PDA

View Full Version : HOWTO: Secure a UNIX EQEmu Server


fathernitwit
08-26-2004, 11:33 PM
here is my guide:
an HTML version is here: http://eqemu.psend.com/security.html
Please post corrections, comments, success, etc...

[code]
Steps to help secure an EQEmu UNIX server:

The directory structure given here is just example, I put mine in /usr, you could use /home, or whatever. Put it wherever you want, and rearrange it however you want. The important part is what exists where, and with what permissions.

1.
Download and install daemontools. However makes you happy, just get it.

2.
Find a home for the server runtime.
Make a directory to run the server on. This should be owned by root.
mkdir /usr/eqemu
chown 0:0 /usr/eqemu

3.
Make an unprivileged user to run the emulator as. This user should have no password, no valid shell, and a home directory of the one created above.
FreeBSD: pw useradd eqemu

RangerDown
08-27-2004, 01:02 PM
Much appreciated FN!!

a_Guest03
12-11-2004, 08:21 PM
The little boxes in the guide are supposed to be minus (-)

chown -R
etc.

Just in case anyone with linux has questions.

RangerDown
12-12-2004, 06:09 AM
It looks like some of the apostrophes you used to quote came out as ?.

Making the assumption that your DB is named ?eq' and you want to access it with the user ?eqemu' with the password ?pass'. To be a little better, you can replace the % below with your eqemu server's OUTGOING IP address when talking to the mysql server, ?localhost' if it is the same machine.
with that said, connect to your mysql server as root:
mysql -u root -p -h hostname #(or whatever you use)
run:
GRANT all ON eq.* TO eqemu@'%' IDENTIFIED BY ?pass'


A terrific tutorial tho!

fathernitwit
12-12-2004, 06:39 AM
theres a few things that ended up as blocks... thanks to word... I still recommend reading the HTML version anyways, it looks better and dosent have these problems.

a_Guest03
12-14-2004, 01:47 PM
FNW, you must know that this is a good tutorial, so you just get a gold star (you don't need to be a tutor/etc.) :)