Mistborn is your own virtual private cloud platform and WebUI that manages self hosted services, and secures them with firewall, Wireguard VPN w/ PiHole-DNSCrypt, and IP filtering. Optional SIEM+IDS. Supports 2FA, Nextcloud, Jitsi, Home Assistant, +
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
#!/bin/bash
KEY_FOLDER = "/opt/mistborn_volumes/base/tls/"
CRT_FILE = "cert.crt"
KEY_FILE = "cert.key"
CRT_PATH = " $KEY_FOLDER / $CRT_FILE "
KEY_PATH = " $KEY_FOLDER / $KEY_FILE "
# ensure openssl installed
sudo -E apt-get install -y openssl
# make folder
sudo -E mkdir -p $KEY_FOLDER
# clean old crt and key
sudo -E rm -f ${ KEY_FOLDER } /*
# generate crt and key
sudo -E openssl req -x509 -sha256 -nodes -days 397 -newkey rsa:4096 -keyout $KEY_PATH -out $CRT_PATH -addext "subjectAltName=DNS:*.mistborn,DNS:jitsi.mistborn,DNS:bitwarden.mistborn,DNS:chat.mistborn,DNS:homeassistant.mistborn,DNS:jellyfin.mistborn,DNS:syncthing.mistborn,DNS:nextcloud.mistborn,DNS:onlyoffice.mistborn" -addext extendedKeyUsage = serverAuth -subj "/C=US/ST=New York/L=New York/O=cyber5k/OU=mistborn/CN=*.mistborn/emailAddress=mistborn@localhost"
# set permissions
sudo -E chown -R mistborn:mistborn ${ KEY_FOLDER }
chmod 644 $CRT_PATH
chmod 600 $KEY_PATH
