parent
941d2b3ae1
commit
928a79af1e
@ -0,0 +1,28 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
# Configure certain packages
|
||||||
|
|
||||||
|
## console-setup
|
||||||
|
|
||||||
|
# Select the fontface
|
||||||
|
printf "%s\t%s\t%s\t%s\n" \
|
||||||
|
console-setup console-setup/console-setup/fontface47 string "Fixed" debconf-set-selections ||
|
||||||
|
{ echo "FAILED to setup console fontface"; exit 1; }
|
||||||
|
|
||||||
|
# Select the code page for font
|
||||||
|
printf "%s\t%s\t%s\t%s\n" \
|
||||||
|
console-setup console-setup/codesetcode string "Uni2" | debconf-set-selections ||
|
||||||
|
{ echo "FAILED to setup console code page to Uni2"; exit 1; }
|
||||||
|
|
||||||
|
# Set Language string for codepage 47
|
||||||
|
printf "%s\t%s\t%s\t%s\n" \
|
||||||
|
console-setup console-setup/codeset47 string ". Combined - Latin; Slavic Cyrillic; Greek" | debconf-set-selections ||
|
||||||
|
{ echo "FAILED to setup codeset47 to proper string"; exti 1; }
|
||||||
|
|
||||||
|
# Replace the console font and typ ein /etc/default/console-setup
|
||||||
|
sed -i -e 's,^CODESET.*,CODESET="Uni2",g' \
|
||||||
|
-e 's,^FONTFACE.*,FONTFACE="Fixed",g' \
|
||||||
|
/etc/default/console-setup
|
||||||
|
|
||||||
|
# Configure the console-setup
|
||||||
|
dpkg-reconfigure --frontend=noninteractive console-setup ||
|
||||||
|
{ echo "FAILED to recofigure console-setup"; exit 1; }
|
@ -0,0 +1,14 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
#
|
||||||
|
# Create the necessary users and set their passwords. If needed,
|
||||||
|
# make sure they belong to the proper groups
|
||||||
|
#
|
||||||
|
# Author: Ben Howard <ben.howard@canonical.com>
|
||||||
|
# Date: 29 Jun 2011
|
||||||
|
#
|
||||||
|
|
||||||
|
echo "Adding admin group..."
|
||||||
|
addgroup --system --quiet admin
|
||||||
|
|
||||||
|
echo "Adding netdev group..."
|
||||||
|
addgroup --system --quiet netdev
|
@ -0,0 +1,3 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
|
||||||
|
printf "HWCLOCKACCESS=no" >> /etc/default/rcS
|
@ -0,0 +1,3 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
|
||||||
|
sed -i "s|#PasswordAuthentication yes|PasswordAuthentication no|g" /etc/ssh/sshd_config
|
@ -0,0 +1,18 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
#
|
||||||
|
# Disable IPv6 privacy extensions on Utopic and later
|
||||||
|
#
|
||||||
|
|
||||||
|
codename=$(sh -c 'lsb_release --short --codename')
|
||||||
|
dist_ge() { [[ "$1" > "$2" || "$1" == "$2" ]]; }
|
||||||
|
|
||||||
|
if ! dist_ge "${codename}" "trusty"; then
|
||||||
|
exit 0
|
||||||
|
fi
|
||||||
|
|
||||||
|
cat << EOF > /etc/sysctl.d/99-cloudimg-ipv6.conf
|
||||||
|
# Written by the Cloud Image build process
|
||||||
|
# See https://bugs.launchpad.net/ubuntu/+source/procps/+bug/1068756
|
||||||
|
net.ipv6.conf.all.use_tempaddr = 0
|
||||||
|
net.ipv6.conf.default.use_tempaddr = 0
|
||||||
|
EOF
|
@ -0,0 +1,57 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
|
||||||
|
# Clean up extraneous log files that may be left around
|
||||||
|
rm /etc/ssh/ssh_host*key* || echo "No SSH keys to remove"
|
||||||
|
|
||||||
|
# Fix LP: #1047707, 1019338
|
||||||
|
# Truncate logs that are owned, otherwise remove
|
||||||
|
