Commit e1132440 authored by Daniela Daniel's avatar Daniela Daniel
Browse files

Update README.md

parent 6df4d335
......@@ -40,7 +40,7 @@ enabled=1
gpgcheck=1
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-mysql
```
Copy the GPG key in [https://dev.mysql.com/doc/refman/5.7/en/checking-gpg-signature.html] to `/etc/pki/rpm-gpg/RPM-GPG-KEY-mysql` and install MySQL:
Copy the GPG key in https://dev.mysql.com/doc/refman/5.7/en/checking-gpg-signature.html to `/etc/pki/rpm-gpg/RPM-GPG-KEY-mysql` and install MySQL:
```sh
yum repolist enabled | grep mysql
yum install mysql-community-server
......@@ -59,6 +59,40 @@ mysql> exit;
mysql_tzinfo_to_sql /usr/share/zoneinfo | mysql -u root mysql -p
```
### LDAP client
```sh
yum install openldap-clients nss-pam-ldapd pam_ldap
authconfig --enableldap --enableldapauth --ldapserver="<ldap_server>" --ldapbasedn="<base_dn>" --update
authconfig --enableforcelegacy --update
```
You might need to edit `/etc/nslcd.conf` to provide cetificate info. Test the client:
```sh
systemctl restart nslcd
getent passwd
```
### IP Tables
```sh
yum install iptables-services
iptables --flush INPUT
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 20 -j ACCEPT
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 3306 -j ACCEPT
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 21 -j ACCEPT
iptables -A INPUT -p tcp -m tcp --sport 1024:65535 --dport 20:65535 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A INPUT -j DROP
service iptables save
systemctl enable iptables
```
### Python 3
Install Python 3 and set up a virtual environment for user _<vsftpd_service>_. Then become _<vsftpd_service>_ user:
```sh
pip install --upgrade pip
pip install -r requirements.txt
pip install gunicorn
```
### FTP
Create user `vsftpd` and configure `vsftpd`:
```ssh
......@@ -104,40 +138,6 @@ chown root:root /etc/pam.d/vsftpd
```
Download mirrors: https://centos.pkgs.org/7/cheese-x86_64/pam_mysql-0.7-0.21.rc1.el7.x86_64.rpm.html
### LDAP client
```sh
yum install openldap-clients nss-pam-ldapd pam_ldap
authconfig --enableldap --enableldapauth --ldapserver="<ldap_server>" --ldapbasedn="<base_dn>" --update
authconfig --enableforcelegacy --update
```
You might need to edit `/etc/nslcd.conf` to provide cetificate info. Test the client:
```sh
systemctl restart nslcd
getent passwd
```
### IP Tables
```sh
yum install iptables-services
iptables --flush INPUT
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 20 -j ACCEPT
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 3306 -j ACCEPT
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 21 -j ACCEPT
iptables -A INPUT -p tcp -m tcp --sport 1024:65535 --dport 20:65535 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A INPUT -j DROP
service iptables save
systemctl enable iptables
```
### Python 3
Install Python 3 and set up a virtual environment for user _<vsftpd_service>_. Then become _<vsftpd_service>_ user:
```sh
pip install --upgrade pip
pip install -r requirements.txt
pip install gunicorn
```
### Deploy the Django database
```sh
python manage.py makemigrations
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment