-
Notifications
You must be signed in to change notification settings - Fork 13
/
Copy pathmediabots_ui.sh
266 lines (234 loc) · 12.3 KB
/
mediabots_ui.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
#!/bin/bash
# Checking previous installations
apache_installed=0
php_installed=0
mysql_installed=0
ufw_installed=0
myadmin_installed=0
xrdp_installed=0
if [ $(which apache2 | grep 'apache' -i | wc -l) -ge 1 ];then apache_installed=1; fi
if [ $(which php | grep 'php' -i | wc -l) -ge 1 ];then php_installed=1; fi
if [ $(which mysql | grep 'mysql' -i | wc -l) -ge 1 ];then mysql_installed=1; fi
if [ $(which ufw | grep 'ufw' -i | wc -l) -ge 1 ];then ufw_installed=1; fi
if [ $(which phpmyadmin | grep 'phpmyadmin' -i | wc -l) -ge 1 ];then myadmin_installed=1; fi
if [ $(which xrdp | grep 'xrdp' -i | wc -l) -ge 1 ];then xrdp_installed=1; fi
#Taking user inputs
host=1
wordpress_installation_=0
read -r -p "[1] Do you want to install Wordpress? (Yes/No) : " wordpress_installation
wordpress_installation=$(echo "$wordpress_installation" | head -c 1)
if [ ! -z $wordpress_installation ] && [ $wordpress_installation = 'Y' -o $wordpress_installation = 'y' ]; then
wordpress_installation_=1
echo ".:Advanced Setting:. It is Optional"
read -r -p "Do you want to setup Wordpress Database? (Yes/No) : " wpdb_choice
wpdb_choice=$(echo "$wpdb_choice" | head -c 1)
if [ $wpdb_choice = 'Y' -o $wpdb_choice = 'y' ]; then
read -r -p " [1.1] Enter Wordpress 'Database Name', you want to create : " wpdb_name
read -r -p " [1.2] Enter Wordpress 'Database Username', you want to create : " wpdb_user
read -r -p " [1.3] Enter Wordpress 'Database Password', you want to create : " wpdb_password
fi
fi
read -r -p "[2] Enter Domain Name (leave Blank,if you don't have any) : " domain
if [ -z $domain ] && [ $wordpress_installation_ -eq 1 ]; then
domain='wordpress'
host=0
fi
if [ -z $domain ] && [ $wordpress_installation_ -eq 0 ]; then
domain='mysite'
host=0
fi
if [ -z $wpdb_name ]; then wpdb_name='wordpress_DATABASE'; fi
if [ -z $wpdb_user ]; then wpdb_user='wordpress_USER'; fi
if [ -z $wpdb_password ]; then wpdb_password='wordpress_PASSWORD'; fi
xrdp_installtion='n'
if [ $xrdp_installed = 0 ]; then
echo "[3] Do you want to install Remote Desktop(XRDP)?"
read -r -p " > It would take at least 1 hour to install. (Yes/No) : " xrdp_installtion
xrdp_installtion=$(echo "$xrdp_installtion" | head -c 1)
fi
# Installing sudo
printf "Y\n" | apt install sudo -y
# Updating System
sudo apt-get update
printf "Y\n" | sudo DEBIAN_FRONTEND=noninteractive apt-get --yes upgrade
sudo apt-get -y dist-upgrade
if [ $xrdp_installtion = 'Y' -o $xrdp_installtion = 'y' ]; then
# Installing Kubuntu Desktop & its Dependencies
sudo apt-get -y install xorg xrdp build-essential tasksel
sudo DEBIAN_FRONTEND=noninteractive tasksel install kubuntu-desktop
sudo service xrdp restart
# Setting Up Kubuntu Desktop
sudo apt-get -y install nemo gedit
sudo xdg-mime default nemo.desktop inode/directory application/x-gnome-saved-search
sudo apt-get -y purge dolphin kate gwenview
sudo xdg-mime default gedit.desktop text/plain
sudo rm -f /*/Desktop/trash.desktop
sudo rm -f /*/*/Desktop/trash.desktop
