198 lines
8.1 KiB
INI
198 lines
8.1 KiB
INI
#### Contents of the preconfiguration file (for buster)
|
|
### Localization
|
|
# Preseeding only locale sets language, country and locale.
|
|
d-i debian-installer/language string en_US:en
|
|
d-i debian-installer/country string DE
|
|
d-i debian-installer/locale string en_US.UTF-8
|
|
|
|
# Keyboard selection.
|
|
d-i keyboard-configuration/xkb-keymap select us
|
|
# d-i keyboard-configuration/toggle select No toggling
|
|
|
|
### Network configuration
|
|
d-i netcfg/choose_interface select auto
|
|
|
|
# wait up to 10 minutes for a IPv4 adress
|
|
d-i netcfg/dhcp_timeout string 600
|
|
d-i netcfg/dhcpv6_timeout string 1
|
|
|
|
# Any hostname and domain names assigned from dhcp take precedence over
|
|
# values set here. However, setting the values still prevents the questions
|
|
# from being shown, even if values come from dhcp.
|
|
d-i netcfg/get_hostname string debian
|
|
d-i netcfg/get_domain string local
|
|
|
|
# Disable that annoying WEP key dialog.
|
|
d-i netcfg/wireless_wep string
|
|
|
|
### Mirror settings
|
|
# If you select ftp, the mirror/country string does not need to be set.
|
|
#d-i mirror/protocol string ftp
|
|
d-i mirror/country string manual
|
|
d-i mirror/http/hostname string cdn-fastly.deb.debian.org
|
|
d-i mirror/http/directory string /debian
|
|
d-i mirror/http/proxy string
|
|
|
|
# Suite to install.
|
|
d-i mirror/suite string bullseye
|
|
# Suite to use for loading installer components (optional).
|
|
#d-i mirror/udeb/suite string testing
|
|
|
|
### Account setup
|
|
# Skip creation of a root account (normal user account will be able to
|
|
# use sudo).
|
|
d-i passwd/root-login boolean true
|
|
# Alternatively, to skip creation of a normal user account.
|
|
d-i passwd/make-user boolean false
|
|
|
|
# To create a normal user account.
|
|
#d-i passwd/user-fullname string user
|
|
#d-i passwd/username string user
|
|
# or encrypted using a crypt(3) hash.
|
|
#d-i passwd/user-password-crypted password ....
