Work_Archive/BCK-ServTest
Archived
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
This repository has been archived on 2023-05-21. You can view files and clone it. You cannot open issues or pull requests or push a commit.
Files
8781b091a8e31b7506487ed3ce5836260f1375ef
BCK-ServTest/setup.sh
Bram Prieshof 8781b091a8 fixed oopsie
2020-06-25 10:48:05 +02:00

62 lines
2.2 KiB
Bash
Raw Blame History

mrepo=https://git.bprieshof.nl/Work/BCK-ServTest
mbranch=master
#install needed packages
apt install rssh vsftpd openssh-server -y
#Setup groups
groupadd sftpusers
groupadd ftpusers
groupadd BCKviewer
groupadd BCKadmin
#setup Folders
mkdir -p /backups/ftp/
mkdir -p /backups/sftp/
mkdir -p /vhome
mkdir /tools
#setup tools
wget -t7 "$mrepo"/raw/mbranch/"$mbranch"/Tools/aclutil -O /tools/aclutil
wget -t7 "$mrepo"/raw/mbranch/"$mbranch"/Tools/adduserutil -O /tools/adduserutil
wget -t7 "$mrepo"/raw/mbranch/"$mbranch"/Tools/deluserutil -O /tools/deluserutil
wget -t7 "$mrepo"/raw/mbranch/"$mbranch"/Tools/ez-aclutil -O /tools/ez-aclutil
chmod 700 /tools/deluserutil
chmod 700 /tools/adduserutil
chmod 700 /tools/aclutil
chmod 700 /tools/ez-aclutil
#SSH Config
sed -i -e '/Subsystem\ssftp/c\Subsystem sftp internal-sftp' sshd_config
curl --silent --show-error "$mrepo"/raw/mbranch/"$mbranch"/config/sshd_append.conf >>/etc/ssh/sshd_config
#rssh Config
curl --silent --show-error "$mrepo"/raw/mbranch/"$mbranch"/config/rssh_append.conf >>/etc/rssh.conf
#vsftp Config
openssl req -new -x509 -nodes -days 3650 -newkey rsa:2048 -keyout /etc/ssl/private/vsftpd.pem -out /etc/ssl/private/vsftpd.pem -subj "/C=NL/ST=Gelderland/L=Arnhem/O=ICT Maatwerk B.V./CN=$(hostname -f)"
wget -t7 "$mrepo"/raw/mbranch/"$mbranch"/config/vsftpd.conf -O /etc/vsftpd.conf
#sudo Config
wget -t7 "$mrepo"/raw/mbranch/"$mbranch"/config/sudo.conf -O /etc/sudoers.d/BCKadmin
#Setup grequalizer
git clone https://github.com/lpirl/grequalizer.git /opt/grequalizer
mkdir /opt/grequalizer/conf/
echo "/opt/grequalizer" > /opt/grequalizer/conf/files_to_chroots.txt
echo "/usr/bin/rsync" > /opt/grequalizer/conf/binaries_to_chroots.txt
echo "/usr/bin/rssh" >> /opt/grequalizer/conf/binaries_to_chroots.txt
wget -t7 "$mrepo"/raw/mbranch/"$mbranch"/config/grequalizer-sftp.conf -O /opt/grequalizer/conf/grequalizer-sftp.conf
wget -t7 "$mrepo"/raw/mbranch/"$mbranch"/config/grequalizer-ftp.conf -O /opt/grequalizer/conf/grequalizer-ftp.conf
#UFW Config
##FTP
ufw allow 20:21/tcp
ufw allow 30000:31000/tcp
#SSH/SFTP
ufw limit 22/tcp
echo "y" | ufw enable
#Restarting and enableing services
systemctl enable vsftpd sshd
systemctl restart vsftpd sshd
Reference in New Issue View Git Blame Copy Permalink