KNEL/KNELServerBuild
2
0
Fork 0
Code Pull Requests Actions Packages Releases 1 Activity

secops - wazuh . hackers quake!

Browse Source
This commit is contained in:
Charles N Wyble
2025-06-25 17:10:02 -05:00
parent 4f416b9748
commit 8009651e1e
3 changed files with 26 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
Modules/Security/secharden-ossec.sh
View File

@@ -1 +0,0 @@
#!/bin/bash

10
Modules/Security/secharden-wazuh.sh Normal file
View File

@@ -0,0 +1,10 @@
#!/bin/bash
curl -s https://packages.wazuh.com/key/GPG-KEY-WAZUH | gpg --no-default-keyring --keyring gnupg-ring:/usr/share/keyrings/wazuh.gpg --import && chmod 644 /usr/share/keyrings/wazuh.gpg
echo "deb [signed-by=/usr/share/keyrings/wazuh.gpg] https://packages.wazuh.com/4.x/apt/ stable main" | tee -a /etc/apt/sources.list.d/wazuh.list
apt-get update
WAZUH_MANAGER="tsys-nsm.knel.net" apt-get install wazuh-agent
systemctl daemon-reload
systemctl enable wazuh-agent
systemctl start wazuh-agent
echo "wazuh-agent hold" | dpkg --set-selections

25
SetupNewSystem.sh
View File

@@ -353,12 +353,18 @@ systemctl start postfix
/usr/sbin/accton on
#if [ $PHYSICAL_HOST -gt 0 ]; then
if [ $PHYSICAL_HOST -gt 0 ]; then
cpufreq-set -r -g performance
cpupower frequency-set --governor performance
# Potentially merge the below if needed.
# power-profiles-daemon
# powerprofilesctl set performance
#tsys1# systemctl enable power-profiles-daemon
#tsys1# systemctl start power-profiles-daemon
#fi
fi
if [ "$VIRT_GUEST" = 1 ]; then
tuned-adm profile virtual-guest
@@ -388,6 +394,13 @@ curl --silent ${DL_ROOT}/Modules/Security/secharden-ssh.sh|$(which bash)
echo Completed running "$FUNCNAME"
}
function secharden-wazuh()
{
echo Now running "$FUNCNAME"
curl --silent ${DL_ROOT}/Modules/Security/secharden-wazuh.sh|$(which bash)
echo Completed running "$FUNCNAME"
}
function secharden-auto-upgrades()
{
echo Now running "$FUNCNAME"
@@ -409,12 +422,6 @@ echo Now running "$FUNCNAME"
echo Completed running "$FUNCNAME"
}
function secharden-ossec()
{
echo Now running "$FUNCNAME"
#curl --silent ${DL_ROOT}/Modules/Security/secharden-audit-agents.sh|$(which bash)
echo Completed running "$FUNCNAME"
}
function secharden-scap-stig()
{
@@ -447,9 +454,9 @@ global-systemServiceConfigurationFiles
global-postPackageConfiguration
secharden-ssh
secharden-wazuh
#secharden-2fa
#secharden-auto-upgrades
#secharden-audit-agents
#secharden-ossec
#secharden-scap-stig
#auth-cloudron-ldap