Merge branch '2.4' of https://github.com/MISP/MISP into 2.4

2017-09-06 23:26:44 +02:00 · 2017-09-06 23:26:44 +02:00 · cfd73aec0a
parent 4230601116 ff101fa4ca
commit cfd73aec0a
8 changed files with 7 additions and 585 deletions
--- a/.gitmodules
+++ b/.gitmodules
@ -21,3 +21,6 @@
 [submodule "app/files/misp-galaxy"]
 	path = app/files/misp-galaxy
 	url = https://github.com/MISP/misp-galaxy
 [submodule "misp-vagrant"]
 	path = misp-vagrant
 	url = https://github.com/MISP/misp-vagrant.git
--- a/app/Console/Command/ServerShell.php
+++ b/app/Console/Command/ServerShell.php
@ -197,14 +197,13 @@ class ServerShell extends AppShell
 		if ($timestamp != $task['Task']['next_execution_time']) {
 			return;
 		}
-		if ($task['Task']['timer'] > 0)	$this->Task->reQueue($task, 'default', 'ServerShell', 'enqueueCachePull', $userId, $taskId, $action);
+		if ($task['Task']['timer'] > 0)	$this->Task->reQueue($task, 'default', 'ServerShell', 'enqueueFeed', $userId, $taskId, $action);
 		$user = $this->User->getAuthUser($userId);
 		$count = count($feeds);
 		$failCount = 0;
 		if ($action == 0) {
 			$feeds = $this->Feed->find('all', array(
 				'recursive' => -1,
-				'conditions' => array('enabled' => 1)
+				'conditions' => array('enabled' => true)
 			));
 			foreach ($feeds as $k => $feed) {
 				$this->Job->create();
@ -220,10 +219,8 @@ class ServerShell extends AppShell
 				);
 				$this->Job->save($data);
 				$jobId = $this->Job->id;
 				App::uses('SyncTool', 'Tools');
 				$result = $this->Feed->downloadFromFeedInitiator($feed['Feed']['id'], $user, $jobId);
 				$this->Job->save(array(
 						'id' => $jobId,
 						'message' => 'Job done.',
 						'progress' => 100,
 						'status' => 4
@ -240,7 +237,6 @@ class ServerShell extends AppShell
 			$data = array(
 					'worker' => 'default',
 					'job_type' => 'feed_cache',
 					'job_input' => 'Feed: ' . $feed['Feed']['id'],
 					'retries' => 0,
 					'org' => $user['Organisation']['name'],
 					'org_id' => $user['org_id'],
@ -251,7 +247,6 @@ class ServerShell extends AppShell
 			$jobId = $this->Job->id;
 			$result = $this->Feed->cacheFeedInitiator($user, $jobId, 'all');
 			$this->Job->save(array(
 					'id' => $jobId,
 					'message' => 'Job done.',
 					'progress' => 100,
 					'status' => 4
--- a/app/Controller/TasksController.php
+++ b/app/Controller/TasksController.php
@ -133,28 +133,4 @@ class TasksController extends AppController {
 		$this->Task->saveField('process_id', $process_id);
 	}
 	private function _feedPullScheduler($timestamp, $id) {
 		$process_id = CakeResque::enqueueAt(
 				$timestamp,
 				'default',
 				'ServerShell',
 				array('enqueuePull', $timestamp, $this->Auth->user('id'),  $id),
 				true
 		);
 		$this->Task->id = $id;
 		$this->Task->saveField('process_id', $process_id);
 	}
 	private function _feedCacheScheduler($timestamp, $id) {
 		$process_id = CakeResque::enqueueAt(
 				$timestamp,
 				'default',
 				'ServerShell',
 				array('enqueuePull', $timestamp, $this->Auth->user('id'),  $id),
 				true
 		);
 		$this->Task->id = $id;
 		$this->Task->saveField('process_id', $process_id);
 	}
 }
--- a/app/files/misp-galaxy
+++ b/app/files/misp-galaxy
@ -1 +1 @@
-Subproject commit 6bb2a0738365c3b62154e9ccd2adccc012a64a35
+Subproject commit 146f8fd1abde947f9f277205ddc5f9392d545527
--- a/1
+++ b/1
@ -0,0 +1 @@
 Subproject commit 8622be9f3074ead2e315803aac94eec6f16461b5
--- a/vagrant/README.rst
+++ b/vagrant/README.rst
@ -1,42 +0,0 @@
 Development environment for MISP
 ================================
 Vagrant is convenient to use in order to setup your development environment.
