業務用エアコン関連の技術情報、エラーコード、環境問題対策に関する別サイト「エアコンの安全な修理・適切なフロン回収」

nuy

Ubuntu23.04_en

Ubuntu Server23.04 : SSH , Firewall configuration

1. SSH Service Security SettingsThe SSH service allows the root user to log in by default, and since the root user already knows the user name and can log in to the server with administrative privileges once the password is known, we will deny this setting.1.1 Creating a General UserIf you have created a general user when installing Ubuntu 23, this procedure is not necessary.If you have already created a user at the time of OS installation, this procedure is not necessary. If you have already created a user during OS installation, this procedure is not necessary.2. Firewall SettingsUbuntu often uses software called "ufw" to configure the firewallUFW is installed when the OS is installed.Here are the steps to configure minimal filter settings after installation.
Ubuntu23.04_en

Ubuntu Server23.04 : Initial setup after OS installation

1. Set root password and use SU commandIn the default configuration of Ubuntu, the root user is unavailable because no password has been set.By setting a password for the root user, transitions using the traditional [su] command will be possible.3. Make locate command availableThe find command is often used to search for specific files throughout the Linux system, but find is somewhat confusing in terms of specifying options.The locate command can extract all files with a specified filename.5. Network Settings5.1 Host Name SettingsThis procedure is not necessary if you have already set the hostname at the time of Ubuntu installation and wish to use the hostname as it is.To change the hostname, use the "hostnamectl set-hostname" command.As an example, we set "ubuntu-10" as the hostname.5.2 Set IP address to network interfaceIf a fixed IP address was specified during Ubuntu installation, this section is not necessary.To change the IP address, change the " /etc/netplan/00-installer-config.yaml" file, and then restart the network interface (enp0s3 in this environment).The network interface name will change depending on the environment in which the setup was performed, so check the interface name first.
Ubuntu23.04_en

Ubuntu Server23.04 : OS Install

Ubuntu Server 23.04 Download Installation ImageThe installation media for Ubuntu Server can be downloaded from the official site on the Internet. As long as you have a fast connection, you can download the OS itself in about 2 to 3 minutes. You will need to create an installation CD/DVD from the downloaded iso file. (approx. 2.5G)The iso file itself can be used for installation on a virtual machine using Vmware or other software.The iso file can be downloaded from the "Official Ubuntu Download Site".Ubuntu 23.04 (released on April 20, 2023) is supported until January 2024, so it is safer to install the LTS version of Ubuntu 22.04 in the production environment.
Ubuntu24.04_en

Ubuntu Server24.04 : System Backup & Restore

1. System Backup1.1 Backup under /var/www/html①Create /var/www/system directory1.2 MariaDB database backup①Create db_backup.sh script under /var/www/system2. System Restore2.1 Restore backup files under HTML①Store HTML backup files used for backup in the "/ (root)" directorySelect the backup file with the latest timestamp(Example: www_back_20231009.tar.gz)2.2 Restore MariaDB database①Save DB backup file to any directory and decompress data
Ubuntu24.04_en

Ubuntu Server24.04 : Tripwire , disk usage check script , Logwatch

TripwireImplement a system to detect file tampering on Linux servers by crackers.This time, Tripwire, a host-based IDS (IDS=Intrusion Detection System), will be installed as the file tampering detection system.Tripwire detects file additions/changes/deletions by creating a database of file status at the time of installation and comparing the database with the current status of the file.1. Installation and configuration.Introduce disk usage check script1. Script CreationLog analysis tool Logwatch installed1.  Install logwatch
Ubuntu24.04_en

Ubuntu Server24.04 : MariaDB , WordPress Install

1. MariaDB Install1. 1Install1.2. MariaDB Server Security SettingsRun the tool mysql_secure_installation to configure security-related settings for the MariaDB server.Once executed, the tool will start several security settings in the form of questions. First, you will be asked if you want to use a plugin for password validation, as shown below.Password validation is a plugin that checks the strength of a user's password for MariaDB and restricts it to accepting only passwords that are secure enough. For example, it must be at least as many characters long as the user's password and must contain at least one symbol and one number. You can set this requirement by asking the following questionType y and press Enter if you like2.WordPress Install2.1 Create database
Ubuntu24.04_en

Ubuntu Server24.04 : Web server, Mail server SSL conversion (Let's Encrypt)

