diff options
author | Jonas Smedegaard <dr@jones.dk> | 2014-02-25 11:35:58 +0100 |
---|---|---|
committer | Jonas Smedegaard <dr@jones.dk> | 2014-02-25 11:54:00 +0100 |
commit | 8b866291112aa97e29c604ce742eb4dcef5939fa (patch) | |
tree | 806e4904fb775d0da673e8643a2a9fe1aedb837e | |
parent | 82cb3d481fa7c13118ed2ac33b27eaec2025b32c (diff) |
Add base profile.
-rw-r--r-- | content/desktop/base/preseed.cfg | 58 |
1 files changed, 58 insertions, 0 deletions
diff --git a/content/desktop/base/preseed.cfg b/content/desktop/base/preseed.cfg new file mode 100644 index 0000000..b0b41d6 --- /dev/null +++ b/content/desktop/base/preseed.cfg @@ -0,0 +1,58 @@ +# install the lightweight Xfce desktop, and... +# * include crypto helper tools +# * include CPU firmware and automatic maintenance routines +# * fix include recommendations of other packages (uuid, bash) +# * apply security updates immediately after install +# * exclude support for print via Bluetooth +tasksel tasksel/desktop multiselect xfce +tasksel tasksel/first multiselect laptop +#xfce4-session tango-icon-theme lightdm +#parcimonie haveged +#firmware-linux unattended-upgrades +#uuid-runtime bash-completion +#-bluez-cups +d-i pkgsel/include string xfce4-session tango-icon-theme lightdm parcimonie haveged firmware-linux unattended-upgrades uuid-runtime bash-completion -bluez-cups +d-i pkgsel/upgrade select safe-upgrade + +# setup harddrive with full disk encryption +# * overwrite any existing data without warning +partman-auto partman-auto/method string crypto +d-i partman-lvm/device_remove_lvm boolean true +d-i partman-md/device_remove_md boolean true +d-i partman-lvm/confirm boolean true +d-i partman-lvm/confirm_nooverwrite boolean true +d-i partman-auto/choose_recipe select multi +d-i partman-partitioning/confirm_write_new_label boolean true +d-i partman/choose_partition select finish +d-i partman/confirm boolean true +d-i partman/confirm_nooverwrite boolean true + +# silence misc. questions +# * attempt to auto-detect hardware +# * domain name irrelevant on desktop host without MTA +# * use CDN for package updates +# * disable direct root login (use sudo instead) +# * report usage statistics back to Debian developers +d-i netcfg/choose_interface select auto +d-i netcfg/get_domain string unassigned-domain +d-i mirror/country string manual +d-i mirror/http/hostname string http.debian.net +d-i mirror/http/directory string /debian +d-i clock-setup/utc boolean true +d-i clock-setup/ntp boolean true +d-i apt-setup/services-select multiselect security, updates +d-i apt-setup/security_host string security.debian.org +d-i passwd/root-login boolean false +popularity-contest popularity-contest/participate boolean true + +# tidy loose ends... +# * fix mark auto-installed packages as such +# * silence confusing panel question at initial XFCE login +# * replace appfinder with mail-reader in default XFCE panel +# * disable storing Xfce session at logout by default +#chroot /target apt-mark auto $(chroot /target apt-mark showmanual | grep '^lib') acpi acpi-support-base acpid adduser apt apt-utils aptitude-common base-files base-passwd bash bash-completion bsdmainutils bsdutils busybox coreutils cpio cron dash debconf debconf-i18n debian-archive-keyring debianutils diffutils dmidecode dpkg e2fslibs e2fsprogs findutils fonts-freefont-ttf gcc-4.7-base gnupg gpgv grep groff-base grub-common gzip hostname ifupdown initramfs-tools initscripts insserv install-info iproute isc-dhcp-client isc-dhcp-common keyboard-configuration kmod laptop-detect linux-image-amd64 locales login logrotate lsb-base mawk mount multiarch-support ncurses-base ncurses-bin net-tools netbase netcat-traditional passwd pciutils perl-base procps readline-common rsyslog sed sensible-utils sysv-rc sysvinit sysvinit-utils tar tasksel tasksel-data tzdata udev usbutils util-linux uuid-runtime vim-common xz-utils zlib1g +#cd /target/etc/xdg/xfce4/xfconf/xfce-perchannel-xml +#cp -a ../../panel/default.xml xfce4-panel.xml && touch xfce4-panel.xml.orig +#cp -a xfce4-panel.xml xfce4-panel.xml.old && sed -i -r -e 's,xfce4-appfinder,exo-mail-reader,' xfce4-panel.xml +#cp -a xfce4-session.xml xfce4-session.xml.orig && sed -i -r -e 's,(<property name="general"[^>]*>),\1\n <property name="SaveOnExit" type="bool" value="false"/>,' xfce4-session.xml +d-i preseed/late_command string chroot /target apt-mark auto $(chroot /target apt-mark showmanual | grep '^lib') acpi acpi-support-base acpid adduser apt apt-utils aptitude-common base-files base-passwd bash bash-completion bsdmainutils bsdutils busybox coreutils cpio cron dash debconf debconf-i18n debian-archive-keyring debianutils diffutils dmidecode dpkg e2fslibs e2fsprogs findutils fonts-freefont-ttf gcc-4.7-base gnupg gpgv grep groff-base grub-common gzip hostname ifupdown initramfs-tools initscripts insserv install-info iproute isc-dhcp-client isc-dhcp-common keyboard-configuration kmod laptop-detect linux-image-amd64 locales login logrotate lsb-base mawk mount multiarch-support ncurses-base ncurses-bin net-tools netbase netcat-traditional passwd pciutils perl-base procps readline-common rsyslog sed sensible-utils sysv-rc sysvinit sysvinit-utils tar tasksel tasksel-data tzdata udev usbutils util-linux uuid-runtime vim-common xz-utils zlib1g && cd /target/etc/xdg/xfce4/xfconf/xfce-perchannel-xml && cp -a ../../panel/default.xml xfce4-panel.xml && touch xfce4-panel.xml.orig && cp -a xfce4-panel.xml xfce4-panel.xml.old && sed -i -r -e 's,xfce4-appfinder,exo-mail-reader,' xfce4-panel.xml && cp -a xfce4-session.xml xfce4-session.xml.orig && sed -i -r -e 's,(<property name="general"[^>]*>),\1\n <property name="SaveOnExit" type="bool" value="false"/>,' xfce4-session.xml |