 This VM uses `synced folders <https://www.vagrantup.com/docs/synced-folders/>`_
 feature of Vagrant in order to let you work on the MISP source code on your
 host machine while the softwares (Apache, PHP, MariaDB, etc.) and libraries
 will be installed on the guest Vagrant machine.
 Installation of VirtualBox and Vagrant
 --------------------------------------
 .. code-block:: bash
    $ sudo apt-get install virtualbox vagrant
 Deployment of MISP
 ------------------
 MISP will be automatically deployed in an Ubuntu Zesty Server.
 .. code-block:: bash
    $ git clone https://github.com/MISP/MISP.git
    $ cd MISP/vagrant/
    $ vagrant up
 Once the VM will be configured by Vagrant, go to the address
 http://127.0.0.1:5000.
 You can now edit the source code with your favorite editor and test it in your
 browser. The only thing is to not forget to restart Apache in the VM after a
 modification.
 Modules activated by default in the VM:
 * `MISP galaxy <https://github.com/MISP/misp-galaxy>`_ (http://127.0.0.1:5000/taxonomies/index)
 * `MISP taxonomies <https://github.com/MISP/misp-taxonomies>`_ (http://127.0.0.1:5000/galaxies.json)
 * `MISP modules <https://github.com/MISP/misp-modules>`_ (curl -s http://127.0.0.1:6666/modules)
--- a/vagrant/Vagrantfile
+++ b/vagrant/Vagrantfile
@ -1,128 +0,0 @@
 # -*- mode: ruby -*-
 # vi: set ft=ruby :
 # Vagrantfile API/syntax version. Don't touch unless you know what you're doing!
 VAGRANTFILE_API_VERSION = "2"
 Vagrant.configure(VAGRANTFILE_API_VERSION) do |config|
  # All Vagrant configuration is done here. The most common configuration
  # options are documented and commented below. For a complete reference,
  # please see the online documentation at vagrantup.com.
  # Every Vagrant virtual environment requires a box to build off of.
  #config.vm.box = "bento/ubuntu-16.04"
  config.vm.box = "ubuntu/zesty64"
  #config.vm.box_url = "https://atlas.hashicorp.com/ubuntu/boxes/zesty64/versions/20170412.1.0"
  config.vm.provision :shell, path: "bootstrap.sh"
