{% extends "base.html" %} {% block title %}Documentation{% endblock %} {% block content %}

[^] Documentation

User Manual

1. Introduction

SETEC LABS Manager is a web-based VPS management panel that connects to your Linux server over SSH. It provides a terminal-style interface for managing security tools, firewalls, DNS, nginx, Docker, email, and more — all from your browser.

Requirements: A Linux VPS (Debian/Ubuntu recommended), SSH key access, Python 3.10+

2. Installation

# Clone the repository
git clone https://repo.seteclabs.io/setec/setec-mgr.git
cd setec-mgr

# Install dependencies
pip install -r requirements.txt

# Start the manager
python app.py

# Open in browser
http://localhost:5000

3. Initial Setup (Setup Wizard)

On first launch, click Setup Wizard in the sidebar. The wizard walks you through:

  1. Terms of Service — Read and accept the disclaimer.
  2. SSH Keys — Select existing keys or generate new ones with host-specific guidance.
  3. VPS Connection — Enter your server IP, SSH username, port (2222 recommended), and key path.
  4. DNS API — Select your hosting provider, enter your domain and API key.
  5. Paths — Set web root and Docker Compose file location.
  6. Connection Test — Verify SSH and API connectivity.

You can re-run the wizard at any time. All settings are also editable from the Settings page.

4. Dashboard

The Dashboard shows a real-time overview of your server:

5. Docker Management

Manage containers, images, volumes, and networks. Start/stop/restart containers, view logs, pull images, and manage your Docker Compose stack.

Note: SETEC runs services natively with systemd by default. Docker management is provided for users who have containerized workloads.

6. DNS Management

View, add, and delete DNS records through your hosting provider's API. Supports:

7. Nginx Management

Create and manage nginx virtual hosts, enable/disable sites, view access and error logs, test configuration, and manage SSL certificates with Let's Encrypt (certbot).

8. SMTP / Email

Configure and manage mail services. View mail queue, check DKIM/SPF/DMARC records, test email delivery, and manage Postfix configuration.

9. Firewall

The Firewall page (separate from Security) provides:

10. Fail2Ban

Manage Fail2Ban jails, view banned IPs, check jail status, and configure ban rules to protect against brute-force attacks on SSH, nginx, and other services.

11. Security Center

The Security page is your central hub for hardening and monitoring:

Hardening Tools

Security Applications (each with full management tab)

AppPurpose
ClamAVAntivirus scanning, quarantine management, scheduled scans
rkhunterRootkit detection, file property checks
chkrootkitAlternative rootkit scanner with expert mode
LynisSecurity auditing and hardening index scoring
OSSECHost-based intrusion detection (HIDS), log monitoring, alerts
ModSecurityWeb application firewall (WAF) for nginx, OWASP CRS rules
AIDEFile integrity monitoring, baseline comparison
CowrieSSH/Telnet honeypot for attacker monitoring

Each app tab provides: install/uninstall, status, configuration, scanning/auditing, logs, and scheduled tasks.

12. Detect

Server detection and fingerprinting. Identifies installed software, open ports, running services, and potential security issues.

13. Configs

View and edit critical configuration files directly: sshd_config, nginx.conf, jail.local, and other system configs with syntax-aware editing.

14. Files

Browse the server filesystem, view file contents, upload and download files, manage permissions, and navigate directories.

15. Terminal

Direct SSH terminal access from the browser. Execute commands on your server with full output display. Useful for tasks not covered by the GUI.

16. Settings

Configure all SETEC Manager settings:

17. Front Page

Manage the public-facing landing page for your domain. Edit content, configure styling, and deploy updates.

18. Keyboard Shortcuts & Tips

19. Getting Help

{% endblock %} {% block scripts %} {% endblock %}