• sudo -s
  • apt update
  • apt upgrade
  • apt install wget
  • apt install apache2
  • systemctl enable apache2
  • systemctl start apache2
  • wget https://repo.mysql.com//mysql-apt-config_0.8.29-1_all.deb
  • apt install ./mysql-apt-config_0.8.29-1_all.deb
  • apt update
  • apt install mysql-server
  • systemctl enable mysql.service
  • systemctt start mysql.service
  • netstat -tunap
  • cd /var/www/html
  • echo helloworld > hello.html
  • apt install php
  • apt install php-mysqli
  • mysql -u root -p


      MYSQL Commands:


      create database mydatabase;
      create user mydbuser@'localhost' identified by 'mypassword';
      grant all privileges on mydatabase.* to mydbuser@'localhost';
      flush privileges;
      show databases;




      Day 2: Small Business Online Shop - Home Operation

      1. Environment
      1. One Workstation - Window PC - Home Computer
      2. Wordpress Site Hosted on Godaddy
      3. Sell handmade blankets
      1. What security measures need to be in place?
      2. What security practices need to be taught?
      3. How could you as a Cybersecurity Professional be of most help?
      4. Sophos Central Review
      1. Endpoint Protection
      1. Threat Protection
      2. Peripheral Control
      3. Application Control
      4. Data Loss Prevention
      5. Web Control
      6. Update Management
      7. Windows Firewall
      1. Server Protection
      1. Threat Protection
      2. Peripheral Control
      3. Application ControlWeb Control
      4. Lockdown
      5. Data Loss Prevention
      6. Update Management
      7. Windows Firewall
      8. File Integrity Monitoring
      9. Linux Runtime Detection
      1. Encryption
      1. Device Encryption
      1. Monitor and Reporting
      1. Let’s see how it all works…
      1. What’s our environment?
      1. Windows Workstation
      1. Deploy Windows Workstation
      2. Install Sophos Client
      1. Web Server - Wordpress
      1. Deploy Debian Server
      2. Install Apache2
      3. Install PHP
      4. Install Mysql
      5. Install Wordpress
      6. Setup DNS and Let’s Surf!
      1. Let’s set up an SSH key from the windows workstation to the Web Server for “Easier” management.
      1. Let’s see what we can find wrong with this setup?
      1. Download Wireshark on the Windows Desktop
      2. Connect and login to Wordpress
      1. Can you see the credentials that you sent in plain text?
      2. How did you find it?
      1. What is a better solution
      1. SSL
      2. Separation of Web and DB Server
      3. Are SSH keys necessary?
      4. What are some possible scenarios that we might encounter - discussion
      1. Bonus
      1. Install MySQL Workbench
      2. Install Additional Wordpress Plugins and Themes