update to upstream 5.3.4

[automated-distro-installer] / fai / config / scripts / GCE / 10-misc

diff --git a/fai/config/scripts/GCE/10-misc b/fai/config/scripts/GCE/10-misc
new file mode 100755 (executable)
index 0000000..4088d14
--- /dev/null
+++ b/fai/config/scripts/GCE/10-misc
@@ -0,0 +1,16 @@
+#! /bin/bash
+
+error=0; trap 'error=$(($?>$error?$?:$error))' ERR # save maximum error code
+
+# currently missing from bootstrap-vz:
+# init.d/generate-ssh-hostkeys (currently done in rc.local/CLOUD)
+
+ainsl -av /etc/sysctl.d/70-disable-ipv6.conf 'net.ipv6.conf.all.disable_ipv6 = 1'
+ainsl -av /etc/sysctl.d/70-disable-ipv6.conf 'net.ipv6.conf.lo.disable_ipv6 = 0'
+$ROOTCMD shadowconfig on
+sed -i -e 's/^#PasswordAuthentication yes/PasswordAuthentication no/' $target/etc/ssh/sshd_config
+sed -i -e 's/^PermitRootLogin .*/PermitRootLogin no/' $target/etc/ssh/sshd_config
+ainsl $target/etc/ssh/sshd_config 'ClientAliveInterval 420'
+
+rm -f $target/var/lib/apt/lists/*
+rm -f $target/etc/resolv.conf