  # Disable automatic box update checking. If you disable this, then
  # boxes will only be checked for updates when the user runs
  # `vagrant box outdated`. This is not recommended.
  # config.vm.box_check_update = false
  # Create a forwarded port mapping which allows access to a specific port
  # within the machine from a port on the host machine. In the example below,
  # accessing "localhost:8080" will access port 80 on the guest machine.
  config.vm.network :forwarded_port, guest: 80, host: 5000
  config.vm.network :forwarded_port, guest: 6666, host: 6666
  # Create a private network, which allows host-only access to the machine
  # using a specific IP.
  # config.vm.network "private_network", ip: "192.168.33.10"
  # Create a public network, which generally matched to bridged network.
  # Bridged networks make the machine appear as another physical device on
  # your network.
  # config.vm.network "public_network"
  # If true, then any SSH connections made will enable agent forwarding.
  # Default value: false
  # config.ssh.forward_agent = true
  # Share an additional folder to the guest VM. The first argument is
  # the path on the host to the actual folder. The second argument is
  # the path on the guest to mount the folder. And the optional third
  # argument is a set of non-required options.
  config.vm.synced_folder "..", "/var/www/MISP",
                        owner: "www-data", group: "www-data", disabled: false
  # Provider-specific configuration so you can fine-tune various
  # backing providers for Vagrant. These expose provider-specific options.
  # Example for VirtualBox:
  #
  config.vm.provider "virtualbox" do |vb|
  #   # Don't boot with headless mode
  #   vb.gui = true
  #
  #   # Use VBoxManage to customize the VM. For example to change memory:
    vb.customize ["modifyvm", :id, "--memory", "4096"]
    vb.customize ["modifyvm", :id, "--name", "MISP - Ubuntu 17.04 - DEV"]
  end
  #
  # View the documentation for the provider you're using for more
  # information on available options.
  # Enable provisioning with CFEngine. CFEngine Community packages are
  # automatically installed. For example, configure the host as a
  # policy server and optionally a policy file to run:
  #
  # config.vm.provision "cfengine" do |cf|
  #   cf.am_policy_hub = true
  #   # cf.run_file = "motd.cf"
  # end
  #
  # You can also configure and bootstrap a client to an existing
  # policy server:
  #
  # config.vm.provision "cfengine" do |cf|
  #   cf.policy_server_address = "10.0.2.15"
  # end
  # Enable provisioning with Puppet stand alone.  Puppet manifests
  # are contained in a directory path relative to this Vagrantfile.
  # You will need to create the manifests directory and a manifest in
  # the file default.pp in the manifests_path directory.
  #
  # config.vm.provision "puppet" do |puppet|
  #   puppet.manifests_path = "manifests"
  #   puppet.manifest_file  = "site.pp"
  # end
  # Enable provisioning with chef solo, specifying a cookbooks path, roles
  # path, and data_bags path (all relative to this Vagrantfile), and adding
  # some recipes and/or roles.
  #
  # config.vm.provision "chef_solo" do |chef|
  #   chef.cookbooks_path = "../my-recipes/cookbooks"
  #   chef.roles_path = "../my-recipes/roles"
  #   chef.data_bags_path = "../my-recipes/data_bags"
  #   chef.add_recipe "mysql"
  #   chef.add_role "web"
  #
  #   # You may also specify custom JSON attributes:
  #   chef.json = { :mysql_password => "foo" }
  # end
  # Enable provisioning with chef server, specifying the chef server URL,
  # and the path to the validation key (relative to this Vagrantfile).
  #
  # The Opscode Platform uses HTTPS. Substitute your organization for
  # ORGNAME in the URL and validation key.
  #
  # If you have your own Chef Server, use the appropriate URL, which may be
  # HTTP instead of HTTPS depending on your configuration. Also change the
  # validation key to validation.pem.
  #
  # config.vm.provision "chef_client" do |chef|
  #   chef.chef_server_url = "https://api.opscode.com/organizations/ORGNAME"
  #   chef.validation_key_path = "ORGNAME-validator.pem"
  # end
  #
  # If you're using the Opscode platform, your validator client is
  # ORGNAME-validator, replacing ORGNAME with your organization name.
  #
  # If you have your own Chef Server, the default validation client name is
  # chef-validator, unless you changed the configuration.
  #
  #   chef.validation_client_name = "ORGNAME-validator"
 end
--- a/vagrant/bootstrap.sh
+++ b/vagrant/bootstrap.sh
@ -1,383 +0,0 @@
 #! /usr/bin/env bash
 # Database configuration
 DBHOST='localhost'
 DBNAME='misp'
 DBUSER_ADMIN='root'
 DBPASSWORD_ADMIN="$(openssl rand -hex 32)"
 DBUSER_MISP='misp'
 DBPASSWORD_MISP="$(openssl rand -hex 32)"
 # Webserver configuration
 PATH_TO_MISP='/var/www/MISP'
 MISP_BASEURL='http://127.0.0.1:5000'
 MISP_LIVE='1'
 FQDN='localhost'
 # OpenSSL configuration
 OPENSSL_C='LU'
 OPENSSL_ST='State'
 OPENSSL_L='Location'
 OPENSSL_O='Organization'
 OPENSSL_OU='Organizational Unit'
 OPENSSL_CN='Common Name'
 OPENSSL_EMAILADDRESS='info@localhost'
 # GPG configuration
 GPG_REAL_NAME='Real name'
 GPG_EMAIL_ADDRESS='info@localhost'
 GPG_KEY_LENGTH='2048'
 GPG_PASSPHRASE=''
 echo -e "\n--- Installing MISP... ---\n"
 echo -e "\n--- Updating packages list ---\n"
 apt-get -qq update
 echo -e "\n--- Install base packages ---\n"
 apt-get -y install curl gcc git gnupg-agent make python openssl redis-server sudo vim zip > /dev/null 2>&1
 # To prevent a random error when cloning with Git: 'RPC failed; curl 56 GnuTLS recv error (-54): Error in the pull function.'
