MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity

chg: [doc] Debian 9/testing updates base MISP now fully working

pull/3447/head
Steve Clement 2018-07-06 09:34:07 +02:00
parent c54dfb006a
commit 77ece3dc71
2 changed files with 32 additions and 65 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

37
INSTALL/INSTALL.debian9.txt
View File

@ -79,7 +79,10 @@ adduser misp sudo
sudo apt-get update
sudo apt-get -y dist-upgrade
# Optional Network Interface Name salvage
# Network Interface Name salvage (optional)
This will bring back 'ethX' e.g: eth0
```
GRUB_CMDLINE_LINUX="net.ifnames=0 biosdevname=0"
DEFAULT_GRUB=/etc/default/grub
@ -125,7 +128,7 @@ sudo apt-get install -y libapache2-mod-php7.0 php7.0 php7.0-cli php7.0-dev php7.
sudo pear channel-update pear.php.net
sudo pear install Crypt_GPG
# Optional, switch to python3 by default
# Switch to python3 by default (optional)
sudo update-alternatives --install /usr/bin/python python /usr/bin/python2.7 1
sudo update-alternatives --install /usr/bin/python python /usr/bin/python3.5 2
@ -346,7 +349,7 @@ sudo $PATH_TO_MISP/app/Console/cake Live $MISP_LIVE
# e.g. https://pythontips.com/2013/07/28/generating-a-random-string/
# Change base url
sudo /var/www/MISP/app/Console/cake Baseurl ""
sudo /var/www/MISP/app/Console/cake Baseurl $MISP_BASEURL
# example: 'baseurl' => 'https://<your.FQDN.here>',
# alternatively, you can leave this field empty if you would like to use relative pathing in MISP
@ -377,7 +380,7 @@ sudo -u www-data gpg --homedir $PATH_TO_MISP/.gnupg --batch --gen-key /tmp/gen-k
# The email address should match the one set in the config.php / set in the configuration menu in the administration menu configuration file
# And export the public key to the webroot
sudo -u www-data sh -c "gpg --homedir /var/www/MISP/.gnupg --export --armor YOUR-KEYS-EMAIL-HERE > /var/www/MISP/app/webroot/gpg.asc"
sudo -u www-data sh -c "gpg --homedir /var/www/MISP/.gnupg --export --armor $GPG_EMAIL_ADDRESS > /var/www/MISP/app/webroot/gpg.asc"
# To make the background workers start on boot
sudo chmod +x /var/www/MISP/app/Console/worker/start.sh
@ -473,8 +476,6 @@ sudo $PATH_TO_MISP/app/Console/cake Admin setSetting "Security.password_policy_l
# Set MISP Live
sudo /var/www/MISP/app/Console/cake Live 1
AUTH_KEY=$(mysql -u misp -pPassword1234 misp -e "SELECT authkey FROM users;" | tail -1)
# Update the galaxies…
sudo $PATH_TO_MISP/app/Console/cake Admin updateGalaxies
@ -548,34 +549,16 @@ Optional features
# MISP has a new pub/sub feature, using ZeroMQ. To enable it, simply run the following commands
# ZeroMQ depends on the Python client for Redis
sudo pip install redis
sudo pip3 install redis
# Debian has an ancient version of ZeroMQ, so manually install a current version
## Install ZeroMQ and prerequisites
sudo apt-get install pkg-config
cd /usr/local/src/
sudo git clone git://github.com/jedisct1/libsodium.git
cd libsodium
sudo ./autogen.sh
sudo ./configure
sudo make check
sudo make
sudo make install
sudo ldconfig
cd /usr/local/src/
sudo wget https://archive.org/download/zeromq_4.1.5/zeromq-4.1.5.tar.gz
sudo tar -xvf zeromq-4.1.5.tar.gz
cd zeromq-4.1.5/
sudo ./autogen.sh
sudo ./configure
sudo make check
sudo make
sudo make install
sudo ldconfig
## install pyzmq
sudo pip install pyzmq
sudo pip3 install pyzmq
MISP Dashboard
@ -584,7 +567,7 @@ MISP Dashboard
cd /var/www
sudo mkdir misp-dashboard
sudo chown www-data:www-data misp-dashboard
sudo -u www-data git clone https://github.com/SteveClement/misp-dashboard.git
sudo -u www-data git clone https://github.com/MISP/misp-dashboard.git
cd misp-dashboard
sudo /var/www/misp-dashboard/install_dependencies.sh
sudo sed -i "s/^host\ =\ localhost/host\ =\ 0.0.0.0/g" /var/www/misp-dashboard/config/config.cfg

60
INSTALL/INSTALL.debian_testing.txt
View File

@ -49,7 +49,7 @@ upload_max_filesize=50M
post_max_size=50M
max_execution_time=300
memory_limit=512M
PHP_INI=/etc/php/7.0/apache2/php.ini
PHP_INI=/etc/php/7.2/apache2/php.ini
```
# Important! Change the salt key in /var/www/MISP/app/Config/config.php
@ -71,17 +71,17 @@ installation, just alter the salt,
- Web server, apache FTW!
