Difference between revisions of "Setup - Kali Linux"
From Vlsiwiki
(→Create Install Setup) |
(→Firewall Setup) |
||
| Line 39: | Line 39: | ||
Finally, query the rules being applied via the status command. | Finally, query the rules being applied via the status command. | ||
ufw status | ufw status | ||
| + | |||
| + | === Determinism for QEMU/ESESC === | ||
| + | |||
| + | mmap problem for qemu | ||
| + | |||
| + | echo "vm.mmap_min_addr = 4096" >>/etc/sysctl.d/10-esesc.conf | ||
| + | echo "fs.inotify.max_user_watches = 65535" >>/etc/sysctl.d/10-esesc.conf | ||
| + | echo "kernel.randomize_va_space = 0" >>/etc/sysctl.d/10-esesc.conf | ||
| + | |||
| + | |||
| + | restart sysctl or wait for reboot | ||
| + | |||
| + | systemctl restart systemd-sysctl.service | ||
Revision as of 19:31, 5 February 2020
Contents
Create Install Setup
Create a bootable USB from Kali linux
https://www.kali.org/docs/usb/kali-linux-live-usb-install/
Use default partition (single partition and swap around same as memory)
GUI install works fine. Default options
Account Setup
Create a local account that does not match in name the SOE LDAP. E.g: jrenau vs renau
Basic Setup
SSH Server (not for laptop, just desktop and servers)
apt-get install openssh-server systemctl enable ssh.service systemctl start ssh.service
Firewall Setup
Setup the firewall:
apt-get install ufw ufw default deny ufw reject auth ufw limit ssh/tcp ufw logging off
The next line is only needed the first time you install the package.
ufw enable
Follow it by enabling ufw with systemctl.
systemctl enable ufw.service
Finally, query the rules being applied via the status command.
ufw status
Determinism for QEMU/ESESC
mmap problem for qemu
echo "vm.mmap_min_addr = 4096" >>/etc/sysctl.d/10-esesc.conf echo "fs.inotify.max_user_watches = 65535" >>/etc/sysctl.d/10-esesc.conf echo "kernel.randomize_va_space = 0" >>/etc/sysctl.d/10-esesc.conf
restart sysctl or wait for reboot
systemctl restart systemd-sysctl.service