 git config --global http.postBuffer 1048576000
 git config --global https.postBuffer 1048576000
 echo -e "\n--- Installing and configuring Postfix ---\n"
 # # Postfix Configuration: Satellite system
 # # change the relay server later with:
 # sudo postconf -e 'relayhost = example.com'
 # sudo postfix reload
 echo "postfix postfix/mailname string `hostname`.ourdomain.org" | debconf-set-selections
 echo "postfix postfix/main_mailer_type string 'Satellite system'" | debconf-set-selections
 apt-get install -y postfix > /dev/null 2>&1
 echo -e "\n--- Installing MariaDB specific packages and settings ---\n"
 apt-get install -y mariadb-client mariadb-server > /dev/null 2>&1
 # Secure the MariaDB installation (especially by setting a strong root password)
 sleep 7 # give some time to the DB to launch...
 apt-get install -y expect > /dev/null 2>&1
 expect -f - <<-EOF
  set timeout 10
  spawn mysql_secure_installation
  expect "Enter current password for root (enter for none):"
  send -- "\r"
  expect "Set root password?"
  send -- "y\r"
  expect "New password:"
  send -- "${DBPASSWORD_ADMIN}\r"
  expect "Re-enter new password:"
  send -- "${DBPASSWORD_ADMIN}\r"
  expect "Remove anonymous users?"
  send -- "y\r"
  expect "Disallow root login remotely?"
  send -- "y\r"
  expect "Remove test database and access to it?"
  send -- "y\r"
  expect "Reload privilege tables now?"
  send -- "y\r"
  expect eof
 EOF
 apt-get purge -y expect > /dev/null 2>&1
 echo -e "\n--- Installing Apache2 ---\n"
 apt-get install -y apache2 apache2-doc apache2-utils > /dev/null 2>&1
 a2dismod status > /dev/null 2>&1
 a2enmod ssl > /dev/null 2>&1
 a2enmod rewrite > /dev/null 2>&1
 a2dissite 000-default > /dev/null 2>&1
 a2ensite default-ssl > /dev/null 2>&1
 echo -e "\n--- Installing PHP-specific packages ---\n"
 apt-get install -y libapache2-mod-php php php-cli php-crypt-gpg php-dev php-json php-mysql php-opcache php-readline php-redis php-xml > /dev/null 2>&1
 echo -e "\n--- Restarting Apache ---\n"
 systemctl restart apache2 > /dev/null 2>&1
 echo -e "\n--- Retrieving MISP ---\n"
 mkdir $PATH_TO_MISP
 chown www-data:www-data $PATH_TO_MISP
 cd $PATH_TO_MISP
 #git clone https://github.com/MISP/MISP.git $PATH_TO_MISP
 #git checkout tags/$(git describe --tags `git rev-list --tags --max-count=1`)
 git config core.filemode false
 # chown -R www-data $PATH_TO_MISP
 # chgrp -R www-data $PATH_TO_MISP
 # chmod -R 700 $PATH_TO_MISP
 echo -e "\n--- Installing Mitre's STIX ---\n"
 apt-get install -y python-dev python-pip libxml2-dev libxslt1-dev zlib1g-dev python-setuptools > /dev/null 2>&1
 cd $PATH_TO_MISP/app/files/scripts
 git clone https://github.com/CybOXProject/python-cybox.git
 git clone https://github.com/STIXProject/python-stix.git
 cd $PATH_TO_MISP/app/files/scripts/python-cybox
 git checkout v2.1.0.12
 python setup.py install > /dev/null 2>&1
 cd $PATH_TO_MISP/app/files/scripts/python-stix
 git checkout v1.1.1.4
 python setup.py install > /dev/null 2>&1
 # install mixbox to accomodate the new STIX dependencies:
 cd $PATH_TO_MISP/app/files/scripts/
 git clone https://github.com/CybOXProject/mixbox.git
