Work_Archive/VPS-scripts_Ubuntu-Cockpit
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 1 Wiki Activity

Compare commits

base: Work_Archive:0.1
Branches Tags
Work_Archive:master
Work_Archive:0.1
...
compare: Work_Archive:master
Branches Tags
Work_Archive:master
Work_Archive:0.1

6 Commits
0.1 ... master

Author SHA1 Message Date
bprieshof
9ba728ed01 Update 'README.md' 2019-08-28 11:09:09 +02:00
bprieshof
5efa39c0d0 Update 'Master-Installer.sh' 2019-03-07 13:27:21 +01:00
bprieshof
496e1edf2e Update 'Master-Installer.sh' 2019-03-07 13:25:21 +01:00
bprieshof
d2301d4ebc Update 'Master-Installer.sh' 2019-03-07 13:24:21 +01:00
bprieshof
3a0e965f90 Update 'Master-Installer.sh' 2019-03-07 13:07:58 +01:00
bprieshof
cb69e6e14e Update 'Master-Installer.sh' 2018-09-27 10:28:16 +00:00
2 changed files with 78 additions and 3 deletions
Expand all files Collapse all files

80
Master-Installer.sh
View File

@@ -1,3 +1,4 @@
#!/bin/bash #!/bin/bash
###============================================================ ###============================================================
## Ubuntu 18.04 Master Installer ## Ubuntu 18.04 Master Installer
@@ -8,16 +9,89 @@
# #
##============================================================= ##=============================================================
#install Software #install Cockpit Base
apt install cockpit cockpit-packagekit -y apt install cockpit cockpit-packagekit -y
#Login Limiter #Login Limiter
sed -i '/pam_sepermit.so/ i auth required pam_tally.so silent deny=4 unlock_time=90' /etc/pam.d/cockpit sed -i '/pam_sepermit.so/ i auth required pam_tally.so silent deny=4 unlock_time=90' /etc/pam.d/cockpit
sed -i '/pam_shells.so/ i account required pam_tally2.so' /etc/pam.d/cockpit sed -i '/pam_shells.so/ i account required pam_tally2.so' /etc/pam.d/cockpit
systemctl restart cockpit systemctl restart cockpit
ufw enable ufw enable
ufw default deny incoming ufw default deny incoming
ufw default allow outgoing ufw default allow outgoing
ufw allow ssh ufw limit ssh
ufw allow 9090/tcp
echo Welke webserver
PS3='Keuze:'
options=("Nginx-RevProx" "Cockpit-Eigen" "Quit")
select opt in "${options[@]}"
do
case $opt in
"Nginx-RevProx")
webserv=1
break;;
"Cockpit-Eigen")
ufw allow 9090/tcp
break;;
"Quit")
exit;;
*) echo "Fout commando $REPLY";;
esac
done
if [$webserv = 1]
echo Geef domein op
read domain
apt install nginx python-certbot-nginx -y
mkdir -p /var/www/"$domain"
chown nginx:nginx /var/www/"$domain"
cat <<EOF > /etc/nginx/sites-enabled/git
map $http_upgrade $connection_upgrade {
default upgrade;
'' close;
}
upstream websocket {
server 127.0.0.1:9090;
}
server {
listen 80
server_name "$domain";
location / {
proxy_pass http://websocket;
proxy_http_version 1.1;
proxy_buffering off;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $remote_addr;
# needed for websocket
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection $connection_upgrade;
# change scheme of "Origin" to http
proxy_set_header Origin http://$host;
# Pass ETag header from cockpit to clients.
# See: https://github.com/cockpit-project/cockpit/issues/5239
gzip off;
}
location /.well-known {
alias /var/www/"$domain"/.well-known;
}
}
EOF
systemctl restart nginx
certbot --nginx -d "$domain" --register-unsafely-without-email --agree-tos
ufw allow 80/tcp
ufw allow 443/tcp
ufw reload
fi
ufw limit ssh
ufw reload ufw reload

1
README.md
View File

@@ -1,2 +1,3 @@
# VPS-CockpitSetup # VPS-CockpitSetup
#### Slave-installer.sh is a dependency of Ubuntu-Web