WAF - 雷池如何安装【笔记记录】

系统：Debian12

问题1: 执行雷池官网安装命令 bash -c "$(curl -fsSLk https://waf-ce.chaitin.cn/release/latest/setup.sh)" 无效 报错为 bash: curl: command not found
方法1:  因为没装curl导致的报错
ubuntu/debian 系统安装 Curl 方法:   apt-get update -y && apt-get install curl -y
centos 系统安装 Curl 方法:   yum update -y && yum install curl -y  
安装好 curl 之后重新执行安装命令  
因为纯净系统没有 docker 使用官方自动安装
以下为安装过程：

root@debian:~# bash -c "$(curl -fsSLk https://waf-ce.chaitin.cn/release/latest/setup.sh)"

  ____             __          _       _                
 / ___|    __ _   / _|   ___  | |     (_)  _ __     ___ 
 \___ \   / _` | | |_   / _ \ | |     | | | '_ \   / _ \
  ___) | | (_| | |  _| |  __/ | |___  | | | | | | |  __/
 |____/   \__,_| |_|    \___| |_____| |_| |_| |_|  \___|

[SafeLine] 脚本调用方式确认正常
[SafeLine] 缺少 Docker 环境
[SafeLine] 是否需要自动安装 Docker (Y/n) 
# Executing docker install script, commit: e5543d473431b782227f8908005543bb4389b8de
+ sh -c 'apt-get update -qq >/dev/null'
+ sh -c 'DEBIAN_FRONTEND=noninteractive apt-get install -y -qq apt-transport-https ca-certificates curl >/dev/null'
+ sh -c 'install -m 0755 -d /etc/apt/keyrings'
+ sh -c 'curl -fsSL "https://download.docker.com/linux/debian/gpg" | gpg --dearmor --yes -o /etc/apt/keyrings/docker.gpg'
+ sh -c 'chmod a+r /etc/apt/keyrings/docker.gpg'
+ sh -c 'echo "deb [arch=amd64 signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/debian bookworm stable" > /etc/apt/sources.list.d/docker.list'
+ sh -c 'apt-get update -qq >/dev/null'
+ sh -c 'DEBIAN_FRONTEND=noninteractive apt-get install -y -qq docker-ce docker-ce-cli containerd.io docker-compose-plugin docker-ce-rootless-extras docker-buildx-plugin >/dev/null'

+ sh -c 'docker version'
Client: Docker Engine - Community
 Version:           24.0.7
 API version:       1.43
 Go version:        go1.20.10
 Git commit:        afdd53b
 Built:             Thu Oct 26 09:08:02 2023
 OS/Arch:           linux/amd64
 Context:           default

Server: Docker Engine - Community
 Engine:
  Version:          24.0.7
  API version:      1.43 (minimum version 1.12)
  Go version:       go1.20.10
  Git commit:       311b9ff
  Built:            Thu Oct 26 09:08:02 2023
  OS/Arch:          linux/amd64
  Experimental:     false
 containerd:
  Version:          1.6.26
  GitCommit:        3dd1e886e55dd695541fdcd67420c2888645a495
 runc:
  Version:          1.1.10
  GitCommit:        v1.1.10-0-g18a0cb0
 docker-init:
  Version:          0.19.0
  GitCommit:        de40ad0

================================================================================

To run Docker as a non-privileged user, consider setting up the
Docker daemon in rootless mode for your user:

    dockerd-rootless-setuptool.sh install

Visit https://docs.docker.com/go/rootless/ to learn about rootless mode.

To run the Docker daemon as a fully privileged service, but granting non-root
users access, refer to https://docs.docker.com/go/daemon-access/

WARNING: Access to the remote API on a privileged Docker daemon is equivalent
         to root access on the host. Refer to the 'Docker daemon attack surface'
         documentation for details: https://docs.docker.com/go/attack-surface/

================================================================================

[SafeLine] Docker 安装完成
[SafeLine] 发现 Docker 环境: '/usr/bin/docker'
Synchronizing state of docker.service with SysV service script with /lib/systemd/systemd-sysv-install.
Executing: /lib/systemd/systemd-sysv-install enable docker
[SafeLine] Docker 工作状态正常
Docker Compose version v2.21.0
[SafeLine] 发现 Docker Compose Plugin
[SafeLine] 雷池安装目录 (留空则为 '/data/safeline'): [SafeLine] 目录 '/data/safeline' 当前剩余存储空间为 974M ，雷池至少需要 5G，是否确定 (Y/n)
[SafeLine] 目录 '/data/safeline' 当前剩余存储空间为 974M ，雷池至少需要 5G，是否确定 (Y/n) 
[SafeLine] 创建安装目录 '/data/safeline' 成功
[SafeLine] 下载 compose.yaml 脚本成功
[SafeLine] 创建 .env 脚本成功
[SafeLine] 即将开始下载 Docker 镜像
[+] Running 74/6
 ✔ fvm-manager 3 layers [⣿⣿⣿]      0B/0B      Pulled                              81.5s 
 ✔ management 28 layers [⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿]      0B/0B      Pulled     59.2s 
 ✔ mario 4 layers [⣿⣿⣿⣿]      0B/0B      Pulled                                   23.2s 
 ✔ detector 3 layers [⣿⣿⣿]      0B/0B      Pulled                                 51.2s 
 ✔ postgres 13 layers [⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿]      0B/0B      Pulled                      90.7s 
 ✔ tengine 17 layers [⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿]      0B/0B      Pulled                   33.4s 
[+] Running 7/7
 ✔ Network safeline-ce             Created                                         0.1s 
 ✔ Container safeline-fvm-manager  Started                                         0.7s 
 ✔ Container safeline-mgt-api      Started                                         0.7s 
 ✔ Container safeline-mario        Started                                         0.7s 
 ✔ Container safeline-postgres     Started                                         0.6s 
 ✔ Container safeline-detector     Started                                         0.7s 
 ✔ Container safeline-tengine      Started                                         0.7s 

 <b>官方二维码</b>

安装完成后正常访问尝试即可
我这边访问后出现报错  
400 Bad RequestThe plain HTTP request was sent to HTTPS port

nginx/1.25.3

因为默认http访问的 所以改成https访问
例如https://0.0.0.0:9443/

打开是不安全，点击详细信息继续访问即可   火狐浏览器添加例外后重新访问即可

后面会出来一个二维码 使用2FA的APP扫码添加动态口令即可  我这边使用的是Authenticator我个人认为非常好用
扫码添加2FA验证后点击下一步会让你输入当前的动态口令，你输入后即可进入后台显示

如上图所示
  

配置说明 例如上图