|
|
|
@ -117,7 +117,8 @@ MISPvars () {
|
|
|
|
|
# MISP configuration variables
|
|
|
|
|
PATH_TO_MISP="${PATH_TO_MISP:-/var/www/MISP}"
|
|
|
|
|
PATH_TO_MISP_SCRIPTS="${PATH_TO_MISP}/app/files/scripts"
|
|
|
|
|
|
|
|
|
|
## For future use
|
|
|
|
|
# TMPDIR="${TMPDIR:-$PATH_TO_MISP/app/tmp}"
|
|
|
|
|
|
|
|
|
|
FQDN="${FQDN:-misp.local}"
|
|
|
|
|
|
|
|
|
@ -1541,6 +1542,9 @@ coreCAKE () {
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Session.autoRegenerate" 0
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Session.timeout" 600
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Session.cookieTimeout" 3600
|
|
|
|
|
|
|
|
|
|
# Set the default temp dir
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "MISP.tmpdir" "${PATH_TO_MISP}/app/tmp"
|
|
|
|
|
|
|
|
|
|
# Change base url, either with this CLI command or in the UI
|
|
|
|
|
[[ ! -z ${MISP_BASEURL} ]] && ${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Baseurl $MISP_BASEURL
|
|
|
|
@ -1562,7 +1566,7 @@ coreCAKE () {
|
|
|
|
|
# Enable installer org and tune some configurables
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "MISP.host_org_id" 1
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "MISP.email" "info@admin.test"
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "MISP.disable_emailing" true
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "MISP.disable_emailing" true --force
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "MISP.contact" "info@admin.test"
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "MISP.disablerestalert" true
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "MISP.showCorrelationsOnIndex" true
|
|
|
|
@ -1573,7 +1577,7 @@ coreCAKE () {
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Plugin.Cortex_services_url" "http://127.0.0.1"
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Plugin.Cortex_services_port" 9000
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Plugin.Cortex_timeout" 120
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Plugin.Cortex_authkey" ""
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Plugin.Cortex_authkey" false
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Plugin.Cortex_ssl_verify_peer" false
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Plugin.Cortex_ssl_verify_host" false
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Plugin.Cortex_ssl_allow_self_signed" true
|
|
|
|
@ -1632,7 +1636,7 @@ coreCAKE () {
|
|
|
|
|
Plugin.ElasticSearch_logging_enable
|
|
|
|
|
Plugin.S3_enable)
|
|
|
|
|
for PLUG in "${PLUGS[@]}"; do
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting ${PLUG} false
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting ${PLUG} false 2> /dev/null
|
|
|
|
|
done
|
|
|
|
|
|
|
|
|
|
# Plugin CustomAuth tuneable
|
|
|
|
@ -1648,7 +1652,7 @@ coreCAKE () {
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Plugin.RPZ_minimum_ttl" "1h"
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Plugin.RPZ_ttl" "1w"
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Plugin.RPZ_ns" "localhost."
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Plugin.RPZ_ns_alt" ""
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Plugin.RPZ_ns_alt" false
|
|
|
|
|
${SUDO_WWW} ${RUN_PHP} -- ${CAKE} Admin setSetting "Plugin.RPZ_email" "root.localhost"
|
|
|
|
|
|
|
|
|
|
# Kafka settings
|
|
|
|
@ -1899,6 +1903,7 @@ mispmodules () {
|
|
|
|
|
# If you build an egg, the user you build it as need write permissions in the CWD
|
|
|
|
|
sudo chgrp $WWW_USER .
|
|
|
|
|
sudo chmod og+w .
|
|
|
|
|
$SUDO_WWW ${PATH_TO_MISP}/venv/bin/pip install pillow
|
|
|
|
|
$SUDO_WWW ${PATH_TO_MISP}/venv/bin/pip install -I -r REQUIREMENTS
|
|
|
|
|
sudo chgrp staff .
|
|
|
|
|
$SUDO_WWW ${PATH_TO_MISP}/venv/bin/pip install -I .
|
|
|
|
@ -3045,10 +3050,6 @@ installSupported () {
|
|
|
|
|
echo "Proceeding with the installation of MISP core"
|
|
|
|
|
space
|
|
|
|
|
|
|
|
|
|
# Set Base URL - functionLocation('generic/supportFunctions.md')
|
|
|
|
|
[[ -n $CORE ]] || [[ -n $ALL ]] && setBaseURL
|
|
|
|
|
progress 4
|
|
|
|
|
|
|
|
|
|
# Check if sudo is installed and etckeeper - functionLocation('generic/sudo_etckeeper.md')
|
|
|
|
|
[[ -n $CORE ]] || [[ -n $ALL ]] && checkSudoKeeper
|
|
|
|
|
[[ ! -z ${MISP_USER} ]] && [[ ! -f /etc/sudoers.d/misp ]] && echo "%${MISP_USER} ALL=(ALL:ALL) NOPASSWD:ALL" |sudo tee /etc/sudoers.d/misp
|
|
|
|
|