diff --git a/install.sh b/install.sh index f55b802..625fa71 100644 --- a/install.sh +++ b/install.sh @@ -31,15 +31,28 @@ dnf -y --installroot=/mnt --releasever=39 install gpart gdisk rsync nano tcpdump tcsh net-tools bind-utils sysstat xfsprogs atop chrony ntpstat \ tree git git-all mc wpa_supplicant glibc-langpack-ru -dnf -y --installroot=/mnt --releasever=39 install kernel grub2-efi-x64 \ -grub2-efi-x64-modules grub2-tools-efi shim +dnf -y --installroot=/mnt --releasever=39 install kernel efibootmgr shim \ +grub2-efi-x64 grub2-efi-x64-modules \ +grub2-tools-efi grub2-tools-extra \ +grub2-breeze-theme -chroot /mnt grub2-mkconfig -o /boot/efi/EFI/fedora/grub.cfg +cat < /mnt/etc/default/grub +GRUB_TIMEOUT=30 +GRUB_DEFAULT=saved +GRUB_SAVEDEFAULT=false +EOF + +chroot /mnt grub2-mkconfig -o /boot/grub2/grub.cfg blkid --output export ${drive}p3 | grep ^UUID= | xargs -I '{}' echo {} / xfs defaults 0 1 > /mnt/etc/fstab blkid --output export ${drive}p2 | grep ^UUID= | xargs -I '{}' echo {} none swap defaults 0 0 >> /mnt/etc/fstab blkid --output export ${drive}p1 | grep ^UUID= | xargs -I '{}' echo {} /boot/efi vfat defaults 0 2 > /mnt/etc/fstab +chroot /mnt systemctl disable NetworkManager +chroot /mnt systemctl disable firewalld +chroot /mnt systemctl enable systemd-networkd +chroot /mnt systemctl enable nftables + setenforce 0 echo 'root:123' | chpasswd --root /mnt #groupadd --root /mnt admin @@ -48,6 +61,17 @@ echo 'root:123' | chpasswd --root /mnt # SElinux to mode Permissive sed -i s/^SELINUX=.*$/SELINUX=permissive/ /mnt/etc/selinux/config +sed -i -r 's/^.?PermitRootLogin.*/PermitRootLogin\ yes/g' /mnt/etc/ssh/sshd_config +sed -i -r 's/^.?UseDNS no/UseDNS no/g' /mnt/etc/ssh/sshd_config +sed -i -r 's/^.?UseDNS yes/UseDNS no/g' /mnt/etc/ssh/sshd_config +mkdir /mnt/root/.ssh +touch /mnt/root/.ssh/authorized_keys +chmod 0700 /mnt/root/.ssh +chmod 0600 /mnt/root/.ssh/authorized_keys + +sed -i -r 's/^.*history-search-backward.*/"\\e[A": history-search-backward/g' /mnt/etc/inputrc +sed -i -r 's/^.*history-search-forward.*/"\\e[B": history-search-forward/g' /mnt/etc/inputrc + umount /mnt/run umount /mnt/dev umount /mnt/sys