Ubuntu25.04_en Ubuntu Server25.04 : Suricata , SNORT3
SuricataSURICATA IDS/IPS is an open source IDS that monitors...
nuy
Ubuntu25.04_en 
Ubuntu24.04_en Ubuntu Server24.04 : Suricata , SNORT3
SuricataSURICATA IDS/IPS is an open source IDS that monitors communications on the network and detects suspicious traffic. Its basic mechanism is signature-based, so it can detect predefined unauthorized communications. Suricata is also characterized by its ability to provide protection as well as detection.1.Suricata Install①Install required packagesSnort31.Install required packages# apt install build-essential libpcap-dev libpcre3-dev libnet1-dev zlib1g-dev luajit hwloc libdumbnet-dev bison flex liblzma-dev openssl libssl-dev pkg-config libhwloc-dev cmake cpputest libsqlite3-dev uuid-dev libcmocka-dev libnetfilter-queue-dev libmnl-dev autotools-dev libluajit-5.1-dev libunwind-dev libfl-dev -y2. Install DAQ library
Ubuntu24.04_en Ubuntu Server24.04 : Anti-Virus(Clamav) , Mail Server
1.Anti-virus software Clamav installed1.1 InstallThe clamav-...
Ubuntu24.04_en Ubuntu Server24.04 : WEB Server(Apache)
Apache2 InstallAllow http:80 port and https:443 port in UFW first.3 Apache2 : Using Perl ScriptsEnable CGI to make Perl scripts available①Perl Install4 Apache2 : Using PHP Scripts①PHP Install5 Apache2 : Virtual Host Settings①Copy the default configuration file (file name is arbitrary, in this case vhost-yourdomain.conf as an example) and configure the virtual host6. Digest authentication with Apache2Since Basic Authentication, a well-known authentication authentication method for http, transmits authentication information in plain text, there is a risk of ID and password leakage if the packet is intercepted.On the other hand, Digest Authentication encrypts the authentication information and sends it in encrypted form, so there is almost no risk of information leakage.
Ubuntu24.04_en Ubuntu Server24.04 : SSH connection with authentication using public key cryptography
SSH connection with authentication using public key cryptography Creation of public and private key pairsCreate a public/private key pair for a user connecting to the Linux server using OpenSSH.Use ssh-keygen to create key pairs.Creation of public/private key pairs is performed with remote login user privileges。If you do not specify the destination and file name, id_ed25519 and id_ed25519.pub will be created in /home/(user name)/.ssh/. On the way, enter the password for the key.
fedora41_en Fedora41 : System Backup and Restore
1.Website data backupBackup under /var/www/html①Create backup script file2.MySQL database backup①Create backup script file3.Web configuration file (under html) restored① Copy the HTML backup file to the "/ (root)" directory of the server to be used for restoration4.Restore MySQL data①Save database backup file to any directory
fedora41_en Fedora41 : Clamav , Mail Server
1. Clamav ( anti-virus software )1.1 Clam AntiVirus Install# dnf -y install clamav clamd clamav-update1.2 Edit Clam AntiVirus configuration file2. Mail server(Postfix)2.1 Postfix InstallInstall Postfix and build an SMTP server# dnf -y install postfixCheck if Postfix is installed3. Mail server(Dovecot)3.1 Dovecot Install# dnf -y install dovecot4.Create mail user and check operation4.1 advance preparation①Pretreatment for new usersWhen a new user is added, set up the system to automatically send and receive e-mail.Mail Server : Postfix + Clamav + clamav-milter+SpamAssassin1.Real-time scanning of e-mails①clamav-milter InstallVirus checks are performed on the mail server side using Clam AntiVirus.The mail server and Clam AntiVirus are linked using clamav-milter.
