94 lines
1.7 KiB
Markdown
94 lines
1.7 KiB
Markdown
# acCrocRadio setup Sistema
|
|
|
|
## DNS
|
|
|
|
DNS-zone presso il registrar, esempio: accroc.radio
|
|
|
|
```
|
|
* 10800 IN A 10.000.00.001
|
|
@ 10800 IN A 10.000.00.001
|
|
wiki 10800 IN CNAME accroc.radio.
|
|
ac 10800 IN CNAME accroc.radio.
|
|
wp 10800 IN CNAME accroc.radio.
|
|
www 10800 IN CNAME accroc.radio.
|
|
```
|
|
|
|
## Installazione
|
|
|
|
Debian 10
|
|
|
|
apt update ; apt upgrade ; apt clean
|
|
|
|
apt install sudo ssh screen net-tools htop strace ntp ufw figlet apg wipe
|
|
apt install curl git apt-transport-https tmux byobu man elinks grc dnsutils
|
|
apt install fish tree zip nmap rsync mutt logwatch rkhunter
|
|
|
|
## Hostname
|
|
|
|
hostnamectl set-hostname croco
|
|
|
|
figlet: figlet cRoc > /etc/motd
|
|
|
|
## Firewall
|
|
|
|
ufw default deny incoming
|
|
ufw default allow outgoing
|
|
ufw allow ssh
|
|
ufw allow 80 (e 443, 2022, 8000, 8005)
|
|
ufw enable
|
|
|
|
Consigliato cambiare porta sshd, abilitare ssh login passwordless
|
|
|
|
## Time
|
|
|
|
dpkg-reconfigure tzdata
|
|
|
|
Europe/Rome
|
|
|
|
## Dotfiles
|
|
|
|
~/.bashrc
|
|
|
|
```
|
|
alias rm='rm -i'
|
|
alias cp='cp -i'
|
|
alias mv='mv -i'
|
|
alias docker='grc docker'
|
|
```
|
|
|
|
~/.nanorc
|
|
|
|
```
|
|
syntax "all" "[\.]*$"
|
|
color green "^#.*$"
|
|
set tabsize 4
|
|
set tabstospaces
|
|
```
|
|
|
|
## Mailserver
|
|
|
|
Posta solo locale.
|
|
|
|
apt install postfix
|
|
|
|
Per riconfigurare:
|
|
|
|
dpkg-reconfigure postfix
|
|
|
|
## SWAP
|
|
|
|
free -h
|
|
fallocate -l 2G /swapfile
|
|
chmod 600 /swapfile
|
|
mkswap /swapfile
|
|
swapon /swapfile
|
|
swapon --show
|
|
sudo cp /etc/fstab /etc/fstab.bak
|
|
echo '/swapfile none swap sw 0 0' | sudo tee -a /etc/fstab
|
|
cat /proc/sys/vm/swappiness
|
|
sysctl vm.swappiness=10
|
|
echo vm.swappiness=10 >> /etc/sysctl.conf
|
|
cat /proc/sys/vm/vfs_cache_pressure
|
|
sysctl vm.vfs_cache_pressure=50
|
|
echo vm.vfs_cache_pressure=50 >> /etc/sysctl.conf
|