1
0
mirror of https://github.com/tommytran732/Fedora-CoreOS-Ignition synced 2024-11-21 08:51:38 -05:00

Update on Tuesday and Friday

Signed-off-by: Tommy <contact@tommytran.io>
This commit is contained in:
Tommy 2024-07-05 06:00:17 -07:00
parent b2df161d15
commit 18d5d4b591
Signed by: Tomster
GPG Key ID: 555C902A34EC968F
2 changed files with 2 additions and 3 deletions

View File

@ -6,8 +6,7 @@ Ignition configurations for Fedora CoreOS<br />
2. Only ED25519 SSH keys are accepted with the SSHD hardening configuration. If you do not use ED25519 keys, you will need to adjust the `/etc/ssh/sshd_config.d/10-custom.conf` file accordingly. 2. Only ED25519 SSH keys are accepted with the SSHD hardening configuration. If you do not use ED25519 keys, you will need to adjust the `/etc/ssh/sshd_config.d/10-custom.conf` file accordingly.
3. If you create a passwordless user that requires administrative privileges, ensure that it is part of the `sudo` group (CoreOS allows this group to use sudo without a password) as the configs will disable empty password system authentication. 3. If you create a passwordless user that requires administrative privileges, ensure that it is part of the `sudo` group (CoreOS allows this group to use sudo without a password) as the configs will disable empty password system authentication.
4. These configurations are made with a VPS in mind. You should adapt it for a bare metal deployment if that is what you are using (adding additional kernel parameters, configuring drive encryption, configuring storage, etc). You should also change the tuned profile from `virtual-guest` appropriately. 4. These configurations are made with a VPS in mind. You should adapt it for a bare metal deployment if that is what you are using (adding additional kernel parameters, configuring drive encryption, configuring storage, etc). You should also change the tuned profile from `virtual-guest` appropriately.
5. In most of these configs, the timezone is set to `America/Phoenix` and the automatic reboot time is set at 12 AM on Sunday. You need to be mindful of timezones with Daylight Savings per [Zincati documentation](https://coreos.github.io/zincati/usage/updates-strategy/). 5. The docker-compose-updater.service in `/etc/systemd/system` can be enabled to have automatic updates for your containers created by Docker Compose. Please make sure that the `WorkingDirectory` is appropriate.
6. The docker-compose-updater.service in `/etc/systemd/system` can be enabled to have automatic updates for your containers created by Docker Compose. Please make sure that the `WorkingDirectory` is appropriate.
# Upgrading from Fedora CoreOS 39 to 40 # Upgrading from Fedora CoreOS 39 to 40

View File

@ -5,6 +5,6 @@ strategy = "periodic"
time_zone = "localtime" time_zone = "localtime"
[[updates.periodic.window]] [[updates.periodic.window]]
days = [ "Fri" ] days = [ "Tue", "Fri" ]
start_time = "0:00" start_time = "0:00"
length_minutes = 60 length_minutes = 60