 cd $PATH_TO_MISP/app/files/scripts/mixbox
 git checkout v1.0.2
 python setup.py install > /dev/null 2>&1
 echo -e "\n--- Retrieving CakePHP... ---\n"
 # CakePHP is included as a submodule of MISP, execute the following commands to let git fetch it:
 cd $PATH_TO_MISP
 git submodule init
 git submodule update
 # Once done, install CakeResque along with its dependencies if you intend to use the built in background jobs:
 cd $PATH_TO_MISP/app
 php composer.phar require kamisama/cake-resque:4.1.2
 php composer.phar config vendor-dir Vendor
 php composer.phar install
 # Enable CakeResque with php-redis
 phpenmod redis
 # To use the scheduler worker for scheduled tasks, do the following:
 cp -fa $PATH_TO_MISP/INSTALL/setup/config.php $PATH_TO_MISP/app/Plugin/CakeResque/Config/config.php
 echo -e "\n--- Setting the permissions... ---\n"
 chown -R www-data:www-data $PATH_TO_MISP
 chmod -R 750 $PATH_TO_MISP
 chmod -R g+ws $PATH_TO_MISP/app/tmp
 chmod -R g+ws $PATH_TO_MISP/app/files
 chmod -R g+ws $PATH_TO_MISP/app/files/scripts/tmp
 echo -e "\n--- Creating a database user... ---\n"
 mysql -u $DBUSER_ADMIN -p$DBPASSWORD_ADMIN -e "create database $DBNAME;"
 mysql -u $DBUSER_ADMIN -p$DBPASSWORD_ADMIN -e "grant usage on *.* to $DBNAME@localhost identified by '$DBPASSWORD_MISP';"
 mysql -u $DBUSER_ADMIN -p$DBPASSWORD_ADMIN -e "grant all privileges on $DBNAME.* to '$DBUSER_MISP'@'localhost';"
 mysql -u $DBUSER_ADMIN -p$DBPASSWORD_ADMIN -e "flush privileges;"
 # Import the empty MISP database from MYSQL.sql
 mysql -u $DBUSER_MISP -p$DBPASSWORD_MISP $DBNAME < /var/www/MISP/INSTALL/MYSQL.sql
 echo -e "\n--- Configuring Apache... ---\n"
 # !!! apache.24.misp.ssl seems to be missing
 #cp $PATH_TO_MISP/INSTALL/apache.24.misp.ssl /etc/apache2/sites-available/misp-ssl.conf
 # If a valid SSL certificate is not already created for the server, create a self-signed certificate:
 sudo openssl req -newkey rsa:4096 -days 365 -nodes -x509 -subj "/C=$OPENSSL_C/ST=$OPENSSL_ST/L=$OPENSSL_L/O=<$OPENSSL_O/OU=$OPENSSL_OU/CN=$OPENSSL_CN/emailAddress=$OPENSSL_EMAILADDRESS" -keyout /etc/ssl/private/misp.local.key -out /etc/ssl/private/misp.local.crt
 echo -e "\n--- Add a VirtualHost for MISP ---\n"
 cat > /etc/apache2/sites-available/misp-ssl.conf <<EOF
 <VirtualHost *:80>
        ServerAdmin me@me.local
        ServerName misp.local
        DocumentRoot $PATH_TO_MISP/app/webroot
        <Directory $PATH_TO_MISP/app/webroot>
            Options -Indexes
            AllowOverride all
            Require all granted
        </Directory>
        LogLevel warn
        ErrorLog /var/log/apache2/misp.local_error.log
        CustomLog /var/log/apache2/misp.local_access.log combined
        ServerSignature Off
 </VirtualHost>
 EOF
