nuy

1. MariaDB Install 1. 1Install 1.2. MariaDB Server Security Settings Run the tool mysql_secure_installation to configure security-related settings for the MariaDB server. Once executed, the tool will start several security settings in the form of questions. First, you will be asked if you want to use a plugin for password validation, as shown below. Password validation is a plugin that checks the strength of a user's password for MariaDB and restricts it to accepting only passwords that are secure enough. For example, it must be at least as many characters long as the user's password and must contain at least one symbol and one number. You can set this requirement by asking the following question Type y and press Enter if you like 2.WordPress Install 2.1 Create database

1.SNORT2 Install Snort is an open source network intrusion detection system that can perform real-time traffic analysis and packet logging on IP networks. It can perform "protocol analysis," "content search," and "matching," and can be used to detect a variety of attacks, including buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, semantic URL attacks, and server message block probes. The SNORT3 can be used to detect a wide variety of attacks, including To install SNORT3, see 2.Tripwire Install Implement a system to detect file tampering on Linux servers by crackers. This time, Tripwire, a host-based IDS (IDS=Intrusion Detection System), will be installed as the file tampering detection system. Tripwire detects file additions/changes/deletions by creating a database of file status at the time of installation and comparing the database with the current status of the file.

1. Introduce disk usage check script 1.1 Script Creation 2. Log analysis tool Logwatch installed 2.1 Install logwatch

1. System Backup 1.1 Backup under /var/www/html ①Create /var/www/system directory 1.2 MariaDB database backup ①Create db_backup.sh script under /var/www/system 2. System Restore 2.1 Restore backup files under HTML ①Store HTML backup files used for backup in the "/ (root)" directory Select the backup file with the latest timestamp (Example: www_back_20231009.tar.gz) 2.2 Restore MariaDB database ①Save DB backup file to any directory and decompress data

1. System Backup 1.1 Backup under /var/www/html ①Create /var/www/system directory # mkdir -p /var/www/system ②/Create backup_all.sh script under var/www/system # vi /var/www/system/backup_all.sh backup_all.sh script contents

1.SNORT Install Snort is an open source network intrusion detection system capable of performing real-time traffic analysis and packet logging on IP networks. It can perform "protocol analysis," "content search," and "matching," and can be used to detect a variety of attacks, including "buffer overflows," "stealth port scans," "CGI attacks," "SMB probes," "OS fingerprinting attempts," "semantic URL attacks," and "server message block probes.

Snort3 Install The default universe repository for Ubuntu22.04,23.04 is snort2.9 as shown below, so build, compile and install Snort3 from the source code

1. Certificate Acquisition (Let's Encrypt) 1.1 advance preparation ①Enable mod_ssl # a2enmod ssl ②Install client tool to obtain Let's Encrypt certificate # apt -y install certbot ③Obtaining Certificates It is assumed that a web server such as Apache httpd or Nginx is running. If the Web server is not running on the server, perform step ④. It is also assumed that the server on which the work is to be performed (the server with the FQDN from which the certificate is to be obtained) is accessible from the Internet at port 80.