CSF / Webmin Install Guide
ნაბიჯი #0-მდე: Turn Off SeLinux (ბლიად!)
ნაბიჯი #0: Preparation
1 | yum groupremove -y "Dialup Networking Support" "Mail Server" "Network Servers" |
1 | yum -y update |
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 | service yum-updatesd stop chkconfig yum-updatesd off service pcscd stop chkconfig pcscd off service hidd stop chkconfig hidd off service cups stop chkconfig cups off service avahi-daemon stop chkconfig avahi-daemon off service gpm stop chkconfig gpm off service anacron stop chkconfig anacron off service bluetooth stop chkconfig bluetooth off service rpcidmapd stop chkconfig rpcidmapd off service nfslock stop chkconfig nfslock off service atd stop chkconfig atd off service ip6tables stop chkconfig ip6tables off rm -rf /var/tmp ln -s /tmp /var/tmp |
1 | nano /etc/ssh/sshd_config |
1 2 | set useDNS to no set Port to 60666 |
1 | nano /etc/fstab |
add noexec,nosuid options to /dev/shm & /tmp
ნაბიჯი #1: installation
1 2 3 4 5 6 7 8 9 10 | yum -y install perl-libwww-perl cd /usr/src/ rm -fv csf.tgz wget http://www.configserver.com/free/csf.tgz tar -xzf csf.tgz cd csf sh install.sh sh disable_apf_bfd.sh chkconfig lfd on service lfd start |
ნაბიჯი #1.5: Disable Ipv6
1 | nano /etc/modprobe.d/blacklist.conf |
and add blacklist ipv6
ნაბიჯი #2: Configuration
1 | nano /etc/csf/csf.conf |
1 2 3 4 5 6 | set SAFECHAINUPDATE to 1 set testing to 0 ETH_DEVICE =: Set this to eth+ TCP_IN/TCP_OUT/UDP_IN/UDP_OUT = as you want :) set ICMP_IN = “0” also add 10000,60666 in TCP_IN/TCP_OUT |
ნაბიჯი #4:ending
1 | service csf restart |
ნაბიჯი #5:Webmin
1 2 3 | wget http://prdownloads.sourceforge.net/webadmin/webmin-1.610-1.noarch.rpm rpm -i webmin-1.610-1.noarch.rpm rm -rf webmin-1.610-1.noarch.rpm |
ნაბიჯი #6:CSF webmin module
webmin-ში CSF-ის მოდულის ინსტალაცია:
1 | Webmin & Webmin Configuration & Webmin Modules & From local file & /etc/csf/csfwebmin.tgz & Install Module |
ნაბიჯი #7:Reboot
1 | reboot |
Uninstall
1 2 | cd /etc/csf sh uninstall.sh |