- This guide assumes a user name of 'misp'
# install sudo and etckeeper
su -
apt install etckeeper
apt install sudo
adduser -aG sudo misp
# install etckeeper (optional)
sudo apt install -y etckeeper
# Make sure your system is up2date:
sudo apt-get update
sudo apt-get -y dist-upgrade
# Optional Network Interface Name salvage
# Network Interface Name salvage (optional)
This will bring back 'ethX' e.g: eth0
```
GRUB_CMDLINE_LINUX="net.ifnames=0 biosdevname=0"
DEFAULT_GRUB=/etc/default/grub
@ -106,7 +106,7 @@ Once the system is installed you can perform the following steps:
# Install the dependencies: (some might already be installed)
sudo apt-get install -y curl gcc git gnupg-agent make openssl redis-server neovim zip libyara-dev python3-yara python3-redis python3-zmq
sudo ln -s /usr/lib/x86_64-linux-gnu/libyara.so.3.7.1 /usr/lib/libyara.so
sudo ln -s /usr/lib/x86_64-linux-gnu/libyara.so /usr/lib/libyara.so
# Install MariaDB (a MySQL fork/alternative)
sudo apt-get install -y mariadb-client mariadb-server
@ -124,14 +124,17 @@ sudo a2dissite 000-default
sudo a2ensite default-ssl
# Install PHP and dependencies
sudo apt-get install -y libapache2-mod-php7.2 php7.2 php7.2-cli php7.2-gnupg php7.2-dev php7.2-json php7.2-xml php7.2-mysql php7.2-opcache php7.2-readline php7.2-redis php7.2-mbstring php-pear
sudo apt-get install -y libapache2-mod-php7.2 php7.2 php7.2-cli php7.2-mbstring php-pear php7.2-dev php7.2-json php7.2-xml php7.2-mysql php7.2-opcache php7.2-readline
sudo pear channel-update pear.php.net
sudo pear install Crypt_GPG
sudo pecl channel-update pecl.php.net
sudo pecl install redis
sudo echo "extension=redis.so" > /etc/php/7.2/mods-available/redis.ini
# Optional, switch to python3 by default
# Switch to python3 by default (optional)
sudo update-alternatives --install /usr/bin/python python /usr/bin/python2.7 1
sudo update-alternatives --install /usr/bin/python python /usr/bin/python3.5 2
sudo update-alternatives --install /usr/bin/python python /usr/bin/python3.6 2
To flip between the 2 pythons: sudo update-alternatives --config python
@ -318,7 +321,7 @@ sudo -u www-data cp -a /var/www/MISP/app/Config/core.default.php /var/www/MISP/a
sudo -u www-data cp -a /var/www/MISP/app/Config/config.default.php /var/www/MISP/app/Config/config.php
sudo -u www-data cat > $PATH_TO_MISP/app/Config/database.php <<EOF
cat <<EOF
<?php
class DATABASE_CONFIG {
public \$default = array(
@ -335,7 +338,8 @@ class DATABASE_CONFIG {
'encoding' => 'utf8',
);
}
EOF
EOF | sudo -u www-data tee $PATH_TO_MISP/app/Config/database.php
# and make sure the file permissions are still OK
sudo chown -R www-data:www-data $PATH_TO_MISP/app/Config
sudo chmod -R 750 $PATH_TO_MISP/app/Config
