Last active
July 5, 2018 09:57
-
-
Save MushuLeDragon/5e300d1b85af2174a40b453466c6c9f0 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#! /bin/bash | |
# Désactiver SELinux | |
setenforce 0 | |
# https://www.tala-informatique.fr/wiki/index.php/Gestion_des_disques | |
# Création du volume RAID avec mdadm | |
echo "Création du volume RAID avec mdadm" | |
fdisk -l | |
mdadm --create /dev/md0 --level=5 --assume-clean --raid-devices=3 /dev/sd[bcd]1 | |
# Démonisation : On indique à mdadm que l'on veut charger le volume RAID à chaque démarrage | |
echo "Démonisation : On indique à mdadm que l'on veut charger le volume RAID à chaque démarrage" | |
mdadm --monitor --daemonise /dev/md0 | |
# Formatage du volume /dev/md0 en ext4 | |
echo "Formatage du volume /dev/md0 en ext4" | |
fdisk -l /dev/md0 | |
mkfs.ext4 /dev/md0 | |
mkdir /opt/raid | |
mount /dev/md0 /opt/raid | |
mount # pour vérifier le disque monté | |
echo "/dev/md0 /opt/raid ext4 defaults 0 2" >> /etc/fstab # Permet de mount le disque après démarrage | |
cat /proc/mdstat # pour voir l'avancement de de la mise à jour de la grappe RAID | |
# Définir un point de montage | |
# https://www.tala-informatique.fr/wiki/index.php/Systemctl#Gestion_des_points_de_montage | |
echo "Définir un point de montage" | |
touch /etc/systemd/system/opt-raid.mount | |
echo "[Unit]" >> /etc/systemd/system/opt-raid.mount | |
echo "Description=Disque RAID5" >> /etc/systemd/system/opt-raid.mount | |
echo "" >> /etc/systemd/system/opt-raid.mount | |
echo "[Mount]" >> /etc/systemd/system/opt-raid.mount | |
echo "What=/dev/md0" >> /etc/systemd/system/opt-raid.mount | |
echo "Where=/opt/raid" >> /etc/systemd/system/opt-raid.mount | |
echo "Type=ext4" >> /etc/systemd/system/opt-raid.mount | |
echo "Options=defaults" >> /etc/systemd/system/opt-raid.mount | |
echo "" >> /etc/systemd/system/opt-raid.mount | |
echo "[Install]" >> /etc/systemd/system/opt-raid.mount | |
echo "WantedBy=local-fs.target" >> /etc/systemd/system/opt-raid.mount | |
# Paramétrage de systemctl : | |
echo "Paramétrage de systemctl" | |
systemctl daemon-reload # On informe sytemctl | |
systemctl start opt-raid.mount # On démarre le point de montage | |
systemctl enable opt-raid.mount # On l'enregistre au démarrage | |
echo "Contrôle du point de montage" | |
systemctl list-units --type=mount | grep opt-raid | |
cat /etc/systemd/system/opt-raid.mount | |
yum -y install samba4 samba-common samba-client | |
# Définir les utilisateurs et les groupes | |
smbpasswd -a osboxes # Définir le mot de passe de l'osboxes : 1234 | |
smbpasswd -a root # Définir le mot de passe de l'root : osboxes.org | |
echo "[perso]" >> /etc/samba/smb.conf | |
echo " comment = Accessible au groupe users" >> /etc/samba/smb.conf | |
echo " path = /opt/shares/perso" >> /etc/samba/smb.conf | |
echo " valid users = @users" >> /etc/samba/smb.conf | |
echo " force group = users" >> /etc/samba/smb.conf | |
echo " create mask = 0660" >> /etc/samba/smb.conf | |
echo " directory mask = 0771" >> /etc/samba/smb.conf | |
echo " writable = yes" >> /etc/samba/smb.conf | |
mkdir -p /opt/shares/perso | |
chown root.users /opt/shares/perso | |
chmod -R 775 /opt/shares/perso | |
echo "[image]" >> /etc/samba/smb.conf | |
echo " comment = Accessible au groupe users" >> /etc/samba/smb.conf | |
echo " path = /opt/shares/image" >> /etc/samba/smb.conf | |
echo " valid users = @users" >> /etc/samba/smb.conf | |
echo " force group = users" >> /etc/samba/smb.conf | |
echo " create mask = 0660" >> /etc/samba/smb.conf | |
echo " directory mask = 0771" >> /etc/samba/smb.conf | |
echo " writable = yes" >> /etc/samba/smb.conf | |
mkdir -p /opt/shares/image | |
chown root.users /opt/shares/image | |
chmod -R 775 /opt/shares/image | |
# Arrêt du pare feu | |
systemctl stop firewalld.service | |
# Test du fonctionnement du partage | |
echo "salut" > /opt/shares/perso/test.txt | |
cat /opt/shares/perso/test.txt | |
#Installation ClamAV | |
yum -y install epel-release | |
yum -y update | |
yum clean all | |
yum -y install clamav-server clamav-data clamav-update clamav-filesystem clamav clamav-scanner-systemd clamav-devel clamav-lib clamav-server-systemd | |
# Création d'un cron toutes les heures | |
crontab -e | |
# min heure jour semaine mois | |
* */1 * * * /usr/bin/freshclam --quiet # Commande pour scan toutes les heures | |
# * signifie toutes les heures, à la Minute 3 | |
# Sauvegarde des données personnelles | |
yum install -y httpd php mod_ssl subversion mod_dav_svn | |
cd /etc/httpd/conf.d/ | |
mkdir /opt/ssl | |
cd /opt/ssl | |
openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout www.svntest.fr.key -out www.svntest.fr.crt | |
nano /etc/httpd/conf.d/svn.conf | |
# www.svntest.fr.key / www.svntest.fr.crt | |
<VirtualHost 192.168.64.140:443> | |
ServerName 192.168.64.140 | |
SSLEngine on | |
SSLCertificateFile /opt/ssl/www.svntest.fr.crt | |
SSLCertificateKeyFile /opt/ssl/www.svntest.fr.key | |
<Directory /opt/shares/perso/user9> | |
AllowOverride All | |
Require all granted | |
</Directory> | |
<Location /svnroot> | |
DAV svn | |
SVNListParentPath On | |
SVNParentPath /opt/shares/perso | |
<LimitExcept GET PROPFIND OPTIONS REPORT> | |
</LimitExcept> | |
</Location> | |
</VirtualHost> | |
service httpd start | |
cd /opt/shares/perso | |
svnadmin create user72 | |
# Vérifier l'accès au partage sur Windows : \\192.168.64.140 (dans l'exploreur) | |
# Dans le navigateur sur la machine windows/mac accède à l'url : https://192.168.64.140/svnroot | |
# On voit apparaitre le dossier créé juste avant | |
#Ajout des lignes : | |
cd /etc/httpd/conf/httpd.conf | |
service httpd start | |
netstat -atnp | grep httpd # Pour vérifier les adresses et les ports | |
touch /etc/httpd/conf.d/vhost.conf | |
chown -R apache. /opt/ssl # Donner les droits à Apache sur le dossier ssl | |
# ---------------------------------------------------------------------------- | |
# Démarrer interface graphique | |
systemctl isolate runlevel5 | |
systemctl isolate runlevel0 # pour eteindre | |
systemctl isolate runlevel5 | |
WantedBy | |
RequiredBy -> local-fs.target | |
systemctl enable du fichier | |
le fichier : opt-raid.mount |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment