Changes between Version 2 and Version 3 of install_debian


Ignore:
Timestamp:
Aug 22, 2007, 1:36:40 PM (13 years ago)
Author:
Jamie McClelland
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • install_debian

    v2 v3  
    66console. If you can't - just install the normal way.
    77
    8 === PREPARE YOUR LAPTOP - Screen ===
     8=== Prepare your laptop - Screen ===
    99
    1010 * Install screen on your debian laptop:
     
    3535 * At the boot prompt hit enter to install the 2.6 kernel
    3636
    37 ==== INITIAL INSTALL ====
     37==== Initial steps ====
    3838
    3939 * [Skipping easy steps]
     
    9393
    9494
    95 ==== AFTER REBOOT ====
     95==== Afer reboot ====
    9696
    9797 * Set Hardware clock to GMT (even if it isn't)
     
    108108 * Root and postmaster recipient: root@mayfirst.org
    109109
    110 ==== POST INSTALL ====
    111 
    112  * Setup xen
     110=== Post Install ===
     111
     112==== Setup xen ====
    113113
    114114 * Install with:
     
    189189 Change settings as needed.
    190190
     191==== Misc ====
     192
    191193 * Edit /etc/group and change the group id of mayfirst to 1500 (so it will be
    192194consistent with red)
     
    221223 * Upload the mayfirst public keys to:
    222224
    223 .ssh/authorized_keys
    224 
    225  * Configure ssh to only accept connections with auth keys (unless this is a server that should be accessible by members)
    226 
    227 Edit /etc/ssh/sshd_config
    228 
    229 Uncomment the last line that says:
    230 
    231 {{{
    232 #UsePAM yes
    233 }}}
    234 
    235 Uncomment and change the !ChallengeResponseAuthentication line to match the following:
     225{{{
     226 .ssh/authorized_keys
     227}}}
     228
     229 * Configure ssh to only accept connections with auth keys (unless this is a server that should be accessible by members). Edit /etc/ssh/sshd_config.
     230
     231  * Uncomment and change the !ChallengeResponseAuthentication line to match the following:
    236232
    237233{{{
     
    239235}}}
    240236
    241 Reload ssh:
     237  * Reload ssh:
    242238
    243239{{{
     
    245241}}}
    246242
    247 === SERIAL CONSOLE LOGIN ===
    248 
    249  If you did not use the serial console installer, then perform the following:
    250 
    251  * Edit the /etc/inittab file.
    252 
    253  Uncomment the line that reads:
     243 * Serial console login: If you did not use the serial console installer, then perform the following:
     244
     245  * Edit the /etc/inittab file.
     246
     247  Uncomment the line that reads:
    254248
    255249{{{
     
    257251}}}
    258252
    259 and change 9600 to 115200 so it reads:
     253 and change 9600 to 115200 so it reads:
    260254
    261255{{{
     
    263257}}}
    264258
    265  * Refresh:
     259  * Refresh:
    266260
    267261{{{
     
    269263}}}
    270264
    271  * Add the following lines after the timeout line in /boot/grub/menu.1st
     265  * Add the following lines after the timeout line in /boot/grub/menu.1st
    272266
    273267{{{
     
    276270}}}
    277271
    278  * Add the following lies to the Start Default Options
     272  * Add the following lies to the Start Default Options
    279273You should already have a line such as:
    280274
     
    283277}}}
    284278
    285 add to it, so that your final line says:
     279  add to it, so that your final line says:
    286280
    287281{{{
     
    289283}}}
    290284
    291 Refresh grub:
     285  Refresh grub:
    292286
    293287{{{
     
    295289}}}
    296290
    297 
    298 ==== Misc ====
    299291
    300292 * Uninstall unecesary packages:
     
    307299from S to K any services that are not needed (e.g. rsync and inetd).
    308300
    309 === ENCRYPTED FILE SYSTEM ===
    310 
    311  * Install programs:
     301 * Encrypted File system
     302
     303  * Install programs:
    312304
    313305{{{
     
    315307}}}
    316308
    317  * Create an encrypted file system for members:
    318 
    319  * Now, unmount the partition (make sure there is no data on it that you care about).
     309  * Create an encrypted file system for members:
     310
     311  * Now, unmount the partition (make sure there is no data on it that you care about).
    320312
    321313{{{
     
    323315}}}
    324316
    325  * Create the encrypted filesystem:
     317  * Create the encrypted filesystem:
    326318
    327319{{{
     
    331323You will be prompted for a password. Put password in resource db!
    332324
    333  * Add to crypttab
     325  * Add to crypttab
    334326
    335327{{{
     
    337329}}}
    338330
    339  * Start it
     331  * Start it
    340332
    341333{{{
     
    343335}}}
    344336
    345  * Create a file system on the partition:
     337  * Create a file system on the partition:
    346338
    347339{{{
     
    349341}}}
    350342
    351  * Remove cryptdisks from the rc2.d directory - we do not want this to start automatically on boot! Instead we want to start it manually so the boot process doesn't hang waiting for a password.
     343  * Remove cryptdisks from the rc2.d directory - we do not want this to start automatically on boot! Instead we want to start it manually so the boot process doesn't hang waiting for a password.