issue155:tutoriel1
Différences
Ci-dessous, les différences entre deux révisions de la page.
Les deux révisions précédentesRévision précédenteProchaine révision | Révision précédenteDernière révisionLes deux révisions suivantes | ||
issue155:tutoriel1 [2020/03/28 17:49] – auntiee | issue155:tutoriel1 [2020/04/04 18:05] – andre_domenech | ||
---|---|---|---|
Ligne 1: | Ligne 1: | ||
- | One of our readers, Joe Wong, wanted to know how to set up things like TOR and nmap and the like on Ubuntu. As his questions were too broad to cover in questions and answers, I decided to do a mini tutorial on it. | + | **One of our readers, Joe Wong, wanted to know how to set up things like TOR and nmap and the like on Ubuntu. As his questions were too broad to cover in questions and answers, I decided to do a mini tutorial on it. |
- | Let us start with the short ones, and work ourselves up to the longer winded ones? Nmap is easy. ‘Sudo apt install nmap’ will do the trick. Should you prefer the GUI, you need to install Zenmap. The nmap website has great tutorials on how to use nmap / zenmap. Documentation here: https:// | + | Let us start with the short ones, and work ourselves up to the longer winded ones? Nmap is easy. ‘Sudo apt install nmap’ will do the trick. Should you prefer the GUI, you need to install Zenmap. The nmap website has great tutorials on how to use nmap / zenmap. Documentation here: https:// |
- | Similarly, wireshark is available from your repositories, so ‘sudo apt install wireshark’ will fetch it for you, alternatively search in the software centre. If you need a quick primer, | + | Un de mes lecteurs, Joe Wong, voulait savoir comment paramétrer des choses comme TOR, nmap et consorts sur Ubuntu. Comme ces questions sont trop vastes pour être insérées dans Questions et Réponses, j'ai décidé de faire un mini tutoriel dessus. |
- | https://www.youtube.com/watch? | + | Commençons par les plus courts, et préparez-vous pour les plus longs et tortueux ! Nmap est facile. « sudo apt install nmap » fera l' |
- | TOR comes in two parts, the TOR network, and the TOR browser. The browser installation is as simple as downloading the .deb-file from the TOR browser website and installing it. The other option is to download the .tar-file and extract it to your home folder. The compressed file includes a launcher you can copy to your desktop, if you like. It is a good idea to keep the folder separate from your current Firefox installation. The browser manual is here: https:// | + | **Similarly, |
+ | https:// | ||
+ | |||
+ | De la même façon, wireshark est disponible dans vos dépôts ; aussi, « sudo apt install wireshark » ira vous le chercher ; autre solution, trouvez-le dans le Centre de logiciels. Si avez besoin d'une rapide présentation, | ||
+ | |||
+ | **TOR comes in two parts, the TOR network, and the TOR browser. The browser installation is as simple as downloading the .deb-file from the TOR browser website and installing it. The other option is to download the .tar-file and extract it to your home folder. The compressed file includes a launcher you can copy to your desktop, if you like. It is a good idea to keep the folder separate from your current Firefox installation. The browser manual is here: https:// | ||
+ | |||
+ | TOR est livré en deux parties, le réseau TOR et le navigateur TOR. L' | ||
+ | |||
+ | **TOR network needs a bit more. It is safest to install TOR from the official repository. To add it, simply edit your sources file. I will use nano here, but the editor does not matter | ||
- | TOR network needs a bit more. It is safest to install TOR from the official repository. To add it, simply edit your sources file. I will use nano here, but the editor does not matter | ||
sudo nano / | sudo nano / | ||
Ligne 15: | Ligne 23: | ||
deb https:// | deb https:// | ||
+ | |||
+ | deb-src https:// | ||
+ | |||
+ | Le réseau TOR en demande un peu plus. Le plus sûr est d' | ||
+ | |||
+ | sudo nano / | ||
+ | |||
+ | Ajoutez les lignes suivantes, en remplaçant « bionic » par le nom de code de votre version : | ||
+ | |||
+ | deb https:// | ||
+ | |||
+ | et | ||
deb-src https:// | deb-src https:// | ||
- | You will also need to add the key: | + | **You will also need to add the key: |
curl https:// | curl https:// | ||
Ligne 24: | Ligne 44: | ||
gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | sudo apt-key add | gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | sudo apt-key add | ||
