Difference between revisions of "Linux"

Line 150: Line 150:
  
  
=Linux server services=
+
=Linux appliances=
  
  
Line 230: Line 230:
  
  
 +
 +
===Continuous Integration applications===
  
 
[[File:icon_continous integration.png|64px|caption|Continuous integration]] C.I - Continuous integration
 
[[File:icon_continous integration.png|64px|caption|Continuous integration]] C.I - Continuous integration
Line 248: Line 250:
  
 
==Network==
 
==Network==
 +
 +
===DHCP and DNS===
  
 
[[File:Network icon.png|64px|caption|Network icon]] DHCP and DNS servers
 
[[File:Network icon.png|64px|caption|Network icon]] DHCP and DNS servers
Line 271: Line 275:
  
  
 
+
===File share===
==Mail==
 
 
 
[[File:Mail icon.png|64px|caption|Mail icon]] Mail server (SMTP, POP3/IMAP)
 
 
 
 
 
[[Email relay]]
 
 
 
[[Email server setup]]
 
 
 
 
 
 
 
* FTP server
 
 
 
 
 
Web server configuration
 
 
 
 
 
 
 
* [[Tomcat]]
 
 
 
 
 
==File share==
 
  
 
* [[Samba server]]
 
* [[Samba server]]
Line 300: Line 282:
  
  
==NetBoot==
+
 
 +
===NetBoot===
  
  
Line 345: Line 328:
  
  
==Monitoring==
+
===Mail===
 +
 
 +
[[File:Mail icon.png|64px|caption|Mail icon]] Mail server (SMTP, POP3/IMAP)
 +
 
 +
 
 +
[[Email relay]]
 +
 
 +
[[Email server setup]]
 +
 
 +
 
 +
 
 +
===Monitoring===
  
  
Line 377: Line 371:
  
 
I'm using Zabbix v2.2. All the following information are just a practical summary of the Zabbix official documentation applied to my use-case.  
 
I'm using Zabbix v2.2. All the following information are just a practical summary of the Zabbix official documentation applied to my use-case.  
 
  
  
Line 386: Line 379:
 
* NTP time sync
 
* NTP time sync
 
* Logwatch
 
* Logwatch
* Mail server
+
 
  
  
Line 393: Line 386:
  
 
[[Webmin]]
 
[[Webmin]]
 +
 +
  
 
=Raspberry pi=
 
=Raspberry pi=

Revision as of 14:12, 21 August 2014

Linux is wonderful! However it can be a mess to setup.

These are some how-to and tricks for Linux (Debian / Ubuntu) servers and workstations.


Server / workstation core setup

Server or workstation How to setup & maintain a Linux server or workstation with basics services.


Server / Workstation setup
Installation Partitions setup Specifics Prefer IPv4 over IPv6 Applications Photo
Network and hostname configuration XFCE: screensaver bug fix Clean ubuntu
VIM editor Drivers
Sources
Create user
Useful programs
Languages
Automatic updates



Security

How to secure your server / workstation ?


Global security

Internet security Anti-virus / anti root-kits / Fail2Ban



SSH

SSH SSH




Firewall

FW principle This section explains HOW to create, maintain and use a firewall with IpTables.


Firewall
Basics Firewall principle
Firewall basics
Firewall core (main) protocols
Firewall VPN
Firewall OUTPUT filters
Firewall INPUT filters
Advanced Firewall port forwarding
Firewall source address filtering
Installation and scripts Firewall installation scripts


SSL

SSL SSL certificates and chain of trust


SSL server


VPN

VPN Virtual Private Network (VPN)



Intrusion Detection / Protection

Radar Protection is good, but that's not enough! We need to detect attacks.


  • IDS = Intrusion Detection System : tool that detect attacks.
  • IPS = Intrusion Protection System : detect an intrusion attempt and react upon it.


I'm using one of the most famous IDS: "Snort" (https://www.snort.org/).



Linux appliances

User management

Active directory Manage users and groups



DB servers

Database Database servers



Web

Web server

Web server How to setup a website, proxy and SSL certificates...


Web server
Apache 2 Apache 2 installation
Apache 2 HTTP virtual host
Apache 2 HTTPS virtual host
Apache 2 - SSL certificates page
Apache 2 - Redirection (mod rewrite)
Apache 2 - proxy
Apache 2 - Custom error page
Apache 2 - Performances
Apache 2 - Security
Apache 2 - LDAP access
Cherokee Cherokee web server


Web applications

Web apps


Web applications
Web app PhpMyAdmin
Web app PhpLdapAdmin
Web app PhpSecInfo


Continuous Integration applications

Continuous integration C.I - Continuous integration


CI applications
Jenkins
Sonar
SVN server


Network

DHCP and DNS

Network icon DHCP and DNS servers


Network
DHCP server DHCP server installation
DHCP dynamic IP assignation
DHCP static IP assignation
DNS DNS server
DNS server split


File share


NetBoot

Netboot icon This section explains how to setup, boot and maintain a netboot image.


Requirements:

NetBoot and "Thin client" (diskless clinets) principle:

NetBoot services setup:



NetBoot setup:


Mail

Mail icon Mail server (SMTP, POP3/IMAP)


Email relay

Email server setup


Monitoring

Monitoring Monitoring IT components, servers and applications using Zabbix


Monitoring
Zabbix server Zabbix server setup
Zabbix server configuration
Zabbix server hosts management
Zabbix server template management = create and manage template
Zabbix server create new application, items, triggers and actions
Zabbix server dashboard
Zabbix agent setup Zabbix agent setup


Note:

I'm using Zabbix v2.2. All the following information are just a practical summary of the Zabbix official documentation applied to my use-case.



Other services

  • NTP time sync
  • Logwatch



Management UI

Webmin


Raspberry pi



New menu (under construction)

This section is under construction...