業務用エアコン関連の技術情報、エラーコード、環境問題対策に関する別サイト「エアコンの安全な修理・適切なフロン回収」

nuy

Ubuntu24.04_en

Ubuntu Server24.04 : Tripwire , disk usage check script , Logwatch

TripwireImplement a system to detect file tampering on Linux servers by crackers.This time, Tripwire, a host-based IDS (IDS=Intrusion Detection System), will be installed as the file tampering detection system.Tripwire detects file additions/changes/deletions by creating a database of file status at the time of installation and comparing the database with the current status of the file.1. Installation and configuration.Introduce disk usage check script1. Script CreationLog analysis tool Logwatch installed1.  Install logwatch
2024.05.05
Ubuntu24.04_en
Ubuntu24.04_en

Ubuntu Server24.04 : MariaDB , WordPress Install

1. MariaDB Install1. 1Install1.2. MariaDB Server Security SettingsRun the tool mysql_secure_installation to configure security-related settings for the MariaDB server.Once executed, the tool will start several security settings in the form of questions. First, you will be asked if you want to use a plugin for password validation, as shown below.Password validation is a plugin that checks the strength of a user's password for MariaDB and restricts it to accepting only passwords that are secure enough. For example, it must be at least as many characters long as the user's password and must contain at least one symbol and one number. You can set this requirement by asking the following questionType y and press Enter if you like2.WordPress Install2.1 Create database
2024.05.02
Ubuntu24.04_en
Ubuntu24.04_en

Ubuntu Server24.04 : Web server, Mail server SSL conversion (Let's Encrypt)

1. Obtain a certificate(Let's Encrypt)1.1 advance preparation1.Enable mod_ssl# a2enmod ssl2.Package management system Snappy installedLet's Encrypt's SSL certificate issuing tool "certbot" is recommended to be installed using "snap" after 2021, so install Snapd first.2. SSL/TLS (Let's Encrypt) configuration for Apache2①Edit Apache2 SSL-related configuration fileshoge.com-ssl in hoge.com-ssl.conf is an arbitrary name3. SSL/TLS (Let's Encrypt) settings on the mail server3.1 Obtaining a certificate for the mail serverObtain a certificate for the mail server, but it cannot be obtained in the same way as above, so the following with the "--standalone" option fails.
2024.05.02
Ubuntu24.04_en
Ubuntu24.04_en

Ubuntu Server24.04 : SSH , Firewall(UFW)

1. SSH Service Security SettingsThe SSH service allows the root user to log in by default, and since the root user already knows the user name and can log in to the server with administrative privileges once the password is known, we will deny this setting.1.1 Creating a General UserIf you have created a general user when installing Ubuntu 24.04, this procedure is not necessary.If you have already created a user at the time of OS installation, this procedure is not necessary. If you have already created a user during OS installation, this procedure is not necessary.If you have already created a user during OS installation, this procedure is not necessary. The "-m" option creates a home directory and the "-p" option specifies the password.For example, to set "ubuntuuser" as the user account name and "123456" as the password, execute as follows
2024.04.30
Ubuntu24.04_en
Ubuntu24.04_en

Ubuntu Server24.04 : Initial settings after OS installation

1. Set root password and use SU commandIn the default configuration of Ubuntu, the root user is unavailable because no password has been set.By setting a password for the root user, transitions using the traditional [su] command will be possible.3. Make locate command availableThe find command is often used to search for specific files throughout the Linux system, but find is somewhat confusing in terms of specifying options.The locate command can extract all files with a specified filename.4. vim editor settingsUbuntu has vim installed by default4.1 Change vim settingsThere may be cases where you do not want to allow vim settings for all users. In such cases, a ".vimrc" file can be created in each user's home directory to change the vim environment for each user.In this case, we will create a ".vimrc" file in the root user's home directory "/root/" and apply it to all users.
2024.04.30
Ubuntu24.04_en
Slackware 15.0_en

Slackware15.0 : SSH connect with public key

Creation of public and private key pairsCreate a public/private key pair for a user connecting to a Linux server using OpenSSH.Use ssh-keygen to create the key pair.The creation of a public/private key pair is performed with remote login user privileges.If you do not specify the destination and file name, id_ed25519 and id_ed25519.pub will be created in /home/(user name)/.ssh/. On the way, enter the password for the key.
2023.09.26
Slackware 15.0_en
Slackware 15.0_en