whitelisted_logs=(/var/log/btmp /var/log/lastlog /var/log/wtmp /var/log/fsck/checkfs /var/log/fsck/checkroot)
|
||||||
|
|
||||||
|
for log in $(find /var/log -type f)
|
||||||
|
do
|
||||||
|
whitelisted=$(echo "${whitelisted_logs[@]}" | grep -o ${log})
|
||||||
|
|
||||||
|
if [ -n "${whitelisted}" ]; then
|
||||||
|
: > ${log} &&
|
||||||
|
echo "Truncated whitelisted log ${log}" ||
|
||||||
|
echo "Failed to truncate whitelisted log ${log}"
|
||||||
|
else
|
||||||
|
|
||||||
|
dpkg -S ${log} > /dev/null 2>&1 &&
|
||||||
|
{ : > ${log} ||
|
||||||
|
echo "Failed to truncate $f"; } ||
|
||||||
|
{ rm ${log} &&
|
||||||
|
echo "Removed ${log} as an orphaned log file" ||
|
||||||
|
echo "Failed to remove unnecessary log $f"; }
|
||||||
|
fi
|
||||||
|
done
|
||||||
|
|
||||||
|
# Remove un-owned log directories
|
||||||
|
whitelisted_dirs=(/var/log/fsck)
|
||||||
|
|
||||||
|
for log_d in $(find /var/log/* -type d)
|
||||||
|
do
|
||||||
|
whitelisted=$(echo "${whitelisted_dirs[@]}" | grep -o "${log_d}")
|
||||||
|
if [ -z "${whitelisted}" ]; then
|
||||||
|
dpkg -S ${log_d} > /dev/null 2>&1 &&
|
||||||
|
echo "Preserving log directory ${log_d}" ||
|
||||||
|
{ rm -rf ${log_d} &&
|
||||||
|
echo "Removed log directory ${log_d} as orphaned log dir" ||
|
||||||
|
echo "Failed to remove unnessasary log dir ${log_d}"; }
|
||||||
|
|
||||||
|
else
|
||||||
|
echo "Preserving whitelisted directory ${log_d}"
|
||||||
|
fi
|
||||||
|
|
||||||
|
done
|
||||||
|
|
||||||
|
|
||||||
|
rm -rf /var/run/* || echo "Failed to clean /var/run/*"
|
||||||
|
rm /etc/passwd- || echo "No spare passwd file to cleanup"
|
||||||
|
rm /etc/shadow- || echo "No spare shadow file to cleanup"
|
||||||
|
rm /etc/gshadow- || echo "No spare gshadow file to cleanup"
|
||||||
|
rm /etc/group- || echo "No spare group file to clenaup"
|
||||||
|
rm -f /etc/apt/conf.d/00secure || echo "No apt cache to cleanup"
|
||||||
|
|
||||||
|
# Truncate instead of delete, LP: #707311
|
||||||
|
truncate --size=0 -c /etc/popularity-contest.conf
|
@ -0,0 +1 @@
|
|||||||
|
ubuntu
|
@ -0,0 +1,9 @@
|
|||||||
|
127.0.0.1 localhost
|
||||||
|
|
||||||
|
# The following lines are desirable for IPv6 capable hosts
|
||||||
|
::1 ip6-localhost ip6-loopback
|
||||||
|
fe00::0 ip6-localnet
|
||||||
|
ff00::0 ip6-mcastprefix
|
||||||
|
ff02::1 ip6-allnodes
|
||||||
|
ff02::2 ip6-allrouters
|
||||||
|
ff02::3 ip6-allhosts
|
@ -0,0 +1,15 @@
|
|||||||
|
# This file describes the network interfaces available on your system
|
||||||
|
# and how to activate them. For more information, see interfaces(5).
|
||||||
|
|
||||||
|
# The loopback network interface
|
||||||
|
auto lo
|
||||||
|
iface lo inet loopback
|
||||||
|
|
||||||
|
# Source interfaces
|
||||||
|
# Please check /etc/network/interfaces.d before changing this file
|
||||||
|
# as interfaces may have been defined in /etc/network/interfaces.d
|
||||||
|
# NOTE: the primary ethernet device is defined in
|
||||||
|
# /etc/network/interfaces.d/eth0
|
||||||
|
# See LP: #1262951
|
||||||
|
source /etc/network/interfaces.d/*.cfg
|
||||||
|
|
@ -0,0 +1,3 @@
|
|||||||
|
# The primary network interface
|
||||||
|
auto eth0
|
||||||
|
iface eth0 inet dhcp
|
Loading…
Reference in new issue