Last active
December 7, 2019 03:48
-
-
Save wesinator/9b616f5b42e4eb0f8e43179056a0773a to your computer and use it in GitHub Desktop.
Install scripts for CentOS
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # install / setup docker from mainline stable repo | |
| # https://www.hostinger.com/tutorials/how-to-install-docker-compose-centos-7/ | |
| DOCKER_COMPOSE_VER=1.25.0 | |
| sudo yum install -y yum-utils device-mapper-persistent-data lvm2 | |
| sudo yum-config-manager --add-repo https://download.docker.com/linux/centos/docker-ce.repo | |
| sudo yum install docker-ce | |
| sudo usermod -a -G docker $USER | |
| sudo systemctl start docker | |
| sudo docker run hello-world | |
| sudo curl -L https://github.com/docker/compose/releases/download/$DOCKER_COMPOSE_VER/docker-compose-`uname -s`-`uname -m` -o /usr/local/bin/docker-compose | |
| sudo chmod +x /usr/local/bin/docker-compose | |
| sudo ln -s /usr/local/bin/docker-compose /usr/bin/docker-compose |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # https://docs.mongodb.com/manual/tutorial/install-mongodb-on-red-hat/#configure-the-package-management-system-yum | |
| MONGOVER=4.2 | |
| #sudo vi /etc/yum.repos.d/mongodb-org-$MONGOVER.repo | |
| sudo cat > /etc/yum.repos.d/mongodb-org-$MONGOVER.repo <<EOF | |
| [mongodb-org-4.2] | |
| name=MongoDB Repository | |
| baseurl=https://repo.mongodb.org/yum/redhat/$releasever/mongodb-org/4.2/x86_64/ | |
| gpgcheck=1 | |
| enabled=1 | |
| gpgkey=https://www.mongodb.org/static/pgp/server-4.2.asc | |
| EOF | |
| sudo yum install -y mongodb-org | |
| # https://docs.mongodb.com/manual/tutorial/install-mongodb-on-red-hat/#run-mongodb-community-edition | |
| mkdir -p /var/lib/mongo | |
| mkdir -p /var/log/mongodb | |
| sudo chown -Rv mongod:mongod /var/*/mongo* | |
| # SELinux permissions - https://docs.mongodb.com/manual/tutorial/install-mongodb-on-red-hat/#configure-selinux | |
| cat > mongodb_cgroup_memory.te <<EOF | |
| module mongodb_cgroup_memory 1.0; | |
| require { | |
| type cgroup_t; | |
| type mongod_t; | |
| class dir search; | |
| class file { getattr open read }; | |
| } | |
| #============= mongod_t ============== | |
| allow mongod_t cgroup_t:dir search; | |
| allow mongod_t cgroup_t:file { getattr open read }; | |
| EOF | |
| checkmodule -M -m -o mongodb_cgroup_memory.mod mongodb_cgroup_memory.te | |
| semodule_package -o mongodb_cgroup_memory.pp -m mongodb_cgroup_memory.mod | |
| sudo semodule -i mongodb_cgroup_memory.pp | |
| sudo semanage fcontext -a -t mongod_var_lib_t ./webhunter/data/ | |
| cat > mongodb_proc_net.te <<EOF | |
| module mongodb_proc_net 1.0; | |
| require { | |
| type proc_net_t; | |
| type mongod_t; | |
| class file { open read }; | |
| } | |
| #============= mongod_t ============== | |
| allow mongod_t proc_net_t:file { open read }; | |
| EOF | |
| checkmodule -M -m -o mongodb_proc_net.mod mongodb_proc_net.te | |
| semodule_package -o mongodb_proc_net.pp -m mongodb_proc_net.mod | |
| sudo semodule -i mongodb_proc_net.pp |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment