Introduction
Libellux: Up & Running provides documentation on how-to install open-source software from source. The focus is Zero Trust Network to enhance the security for existing applications or install tools to detect and prevent threats.
DISCLAIMER
It is understood that this documentation, and any configurations may contain errors and are provided for education purposes only. The documentation, and any configurations are provided "as is" without warranty of any kind, whether express, implied, statutory, or otherwise.
Credits
| Role | Names |
|---|---|
| Lead Authors: | Fredrik Hilmersson @libellux |
| Contributors: | Damir Kucic @dkucic |
| Reviewers: | Scott Shinn @atomicturtle, Cornelius Kölbel @cornelinux, Adam Hilmersson @cnsta, Björn Ricks @bjoernricks |
| Supporters: | HyperQube, Atomi Systems, Mullvad VPN, JetBrains, Better Stack |
Conventions
| Type | Convention | Description |
|---|---|---|
| Environment | server@ubuntu | Suffix determine operating system |
| Server CLI | server@rocky | Commands executed from server command-line |
| Client CLI | client@ubuntu | Commands executed from client command-line |
| Server IP | 192.168.0.1 | Server IP address |
| Client IP | 192.168.0.2 | Client IP address |
| VPN server | 192.168.8.1 | WireGuard VPN server IP address |
| VPN client | 192.168.8.2 | WireGuard VPN client IP address |
Table of contents
PART 1: ZERO TRUST NETWORK
- 1.0: WireGuard Secure VPN Tunnel stable
- 1.1: Two-factor authentication w/ privacyIDEA and YubiKey stable
- 1.2: Universal 2nd Factor with YubiKey incomplete
PART 2: INTRUSTION DETECTION AND PREVENTION
- 2.0: OSSEC Host Intrusion Detection System stable
- 2.1: PSAD Intrusion Detection with Log Analysis stable
- 2.2: Greenbone Vulnerability Manager stable
- 2.3: Snort Network Intrusion Detection & Prevention System TBA
- 2.4: ClamAV Antivirus Server stable
PART 3: MONITORING AND MANAGEMENT
- 3.0: Ansible incomplete
- 3.1: M/Monit System Monitoring stable
- 3.2: Performance Co-Pilot Grafana incomplete
- 3.3: Rsyslog Log Processing incomplete
- 3.4: Graylog Centralized Log Management incomplete
Feedback
Questions, comments, or problems regarding this service? Create an issue here or contact [email protected].
Road map
To follow the process and prioritization check out the project road map. Feel free to create a feature request if there's any documentation or software you would like us to cover.
Release notes
Libellux: Up and Running changelog (2.0.2) [email protected]
Release Maintainers
Fredrik Hilmersson @libellux
Release notes
Special thanks on this release go out to:
- Better Stack for providing support. Their product helps you to set up on-call teams to handle your incidents, provide post-mortems, incident reports and maintenance information. Besides that you can also create monitors and heartbeats to create status pages. They support software integrations e.g. Slack, Datadog, Logtail with data importing and exporting.
This is a smaller release with updates to Greenbone Vulnerability Manager (rev 8) with bug fixes and corrections founds by readers. We've also updated the OSSEC chapter on how-to install OSSEC 3.7.0 server on Ubuntu 22.04 (Jammy Jellyfish).
What's New:
Greenbone Vulnerability Manager (GVM) revision 8.
OSSEC Host Intrusion Detection System 3.7.0 server installation on Ubuntu 22.04 (Jammy Jellyfish).
New tipping service, fundof for those who want to support the Libellux: Up & Running project.
General
Prior releases
Libellux: Up and Running changelog (2.0.1) [email protected]
Release Maintainers
Fredrik Hilmersson @libellux
Contributors on this release
Scott Shinn @atomicturtle
Release notes
This is a patch release with updates to Greenbone Vulnerability Manager (rev 7), ClamAV Antivirus Server (rev 3) and other smaller fixes. We've also added Algolia Search to our website. We've also migrated from Netlify and now using Cloudflare pages. As we progress we'll also try to include Rocky Linux more and more in our documentation as the default Enterprise Linux solution.
What's New:
Greenbone Vulnerability Manager (GVM) revision 7. Latest GVM release (21.4.4) for Ubuntu 20.04 (Focal Fossa).
ClamAV Antivirus Server revision 3. Updated documentation for Ubuntu 20.04 (Focal Fossa) and how to build from source.
Libellux: Up and Running changelog (2.0.0) [email protected]
Release Maintainers
Fredrik Hilmersson @libellux
Contributors on this release
Scott Shinn @atomicturtle
Björn Ricks @bjoernricks
Adam Hilmersson @cnsta
Release notes
Special thanks on this release go out to:
- Full credit to Greenbone's official documentation. For more details please visit and read the documentation here.