sudo apt-get autoclean
sudo apt-get autoremove
# Installing WINE to run Windows Applications
sudo dpkg --add-architecture i386
sudo wget -nc https://dl.winehq.org/wine-builds/winehq.key
sudo apt-key add winehq.key
sudo apt-add-repository https://dl.winehq.org/wine-builds/ubuntu/
sudo apt-get update
sudo apt-get install --install-recommends winehq-devel -y
sudo apt-get install winetricks -y
fi
# Installing LAMP (Apache Server, MySQL, Php) & Firewall
sudo apt-get -y install apache2 ufw zip sendmail # Apache , Firewall & zip and sendmail
yes 'y' | sudo sendmailconfig # configure sendmail
printf "y\n" | sudo ufw enable
sudo ufw allow 3389 # Allowing remote desktop (xrdp) to Firewall
sudo ufw allow OpenSSH
sudo ufw allow ssh
sudo ufw allow in "Apache Full"
sudo DEBIAN_FRONTEND=noninteractive apt-get -y install mysql-server
sudo mysql -e "DELETE FROM mysql.user WHERE User='root' AND Host NOT IN ('localhost', '127.0.0.1', '::1')"
sudo mysql -e "FLUSH PRIVILEGES"
#sudo DEBIAN_FRONTEND=noninteractive apt-get -y install php libapache2-mod-php php-mysql
sudo apt-get -y install python-software-properties
printf "\n" | sudo add-apt-repository ppa:ondrej/php
sudo apt-get update
sudo DEBIAN_FRONTEND=noninteractive apt-get -y install php7.0
sudo apt-get -y install php7.0-cli php7.0-mysql php7.0-json php7.0-cgi libapache2-mod-php7.0
sudo service apache2 restart
sudo chown -R "$USER":root /var/www
# Preparing PhpMyAdmin installation
sudo apt-get -y install debconf-utils
sudo debconf-set-selections <<<'phpmyadmin phpmyadmin/dbconfig-install boolean true'
sudo debconf-set-selections <<<'phpmyadmin phpmyadmin/app-password-confirm password phpmyadmin_PASSWORD'
sudo debconf-set-selections <<<'phpmyadmin phpmyadmin/mysql/admin-pass password phpmyadmin_PASSWORD'
sudo debconf-set-selections <<<'phpmyadmin phpmyadmin/mysql/app-pass password phpmyadmin_PASSWORD'
sudo debconf-set-selections <<<'phpmyadmin phpmyadmin/reconfigure-webserver multiselect apache2'
# PhpMyAdmin installation & configuration
sudo DEBIAN_FRONTEND=noninteractive apt-get install -q -y phpmyadmin
#Changing phpmyadmin access url
phpmyadmin_url=$(tr </dev/urandom -dc A-Za-z0-9_- | head -c32)
sudo sed -i 's/Alias \/phpmyadmin \/usr\/share\/phpmyadmin/#Alias \/phpmyadmin \/usr\/share\/phpmyadmin\nAlias \/'$phpmyadmin_url' \/usr\/share\/phpmyadmin/' /etc/apache2/conf-available/phpmyadmin.conf
sudo service apache2 reload
if [ $mysql_installed = 0 ];then
sudo mysql -u root <<CMD_EOF
UPDATE mysql.user SET authentication_string=PASSWORD('mysql_PASSWORD') WHERE user='root';
UPDATE mysql.user SET plugin='mysql_native_password' WHERE user='root';
FLUSH PRIVILEGES;
CMD_EOF
else
echo "Please enter password for MYSQL user 'root'"
sudo mysql -u root -p <<CMD_EOF
UPDATE mysql.user SET authentication_string=PASSWORD('mysql_PASSWORD') WHERE user='root';
UPDATE mysql.user SET plugin='mysql_native_password' WHERE user='root';
FLUSH PRIVILEGES;
CMD_EOF
fi
sudo echo -en "[mysql]\nuser=root\npassword=mysql_PASSWORD\n" >~/.my.cnf
sudo chmod 0600 ~/.my.cnf
# Preparing Website
mkdir /var/www/html/$domain
sudo touch /var/www/html/$domain/.htaccess