1. Obtain a certificate(Let's Encrypt)1.1 advance preparation1.Enable mod_ssl# a2enmod ssl2.Package management system Snappy installedLet's Encrypt's SSL certificate issuing tool "certbot" is recommended to be installed using "snap" after 2021, so install Snapd first.2. SSL/TLS (Let's Encrypt) configuration for Apache2①Edit Apache2 SSL-related configuration fileshoge.com-ssl in hoge.com-ssl.conf is an arbitrary name3. SSL/TLS (Let's Encrypt) settings on the mail server3.1 Obtaining a certificate for the mail serverObtain a certificate for the mail server, but it cannot be obtained in the same way as above, so the following with the "--standalone" option fails.
Ubuntu24.04_en

Ubuntu Server24.04 : SSH , Firewall(UFW)

1. SSH Service Security SettingsThe SSH service allows the root user to log in by default, and since the root user already knows the user name and can log in to the server with administrative privileges once the password is known, we will deny this setting.1.1 Creating a General UserIf you have created a general user when installing Ubuntu 24.04, this procedure is not necessary.If you have already created a user at the time of OS installation, this procedure is not necessary. If you have already created a user during OS installation, this procedure is not necessary.If you have already created a user during OS installation, this procedure is not necessary. The "-m" option creates a home directory and the "-p" option specifies the password.For example, to set "ubuntuuser" as the user account name and "123456" as the password, execute as follows
Ubuntu24.04_en

Ubuntu Server24.04 : Initial settings after OS installation

1. Set root password and use SU commandIn the default configuration of Ubuntu, the root user is unavailable because no password has been set.By setting a password for the root user, transitions using the traditional [su] command will be possible.3. Make locate command availableThe find command is often used to search for specific files throughout the Linux system, but find is somewhat confusing in terms of specifying options.The locate command can extract all files with a specified filename.4. vim editor settingsUbuntu has vim installed by default4.1 Change vim settingsThere may be cases where you do not want to allow vim settings for all users. In such cases, a ".vimrc" file can be created in each user's home directory to change the vim environment for each user.In this case, we will create a ".vimrc" file in the root user's home directory "/root/" and apply it to all users.
Slackware 15.0_en

Slackware15.0 : Various settings during installation

Creating BootstickTo create an emergency Bootstick, insert a USB stick, select Create, and press Enter.Select Skip since you will not create it this time.Install Boot ManagerELILO InstallationIf installed on a machine with a UEFI boot PC or motherboard, the following screen will appearPCs running on UEFI firmware will not work with LILO, so proceed to install ELILO designed for EFI/UEFI systemsSelect skip and press Enter to continue
Slackware 15.0_en

Slackware 15.0 : Disk partitioning

PartitioningFirst, basic partitioning divides the disk space into two parts: / (root) and a partition for swap. The partition for swap must be prepared.1.Using gdisk commandsWhen gdisk is invoked, the following is displayed.gdisk always requires a device file name as an argument
FreeBSD13.2_en

FreeBSD13.2 : WEB Server(Apache2) , MySQL8

1. Apache21.1 Install2. MySQL InstallInstall MySQL before installing PHP3. apache24 - PHP 8.03.1 PHP Install
FreeBSD13.3_en

FreeBSD13.3 : WEB Server(Apache2) , MySQL8

1. Apache21.1 Install# cd /usr/ports/www/apache24# make configThere are many options, but we will proceed with the defaults2. MySQL InstallInstall MySQL before installing PHP# pkg install -y mysql80-client mysql80-server3. apache24 - PHP 8.03.1 PHP Install# cd /usr/ports/lang/php83# make config
FreeBSD13.3_en

FreeBSD13.3 : Initial setup (Vim , SSH , firewall, NTP server)

1. Vim InstallInstall Vim, which you are familiar with as an editor, as follows# pkg install -y vim2. SSH Connection Security Measures2.1 SSH port changed, root user login disabled3. Firewall SettingsFreeBSD has the following firewalls・pf・ipfw・ipfIn this case, we will use ipfw to configure the firewall4. NTP Server Settings4.1 Rewrite the referenced NTP server in /etc/ntp.conf. Add an appropriate server in Japan.
FreeBSD13.3_en

FreeBSD13.3 : Initial setting (Update binaries, Packages and Ports Collection)

After installing FreeBSD, we will start building the server, but it is difficult to work on the console screen, so we will change the SSH connection settings for now in order to operate the server from Windows using TeraTerm or other software.Enter the following command on the FreeBSD console screen# vi /etc/ssh/sshd_configLine 61.#PasswordAuthentication no → PasswordAuthentication yes Make the changes and reflect the settings with the following command# service sshd restartNow you can connect via SSH from TeraTerm on Windows (see the default settings for other operating systems for settings in TeraTerm).