Short Cheater

Provisioning RHEL

dnf groupinstall base -y

dnf install epel-release -y

dnf upgrade kernel* -y 

yum install policycoreutils-python-utils -y

semanage port -a -t ssh_port_t -p tcp 4444

sed -i 's/\#Port 22/Port 4444/' /etc/ssh/sshd_config

echo %wheel ALL=\(ALL\) NOPASSWD: ALL >> /etc/sudoers

systemctl restart sshd

firewall-cmd --add-port=4444/tcp --permanent

firewall-cmd --reload

echo "Don't forget to copy keys."

echo "Don't forget to copy keys."

Show trash can in GNome => gsettings set org.gnome.shell.extensions.ding show-trash true

Debian passwd => echo "username:cleartext_password" | sudo chpasswd

Display DNS server in Linux => resolvetctl status

Cannot delete partition  => wipefs --all --force /dev/sda

creating ISO => mkisofs  -J  -l  -R  -V “Caci Ubunut” -iso-level  4   -o  /home/sam.iso    /mnt  #  /home/sam.iso => new iso created  # /mnt where the workikng  USB is mounted

openssl passwd -6 -salt xyz

firewall-cmd --runtime-to-perm

(     )  => runs commands in a subshell

((  )) => used for Integer arithmetic (( i += 3 ))

[     ]  =>  used to test conditions [ -e /etc/passwd ] / x=1 ; if [ $x = 1 ] ; then echo yes; fi

[[  ]] => support extended double expressions

ssaleh@ub20:~$ more 4q6T 

#!/bin/bash

sudo mount -t iso9660 -o loop ./custom.iso /mnt

sudo mkdir /tmp/iso

sudo rsync -av /mnt/. /tmp/iso

sudo dd if=./custom.iso bs=1 count=446 of=/tmp/mbr.img

sudo sed -i 's/nvme0n1/vda/g' /tmp/iso/preseed/caci2004.seed

MBR_FILE=/tmp/mbr.img

IMAGE=./custom2.iso

BUILD=/tmp/iso

xorriso -as mkisofs -r -V "Ubuntu Custom" \

            -cache-inodes -J -l \

            -isohybrid-mbr "$MBR_FILE" \

            -c isolinux/boot.cat \

            -b isolinux/isolinux.bin \

               -no-emul-boot -boot-load-size 4 -boot-info-table \

            -eltorito-alt-boot \

            -e boot/grub/efi.img \

               -no-emul-boot -isohybrid-gpt-basdat \

            -o "$IMAGE" \

            "$BUILD"

# sudo mount -t iso9660 -o loop ./custom.iso /mnt

sudo mount -t iso9660 -o loop caci-ubuntu-20.04-ws-03072300.iso /mnt

sudo mkdir /tmp/iso

sudo rsync -av /mnt/. /tmp/iso

# sudo dd if=./custom.iso bs=1 count=446 of=/tmp/mbr.img

sudo dd if=./caci-ubuntu-20.04-ws-03072300.iso bs=1 count=446 of=/tmp/mbr.img

# sudo sed -i 's/nvme0n1/vda/g' /tmp/iso/preseed/caci2004.seed

MBR_FILE=/tmp/mbr.img

IMAGE=./caci-ubuntu-20.04-ws-03072301.iso

BUILD=/tmp/iso

xorriso -as mkisofs -r -V "Ubuntu Custom" \

            -cache-inodes -J -l \

            -isohybrid-mbr "$MBR_FILE" \

            -c isolinux/boot.cat \

            -b isolinux/isolinux.bin \

               -no-emul-boot -boot-load-size 4 -boot-info-table \

            -eltorito-alt-boot \

            -e boot/grub/efi.img \

               -no-emul-boot -isohybrid-gpt-basdat \

            -o "$IMAGE" \

            "$BUILD"

**** BLOCKER ****

#!/bin/bash

ls /tmp/bad.bost.list > /dev/null 2>&1 && rm /tmp/bad.host.list

grep -e Invalid /var/log/secure | awk '{print $10}' | sort -u > /tmp/bad.host.list

for i in `cat /tmp/bad.host.list`

do

  L=`grep $i /tmp/bad.host.list | wc -l`

  K=`grep $i /etc/badhosts | wc -l`

  if [[ $L -ge 7 && $K -ge 1 ]]

    then

      firewall-cmd --permanent --add-rich-rule="rule family='ipv4' source address=$i reject";

      echo $i >> /etc/badhosts

  fi

done

rm /tmp/bad.host.list