sudo echo -en "<Directory /var/www/html/$domain>\n\tAllowOverride All\n</Directory>" >/etc/apache2/sites-available/$domain.conf
sudo echo -en "\n<VirtualHost *:80>\n\tServerAdmin admin@$domain\n\tServerName $domain\n\tDocumentRoot /var/www/html/$domain\n\tErrorLog ${APACHE_LOG_DIR}/error.log\n\tCustomLog ${APACHE_LOG_DIR}/access.log combined\n</VirtualHost>" >>/etc/apache2/sites-available/$domain.conf
sudo a2ensite $domain.conf
sudo systemctl reload apache2
sudo a2dissite 000-default.conf
sudo systemctl reload apache2
sudo a2enmod rewrite
sudo systemctl restart apache2
if [ $wordpress_installation_ = 1 ]; then
# Creating Wordpress Database
sudo mysql -u root <<CMD_EOF
CREATE DATABASE $wpdb_name;
GRANT ALL PRIVILEGES ON $wpdb_name.* TO '$wpdb_user'@'localhost' IDENTIFIED BY '$wpdb_password';
FLUSH PRIVILEGES;
CMD_EOF
# Downloading Wordpress
wget http://wordpress.org/latest.tar.gz
tar xzvf latest.tar.gz
# Installing Wordpress dependencies
#sudo apt-get -y install php-curl php-gd php-mbstring php-xml php-xmlrpc php-soap php-intl php-zip
sudo apt-get -y install php7.0-curl php7.0-gd php7.0-mbstring php7.0-xml php7.0-xmlrpc php7.0-soap php7.0-intl php7.0-zip
# Pre Configuring Wordpress
sudo cp ./wordpress/wp-config-sample.php ./wordpress/wp-config.php
sudo sed -i '/put your unique phrase here/d' ./wordpress/wp-config.php # delete matching pattern
sudo sed -i '$d' ./wordpress/wp-config.php # delete last line
table_prefix=$(tr </dev/urandom -dc A-Za-z | head -c6)_ || WP_
sudo sed -i 's/wp_/'$table_prefix'/g' ./wordpress/wp-config.php
sudo sed -i 's/database_name_here/'$wpdb_name'/g' ./wordpress/wp-config.php
sudo sed -i 's/username_here/'$wpdb_user'/g' ./wordpress/wp-config.php
sudo sed -i 's/password_here/'$wpdb_password'/g' ./wordpress/wp-config.php
# Setting up SALT [ Thanks to @paulwaldmann]
sudo curl -s https://api.wordpress.org/secret-key/1.1/salt/ > ./wordpress/keys.txt
keys=($(grep 'define' ./wordpress/keys.txt | cut -f2 -d"'"))
oldIFS=$IFS
IFS=$'\n'
idx=0
for value in $(grep 'define' ./wordpress/keys.txt | cut -f4 -d"'"); do
sudo echo -en "define('${keys[$idx]}', '${value}');\r\n" >> ./wordpress/wp-config.php;
idx=$((idx+1))
done
IFS=$oldIFS
sudo echo -en "define('FS_METHOD', 'direct');\r\nrequire_once(ABSPATH . 'wp-settings.php');" >> ./wordpress/wp-config.php; #Update WordPress Directly Without Using FTP
# Installing & Configuring Wordpress
sudo rsync -avP ./wordpress/ /var/www/html/$domain/
sudo chown -R www-data:www-data /var/www/html/
mkdir /var/www/html/$domain/wp-content/uploads
sudo chown -R www-data:www-data /var/www/html/$domain/wp-content/uploads
sudo service apache2 restart
sudo find /var/www/html/$domain -type d -exec chmod 750 {} \;
sudo find /var/www/html/$domain -type f -exec chmod 640 {} \;
# Install Command line interface for WordPress (WP-CLI) [ credit @paulwaldmann]
curl https://raw.githubusercontent.com/wp-cli/builds/gh-pages/phar/wp-cli.phar >/tmp/wp-cli.phar
chmod +x /tmp/wp-cli.phar
mv /tmp/wp-cli.phar /usr/local/bin/wp
fi
if [ $apache_installed = 0 ]; then
# Hiding Server info
sudo sed -i "0,/<\/Directory>/{s/<\/Directory>/<\/Directory>\n<Directory \/var\/www\/html>\n\tOptions -Indexes\n<\/Directory>\n/}" /etc/apache2/apache2.conf