 # cat > /etc/apache2/sites-available/misp-ssl.conf <<EOF
 # <VirtualHost *:80>
 #         ServerName misp.local
 #
 #         Redirect permanent / https://$FQDN
 #
 #         LogLevel warn
 #         ErrorLog /var/log/apache2/misp.local_error.log
 #         CustomLog /var/log/apache2/misp.local_access.log combined
 #         ServerSignature Off
 # </VirtualHost>
 #
 # <VirtualHost *:443>
 #         ServerAdmin me@me.local
 #         ServerName misp.local
 #         DocumentRoot $PATH_TO_MISP/app/webroot
 #
 #         <Directory $PATH_TO_MISP/app/webroot>
 #             Options -Indexes
 #             AllowOverride all
 #             Require all granted
 #         </Directory>
 #
 #         SSLEngine On
 #         SSLCertificateFile /etc/ssl/private/misp.local.crt
 #         SSLCertificateKeyFile /etc/ssl/private/misp.local.key
 #         #SSLCertificateChainFile /etc/ssl/private/misp-chain.crt
 #
 #         LogLevel warn
 #         ErrorLog /var/log/apache2/misp.local_error.log
 #         CustomLog /var/log/apache2/misp.local_access.log combined
 #         ServerSignature Off
 # </VirtualHost>
 # EOF
 # activate new vhost
 a2dissite default-ssl
 a2ensite misp-ssl
 echo -e "\n--- Restarting Apache ---\n"
 systemctl restart apache2 > /dev/null 2>&1
 echo -e "\n--- Configuring log rotation ---\n"
 cp $PATH_TO_MISP/INSTALL/misp.logrotate /etc/logrotate.d/misp
 echo -e "\n--- MISP configuration ---\n"
 # There are 4 sample configuration files in /var/www/MISP/app/Config that need to be copied
 cp -a $PATH_TO_MISP/app/Config/bootstrap.default.php /var/www/MISP/app/Config/bootstrap.php
 cp -a $PATH_TO_MISP/app/Config/database.default.php /var/www/MISP/app/Config/database.php
 cp -a $PATH_TO_MISP/app/Config/core.default.php /var/www/MISP/app/Config/core.php
 cp -a $PATH_TO_MISP/app/Config/config.default.php /var/www/MISP/app/Config/config.php
 cat > $PATH_TO_MISP/app/Config/database.php <<EOF
 <?php
 class DATABASE_CONFIG {
        public \$default = array(
                'datasource' => 'Database/Mysql',
                //'datasource' => 'Database/Postgres',
                'persistent' => false,
                'host' => '$DBHOST',
                'login' => '$DBUSER_MISP',
                'port' => 3306, // MySQL & MariaDB
                //'port' => 5432, // PostgreSQL
                'password' => '$DBPASSWORD_MISP',
                'database' => '$DBNAME',
                'prefix' => '',
                'encoding' => 'utf8',
        );
 }
 EOF
 # and make sure the file permissions are still OK
 chown -R www-data:www-data $PATH_TO_MISP/app/Config
 chmod -R 750 $PATH_TO_MISP/app/Config
 # Set some MISP directives with the command line tool
 $PATH_TO_MISP/app/Console/cake Baseurl $MISP_BASEURL
 $PATH_TO_MISP/app/Console/cake Live $MISP_LIVE
 echo -e "\n--- Generating a GPG encryption key... ---\n"
 apt-get install -y rng-tools haveged
 mkdir $PATH_TO_MISP/.gnupg
 chmod 700 $PATH_TO_MISP/.gnupg
 cat >gen-key-script <<EOF
    %echo Generating a default key
    Key-Type: default
    Key-Length: $GPG_KEY_LENGTH
    Subkey-Type: default
    Name-Real: $GPG_REAL_NAME
    Name-Comment: no comment
    Name-Email: $GPG_EMAIL_ADDRESS
    Expire-Date: 0
    Passphrase: '$GPG_PASSPHRASE'
    # Do a commit here, so that we can later print "done"
    %commit
    %echo done
 EOF
 gpg --homedir $PATH_TO_MISP/.gnupg --batch --gen-key gen-key-script
 rm gen-key-script
 # And export the public key to the webroot
 gpg --homedir $PATH_TO_MISP/.gnupg --export --armor $EMAIL_ADDRESS > $PATH_TO_MISP/app/webroot/gpg.asc
