2012-03-06 10:21:46 +01:00
|
|
|
|
2012-03-15 15:06:45 +01:00
|
|
|
|
2011-11-26 10:45:31 +01:00
|
|
|
TODOs
|
|
|
|
-----
|
|
|
|
|
2011-12-11 16:59:35 +01:00
|
|
|
Auth
|
2012-03-15 15:06:45 +01:00
|
|
|
- Prevent bruteforce auth attempts
|
2011-12-11 16:59:35 +01:00
|
|
|
|
2011-11-26 10:45:31 +01:00
|
|
|
implement auditing/logging system
|
|
|
|
- add / edit events and signatures
|
|
|
|
- failed / success logins (with source IP, headers,...)
|
|
|
|
|
2011-12-11 16:59:35 +01:00
|
|
|
Security
|
|
|
|
- force cookie reset after login
|
2011-11-26 10:45:31 +01:00
|
|
|
|
|
|
|
|
|
|
|
INSTALLATION INSTRUCTIONS
|
|
|
|
-------------------------
|
2012-03-06 10:21:46 +01:00
|
|
|
Download CyDefSIG using git in the /var/www/ directory.
|
|
|
|
|
|
|
|
cd /var/www/
|
|
|
|
git clone git@code.lab.modiss.be:cydefsig.git
|
|
|
|
|
2012-03-15 15:06:45 +01:00
|
|
|
Download and extract CakePHP 2.x to the web root directory:
|
2012-03-06 10:21:46 +01:00
|
|
|
|
|
|
|
cd /tmp/
|
2012-03-15 15:06:45 +01:00
|
|
|
wget https://nodeload.github.com/cakephp/cakephp/tarball/2.1
|
2012-03-06 10:21:46 +01:00
|
|
|
tar zxvf cakephp-cakephp-<version>.tar.gz
|
|
|
|
cd cakephp-cakephp-*
|
|
|
|
|
|
|
|
Now remove the app directory and move everything from CakePHP to var/www
|
|
|
|
|
2012-03-27 09:31:41 +02:00
|
|
|
rm -Rf app .gitignore
|
2012-03-06 10:21:46 +01:00
|
|
|
mv * /var/www/cydefsig/
|
|
|
|
mv .??* /var/www/cydefsig/
|
2011-12-11 16:59:35 +01:00
|
|
|
|
2012-01-18 15:30:36 +01:00
|
|
|
Check if the permissions are set correctly using the following commands as root:
|
2012-03-06 10:21:46 +01:00
|
|
|
|
|
|
|
chown -R <user>:www-data /var/www/cydefsig
|
|
|
|
chmod -R 750 /var/www/cydefsig
|
|
|
|
chmod -R g+s /var/www/cydefsig
|
|
|
|
cd /var/www/cydefsig/app/
|
2011-11-26 10:45:31 +01:00
|
|
|
chmod -R g+w tmp
|
|
|
|
|
2012-03-06 10:21:46 +01:00
|
|
|
Import the empty MySQL database in /var/www/cydefsig/app/MYSQL.txt using phpmyadmin or mysql>.
|
|
|
|
|
|
|
|
Now configure your apache server with the DocumentRoot /var/www/cydefsig/app/webroot/
|
|
|
|
|
2012-03-27 09:31:41 +02:00
|
|
|
Configure the fields in the files:
|
|
|
|
database.php : login, port, password, database
|
|
|
|
bootstrap.php: CyDefSIG.*, GnuPG.*
|
|
|
|
core.php : debug,
|
|
|
|
|
|
|
|
Generate a GPG encryption key.
|
|
|
|
-
|
|
|
|
|
|
|
|
Now log in using the webinterface:
|
2012-03-15 15:10:24 +01:00
|
|
|
The default user/pass = admin@admin.test/admin
|
2012-03-27 09:31:41 +02:00
|
|
|
|
2012-01-18 15:30:36 +01:00
|
|
|
Don't forget to change the email, password and authentication key after installation.
|
2011-12-11 16:59:35 +01:00
|
|
|
|
2012-03-27 09:31:41 +02:00
|
|
|
|
|
|
|
|
2011-12-11 16:59:35 +01:00
|
|
|
Recommended patches
|
|
|
|
-------------------
|
2012-03-06 10:21:46 +01:00
|
|
|
By default CakePHP exposes his name and version in email headers. Apply a patch to remove this behavior.
|