Archlinux_en ArchLinux : MariaDB , WprdPress
1. MariaDB1.1 MariaDB Installation①Install# pacman -S mariadb➁Configure MariaDB# mysql_install_db --user=mysql --basedir=/usr --datadir=/var/lib/mysql1.2 phpMyAdmin InstallationInstalled phpMyAdmin and configured it to operate MariaDB via web browser①Install2. Wordpress Install2.1 Required library installation# pacman -S php-gd2.2 Edit php.ini
Archlinux_en ArchLinux : Web server SSL ( Let's Encrypt )
1.Obtain SSL Certificate ( Let's Encrypt )Install the latest open ssl# pacman -S openssl1.1 advance preparation1.Package management system Snappy installation
Archlinux_en ArchLinux : Clamav ( Anti-virus software ) , Mail server
1. Install clamav ( anti-virus software )1.1 Clam AntiVirus Installation# pacman -S clamav1.2 Virus definition file update settings# vim /etc/clamav/freshclam.confLine 76Insert "#" at the beginning of the line "DatabaseMirror database.clamav.net",Add "DatabaseMirror db.jp.clamav.net#DatabaseMirror database.clamav.netDatabaseMirror db.jp.clamav.net2. Mail Server (Postfix)2.1 Installing PostfixInstall Postfix and build an SMTP server# pacman -S postfix3. Mail Server(Dovecot)3.1 Dovecot Installation# pacman -S dovecot3.2 Edit dovecot.conf fileMail Server : Postfix + Clamav + clamav-milter+SpamAssassin1. Real-time scanning of email➁clamav-milter configuration
Archlinux_en ArchLinux : WEB Server(Apache2)
1. Apache2 installation and virtual host configuration1.1 Apache2 Installation①Install httpd# pacman -S apacheVersion Check# httpd -vServer version: Apache/2.4.58 (Unix)Server built: Oct 25 2023 18:28:291.2 Apache Configuration①Edit httpd.conf file2. Confirmation of CGI Script Usage①CGI availability check3. PHP installation and configuration3.1 PHP8 installation①Install# pacman -S php php-apache php-fpm②Version Check
Archlinux_en ArchLinux : FTP Server , File Server (SAMBA)
1.FTP Server1. 1 vsftpd installation# pacman -S vsftpd1.2 vsftpd configuration①Editing Configuration Files2. vsftpd SSL/TLSConfigure Vsftpd to use SSL/TLS2.1 Create self-signed certificatesThis step is not necessary if you are using a trusted, legitimate certificate such as Let's Encrypt.The information you enter is meaningless and will only be used for encryption.
Archlinux_en ArchLinux : SSH , Firewall (ufw)
1. SSH Service Security SettingsChange the configuration file for the SSH service, which is "/etc/ssh/sshd_config".In this case, we will change the default SSH port 22 to 2244.Change /etc/ssh/sshd_config as follows2. Firewall (ufw)2.1 Install# pacman -S ufw# systemctl status ufw○ ufw.service - CLI Netfilter Manager Loaded: loaded (/usr/lib/systemd/system/ufw.service; disabled; preset: dis> Active: inactive (dead)You can confirm that the ufw service is stopped by displaying "Active: inactive (dead)"
Archlinux_en ArchLinux : Initial settings after OS installation
1. User Account CreationAdd user (huong) to wheel group and create home directory# useradd -m -G wheel huongUser (huong) password setting# passwd huongNew password:Retype new password:passwd: password updated successfullyGrant sudo privileges to the added huong user2 . Configuration of the text editor vimVim was already installed during the Arch Linux installation, so this is just a configuration file.If you are installing vim3. Network Connections■ If using systemd-resolved, create /etc/resolv.conf as a link file# ln -sf /run/systemd/resolve/stub-resolv.conf /etc/resolv.conf■ If systemd-resolved is not used
Archlinux_en ArchLinux : Installation #4 How to install with btrfs file system
For installation with ext4 file system, please refer to the following pagehttps://korodes.com/arch_en_02/https://korodes.com/arch_en_03/1.Creating partitions1.1 Confirmation of installation deviceCheck the target device with the lsblk command
