MISP
/
misp-vagrant
mirror of https://github.com/MISP/misp-vagrant
2
0
Fork 0
Code Issues Releases Wiki Activity

Various improvements.

pull/4/head
Cédric Bonhomme 2017-07-06 10:41:17 +02:00
parent a9ce4981db
commit 345a4a5a87
No known key found for this signature in database
GPG Key ID: A1CB94DE57B7A70D
2 changed files with 10 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
README.rst
View File

@ -7,6 +7,7 @@ TODO:
* check the GPG key generation; * check the GPG key generation;
* check the generation of the SSL certificate; * check the generation of the SSL certificate;
* check the configuration of postfix
* make the background workers start on boot; * make the background workers start on boot;
* apache.24.misp.ssl seems to be missing; * apache.24.misp.ssl seems to be missing;
* provide more options through variables (for the gpg keys, etc.). * provide more options through variables (for the gpg keys, etc.).

23
bootstrap.sh
View File

@ -25,6 +25,7 @@ OPENSSL_EMAILADDRESS='info@circl.lu'
# GPG configuration # GPG configuration
GPG_REAL_NAME='Cedric' GPG_REAL_NAME='Cedric'
GPG_EMAIL_ADDRESS='info@circl.lu' GPG_EMAIL_ADDRESS='info@circl.lu'
GPG_KEY_LENGTH='2048'
GPG_PASSPHRASE='' GPG_PASSPHRASE=''
@ -154,12 +155,12 @@ chmod -R g+ws $PATH_TO_MISP/app/files/scripts/tmp
echo -e "\n--- Creating a database user... ---\n" echo -e "\n--- Creating a database user... ---\n"
mysql -u root -p$DBPASSWORD_AMIN -e "create database $DBNAME;" mysql -u $DBUSER_AMIN -p$DBPASSWORD_AMIN -e "create database $DBNAME;"
mysql -u root -p$DBPASSWORD_AMIN -e "grant usage on *.* to $DBNAME@localhost identified by '$DBPASSWORD_MISP';" mysql -u $DBUSER_AMIN -p$DBPASSWORD_AMIN -e "grant usage on *.* to $DBNAME@localhost identified by '$DBPASSWORD_MISP';"
mysql -u root -p$DBPASSWORD_AMIN -e "grant all privileges on $DBNAME.* to '$DBUSER_MISP'@'localhost';" mysql -u $DBUSER_AMIN -p$DBPASSWORD_AMIN -e "grant all privileges on $DBNAME.* to '$DBUSER_MISP'@'localhost';"
mysql -u root -p$DBPASSWORD_AMIN -e "flush privileges;" mysql -u $DBUSER_AMIN -p$DBPASSWORD_AMIN -e "flush privileges;"
# Import the empty MISP database from MYSQL.sql # Import the empty MISP database from MYSQL.sql
mysql -u misp -p$DBPASSWORD_MISP $DBNAME < /var/www/MISP/INSTALL/MYSQL.sql mysql -u $DBUSER_MISP -p$DBPASSWORD_MISP $DBNAME < /var/www/MISP/INSTALL/MYSQL.sql
echo -e "\n--- Configuring Apache... ---\n" echo -e "\n--- Configuring Apache... ---\n"
@ -204,7 +205,6 @@ cat > /etc/apache2/sites-available/misp-ssl.conf <<EOF
ServerSignature Off ServerSignature Off
</VirtualHost> </VirtualHost>
EOF EOF
# activate new vhost # activate new vhost
a2dissite default-ssl a2dissite default-ssl
a2ensite misp-ssl a2ensite misp-ssl
@ -218,7 +218,6 @@ echo -e "\n--- Configuring log rotation ---\n"
cp $PATH_TO_MISP/INSTALL/misp.logrotate /etc/logrotate.d/misp cp $PATH_TO_MISP/INSTALL/misp.logrotate /etc/logrotate.d/misp
echo -e "\n--- MISP configuration ---\n" echo -e "\n--- MISP configuration ---\n"
# There are 4 sample configuration files in /var/www/MISP/app/Config that need to be copied # There are 4 sample configuration files in /var/www/MISP/app/Config that need to be copied
cat > $PATH_TO_MISP/app/Config/database.php <<EOF cat > $PATH_TO_MISP/app/Config/database.php <<EOF
@ -239,7 +238,6 @@ class DATABASE_CONFIG {
); );
} }
EOF EOF
# and make sure the file permissions are still OK # and make sure the file permissions are still OK
chown -R www-data:www-data $PATH_TO_MISP/app/Config chown -R www-data:www-data $PATH_TO_MISP/app/Config
chmod -R 750 $PATH_TO_MISP/app/Config chmod -R 750 $PATH_TO_MISP/app/Config
@ -251,14 +249,14 @@ chmod 700 $PATH_TO_MISP/.gnupg
cat >gen-key-script <<EOF cat >gen-key-script <<EOF
%echo Generating a default key %echo Generating a default key
Key-Type: default Key-Type: default
Key-Length: 1024 Key-Length: $GPG_KEY_LENGTH
Subkey-Type: default Subkey-Type: default
Name-Real: $GPG_REAL_NAME Name-Real: $GPG_REAL_NAME
Name-Comment: with stupid passphrase Name-Comment: no comment
Name-Email: $GPG_EMAIL_ADDRESS Name-Email: $GPG_EMAIL_ADDRESS
Expire-Date: 0 Expire-Date: 0
Passphrase: '$GPG_PASSPHRASE' Passphrase: '$GPG_PASSPHRASE'
# Do a commit here, so that we can later print "done" :-) # Do a commit here, so that we can later print "done"
%commit %commit
%echo done %echo done
EOF EOF
@ -272,9 +270,6 @@ gpg --homedir $PATH_TO_MISP/.gnupg --export --armor $EMAIL_ADDRESS > $PATH_TO_MI
# !!! TODO # !!! TODO
echo -e "\n--- MISP is ready! ---\n" echo -e "\n--- MISP is ready! ---\n"
echo -e "\n--- Point your Web browser to http://127.0.0.1:5000 ---\n" echo -e "\n--- Point your Web browser to http://127.0.0.1:5000 ---\n"
echo -e "\n--- Default user/pass = admin@admin.test/admin ---\n" echo -e "\n--- Default user/pass = admin@admin.test/admin ---\n"