CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

Added ssh section to network install

Browse Source
This commit is contained in:
Mike Reeves
2018-02-05 14:38:58 -05:00
parent 5a6c66bde5
commit fd02e4a754
1 changed files with 20 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
so-setup-network.sh
View File

@@ -21,7 +21,7 @@ if (whiptail --title "Security Onion Setup" --yesno "Are you sure you want to in
# Get list of NICS if it isn't master only # Get list of NICS if it isn't master only
if [ $INSTALLTYPE != 'MASTERONLY' ]; then if [ $INSTALLTYPE != 'MASTERONLY' ]; then
# Another option: cat /proc/net/dev | awk -F: '{print $1}' | grep -v 'lo\|veth\|br\|dock\|Inter\|byte'
NICS=$(ip link | awk -F: '$0 !~ "lo|vir|veth|br|docker|wl|^[^0-9]"{print $2 " \"" "Interface" "\"" " OFF"}') NICS=$(ip link | awk -F: '$0 !~ "lo|vir|veth|br|docker|wl|^[^0-9]"{print $2 " \"" "Interface" "\"" " OFF"}')
# Pick which interface you want to use as the Management # Pick which interface you want to use as the Management
@@ -32,8 +32,10 @@ if (whiptail --title "Security Onion Setup" --yesno "Are you sure you want to in
BNICS=$(whiptail --title "NIC Setup" --checklist "Please add NICs to the Monitor Interfave" 20 78 12 ${FNICS[@]} 3>&1 1>&2 2>&3 ) BNICS=$(whiptail --title "NIC Setup" --checklist "Please add NICs to the Monitor Interfave" 20 78 12 ${FNICS[@]} 3>&1 1>&2 2>&3 )
fi fi
if [ $INSTALLTYPE == 'SENSORONLY' ]; then if [ $INSTALLTYPE == 'SENSORONLY' ]; then
# Get the master server for the install # Get the master server for the install
MASTERSRV=$(whiptail --title "Enter your Master Server IP Address") MASTERSRV=$(whiptail --title "Enter your Master Server IP Address" --inputbox 10 60 1.2.3.4 3>&1 1>&2 2>&3)
fi fi
# Time to get asnwers to questions so we can fill out the pillar file # Time to get asnwers to questions so we can fill out the pillar file
@@ -50,6 +52,15 @@ if (whiptail --title "Security Onion Setup" --yesno "Are you sure you want to in
## Do all the things!! ## ## Do all the things!! ##
######################### #########################
# Copy over the SSH key
if [ $INSTALLTYPE == 'SENSORONLY' ]; then
# Generate SSH Key
cat /dev/zero | ssh-keygen -t rsa -q -N ""
#Copy the key over to the master
ssh-copy-id socore@MASTERSRV
fi
# Detect Base OS # Detect Base OS
if [ -f /etc/redhat-release ]; then if [ -f /etc/redhat-release ]; then
OS=centos OS=centos
@@ -77,9 +88,14 @@ if (whiptail --title "Security Onion Setup" --yesno "Are you sure you want to in
else else
ADDUSER=useradd ADDUSER=useradd
apt-get -y upgrade apt-get -y upgrade
wget -O - https://repo.saltstack.com/apt/ubuntu/16.04/amd64/latest/SALTSTACK-GPG-KEY.pub | apt-key add - # grab the version from the os-release file
UVER=$(grep VERSION_ID /etc/os-release | awk)
wget -O - https://repo.saltstack.com/apt/ubuntu/$UVER/amd64/latest/SALTSTACK-GPG-KEY.pub | apt-key add -
apt-get update apt-get update
apt-get install salt-minion apt-get -y install salt-minion
if [ $INSTALLTYPE != 'SENSORONLY' ]; then
apt-get -y install salt-master
fi
fi fi
# Create so-core user # Create so-core user