@ -350,7 +354,7 @@ sudo $PATH_TO_MISP/app/Console/cake Live $MISP_LIVE
# e.g. https://pythontips.com/2013/07/28/generating-a-random-string/
# Change base url
sudo /var/www/MISP/app/Console/cake Baseurl ""
sudo /var/www/MISP/app/Console/cake Baseurl $MISP_BASEURL
# example: 'baseurl' => 'https://<your.FQDN.here>',
# alternatively, you can leave this field empty if you would like to use relative pathing in MISP
@ -381,7 +385,7 @@ sudo -u www-data gpg --homedir $PATH_TO_MISP/.gnupg --batch --gen-key /tmp/gen-k
# The email address should match the one set in the config.php / set in the configuration menu in the administration menu configuration file
# And export the public key to the webroot
sudo -u www-data sh -c "gpg --homedir /var/www/MISP/.gnupg --export --armor YOUR-KEYS-EMAIL-HERE > /var/www/MISP/app/webroot/gpg.asc"
sudo -u www-data sh -c "gpg --homedir /var/www/MISP/.gnupg --export --armor $GPG_EMAIL_ADDRESS > /var/www/MISP/app/webroot/gpg.asc"
# To make the background workers start on boot
sudo chmod +x /var/www/MISP/app/Console/worker/start.sh
@ -477,8 +481,6 @@ sudo $PATH_TO_MISP/app/Console/cake Admin setSetting "Security.password_policy_l
# Set MISP Live
sudo /var/www/MISP/app/Console/cake Live 1
AUTH_KEY=$(mysql -u misp -pPassword1234 misp -e "SELECT authkey FROM users;" | tail -1)
# Update the galaxies…
sudo $PATH_TO_MISP/app/Console/cake Admin updateGalaxies
@ -552,34 +554,16 @@ Optional features
# MISP has a new pub/sub feature, using ZeroMQ. To enable it, simply run the following commands
# ZeroMQ depends on the Python client for Redis
sudo pip install redis
sudo pip3 install redis
# Debian has an ancient version of ZeroMQ, so manually install a current version
## Install ZeroMQ and prerequisites
sudo apt-get install pkg-config
cd /usr/local/src/
sudo git clone git://github.com/jedisct1/libsodium.git
cd libsodium
sudo ./autogen.sh
sudo ./configure
sudo make check
sudo make
sudo make install
sudo ldconfig
cd /usr/local/src/
sudo wget https://archive.org/download/zeromq_4.1.5/zeromq-4.1.5.tar.gz
sudo tar -xvf zeromq-4.1.5.tar.gz
cd zeromq-4.1.5/
sudo ./autogen.sh
sudo ./configure
sudo make check
sudo make
sudo make install
sudo ldconfig
## install pyzmq
sudo pip install pyzmq
sudo pip3 install pyzmq
MISP Dashboard
@ -588,7 +572,7 @@ MISP Dashboard
cd /var/www
sudo mkdir misp-dashboard
sudo chown www-data:www-data misp-dashboard
sudo -u www-data git clone https://github.com/SteveClement/misp-dashboard.git
sudo -u www-data git clone https://github.com/MISP/misp-dashboard.git
cd misp-dashboard
sudo /var/www/misp-dashboard/install_dependencies.sh
sudo sed -i "s/^host\ =\ localhost/host\ =\ 0.0.0.0/g" /var/www/misp-dashboard/config/config.cfg