- | NOTE: There are double dashes before import and export, word processors do weird things with double dashes. | + | NOTE: There are double dashes before import and export, word processors do weird things with double dashes.** |
- | After the obligatory: | + | Vous aurez aussi besoin d' |
+ | |||
+ | curl https:// | ||
+ | |||
+ | gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | sudo apt-key add | ||
+ | |||
+ | NOTE : Il y a un double tiret devant import et export ; les traitements de texte font des choses bizarres avec les tirets doubles. | ||
+ | |||
+ | **After the obligatory: | ||
sudo apt-get update | sudo apt-get update | ||
Ligne 38: | Ligne 66: | ||
sudo apt install rkhunter | sudo apt install rkhunter | ||
- | There is a bit of an ncurses based setup to go through, but it is really straightforward. | + | There is a bit of an ncurses based setup to go through, but it is really straightforward. ** |
+ | |||
+ | Après la formule obligatoire : | ||
+ | |||
+ | sudo apt-get update | ||
+ | |||
+ | tapez juste ce qui suit : | ||
+ | |||
+ | sudo apt-get install tor deb.torproject.org-keyring torbrowser-launcher | ||
+ | |||
+ | Rootkit Hunter (le chasseur de rootkit) : http:// | ||
+ | |||
+ | sudo apt install rkhunter | ||
+ | |||
+ | Il y a quelques réglages basés sur ncurses à faire, mais c'est vraiment direct. | ||
- | Once installed, rootkit hunter needs you to edit the configuration file a bit: | + | ***Once installed, rootkit hunter needs you to edit the configuration file a bit: |
sudo nano / | sudo nano / | ||
Ligne 48: | Ligne 90: | ||
That’s it. | That’s it. | ||
- | Now we get to talk about one of my favourite security tools, Lynis. So many checks, so little time. You can find it here: https:// | + | Now we get to talk about one of my favourite security tools, Lynis. So many checks, so little time. You can find it here: https:// |
- | You can download the compressed file and do it all manually, but it is easier from the terminal. Let us grab the key first: | + | Une fois installé, Rookit Hunter a besoin que vous modifiiez un peu son fichier de configuration : |
+ | |||
+ | sudo nano / | ||
+ | |||
+ | et assurez-vous que MIRRORS MODE=0 et WEB_CMD="" | ||
+ | |||
+ | C'est tout. | ||
+ | |||
+ | Maintenant, nous allons parler d'un de mes outils de sécurisation favoris, Lynis. Tant de vérifications en si peu de temps. Vous pouvez le trouver ici : https:// | ||
+ | |||
+ | **You can download the compressed file and do it all manually, but it is easier from the terminal. Let us grab the key first: | ||
sudo wget -O - https:// | sudo wget -O - https:// | ||
Ligne 60: | Ligne 112: | ||
Followed by: | Followed by: | ||
+ | echo ' | ||
+ | |||
+ | IF YOU ARE USING IT IN ENGLISH.** | ||
+ | |||
+ | Vous pouvez télécharger le fichier compressé et tout faire à la main, mais c'est plus facile à partir du terminal. Récupérons la première clé : | ||
+ | |||
+ | sudo wget -O - https:// | ||
+ | |||
+ | Maintenant : | ||
+ | |||
+ | sudo apt install apt-transport-https | ||
+ | |||
+ | suivi de : | ||
echo ' | echo ' | ||
- | IF YOU ARE USING IT IN ENGLISH. | + | SI VOUS L' |
- | Now add the sources: | + | **Now add the sources: |
echo "deb https:// | echo "deb https:// | ||
Ligne 77: | Ligne 142: | ||
Lynis is a tool that needs to be run as root or else it will just skip some of the most important tests: | Lynis is a tool that needs to be run as root or else it will just skip some of the most important tests: | ||
- | sudo lynis audit system | + | sudo lynis audit system** |
+ | Maintenant, ajoutez les sources : | ||
+ | echo "deb https:// | ||
+ | |||
+ | Vous connaissez la suite : | ||
+ | sudo apt update && sudo apt install lynis | ||
+ | Lynis est actuellement en version 2.7.5, mais vous pouvez installer à partir de l' | ||
+ | Lynis est un outil qui nécessite d' | ||
+ | sudo lynis audit system | ||
+ | **References: | ||
- | References: | + | https:// |
- | https:// | + | |
There are other ways to install Lynis, but this is the easiest. | There are other ways to install Lynis, but this is the easiest. | ||
- | If there are any queries on the installation of these tools, or maybe their use, please email us on misc@fullcirclemagazine.org | + | If there are any queries on the installation of these tools, or maybe their use, please email us on misc@fullcirclemagazine.org** |
+ | |||
+ | Références : | ||
+ | |||
+ | https:// | ||
+ | |||
+ | Il y a d' | ||
+ | Si vous avez des questions sur l' |
issue155/tutoriel1.txt · Dernière modification : 2020/04/05 10:58 de auntiee