1
0
mirror of https://github.com/tommytran732/Arch-Setup-Script synced 2024-12-04 15:01:34 -05:00

Compare commits

...

4 Commits

Author SHA1 Message Date
funk-on-code
2de90fd16c
Merge f0d50359de into 9f56c5b0e2 2024-09-19 20:31:02 -07:00
9f56c5b0e2
Add permission control for workflow
Signed-off-by: Tommy <contact@tommytran.io>
2024-09-10 16:23:03 -07:00
funk-on-code
0e0cfa9f52
Workaround for systemd-networkd (#45)
The archlinux ISO provides working networking, use it to provide working networking for server installs on first-boot.

Signed-off-by: funk-on-code <113871227+funk-on-code@users.noreply.github.com>
2024-09-10 16:19:53 -07:00
funk-on-code
f0d50359de
Create limits.d (and sanitise directory creation a tad)
Signed-off-by: funk-on-code <113871227+funk-on-code@users.noreply.github.com>
2024-08-08 14:32:05 +10:00
2 changed files with 13 additions and 5 deletions

View File

@ -28,8 +28,10 @@ on:
jobs: jobs:
shellcheck: shellcheck:
name: Bash syntax checker name: Shell syntax checker
runs-on: ubuntu-latest runs-on: ubuntu-24.04
permissions:
contents: read
steps: steps:
- name: Checkout code - name: Checkout code
uses: actions/checkout@v4 uses: actions/checkout@v4

View File

@ -462,8 +462,9 @@ mkdir -p /mnt/etc/systemd/system/sshd.service.d/
unpriv curl -s https://raw.githubusercontent.com/GrapheneOS/infrastructure/main/systemd/system/sshd.service.d/local.conf | tee /mnt/etc/systemd/system/sshd.service.d/override.conf > /dev/null unpriv curl -s https://raw.githubusercontent.com/GrapheneOS/infrastructure/main/systemd/system/sshd.service.d/local.conf | tee /mnt/etc/systemd/system/sshd.service.d/override.conf > /dev/null
## Disable coredump ## Disable coredump
[ ! -d "/mnt/etc/security/limits.d" ]; mkdir -p /mnt/etc/security/limits.d
unpriv curl -s https://raw.githubusercontent.com/TommyTran732/Linux-Setup-Scripts/main/etc/security/limits.d/30-disable-coredump.conf | tee /mnt/etc/security/limits.d/30-disable-coredump.conf > /dev/null unpriv curl -s https://raw.githubusercontent.com/TommyTran732/Linux-Setup-Scripts/main/etc/security/limits.d/30-disable-coredump.conf | tee /mnt/etc/security/limits.d/30-disable-coredump.conf > /dev/null
mkdir -p /mnt/etc/systemd/coredump.conf.d [ ! -d "/mnt/etc/systemd/coredump.conf.d" ]; mkdir -p /mnt/etc/systemd/coredump.conf.d
unpriv curl -s https://raw.githubusercontent.com/TommyTran732/Linux-Setup-Scripts/main/etc/systemd/coredump.conf.d/disable.conf | tee /mnt/etc/systemd/coredump.conf.d/disable.conf > /dev/null unpriv curl -s https://raw.githubusercontent.com/TommyTran732/Linux-Setup-Scripts/main/etc/systemd/coredump.conf.d/disable.conf | tee /mnt/etc/systemd/coredump.conf.d/disable.conf > /dev/null
# Disable XWayland # Disable XWayland
@ -511,6 +512,11 @@ if [ "${network_daemon}" = 'networkmanager' ]; then
unpriv curl -s https://gitlab.com/divested/brace/-/raw/master/brace/usr/lib/systemd/system/NetworkManager.service.d/99-brace.conf | tee /mnt/etc/systemd/system/NetworkManager.service.d/99-brace.conf > /dev/null unpriv curl -s https://gitlab.com/divested/brace/-/raw/master/brace/usr/lib/systemd/system/NetworkManager.service.d/99-brace.conf | tee /mnt/etc/systemd/system/NetworkManager.service.d/99-brace.conf > /dev/null
fi fi
if [ "${network_daemon}" = 'systemd-networkd' ]; then
# arch-iso has working networking, booted does not.
cp -ap /etc/systemd/network/20* /mnt/etc/systemd/network/ > /dev/null
fi
## Configuring the system. ## Configuring the system.
arch-chroot /mnt /bin/bash -e <<EOF arch-chroot /mnt /bin/bash -e <<EOF