Slackware15.0 : Various settings after OS installation #I

Adding General UsersRoot is a privileged user and should not normally be logged in as root.You must create your own account separate from root. Create a login user with the following command# useradd huong# passwd huongNew password:Retype new password:passwd: password updated successfullyCreate user's home directorySetting up the use of the sudo commandTo grant sudo privileges to the created general user, use the command "visudo" as root and edit the file "sudoers".This time, "users belonging to the wheel group can use it; they will not be asked for their password when sudoing." Use the
2023.09.23
Slackware 15.0_en
Slackware 15.0_en

Slackware15.0 : Various settings during installation

Creating BootstickTo create an emergency Bootstick, insert a USB stick, select Create, and press Enter.Select Skip since you will not create it this time.Install Boot ManagerELILO InstallationIf installed on a machine with a UEFI boot PC or motherboard, the following screen will appearPCs running on UEFI firmware will not work with LILO, so proceed to install ELILO designed for EFI/UEFI systemsSelect skip and press Enter to continue
2023.09.22
Slackware 15.0_en
Slackware 15.0_en

Slackware 15.0 : Disk partitioning

PartitioningFirst, basic partitioning divides the disk space into two parts: / (root) and a partition for swap. The partition for swap must be prepared.1.Using gdisk commandsWhen gdisk is invoked, the following is displayed.gdisk always requires a device file name as an argument
2023.09.21
Slackware 15.0_en
Slackware 15.0_en

Slackware15.0 : OS image download, boot

About SlackwareSlackware is one of the Linux distributions.However, in the early days of Linux, it was one of the two major distributions so commonly used that it was said that Linux was either Slackware or Red Hat Linux.Launched in 1992, Slackware celebrates its 31st anniversary this year.The latest version is 15.0, released on February 4, 2022.Forte・High stability・Secure with few bugs and security holes・It is capable of high operating speeds. Slackware is fast because it installs only the components that users need.・Highly compliant with standards and suitable for servers・Slackware is simple to use, and if you can master it, you can create your own environment.・SlackBuilds, which automates the installation of apps, is available, and the SlackBuilds site has a database of scripts for creating various packages on your own. Furthermore, if you install sbopkg, you can browse the Slackbuilds database with a single command and automatically download, generate, and install packages.・Slackware allows you to use emacs, vim, and gimp, which are standard Linux applications.
2023.09.21
Slackware 15.0_en
FreeBSD13.2_en

FreeBSD13.2 : WEB Server(Apache2) , MySQL8

1. Apache21.1 Install2. MySQL InstallInstall MySQL before installing PHP3. apache24 - PHP 8.03.1 PHP Install
2023.07.28
FreeBSD13.2_en
FreeBSD13.3_en

FreeBSD13.3 : WEB Server(Apache2) , MySQL8

1. Apache21.1 Install# cd /usr/ports/www/apache24# make configThere are many options, but we will proceed with the defaults2. MySQL InstallInstall MySQL before installing PHP# pkg install -y mysql80-client mysql80-server3. apache24 - PHP 8.03.1 PHP Install# cd /usr/ports/lang/php83# make config
2024.04.08
FreeBSD13.3_en
FreeBSD13.3_en

FreeBSD13.3 : Initial setup (Vim , SSH , firewall, NTP server)

1. Vim InstallInstall Vim, which you are familiar with as an editor, as follows# pkg install -y vim2. SSH Connection Security Measures2.1 SSH port changed, root user login disabled3. Firewall SettingsFreeBSD has the following firewalls・pf・ipfw・ipfIn this case, we will use ipfw to configure the firewall4. NTP Server Settings4.1 Rewrite the referenced NTP server in /etc/ntp.conf. Add an appropriate server in Japan.
2024.04.07
FreeBSD13.3_en
FreeBSD13.3_en

FreeBSD13.3 : Initial setting (Update binaries, Packages and Ports Collection)

After installing FreeBSD, we will start building the server, but it is difficult to work on the console screen, so we will change the SSH connection settings for now in order to operate the server from Windows using TeraTerm or other software.Enter the following command on the FreeBSD console screen# vi /etc/ssh/sshd_configLine 61.#PasswordAuthentication no → PasswordAuthentication yes Make the changes and reflect the settings with the following command# service sshd restartNow you can connect via SSH from TeraTerm on Windows (see the default settings for other operating systems for settings in TeraTerm).
2024.04.07
FreeBSD13.3_en
FreeBSD14_en

FreeBSD14 : Web Server SSL、Webmin

1. Web server (Apache) SSL conversionThe ports can be further updated with FreeBSD's periodic job settings.Install certbot via pkg, and include a plugin for apache to update in webroot mode.1.1 Installing the Certbot tool for Let's EncryptRun the following command to install the Certbot package and the Apache HTTP plug-in
2023.11.18
FreeBSD14_en
Next page