 echo -e "\n--- Making the background workers start on boot... ---\n"
 chmod 755 $PATH_TO_MISP/app/Console/worker/start.sh
 cat > /etc/systemd/system/workers.service  <<EOF
 [Unit]
 Description=Start the background workers at boot
 [Service]
 Type=forking
 User=www-data
 ExecStart=$PATH_TO_MISP/app/Console/worker/start.sh
 [Install]
 WantedBy=multi-user.target
 EOF
 systemctl enable workers.service > /dev/null
 systemctl restart workers.service > /dev/null
 echo -e "\n--- Installing MISP modules... ---\n"
 apt-get install -y python3-dev python3-pip libpq5 libjpeg-dev > /dev/null 2>&1
 cd /usr/local/src/
 git clone https://github.com/MISP/misp-modules.git
 cd misp-modules
 pip3 install -I -r REQUIREMENTS > /dev/null 2>&1
 pip3 install -I . > /dev/null 2>&1
 cat > /etc/systemd/system/misp-modules.service  <<EOF
 [Unit]
 Description=Start the misp modules server at boot
 [Service]
 Type=forking
 User=www-data
 ExecStart=/bin/sh -c 'misp-modules -l 0.0.0.0 -s &'
 [Install]
 WantedBy=multi-user.target
 EOF
 systemctl enable misp-modules.service > /dev/null
 systemctl restart misp-modules.service > /dev/null
 echo -e "\n--- Restarting Apache... ---\n"
 systemctl restart apache2 > /dev/null 2>&1
 sleep 5
 echo -e "\n--- Updating the galaxies... ---\n"
 sudo -E $PATH_TO_MISP/app/Console/cake userInit -q > /dev/null
 AUTH_KEY=$(mysql -u $DBUSER_MISP -p$DBPASSWORD_MISP misp -e "SELECT authkey FROM users;" | tail -1)
 curl -k -X POST -H "Authorization: $AUTH_KEY" -H "Accept: application/json" -v http://127.0.0.1/galaxies/update > /dev/null 2>&1
 echo -e "\n--- Updating the taxonomies... ---\n"
 curl -k -X POST -H "Authorization: $AUTH_KEY" -H "Accept: application/json" -v http://127.0.0.1/taxonomies/update > /dev/null 2>&1
 # echo -e "\n--- Enabling MISP new pub/sub feature (ZeroMQ)... ---\n"
 # # ZeroMQ depends on the Python client for Redis
 # pip install redis > /dev/null 2>&1
 # ## Install ZeroMQ and prerequisites
 # apt-get install -y pkg-config > /dev/null 2>&1
 # cd /usr/local/src/
 # git clone git://github.com/jedisct1/libsodium.git > /dev/null 2>&1
 # cd libsodium
 # /autogen.sh > /dev/null 2>&1
 # ./configure > /dev/null 2>&1
 # make check > /dev/null 2>&1
 # make > /dev/null 2>&1
 # make install > /dev/null 2>&1
 # ldconfig > /dev/null 2>&1
 # cd /usr/local/src/
 # wget https://archive.org/download/zeromq_4.1.5/zeromq-4.1.5.tar.gz > /dev/null 2>&1
 # tar -xvf zeromq-4.1.5.tar.gz > /dev/null 2>&1
 # cd zeromq-4.1.5/
 # ./autogen.sh > /dev/null 2>&1
 # ./configure > /dev/null 2>&1
 # make check > /dev/null 2>&1
 # make > /dev/null 2>&1
 # make install > /dev/null 2>&1
 # ldconfig > /dev/null 2>&1
 # ## install pyzmq
 # pip install pyzmq > /dev/null 2>&1
 echo -e "\e[32mMISP is ready\e[0m"
 echo -e "\e[0mPoint your Web browser to \e[33m$MISP_BASEURL\e[0m"
 echo -e "\e[0mDefault user/pass = \e[33madmin@admin.test/admin\e[0m"
		`@ -1 +1 @@`
			`Subproject commit 6bb2a0738365c3b62154e9ccd2adccc012a64a35`				`Subproject commit 146f8fd1abde947f9f277205ddc5f9392d545527`
		`@ -0,0 +1 @@`
							`Subproject commit 8622be9f3074ead2e315803aac94eec6f16461b5`