.SNORT2Snort is a network-based IDS (Intrusion Detection System). It captures packets flowing over a network and detects suspicious packets.The source file is used directly from https://snort.org/.1.1 Advance preparationInstall required libraries

1. TripwireTripwire is a host-based intrusion detection system (IDS) that monitors files and directories and notifies you when changes are made.1.1 Install and configuration①Install2. Logwatch①Logwatch install

1. Server Backup1.1 Backup under /srv/www/①Create backup script file1.2. MariaDB Database Backup①Create backup script file2.Data Restore2.1 Restore backup files under www① Save backup files used for restore to the "/ (root)" directory of the server2.2 Restore MariaDB data① Save the database backup file to any directoryExtract data

OpenSUSEOpenSUSE is a Linux distribution that is community-based, free to the public, and active in adopting the latest technologies. It is sponsored by Novell and developed by the community. Originally, SUSE Linux was developed by SUSE, but after the acquisition of SUSE by Novell in 2003, Novell shifted the development structure to community-based by the OpenSUSE project as a distribution aiming for 100% open source, and changed the name from SUSE Linux to OpenSUSE Linux The name was changed to the current name.openSUSE is available as Leap, the stable version, and Tumbleweed, which uses a rolling-release model and is also the basis for the paid-for version of SUSE Linux Enterprise.Leap 15.6 will be released on June 12, 2024 and will provide up-to-date support for the latest hardware with improved YaST functionality and improved installers

1. Setting up remote connection by SSHSSH is a service for connecting remotely to a server and is basically running immediately after the OS is installed, but the default settings are somewhat insecure.Here we will configure the default settings to increase the security of ssh connections.1.1 SSH service configuration file changesModify the configuration file to change the SSH service settings.The SSH service configuration file is "/etc/ssh/sshd_config".

Create a private key for the client and a public key for the server to allow login with key pair authentication1.key pair creationCreate a public/private key pair for a user connecting to the Linux server using OpenSSH.Use ssh-keygen to create key pairs.Creation of public/private key pairs is performed with remote login user privileges.If you do not specify the creation destination and file name, id_ed25519 and id_ed25519.pub will be created in /home/huong/.ssh/.On the way, also enter the password for the key.

1. Vsftpd1.1vsftpd InstallIt is already installed at the time of openSUSE installation.If not, you can install it with the following command

1. Web Server (Apache)1.1 apache2 Install2. Apache2 : Using Perl Scripts Configure Perl scripts to be used as CGI3. Apache2 : Virtual Host SettingsConfigure both domains sample1.korodes.com sample2.korodes.com to be displayed on one server4. Apache2 : Using PHP ScriptsInstall and configure PHP so that PHP scripts are available

1. Clamav ( anti-virus software )1.1 Clamav Install2.  Mail server Install2.1 Postfix Install①Install Postfix and build an SMTP server3. Mail Server: Postfix + Clamav + AmavisdSet up Postfix and Clamav to work together to scan incoming and outgoing mail in real time.

1. MariaDB InstallUpdate the server package1.2 phpMyAdmin InstallInstalled phpMyAdmin and configured it to operate MariaDB via web browser2. Wordpress Install2.1 Required library installation

1.Obtain an SSL Certificate (Let's Encrypt)PreparationEnable mod_ssl1.1Certificate Installation2. Web server SSL conversion2.1 SSL Configuration

SuricataSURICATA IDS/IPS is an open source IDS that monitors communications on the network and detects suspicious traffic.The basic mechanism is signature-based, so it can detect predefined unauthorized communications. Suricata is also characterized by its ability to provide protection as well as detection.SNORT2Snort is a network-based IDS (Intrusion Detection System). It captures packets flowing over a network and detects suspicious packets.The source file is used directly from https://snort.org/.

1. TripwireTripwire is a host-based intrusion detection system (IDS) that monitors files and directories and notifies you when changes are made.1.1 Install and configuration①Install2. Logwatch①Logwatch install