-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathg2deploy.sh
executable file
·86 lines (74 loc) · 3.25 KB
/
g2deploy.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
#!/bin/bash
function goodstuff_g2 {
# Installs the REAL vim, wget, less, and enables color root prompt and the "ll" list long alias
aptitude -y install wget vim less
sed -i'.bk' -e 's/^#PS1=/PS1=/' /home/g2/.bashrc # enable the colorful root bash prompt
sed -i'.bk' -e "s/^#alias ll='ls -l'/alias ll='ls -al'/" /home/g2/.bashrc # enable ll list long alias <3
}
# Stackscript ID #1
source stackscript_1.sh
# Stackscript ID #123
source stackscript_123.sh
export LANGUAGE=en_US.UTF-8
export LANG=en_US.UTF-8
export LC_ALL=en_US.UTF-8
echo "export LANGUAGE=en_US.UTF-8" >> /etc/environment
echo "export LANG=en_US.UTF-8" >> /etc/environment
echo "export LC_ALL=en_US.UTF-8" >> /etc/environment
apt-get install -y language-pack-en-base
locale-gen en_US.UTF-8
dpkg-reconfigure locales
echo "Asia/Kuala_Lumpur" > /etc/timezone
dpkg-reconfigure --frontend noninteractive tzdata
useradd g2 -m -s /bin/bash
printf "Welcome123Juzit\nWelcome123Juzit\n" | passwd g2
mkdir ~g2/.ssh
chmod 777 /etc/sudoers
count=$(grep -i "g2" /etc/sudoers|wc -l)
if test $count -eq 0
then
sed -i'.bk' -e '/# User privilege specification/ a\g2 ALL=(ALL:ALL) ALL' /etc/sudoers
fi
count=$(grep -i "pwfeedback" /etc/sudoers|wc -l)
if test $count -eq 0
then
sed -i'.bk' -e "s/env_reset/env_reset,pwfeedback/" /etc/sudoers
fi
chmod 0440 /etc/sudoers
system_update
postfix_install_loopback_only
mysql_install "Welcome123Juzit" && mysql_tune 40
###########################################################
# PHP
###########################################################
php_install_with_apache && php_tune
sed -i'.bk' 's/^expose_php.*/expose_php = Off/' /etc/php5/apache2/php.ini
###########################################################
# Apache
###########################################################
apache_install && apache_tune 40
echo "ServerSignature Off" >> /etc/apache2/apache2.conf
echo "ServerTokens Prod" >> /etc/apache2/apache2.conf
a2enmod rewrite
###########################################################
# SSH
###########################################################
system_sshd_permitrootlogin no
system_sshd_passwordauthentication no
system_user_add_ssh_key "g2" "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCmG4HXpZLao+iS8oNH5o+6p35OzyJEJ/GRkyHqUVr1oVapCs0eTXYPL0vCqbXYCpZBM3Hz4XzM4sCBgZiY7ymCC2Y1JVdwEZ/DrcB6YYS4HmzLGmC5gH11/MOfqEBmWaKl/sy4ARJYXggX5yTraFM3w+JWEza2jB0qMIv8EvBxdVR1ItyUK5Mwg8sn4y8YpT+nnXOvLRL89dnkiqo6UR0AhpPWIOrnN9vm0ZnNMy2RVIYGv1vo+fS1KeXxtpLlaBPpKZBBKbveqaqH/ceyPtHaP+sCg94FzUydXv2ZOEnnLCZtxxf49cY9pa6R3Uv9v3Wjvdj8L7YL/CnIqQaPIizn g2@G2MAC.local"
system_user_add_ssh_key "g2" "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC5iA2IWLLmsnFdPV/ad+uhSD0CAWP6XZNzeEnLCYLVdxRP+D1u0Ba08PiJZBXoZ1MLIL+p2b9rjuvKoilgY4xaCbX1juuljESO6dq4L7MjIRgv9kQWT7m8JTpUUQZUrxcJ0RGk9979jd6nTxGw6JZ1gIKiDyjNdSUJG88FTtV7Ib8vCy/J4sREJLvNXGH4mYf5d/mDMcvA0xz7/yXD1Iau7G6889heLRLk3GCdUe7ZH6Dj8DgaTN9wJpp6QXOrWDtgwyIHAm18Xj8eufJxrmw/jRBH5orDNIDkTb4TFPJ70c5BbOIEB3spbozO6Ybj0sqNytU4Apq03jwA+cnzfBK5 G2ONEX"
chown g2:g2 ~g2/.ssh/authorized_keys
apt-get install -y fail2ban
apt-get install -y htop
apt-get install -y php5-suhosin
apt-get install -y phpmyadmin
goodstuff
goodstuff_g2
mysql_secure_installation
echo "New password for g2"
passwd g2
system_security_ufw_configure_basic
ufw allow 1194
system_lock_user root
shutdown -r now
exit