digital-forensics-labs/SecGen
1
0
Fork 0
mirror of https://github.com/cliffe/SecGen.git synced 2026-02-20 13:50:45 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
master
SecGen/README-Creating-Bases.md
Z. Cliffe Schreuders 1449672f55 Being behind a proxy
2019-11-14 20:40:23 +00:00

2.6 KiB
Raw Permalink Blame History

Creating new SecGen bases

We encourage you to use the existing bases when developing scenarios. Introducing new base boxes require careful thought and testing of modules for compatibility. This guide is mostly intended for those who wish to extend SecGen onto further VDI platforms (in addition to VirtualBox, and oVirt), which involves recreating our existing base images on these other platforms.

When creating base images for SecGen, follow guidelines on creating Vagrant base boxes, with these additional considerations.

Make sure these packages are installed on every base

  • puppet
  • curl
  • wget
  • rsync
  • vim
  • psmisc
  • sudo

Install VM guest tools software, to enable copy-paste between VMs, graphics, etc.

Updating repository certificates

Occasionally we apt-get update; apt-get upgrade. This can be required to avoid package repo certificates from expiring; however, this does run the risk of breaking modules.

Alternatively, it may be possible to update the keys without updating other software: sudo apt-key update

Avoid SecGen leaving extra files on the VMs

You should have these directories mounted as tmpfs, so that the files used by Vagrant to provision the VMs (including puppet files, SecGen module names, etc), don't get accidentally left on the VMs that are generated.

  • /tmp/
  • /vagrant/

This can be achieved via /etc/fstab:

tmpfs    /tmp    tmpfs    defaults,noatime   0  0
tmpfs    /vagrant    tmpfs    defaults,noatime   0  0

Behind a proxy

If you need to modify your base boxes to connect to the Internet via proxy, you can create these files (replacing the IP address with your own proxy):

/etc/systemd/system/docker.service.d/https-proxy.conf

Environment="HTTPS_PROXY=http://192.168.201.51:3128/"

/etc/systemd/system/docker.service.d/http-proxy.conf

Environment="HTTP_PROXY=http://192.168.201.51:3128/"

/etc/environment
http_proxy="http://192.168.201.51:3128"
https_proxy="http://192.168.201.51:3128"
ftp_proxy="ftp://192.168.201.51:3128"
socks_proxy="socks://192.168.201.51:3128"
HTTP_PROXY="http://192.168.201.51:3128"
HTTPS_PROXY="http://192.168.201.51:3128"

/etc/apt/apt.conf

Acquire::http::Proxy "http://192.168.201.51:3128";

/etc/security/pam_env.conf

HTTP_PROXY      DEFAULT="192.168.201.51:3128"

After making changes

In the VM:

sudo apt-get clean
sudo dd if=/dev/zero of=/EMPTY bs=1M
sudo rm -f /EMPTY
history -c
history -w

And in oVirt we also:

sudo rm /etc/udev/rules.d/70-persistent-net.rules

Finally, on the host, package to upload: vagrant package --base vmname --output packaged.box

Reference in New Issue View Git Blame Copy Permalink