Changes between Version 2 and Version 3 of install_debian
- Timestamp:
- Aug 22, 2007, 5:36:40 PM (17 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
install_debian
v2 v3 6 6 console. If you can't - just install the normal way. 7 7 8 === P REPARE YOUR LAPTOP- Screen ===8 === Prepare your laptop - Screen === 9 9 10 10 * Install screen on your debian laptop: … … 35 35 * At the boot prompt hit enter to install the 2.6 kernel 36 36 37 ==== I NITIAL INSTALL====37 ==== Initial steps ==== 38 38 39 39 * [Skipping easy steps] … … 93 93 94 94 95 ==== A FTER REBOOT====95 ==== Afer reboot ==== 96 96 97 97 * Set Hardware clock to GMT (even if it isn't) … … 108 108 * Root and postmaster recipient: root@mayfirst.org 109 109 110 === = POST INSTALL ====111 112 * Setup xen 110 === Post Install === 111 112 ==== Setup xen ==== 113 113 114 114 * Install with: … … 189 189 Change settings as needed. 190 190 191 ==== Misc ==== 192 191 193 * Edit /etc/group and change the group id of mayfirst to 1500 (so it will be 192 194 consistent with red) … … 221 223 * Upload the mayfirst public keys to: 222 224 223 .ssh/authorized_keys 224 225 * Configure ssh to only accept connections with auth keys (unless this is a server that should be accessible by members) 226 227 Edit /etc/ssh/sshd_config 228 229 Uncomment the last line that says: 230 231 {{{ 232 #UsePAM yes 233 }}} 234 235 Uncomment and change the !ChallengeResponseAuthentication line to match the following: 225 {{{ 226 .ssh/authorized_keys 227 }}} 228 229 * Configure ssh to only accept connections with auth keys (unless this is a server that should be accessible by members). Edit /etc/ssh/sshd_config. 230 231 * Uncomment and change the !ChallengeResponseAuthentication line to match the following: 236 232 237 233 {{{ … … 239 235 }}} 240 236 241 Reload ssh:237 * Reload ssh: 242 238 243 239 {{{ … … 245 241 }}} 246 242 247 === SERIAL CONSOLE LOGIN === 248 249 If you did not use the serial console installer, then perform the following: 250 251 * Edit the /etc/inittab file. 252 253 Uncomment the line that reads: 243 * Serial console login: If you did not use the serial console installer, then perform the following: 244 245 * Edit the /etc/inittab file. 246 247 Uncomment the line that reads: 254 248 255 249 {{{ … … 257 251 }}} 258 252 259 and change 9600 to 115200 so it reads:253 and change 9600 to 115200 so it reads: 260 254 261 255 {{{ … … 263 257 }}} 264 258 265 * Refresh:259 * Refresh: 266 260 267 261 {{{ … … 269 263 }}} 270 264 271 * Add the following lines after the timeout line in /boot/grub/menu.1st265 * Add the following lines after the timeout line in /boot/grub/menu.1st 272 266 273 267 {{{ … … 276 270 }}} 277 271 278 * Add the following lies to the Start Default Options272 * Add the following lies to the Start Default Options 279 273 You should already have a line such as: 280 274 … … 283 277 }}} 284 278 285 add to it, so that your final line says:279 add to it, so that your final line says: 286 280 287 281 {{{ … … 289 283 }}} 290 284 291 Refresh grub:285 Refresh grub: 292 286 293 287 {{{ … … 295 289 }}} 296 290 297 298 ==== Misc ====299 291 300 292 * Uninstall unecesary packages: … … 307 299 from S to K any services that are not needed (e.g. rsync and inetd). 308 300 309 === ENCRYPTED FILE SYSTEM === 310 311 * Install programs:301 * Encrypted File system 302 303 * Install programs: 312 304 313 305 {{{ … … 315 307 }}} 316 308 317 * Create an encrypted file system for members:318 319 * Now, unmount the partition (make sure there is no data on it that you care about).309 * Create an encrypted file system for members: 310 311 * Now, unmount the partition (make sure there is no data on it that you care about). 320 312 321 313 {{{ … … 323 315 }}} 324 316 325 * Create the encrypted filesystem:317 * Create the encrypted filesystem: 326 318 327 319 {{{ … … 331 323 You will be prompted for a password. Put password in resource db! 332 324 333 * Add to crypttab325 * Add to crypttab 334 326 335 327 {{{ … … 337 329 }}} 338 330 339 * Start it331 * Start it 340 332 341 333 {{{ … … 343 335 }}} 344 336 345 * Create a file system on the partition:337 * Create a file system on the partition: 346 338 347 339 {{{ … … 349 341 }}} 350 342 351 * Remove cryptdisks from the rc2.d directory - we do not want this to start automatically on boot! Instead we want to start it manually so the boot process doesn't hang waiting for a password.343 * Remove cryptdisks from the rc2.d directory - we do not want this to start automatically on boot! Instead we want to start it manually so the boot process doesn't hang waiting for a password.