linutil/tabs/security/firewall-baselines.sh

#!/bin/sh -e

. ../common-script.sh

installPkg() {
    echo "Installing UFW..."
    if ! command_exists ufw; then
        case "$PACKAGER" in
            pacman)
                $ESCALATION_TOOL "$PACKAGER" -S --needed --noconfirm ufw
                ;;
            *)
                $ESCALATION_TOOL "$PACKAGER" install -y ufw
                ;;
        esac
    else
        echo "UFW is already installed."
    fi
}

configureUFW() {
    printf "%b\n" "${YELLOW}Using Chris Titus Recommended Firewall Rules${RC}"

    printf "%b\n" "${YELLOW}Disabling UFW${RC}"
    $ESCALATION_TOOL ufw disable

    printf "%b\n" "${YELLOW}Limiting port 22/tcp (UFW)${RC}"
    $ESCALATION_TOOL ufw limit 22/tcp

    printf "%b\n" "${YELLOW}Allowing port 80/tcp (UFW)${RC}"
    $ESCALATION_TOOL ufw allow 80/tcp

    printf "%b\n" "${YELLO}Allowing port 443/tcp (UFW)${RC}"
    $ESCALATION_TOOL ufw allow 443/tcp

    printf "%b\n" "${YELLOW}Denying Incoming Packets by Default(UFW)${RC}"
    $ESCALATION_TOOL ufw default deny incoming

    printf "%b\n" "${YELLOW}Allowing Outcoming Packets by Default(UFW)${RC}"
    $ESCALATION_TOOL ufw default allow outgoing

    $ESCALATION_TOOL ufw enable
    printf "%b\n" "${GREEN}Enabled Firewall with Baselines!${RC}"
}

checkEnv
checkEscalationTool
installPkg
configureUFW
Added Security Folder 2024-07-30 20:01:13 +01:00			`#!/bin/sh -e`

fix: Launch script from the directory in which it's contained 2024-08-15 07:13:56 +01:00			`. ../common-script.sh`
Fix ufw firewall script 2024-08-02 15:19:20 +01:00
Added Security Folder 2024-07-30 20:01:13 +01:00			`installPkg() {`
Fix grammatical errors 2024-09-17 03:10:02 +01:00			`echo "Installing UFW..."`
Added Security Folder 2024-07-30 20:01:13 +01:00			`if ! command_exists ufw; then`
Refactor remaining variables 2024-09-17 13:23:23 +01:00			`case "$PACKAGER" in`
Added Security Folder 2024-07-30 20:01:13 +01:00			`pacman)`
Refactor remaining variables 2024-09-17 13:23:23 +01:00			`$ESCALATION_TOOL "$PACKAGER" -S --needed --noconfirm ufw`
Added Security Folder 2024-07-30 20:01:13 +01:00			`;;`
			`*)`
Refactor remaining variables 2024-09-17 13:23:23 +01:00			`$ESCALATION_TOOL "$PACKAGER" install -y ufw`
Added Security Folder 2024-07-30 20:01:13 +01:00			`;;`
			`esac`
			`else`
			`echo "UFW is already installed."`
			`fi`
Fix ufw firewall script 2024-08-02 15:19:20 +01:00			`}`

			`configureUFW() {`
Fix grammatical errors 2024-09-17 03:10:02 +01:00			`printf "%b\n" "${YELLOW}Using Chris Titus Recommended Firewall Rules${RC}"`
Fix ufw firewall script 2024-08-02 15:19:20 +01:00
Incorporate colors into current scripts 2024-09-17 03:44:20 +01:00			`printf "%b\n" "${YELLOW}Disabling UFW${RC}"`
Add Multi-Escalation support 2024-08-23 14:12:47 +01:00			`$ESCALATION_TOOL ufw disable`
Fix ufw firewall script 2024-08-02 15:19:20 +01:00
Incorporate colors into current scripts 2024-09-17 03:44:20 +01:00			`printf "%b\n" "${YELLOW}Limiting port 22/tcp (UFW)${RC}"`
Add Multi-Escalation support 2024-08-23 14:12:47 +01:00			`$ESCALATION_TOOL ufw limit 22/tcp`
Added Security Folder 2024-07-30 20:01:13 +01:00
Incorporate colors into current scripts 2024-09-17 03:44:20 +01:00			`printf "%b\n" "${YELLOW}Allowing port 80/tcp (UFW)${RC}"`
Add Multi-Escalation support 2024-08-23 14:12:47 +01:00			`$ESCALATION_TOOL ufw allow 80/tcp`
Added Security Folder 2024-07-30 20:01:13 +01:00
Incorporate colors into current scripts 2024-09-17 03:44:20 +01:00			`printf "%b\n" "${YELLO}Allowing port 443/tcp (UFW)${RC}"`
Add Multi-Escalation support 2024-08-23 14:12:47 +01:00			`$ESCALATION_TOOL ufw allow 443/tcp`
Added Security Folder 2024-07-30 20:01:13 +01:00
Incorporate colors into current scripts 2024-09-17 03:44:20 +01:00			`printf "%b\n" "${YELLOW}Denying Incoming Packets by Default(UFW)${RC}"`
Add Multi-Escalation support 2024-08-23 14:12:47 +01:00			`$ESCALATION_TOOL ufw default deny incoming`
Added Security Folder 2024-07-30 20:01:13 +01:00
Incorporate colors into current scripts 2024-09-17 03:44:20 +01:00			`printf "%b\n" "${YELLOW}Allowing Outcoming Packets by Default(UFW)${RC}"`
Add Multi-Escalation support 2024-08-23 14:12:47 +01:00			`$ESCALATION_TOOL ufw default allow outgoing`
Added Security Folder 2024-07-30 20:01:13 +01:00
Add Multi-Escalation support 2024-08-23 14:12:47 +01:00			`$ESCALATION_TOOL ufw enable`
Remove every bashism 2024-09-12 21:14:50 +01:00			`printf "%b\n" "${GREEN}Enabled Firewall with Baselines!${RC}"`
Added Security Folder 2024-07-30 20:01:13 +01:00			`}`

			`checkEnv`
Add Multi-Escalation support 2024-08-23 14:12:47 +01:00			`checkEscalationTool`
Added Security Folder 2024-07-30 20:01:13 +01:00			`installPkg`
Fix ufw firewall script 2024-08-02 15:19:20 +01:00			`configureUFW`