1 |
dpavlin |
44 |
|
2 |
|
|
# use shadow passwords |
3 |
|
|
pwconv |
4 |
|
|
|
5 |
|
|
# sleep a while |
6 |
|
|
sleep 1 |
7 |
|
|
|
8 |
|
|
# test network |
9 |
|
|
ping -c 3 localhost |
10 |
|
|
|
11 |
|
|
# upgrade to lastest version |
12 |
|
|
apt-get -y update |
13 |
|
|
apt-get -y upgrade |
14 |
|
|
|
15 |
|
|
# install additional packages |
16 |
|
|
apt-get -y --force-yes install vim less ssh sudo screen telnet finger |
17 |
|
|
|
18 |
|
|
# remove unwanted packages |
19 |
|
|
apt-get -y remove nano |
20 |
|
|
|
21 |
|
|
# apt-iselect helper |
22 |
|
|
wget -t 1 -T 5 -O /usr/local/bin/apt-iselect http://www.rot13.org/~dpavlin/projects/scripts/apt-iselect |
23 |
|
|
chmod 755 /usr/local/bin/apt-iselect |
24 |
|
|
|
25 |
|
|
# lock root user |
26 |
|
|
usermod -L root |
27 |
|
|
|
28 |
|
|
# disable getty |
29 |
|
|
sed -i -e '/getty/d' /etc/inittab |
30 |
|
|
|
31 |
|
|
# sane permissions for /root directory |
32 |
|
|
chmod 700 /root |
33 |
|
|
|
34 |
|
|
# disable sync() for syslog |
35 |
|
|
sed -i -e 's@\([[:space:]]\)\(/var/log/\)@\1-\2@' /etc/syslog.conf |
36 |
|
|
|
37 |
|
|
# fix /etc/mtab |
38 |
|
|
rm -f /etc/mtab |
39 |
|
|
ln -s /proc/mounts /etc/mtab |
40 |
|
|
|
41 |
|
|
# remove unneeded packages |
42 |
|
|
dpkg --purge modutils |
43 |
|
|
|
44 |
|
|
# disable services |
45 |
|
|
update-rc.d -f klogd remove |
46 |
|
|
update-rc.d -f quotarpc remove |
47 |
|
|
update-rc.d -f exim4 remove |
48 |
|
|
update-rc.d -f inetd remove |
49 |
|
|
|
50 |
|
|
# clean packages |
51 |
|
|
apt-get clean |
52 |
|
|
|