Dev {Tricks}

You are here: Home / Archives for Server and Hosting

by

How to install Maldet alert?

Step 1: Install Zenity

sudo apt update
sudo apt upgrade
sudo apt -y install zenity

Step 2: Create the Maldet Popup script

mkdir /home//scripts
cd /home//scripts
mkdir log

…and in this /home//scripts directory, create a new file called maldet_popup.sh containing the following.

#!/bin/bash
# AUTHOR: Max Meinhardt. 05/30/23.
# DESCRIPTION: This script parses “maldet –report list” for any scan report lines that have HITS > 0, and displays a popup dialog showing those lines.

DAYS_THRESHOLD=7 # Max number of days to look back for a maldet scan

# Get the current date and the date two days ago
CURRENT_DATE=$(date +%Y-%m-%d)
THRESHOLD_DATE=$(date -d “$DAYS_THRESHOLD days ago” +%Y-%m-%d)

# Run the maldet command and process the output
maldet_output=$(maldet –report list)

# Variables to store triggering lines and the flag to track if there are any triggering lines
triggered=false
triggering_lines=””

# Set the IFS to newline
IFS=$’\n’

# Iterate over the maldet output and check for triggering lines
while IFS= read -r line; do
if [[ $line == *SCANID:* ]]; then
HITS=$(echo “$line” | awk -F’|’ ‘{print $5}’ | awk -F’HITS:’ ‘{print $2}’ | awk ‘{print $1}’)
DATE=$(echo “$line” | awk ‘{print $1″ “$2” “$3}’)
LINE_DATE=$(date -d “$DATE” +%Y-%m-%d)
if [[ “$LINE_DATE” > “$THRESHOLD_DATE” ]]; then
if [ “$HITS” -gt 0 ]; then
triggered=true
triggering_lines+=”\n$line”
fi
fi
fi
done <<< “$maldet_output”

# Display the popup dialog if there are any triggering lines
if [ “$triggered” = true ]; then
# Display the popup dialog with buttons to open maldet reports
zenity –info –width=0 –display=:0.0 –title=”Malware Detected” –text=$USER”: Malware has been detected in the last $DAYS_THRESHOLD days:\n$triggering_lines \
\n\nTo view a malware scan report, type \”maldet –report SCANID\” in a terminal window.” \
–ok-label=”Close”
fi

Then, add permissions to execute it.

chmod +x maldet_popup.sh

by

How to Install Maldet and Run a Scan | Maldetect

Download the current version of maldet at https://www.rfxn.com/downloads/maldetect-current.tar.gz

wget https://www.rfxn.com/downloads/maldetect-current.tar.gz

Extract the downloaded file

tar -xvf maldetect-current.tar.gz

Go to the extracted directory

cd maldetect-1.6.5

Now install it

./install.sh

You done!

Maldet update command

maldet -u
maldet -d

Maldet Configuration Files

  • exec file: /usr/local/maldetect/maldet
  • exec link: /usr/local/sbin/maldet
  • exec link: /usr/local/sbin/lmd
  • cron.daily: /etc/cron.daily/maldet

How to USE maldet ?

Scan

maldet -a /path/to/scan

OR

maldet --scan-all /path/to/scan

View the scan report

maldet -e SCANID
maldet --report SCANID

How to setup Email Alert on Maldet?

vi /usr/local/maldetect/conf.maldet

 

 

 

 

by

Where is Roundcube location on CWP control panel?

Location of Roundcube config file

Location is:

/usr/local/cwpsrv/var/services/roundcube/

 

# find / -name defaults.inc.php
/usr/local/cwpsrv/var/services/roundcube/config/defaults.inc.php

location of htdocs folder: /usr/local/apache/htdocs/

by

How To Add Node.js Projects In aaPanel?

Go to App Store in the left sidebar.

Search and install Node.js Version Manager and PM2Manager.

Open Setting in PM2Manager.

Add and manage your Node.js projects

  • [Startup file] The startup file used to start the nodejs project, usually a js file
  • [Startup file] If npm is filled here, it means to start the project with npm run start
  • [Run Dir] The default run directory when running the project, usually the directory where the startup file is located
  • [Balance] Cluster mode. Some projects may not support it. When the number of instances is greater than 1, the cluster mode is enabled.
  • [Balance] After the cluster mode is enabled, load balancing will be performed automatically according to the number of instances

 

by

SPF/DKIM/DMARC Tools

SPF/DKIM/DMARC deployment tools fall into 2 categories: generators (creators/builders) to generate records and checkers (validators/testers) to look up the DNS.

SPF Tools

To create/generate an SPF record, there is the SPF record generator, or SPF record creator/builder, which takes these mechanisms and qualifiers: mx, a, ip4, ip6, include, and all, and returns an SPF record.

To check an SPF record, there is the SPF record checker, or SPF record validator/tester, which checks if an SPF record is published on your domain, and if its syntax is correct.

DKIM Tools

To create/generate a DKIM record, there is the DKIM record generator, or DKIM record creator/builder, which takes a domain and a selector, and returns a DKIM record.

To check a DKIM record, there is the DKIM record checker, or DKIM record validator/tester, which checks if a DKIM record is published on your domain, and if its syntax is correct.

DMARC Tools

To create/generate a DMARC record, there is the DMARC record generator, or DMARC record creator/builder, which takes these tags: p, rua, ruf, sp, adkim, and aspf, and returns a DMARC record.

To check a DMARC record, there is the DMARC record checker, or DMARC record validator/tester, which checks if a DMARC record is published on your domain, and if its syntax is correct.

Learn More

SPF/DKIM/DMARC Wizard