Linux

Revision as of 13:53, 21 August 2014 by WikiFreak (talk | contribs)

Linux is wonderful! However it can be a mess to setup.

These are some how-to and tricks for Linux (Debian / Ubuntu) servers and workstations.


Server / workstation core setup

Server or workstation How to setup & maintain a Linux server or workstation with basics services.


Server / Workstation setup
Installation Partitions setup Specifics Prefer IPv4 over IPv6 Applications Photo
Network and hostname configuration XFCE: screensaver bug fix Clean ubuntu
VIM editor Drivers
Sources
Create user
Useful programs
Languages
Automatic updates



Security

Services security

Internet security How to secure your server / workstation ?


Security
Basic SSH SSH Client
How-to generate SSH key
SSH server setup
SSH server using local user / password auth.
SSH server using key auth.
SSH server using LDAP user auth.
SSH server using LDAP key auth.
Local prevention Anti-virus
Rootkit cleaner
Advanced VPN VPN introduction
VPN server
VPN client
Other Fail2ban
SSL server


Firewall

FW principle This section explains HOW to create, maintain and use a firewall with IpTables.


Firewall
Basics Firewall principle
Firewall basics
Firewall core (main) protocols
Firewall VPN
Firewall OUTPUT filters
Firewall INPUT filters
Advanced Firewall port forwarding
Firewall source address filtering
Installation and scripts Firewall installation scripts


Advanced security

Radar Protection is good, but that's not enough! We need to detect attacks.


  • IDS = Intrusion Detection System : tool that detect attacks.
  • IPS = Intrusion Protection System : detect an intrusion attempt and react upon it.


I'm using one of the most famous IDS: "Snort" (https://www.snort.org/).



Linux server services

User management

Active directory Manage users and groups



DB servers

Database Database servers



Web

Web server

Web server How to setup a website, proxy and SSL certificates...


Web server
Apache 2 Apache 2 installation
Apache 2 HTTP virtual host
Apache 2 HTTPS virtual host
Apache 2 - SSL certificates page
Apache 2 - Redirection (mod rewrite)
Apache 2 - proxy
Apache 2 - Custom error page
Apache 2 - Performances
Apache 2 - Security
Apache 2 - LDAP access
Cherokee Cherokee web server


Web applications

Web apps


Web applications
Web app PhpMyAdmin
Web app PhpLdapAdmin
Web app PhpSecInfo
Jenkins
Sonar
SVN server


Network

Network icon DHCP and DNS servers


Network
DHCP server DHCP server installation
DHCP dynamic IP assignation
DHCP static IP assignation
DNS DNS server
DNS server split



Mail

Mail icon Mail server (SMTP, POP3/IMAP)


Email relay

Email server setup


  • FTP server


Web server configuration



File share


NetBoot

Netboot icon This section explains how to setup, boot and maintain a netboot image.


Requirements:

NetBoot and "Thin client" (diskless clinets) principle:

NetBoot services setup:



NetBoot setup:


Monitoring

Monitoring Monitoring IT components, servers and applications using Zabbix


Monitoring
Zabbix server Zabbix server setup
Zabbix server configuration
Zabbix server hosts management
Zabbix server template management = create and manage template
Zabbix server create new application, items, triggers and actions
Zabbix server dashboard
Zabbix agent setup Zabbix agent setup


Note:

I'm using Zabbix v2.2. All the following information are just a practical summary of the Zabbix official documentation applied to my use-case.



Other services

  • NTP time sync
  • Logwatch
  • Mail server


Management UI

Webmin

Raspberry pi



New menu (under construction)

This section is under construction...