|
|
# Create the first user with the specified UID instead of the default.
|
|
d-i passwd/user-uid string 1000
|
|
|
|
# The user account will be added to some standard initial groups. To
|
|
# override that, use this.
|
|
d-i passwd/user-default-groups string
|
|
|
|
### Clock and time zone setup
|
|
# Controls whether or not the hardware clock is set to UTC.
|
|
d-i clock-setup/utc boolean true
|
|
|
|
# You may set this to any valid setting for $TZ; see the contents of
|
|
# /usr/share/zoneinfo/ for valid values.
|
|
d-i time/zone string Europe/Berlin
|
|
|
|
# Controls whether to use NTP to set the clock during the install
|
|
d-i clock-setup/ntp boolean true
|
|
# NTP server to use. The default is almost always fine here.
|
|
#d-i clock-setup/ntp-server string ntp.example.com
|
|
|
|
# Alternatively, you may specify a disk to partition. If the system has only
|
|
# one disk the installer will default to using that, but otherwise the device
|
|
# name must be given in traditional, non-devfs format (so e.g. /dev/sda
|
|
# and not e.g. /dev/discs/disc0/disc).
|
|
# For example, to use the first SCSI/SATA hard disk:
|
|
#d-i partman-auto/disk string /dev/vda
|
|
|
|
# If you just want to change the default filesystem from ext3 to something
|
|
# else, you can do that without providing a full recipe.
|
|
d-i partman/default_filesystem string btrfs
|
|
|
|
# In addition, you'll need to specify the method to use.
|
|
# The presently available methods are:
|
|
# - regular: use the usual partition types for your architecture
|
|
# - lvm: use LVM to partition the disk
|
|
# - crypto: use LVM within an encrypted partition
|
|
d-i partman-auto/method string lvm
|
|
|
|
# You can define the amount of space that will be used for the LVM volume
|
|
# group. It can either be a size with its unit (eg. 20 GB), a percentage of
|
|
# free space or the 'max' keyword.
|
|
d-i partman-auto-lvm/guided_size string max
|
|
|
|
# If one of the disks that are going to be automatically partitioned
|
|
# contains an old LVM configuration, the user will normally receive a
|
|
# warning. This can be preseeded away...
|
|
d-i partman-lvm/device_remove_lvm boolean true
|
|
# The same applies to pre-existing software RAID array:
|
|
d-i partman-md/device_remove_md boolean true
|
|
# And the same goes for the confirmation to write the lvm partitions.
|
|
d-i partman-lvm/confirm boolean true
|
|
d-i partman-lvm/confirm_nooverwrite boolean true
|
|
|
|
# You can choose one of the three predefined partitioning recipes:
|
|
# - atomic: all files in one partition
|
|
# - home: separate /home partition
|
|
# - multi: separate /home, /var, and /tmp partitions
|
|
d-i partman-auto/choose_recipe select atomic
|
|
|
|
# This makes partman automatically partition without confirmation.
|
|
d-i partman-md/confirm boolean true
|
|
d-i partman-partitioning/confirm_write_new_label boolean true
|
|
d-i partman/choose_partition select finish
|
|
d-i partman/confirm boolean true
|
|
d-i partman/confirm_nooverwrite boolean true
|
|
|
|
## Controlling how partitions are mounted
|
|
# The default is to mount by UUID, but you can also choose "traditional" to
|
|
# use traditional device names, or "label" to try filesystem labels before
|
|
# falling back to UUIDs.
|
|
d-i partman/mount_style select uuid
|
|
|
|
### Base system installation
|
|
# Configure APT to not install recommended packages by default. Use of this
|
|
# option can result in an incomplete system and should only be used by very
|
|
# experienced users.
|
|
d-i base-installer/install-recommends boolean false
|
|
|
|
# The kernel image (meta) package to be installed; "none" can be used if no
|
|
# kernel is to be installed.
|
|
d-i base-installer/kernel/image string linux-image-amd64
|
|
|
|
### Apt setup
|
|
# You can choose to install non-free and contrib software.
|
|
d-i apt-setup/non-free boolean true
|
|
d-i apt-setup/contrib boolean true
|
|
# Uncomment this if you don't want to use a network mirror.
|
|
# d-i apt-setup/use_mirror boolean false
|
|
# Select which update services to use; define the mirrors to be used.
|
|
# Values shown below are the normal defaults.
|
|
d-i apt-setup/services-select multiselect security, updates, proposed-updates, backports
|
|
d-i apt-setup/security_host string cdn-fastly.deb.debian.org
|
|
d-i apt-setup/backports boolean true
|
|
|
|
### Package selection
|
|
tasksel tasksel/first multiselect none
|
|
|
|
# Individual additional packages to install
|
|
#d-i pkgsel/include string openssh-server build-essential
|
|
d-i pkgsel/include string bind9-dnsutils, ca-certificates, curl, gnupg, inetutils-ping, mc, openssh-server, qemu-guest-agent, python3, rsync, sudo, tree, vim
|
|
# Whether to upgrade packages after debootstrap.
|
|
# Allowed values: none, safe-upgrade, full-upgrade
|
|
d-i pkgsel/upgrade select full-upgrade
|
|
|
|
# Some versions of the installer can report back on what software you have
|
|
# installed, and what software you use. The default is not to report back,
|
|
# but sending reports helps the project determine what software is most
|
|
# popular and include it on CDs.
|
|
popularity-contest popularity-contest/participate boolean true
|
|
|
|
# This is fairly safe to set, it makes grub install automatically to the MBR
|
|
# if no other operating system is detected on the machine.
|
|
d-i grub-installer/only_debian boolean true
|
|
|
|
# This one makes grub-installer install to the MBR if it also finds some other
|
|
# OS, which is less safe as it might not be able to boot that other OS.
|
|
d-i grub-installer/with_other_os boolean false
|
|
|
|
# Due notably to potential USB sticks, the location of the MBR can not be
|
|
# determined safely in general, so this needs to be specified:
|
|
#d-i grub-installer/bootdev string /dev/vda
|
|
# To install to the first device (assuming it is not a USB stick):
|
|
d-i grub-installer/bootdev string default
|
|
|
|
# Avoid that last message about the install being complete.
|
|
d-i finish-install/reboot_in_progress note
|
|
|
|
# This will power off the machine instead of just halting it.
|
|
d-i debian-installer/exit/poweroff boolean true
|
|
|
|
# This command is run just before the install finishes, but when there is
|
|
# still a usable /target directory. You can chroot to /target and use it
|
|
# directly, or use the apt-install and in-target commands to easily install
|
|
# packages and run commands in the target system.
|
|
d-i preseed/late_command string \
|
|
in-target useradd -s /bin/sh -m -U -G sudo deploy; \
|
|
in-target passwd -l deploy; \
|
|
in-target mkdir -p "/home/deploy/.ssh"; \
|
|
in-target curl -o /home/deploy/.ssh/authorized_keys https://git.dezentrale.cloud/services/preseed/raw/branch/main/authorized_keys; \
|
|
in-target chown -R "deploy:deploy" "/home/deploy"; \
|
|
in-target chmod 700 "/home/deploy"; \
|
|
in-target chmod 700 "/home/deploy/.ssh"; \
|
|
in-target chmod 600 "/home/deploy/.ssh/authorized_keys"; \
|
|
echo "deploy ALL = NOPASSWD: ALL" >/target/etc/sudoers.d/deploy; \
|
|
true
|