# Base CentOS server installation # linux ks=http://10.0.0.2/~joseph/kickstart/centos51.cfg install text cdrom lang en_US.UTF-8 keyboard us timezone --utc America/Los_Angeles firstboot --disabled network --device eth0 --bootproto dhcp rootpw qoPx2j9ysA2qExui firewall --enabled --port=10022:tcp authconfig --enableshadow --enablemd5 selinux --enforcing bootloader --location=mbr --driveorder=sda clearpart --all --drives=sda part /boot --fstype ext3 --size=128 --ondisk=sda part swap --fstype swap --size=512 --ondisk=sda part pv.00 --size=1 --grow --ondisk=sda volgroup vg.00 --pesize=32768 pv.00 logvol / --fstype ext3 --name=lv.00 --vgname=vg.00 --size=1 --grow logvol /var --fstype ext3 --name=lv.01 --vgname=vg.00 --size=1024 logvol /home --fstype ext3 --name=lv.02 --vgname=vg.00 --size=1024 %packages @core @base vim-enhanced rcs wget sendmail-cf -NetworkManager -amtu -apmd -autofs -bluez-gnome -bluez-libs -bluez-utils -ccid -conman -coolkey -cpuspeed -crash -dos2unix -dosfstools -dump -ed -eject -ethtool -fbset -finger -firstboot-tui -hdparm -ibmasm -ifd-egate -ipsec-tools -iptstate -irda-utils -irqbalance -jwhois -keyutils-libs -krb5-workstation -ksh -ifd-egate -lftp -libnotify -libwnck -mdadm -microcode_ctl -mlocate -mkbootdisk -mtools -mtr -nano -nc -notification-daemon -nscd -nss_ldap -numactl -oddjob -oddjob-libs -pam_krb5 -pam_pkcs11 -pcmciautils -pcsc-lite -pkinit-nss -pinfo -ppp -rdate -rdist -readahead -redhat-lsb -rng-utils -rp-pppoe -rsh -setuptool -stunnel -telnet -tree -setserial -smartmontools -startup-notification -sos -specspo -syslinux -talk -tcsh -unix2dos -usbutils -vconfig -wpa_supplicant -ypbind -yp-tools # ============================= # Prepare for chroot'ed script # ============================= %post --nochroot # =========================== # Post install chroot script # =========================== %post # ========================================= # Move sshd to 10022; Damn script kiddies. # ========================================= /usr/bin/perl -p -i -e 's/^#?[\s]*Port[\s]+22/Port 10022/i' /etc/ssh/sshd_config # ============================= # Disable unnecessary consoles # ============================= /usr/bin/perl -p -i -e 's/(^[2-6]:.*tty[2-6]$)/#\1/' /etc/inittab # ============================= # Disable unnecessary modules # ============================= UM_LIST="asus_acpi battery button lp parport parport_pc pcspkr video" for UM in $UM_LIST; do grep -qF " $UM " /etc/modprobe.conf || \ echo "alias $UM off" >> /etc/modprobe.conf done # ============================= # Disable ipv6 # ============================= echo "alias net-pf-10 ipv6" >> /etc/modprobe.conf echo "install ipv6 /bin/true" >> /etc/modprobe.conf echo "IPV6INIT=no" >> /etc/sysconfig/network-scripts/ifcfg-eth0 echo "IPV6_AUTOCONF=no" >> /etc/sysconfig/network-scripts/ifcfg-eth0 # ============================= # Disable unnecessary services # ============================= DISABLE_LIST="anacron gpm ip6tables irqbalance kudzu mcstrans \ messagebus netfs nfs nfslock netplugd portmap psacct \ rdisc restorecond rpcgssd rpcidmapd rpcsvcgssd saslauthd" for SERVICE in $DISABLE_LIST; do if [ -f "/etc/init.d/$SERVICE" ]; then /sbin/chkconfig --del $SERVICE fi done # ============================= # Update the CentOS # ============================= yum -y update # ============================= # Open VM Tools -- TBD # ============================= cd `mktemp -d` # yum -y install libicu # wget ... http://people.centos.org/~hughesjr/open-vm-tools/5/i386/ # rpm -Uvh kmod-open-vm-tools-* open-vm-tools-*