nuy

MiracleLinuxMIRACLE LINUX is a Japanese Linux distribution provided by Cybertrust Corporation.Miracle Linux (now Cybertrust), established by Oracle Japan and NEC in June 2000, began development of Oracle Database for business and enterprise use with the aim of ensuring stable operation.It has been based on RHEL since Version 2.0 released in May 2001, and has been a full RHEL clone since Version 6.0 released in January 2012, with the latest version being 8.4 as of December 2021.MIRACLE LINUX, the famous domestic RHEL clone, was initially a commercial OS with a paid license, but following the termination of CnetOS8, it was announced that it would be offered free of charge starting with the latest 8.4.The current distribution is Red Hat Enterprise Linux (RHEL) 9 compatible with the latest version 9.0 released on November 1, 2022.Like RHEL9, MIRACLE LINUX 9 is based on Linux kernel 5.14. In addition to version upgrades to major packages such as OpenSSL, MIRACLE LINUX 9 offers mainly enhanced security-related features such as improved SELinux performance and secure boot support.Package updates and security patches will be provided free of charge until November 2032.

Integrated Monitoring Software "MIRACLE ZBX"MIRACLE ZBX, enterprise-oriented integrated system monitoring software based on the open source Zabbix, with enhancements and modifications provided by Cybertrust. It implements security enhancements that comply with some requirements of the National Institute of Standards and Technology (NIST) security guidelines "NIST SP800-171" and "NIST SP800-53", which are becoming an international standard for security standards.SELinux must be set to permissive

FTP Server Installation1. Install vsftpdDownload vsftpd-3.0.3-33.el8.x86_64.rpm from the download site to /usr/local/src/.# cd /usr/local/src/# wget ftp://ftp.pbone.net/mirror/ftp.centos.org/8-stream/AppStream/x86_64/os/Packages/vsftpd-3.0.3-33.el8.x86_64.rpm# rpm -ivh vsftpd-3.0.3-33.el8.x86_64.rpm2.Configuring vsftpd

1.Setting up SSH remote connectionSSH is a service to connect to a server remotely, and is basically running right after the OS installation, but the default settings are somewhat insecure.In this section, we will configure the settings to change the default settings and increase the security of the ssh connection.1.1 Change the configuration file of SSH service.2.How to set up a firewall (firewalld)In MiracleLinux, the firewall is set to firewalld by default, which is enabled when the OS is installed.To briefly explain firewalld, when setting up a communication control policy, communication permission/blocking rules are applied to predefined zones, and the zones are assigned to each NIC (network adapter).3.Synchronize the server time with Japan Standard Time.① Change the configuration file as follows

Install  Mysql8＃ dnf module -y install mysql:8.0＃ vi /etc/my.cnf.d/charset.cnfCreate a new "charset.cnf" with the following contents[mysqld]character-set-server = utf8mb4[client]default-character-set = utf8mb4

Public key1.Create a key pair with RSABecome an ordinary user and create a key pair with RSA2.Private Key Login Settings3.Change to login only with private key# vi /etc/ssh/sshd_config●Per line 694.Creating a private key using PuTTYgenLaunch Winscp and start puttygen.exe from Tools

Installa apache2 and virtual host configuration1.Install apa...

Install clamav (anti-virus software)1.Install Clam AntiVirus...

1.Obtain SSL Certificate ( Let's Encrypt )Install the latest open ssl# dnf install openssl-devel

Web configuration file (under html) backup①Create a backup script file under html# cd /var/www/system/# vi html_backup.shContents of html_backup.sh#!/bin/bash#Date processing (save 10 days)TODAY=`/bin/date +%Y%m%d`DAY_AGO=`/bin/date --date '10day ago' +%Y%m%d`