- Mullvad VPN letting us use their fast, trustworthy and easy-to-use VPN with a focus on privacy.
- JetBrains for enabling us to use their Open Source development license.
This is a major release where we've upgraded the framework to VuePress Next (v2). So far we've updated all the sections under Intrusion Detection and Prevention to make it easier for readers to copy & paste segments. We also updated documentation for the latest version of the Greebone Vulnerability Manager (GVM) community edition. OSSEC has also be revisted and now cover source build on Rocky 8.4.
What's New:
Migration from VuePress v1.x to VuePress Next (v2.x) with PWA support
Greenbone Vulnerability Manager (GVM) revision 6. Latest GVM release (21.4.2) for Ubuntu 20.04 (Focal Fossa)
OSSEC Host Intrusion Detection System revision 2. Updated documentation for both Ubuntu 20.04 (Focal Fossa) and Rocky 8.4 (Green Obsidian)
WireGuard revision 2.
ClamAV Antivirus Server revision 2. Updated documentation for Ubuntu 20.04 (Focal Fossa) and how to build from source.
PSAD Intrusion Detection revision 2. Updated documentation for Ubuntu 20.04 (Focal Fossa).
General
Libellux: Up and Running changelog (1.1.0) [email protected]
Release Maintainers
Fredrik Hilmersson @libellux
Contributors on this release
Cornelius Kölbel @cornelinux
Scott Shinn @atomicturtle
Adam Hilmersson @cnst
Release notes
Special thanks on this release go out to:
- HyperQube for providing their great software to replicate entire cloud networks with the click of a button.
- Atomi Systems for giving access to their powerful screen recording software ActivePresenter.
- Mullvad VPN letting us use their fast, trustworthy and easy-to-use VPN with a focus on privacy.
- Cornelius Kölbel @cornelinux from NetKnights.
This is the first minor release of Libellux: Up and Running. Where we start combining the services to enhance the security in the Zero Trust Network. We added documentation how-to set up a virtual private network (VPN) using WireGuard. privacyIDEA will act as our central authentication server to both enforce two-factor authentication (using YubiKey 5 NFC) but also to apply an role-based access control (RBAC) approach. We also added a new section on how-to set up a server/client relationship with ClamAV Antivirus. Additionally we added the possiblity to comment using Gitalk.
What's New:
Two-factor authentiction w/ PrivacyIDEA FreeRADIUS plugin and YubiKey 5 NFC
Greenbone Vulnerability Manager (GVM) revision 5 w/ update for latest GVM release (21.04)
WireGuard Secure VPN Tunnel
ClamAV Antivirus Server
Scheduled jobs for GVM 21.04 to keep community feed up-to-date
Comments with Gitalk
Libellux: Up and Running changelog (1.0.1) [email protected]
Release Maintainers
Fredrik Hilmersson @libellux
Contributors on this release
Scott Shinn @atomicturtle
Adam Hilmersson @cnsta
Release notes
The second release of Libellux: Up and Running mostly contain updates to already existing chapters. There is a few new additions to each chapter e.g. Agentless monitoring and Windows Server 2019 agent installation for OSSEC. The OpenVAS chapter has also been revised and updated with new features such as basic vulnerability scans to give a first hands-on experience. We've also completed the first revision for M/Monit System Monitoring.
What's New:
M/Monit System Monitoring (3.7.5) with Monit (5.27.0)
Agentless monitoring chapter to OSSEC Host Intrusion Detection (3.6.0)
Windows Server 2019 agent installation (OSSEC 3.6.0)
Basic authenticated and unauthenticated scan to OpenVAS Vulnerability Scanner (OpenVAS 20.08)
Libellux: Up and Running changelog (1.0.0) [email protected]
Release Maintainers
Fredrik Hilmersson @libellux
Contributors on this release
Damir Kucic @dkucic
Scott Shinn @atomicturtle
Adam Hilmersson @cnsta
Zeny Palac @doczenzen
Falk @falkowich
Release notes
This is the first release of Libellux: Up and Running. The initial release contain documentation and configuration for the software specified below (see What's New). Libellux: Up and Running is a collection of personal notes and documentation regarding open-source software configuration. The focus is to build a so called Zero Trust Network using a central authentication server to enhance the security for our existing applications. We will manage our network using an open-source software tool for provisioning and configuration management to automate and speed up productivity.
What's New:
OSSEC Host Intrusion Detection (3.6.0)
PSAD Intrusion Detection (2.4.6)
OpenVAS Vulnerability Scanner (OpenVAS 20.08, Atomicorp 20.08)