sudo echo -en "ServerSignature off\nServerTokens prod" >> /etc/apache2/apache2.conf
sudo service apache2 restart
#sudo apt-get install libapache2-mod-security2 -y # these 7 line of commands would works, iff .htaccess file content written manually
#sudo mv /etc/modsecurity/modsecurity.conf-recommended /etc/modsecurity/modsecurity.conf
#sudo service apache2 reload
#sudo sed -i "s/SecRuleEngine DetectionOnly/SecRuleEngine On/" /etc/modsecurity/modsecurity.conf
#sudo sed -i "s/SecResponseBodyAccess On/SecResponseBodyAccess Off/" /etc/modsecurity/modsecurity.conf
#sudo sed -i 's/<\/IfModule>/\tSecServerSignature " "\n<\/IfModule>/' /etc/apache2/mods-enabled/security2.conf # whether does it work ,test it after apache2 restart, by curl -I http://IP_Address
#sudo service apache2 restart
fi
# Cleaning Data
if [ $wordpress_installation_ -eq 1 ]; then
rm -f /var/www/html/index.html
rm -rf wordpress
fi
rm -f ~/.my.cnf
if [ $apache_installed = 0 ]; then
# Renabling SSH
sudo /etc/init.d/ssh restart
sudo sed -i 's/UsePAM yes/UsePAM no/g' /etc/ssh/sshd_config
sudo /etc/init.d/ssh restart
sudo dpkg-reconfigure openssh-server
(
cd /etc/NetworkManager/dispatcher.d/
echo sudo /etc/init.d/ssh restart >./10ssh
chmod 755 ./10ssh
)
sudo systemctl enable ssh.service
fi
# Adding Domain name in Host file
if [ $host -eq 1 ]; then sudo echo -e "$(curl ifconfig.me)\t$domain" >>/etc/hosts; fi
# Installing SSL
if [ $host -eq 1 ]; then
sudo apt-get -y install software-properties-common
sudo add-apt-repository ppa:certbot/certbot -y
sudo apt-get update
sudo apt-get -y install python-certbot-apache
echo -e "admin@$domain\nA\n" | sudo DEBIAN_FRONTEND=noninteractive certbot --apache -d $domain
sudo sed -i 's/<\/VirtualHost>/RewriteEngine on\nRewriteCond %{SERVER_NAME} ='$domain'\nRewriteRule ^ https:\/\/%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]\n<\/VirtualHost>/g' /etc/apache2/sites-available/$domain.conf
sudo sed -i "s/upload_max_filesize = 2M/upload_max_filesize = 200M/" /etc/php/7.0/apache2/php.ini
sudo sed -i "s/post_max_size = 8M/post_max_size = 200M/" /etc/php/7.0/apache2/php.ini
sudo systemctl restart apache2
fi
# Print & Write important informations
echo -e "########### * DETIALS * ###########\n\nSite Directory : /var/www/html/$domain\nHost file for $domain : /etc/apache2/sites-available/$domain.conf\n-------------------------------------\nPhpMyAdmin URL : $domain/$phpmyadmin_url\nMySQL Information -\n\t user : root\n\t password : $(grep "UPDATE mysql.user SET authentication_string=PASSWORD('" mediabots_ui.sh | head -1 | cut -f2 -d"'")\n-------------------------------------\n[[ WORDPRESS ]]\n If you have installed Wordpress;\n\t its configuration page could be found here : /var/www/html/$domain/wp-config.php\n\t Wordpress database name : $wpdb_name\n\n[SSL/HTTPS] if ssl successfully configured for your domain name, then certificate and chain would have been saved at Directory : /etc/letsencrypt/live/$domain\n\tCreate a backup for Directory : /etc/letsencrypt/" | tee -a details.txt
#sudo reboot
# now open SITE_URL_or_IP/wp-admin/install.php
# SSL test here https://www.ssllabs.com/ssltest/analyze.html?d=SITE_URL_or_IP