102 lines
2.2 KiB
Bash
102 lines
2.2 KiB
Bash
# vim: set ft=sh :
|
|
|
|
text
|
|
install
|
|
url --url http://mirror.rnet.missouri.edu/fedora/linux/releases/29/Everything/x86_64/os/
|
|
repo --name=updates --baseurl=http://mirror.rnet.missouri.edu/fedora/linux/updates/29/Everything/x86_64/
|
|
lang en_US.UTF-8
|
|
keyboard us
|
|
timezone --utc UTC
|
|
rootpw --lock
|
|
reboot
|
|
|
|
bootloader --location mbr
|
|
clearpart --all --initlabel
|
|
reqpart
|
|
part /boot --fstype xfs --size=200
|
|
part pv.01 --size=1 --grow
|
|
volgroup dc1 pv.01
|
|
logvol / --fstype xfs --name=root --vgname=dc1 --size=3072 --grow
|
|
logvol /home --fstype xfs --name=home --vgname=dc1 --size=100
|
|
logvol /var --fstype xfs --name=var --vgname=dc1 --size=2048
|
|
logvol /var/log --fstype xfs --name=var_log --vgname=dc1 --size=2048
|
|
logvol /var/lib/samba --fstype xfs --name=samba --vgname=dc1 --size=2048
|
|
|
|
services --enabled systemd-networkd
|
|
|
|
%packages --excludeWeakdeps
|
|
-NetworkManager
|
|
-authconfig
|
|
-chrony
|
|
-dhcp-client
|
|
-dnf-plugins-core
|
|
-dnf-yum
|
|
-dracut-config-rescue
|
|
-e2fsprogs
|
|
-initscripts
|
|
-kbd
|
|
-man-db
|
|
-openssh-clients
|
|
-parted
|
|
-plymouth
|
|
-sssd-common
|
|
-sssd-kcm
|
|
-sudo
|
|
audit
|
|
avahi
|
|
chrony
|
|
dnf
|
|
dnf-command(system-upgrade)
|
|
grubby
|
|
hostname
|
|
iproute
|
|
iputils
|
|
openssh-server
|
|
qemu-guest-agent
|
|
rng-tools
|
|
selinux-policy-targeted
|
|
%end
|
|
|
|
|
|
%addon com_redhat_kdump --disable
|
|
%end
|
|
|
|
%post --erroronfail
|
|
echo 'install_weak_deps=0' >> /etc/dnf/dnf.conf
|
|
echo 'deltarpm=0' >> /etc/dnf/dnf.conf
|
|
echo '%_excludedocs 1' >> /etc/rpm/macros
|
|
|
|
systemctl mask systemd-journald-audit.socket
|
|
|
|
install -m700 -d /root/.ssh
|
|
cat >> /root/.ssh/authorized_keys <<EOF
|
|
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJsL5fSylmiJmBtW0DH/viAAmtU2E/2M17GPvysiyRs+ dustin@rosalina
|
|
EOF
|
|
|
|
rm -rf /etc/sysconfig/network-scripts /etc/sysconfig/network
|
|
cat > /etc/systemd/network/pyrocufflink.network <<EOF
|
|
[Match]
|
|
Name=ens3
|
|
|
|
[Network]
|
|
IPv6Token=::10:1
|
|
Address=172.30.0.9/28
|
|
Gateway=172.30.0.1
|
|
EOF
|
|
|
|
cat > /etc/resolv.conf <<EOF
|
|
domain pyrocufflink.blue
|
|
nameserver 172.31.0.4
|
|
nameserver 172.31.0.3
|
|
EOF
|
|
|
|
# Generate SSH host keys before first boot, since / will be read-only then
|
|
/usr/libexec/openssh/sshd-keygen ecdsa
|
|
/usr/libexec/openssh/sshd-keygen ed25519
|
|
/usr/libexec/openssh/sshd-keygen rsa
|
|
|
|
# Enable read-only rootfs. This cannot be done with part/logvol, as that would
|
|
# make Anaconda mount it read-only befor the installation starts.
|
|
sed -i -r '/\S+\s+\/\s+/s/defaults/ro/' /etc/fstab
|
|
%end
|