crappyrules
/
mistborn
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Browse Source

security updates

merge-requests/80/head
Steven Foerster 5 years ago
parent
1ca2a80da3
commit
8a5c745d0c
6 changed files with 13 additions and 8 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 2
      extra/bitwarden.yml
  2. 4
      extra/jitsi-meet.yml
  3. 4
      extra/syncthing.yml
  4. 2
      extra/tor.yml
  5. 1
      scripts/services/Mistborn-base.service
  6. 8
      scripts/services/wazuh/agent.sh

2
extra/bitwarden.yml
Unescape View File

@ -19,7 +19,7 @@ services:
- "traefik.http.routers.bitwarden-https.tls.certresolver=basic" - "traefik.http.routers.bitwarden-https.tls.certresolver=basic"
- "traefik.http.services.bitwarden-service.loadbalancer.server.port=80" - "traefik.http.services.bitwarden-service.loadbalancer.server.port=80"
ports: ports:
- 3012:3012/tcp - "${MISTBORN_BIND_IP}:3012:3012/tcp"
restart: unless-stopped restart: unless-stopped
networks: networks:

4
extra/jitsi-meet.yml
Unescape View File

@ -216,8 +216,8 @@ services:
image: jitsi/jvb:latest image: jitsi/jvb:latest
restart: unless-stopped restart: unless-stopped
ports: ports:
- '${JVB_PORT}:${JVB_PORT}/udp' - "${MISTBORN_BIND_IP}:${JVB_PORT}:${JVB_PORT}/udp"
- '${JVB_TCP_PORT}:${JVB_TCP_PORT}' - "${MISTBORN_BIND_IP}:${JVB_TCP_PORT}:${JVB_TCP_PORT}"
volumes: volumes:
- ${CONFIG}/jvb:/config:Z - ${CONFIG}/jvb:/config:Z
env_file: env_file:

4
extra/syncthing.yml
Unescape View File

@ -15,8 +15,8 @@ services:
- ../../mistborn_volumes/extra/syncthing/data2:/data2 - ../../mistborn_volumes/extra/syncthing/data2:/data2
ports: ports:
#- 8384:8384 #- 8384:8384
- 22000:22000/tcp # listening port - "${MISTBORN_BIND_IP}:22000:22000/tcp" # listening port
- 21027:21027/udp # protocol discovery - "${MISTBORN_BIND_IP}:21027:21027/udp" # protocol discovery
labels: labels:
- "traefik.enable=true" - "traefik.enable=true"
- "traefik.http.routers.syncthing-http.rule=Host(`syncthing.mistborn`)" - "traefik.http.routers.syncthing-http.rule=Host(`syncthing.mistborn`)"

2
extra/tor.yml
Unescape View File

@ -8,7 +8,7 @@ services:
image: mistborn_production_tor image: mistborn_production_tor
container_name: mistborn_production_tor container_name: mistborn_production_tor
ports: ports:
- 9150:9150/tcp - "${MISTBORN_BIND_IP}:9150:9150/tcp"
networks: networks:
default: default:

1
scripts/services/Mistborn-base.service
Unescape View File

@ -7,6 +7,7 @@ After=netfilter-persistent.service
[Service] [Service]
Restart=always Restart=always
RestartSec=15
User=root User=root
Group=docker Group=docker
PermissionsStartOnly=true PermissionsStartOnly=true

8
scripts/services/wazuh/agent.sh
Unescape View File

@ -6,10 +6,14 @@ if dpkg -s wazuh-agent &> /dev/null; then
exit 0 exit 0
fi fi
# install curl
echo "install curl"
sudo apt-get install -y curl
# prepare repo # prepare repo
echo "Adding Wazuh Repository" echo "Adding Wazuh Repository"
curl -s https://packages.wazuh.com/key/GPG-KEY-WAZUH | apt-key add - curl -s https://packages.wazuh.com/key/GPG-KEY-WAZUH | sudo apt-key add -
echo "deb https://packages.wazuh.com/4.x/apt/ stable main" | tee -a /etc/apt/sources.list.d/wazuh.list echo "deb https://packages.wazuh.com/4.x/apt/ stable main" | sudo tee /etc/apt/sources.list.d/wazuh.list
apt-get update apt-get update

Write Preview
Loading…
Cancel
Save