# Kickstart config file generated by RHN Config Management # # Profile Name : RHEL4-32-GENERIC # Profile Label : RHEL4-32-GENERIC # Date Created : 2007-10-15 08:19:43.0 # install text network --bootproto dhcp url --url http://rhn.redhat.com/kickstart/dist/ lang en_US langsupport --default en_US en_US keyboard fr_CH mouse none zerombr yes clearpart --all part /boot --fstype=ext3 --size=200 part pv.01 --size=1000 --grow part swap --size=1000 --maxsize=2000 volgroup myvg pv.01 logvol / --vgname=myvg --name=rootvol --size=8000 logvol /var --vgname=myvg --name=var --size=4000 --grow bootloader --location mbr timezone Europe/Luxembourg auth --enablemd5 --enableshadow rootpw --iscrypted $1$u4o0u6Ix$ocz5sjZak2n7G7KRi6fgW1 selinux --disabled firewall --disabled reboot skipx key --skip %packages --resolvedeps -wireless-tools -bluez-bluefw @ Base -pcmcia-cs -quota -stunnel -irda-utils -bluez-libs -isdn4k-utils -bluez-hcidump -aspell -sendmail -bluez-utils -ipsec-tools -logwatch -rp-pppoe -aspell-en postfix %post --nochroot mkdir /mnt/sysimage/tmp/ks-tree-copy if [ -d /oldtmp/ks-tree-shadow ]; then cp -fa /oldtmp/ks-tree-shadow/* /mnt/sysimage/tmp/ks-tree-copy elif [ -d /tmp/ks-tree-shadow ]; then cp -fa /tmp/ks-tree-shadow/* /mnt/sysimage/tmp/ks-tree-copy fi cp /etc/resolv.conf /mnt/sysimage/etc/resolv.conf %post ( # Log %post errors # --Begin RHN command section-- mkdir -p /tmp/rhn_rpms/optional wget -O /tmp/rhn_rpms/optional/libxml2-python-2.6.16-12.9.i386.rpm http://rhn.redhat.com/download/1338106005/f4397613efe20bd195916cb445a78eba783fd71c/0/0/rhn/public/NULL/libxml2-python/2.6.16-12.9/i386/libxml2-python-2.6.16-12.9.i386.rpm wget -O /tmp/rhn_rpms/optional/pyOpenSSL-0.6-1.p23.i386.rpm http://rhn.redhat.com/download/1338106005/2c75780fe5cc14fbe0afef15d259ee160418e888/0/0/rhn/public/NULL/pyOpenSSL/0.6-1.p23/i386/pyOpenSSL-0.6-1.p23.i386.rpm wget -O /tmp/rhn_rpms/optional/rhnlib-2.1.4-17.el4_8.1.noarch.rpm http://rhn.redhat.com/download/1338106005/3b633666bbaacd56c08e141a6d17199c6f0d6b41/0/0/rhn/public/NULL/rhnlib/2.1.4-17.el4_8.1/noarch/rhnlib-2.1.4-17.el4_8.1.noarch.rpm wget -O /tmp/rhn_rpms/up2date-gnome-4.9.1-30.el4.i386.rpm http://rhn.redhat.com/download/1338106005/de6bda0bd20a75427b4fcf02795b5cb8d71c4231/0/0/rhn/public/NULL/up2date-gnome/4.9.1-30.el4/i386/up2date-gnome-4.9.1-30.el4.i386.rpm wget -O /tmp/rhn_rpms/up2date-4.9.1-30.el4.i386.rpm http://rhn.redhat.com/download/1338106005/4e063f6b0285cc7645ad2d6cae89f326e6c64593/0/0/rhn/public/NULL/up2date/4.9.1-30.el4/i386/up2date-4.9.1-30.el4.i386.rpm rpm -Uvh --replacepkgs --replacefiles /tmp/rhn_rpms/optional/pyOpenSSL* /tmp/rhn_rpms/optional/rhnlib* /tmp/rhn_rpms/optional/libxml2-python* rpm -Fvh /tmp/rhn_rpms/*rpm rpm --import /usr/share/rhn/RPM-GPG-KEY perl -npe 's/xmlrpc.rhn.redhat.com/xmlrpc.rhn.redhat.com/' -i /etc/sysconfig/rhn/up2date mkdir -p /etc/sysconfig/rhn/allowed-actions/script touch /etc/sysconfig/rhn/allowed-actions/script/all mkdir -p /etc/sysconfig/rhn/allowed-actions/configfiles touch /etc/sysconfig/rhn/allowed-actions/configfiles/all # now copy from the ks-tree we saved in the non-chroot checkout cp -fav /tmp/ks-tree-copy/* / rm -Rf /tmp/ks-tree-copy # --End RHN command section-- rhnreg_ks --activationkey=66874063aff75cc5cdeb9db52f9620e3 rhn_check ) > /root/ks-post.log 2>&1 %post # Update the server yum update -y # Turn off services not needed on a server chkconfig cups off chkconfig kudzu off chkconfig smartd off chkconfig pcscd off # Turn on services needed on a server chkconfig snmpd on chkconfig ntpd on # Adding the authorized shell users /usr/sbin/useradd -c "Fabien Faye" -G wheel ffaye /usr/sbin/useradd -c "Benjamin Kraft" -G wheel bkraft groupadd fwadmin useradd -c "FireWall Admin" -g fwadmin -m fwadmin # SUDO for fwadmin HOSTNAME=`tail -n -1 /etc/hosts | awk '/ / print $2 '` echo "%fwadmin ALL=NOPASSWD:/etc/fw/$HOSTNAME.fw" /etc/sudoers # console redirection echo -e "\n# serial console\nco0:2345:respawn:/sbin/agetty ttyS0 19200 vt100-nav\n" /etc/inittab echo -e "\n# serial console\nco1:2345:respawn:/sbin/agetty ttyS1 57600 vt100-nav\n" /etc/inittab echo ttyS0 /etc/securetty echo ttyS1 /etc/securetty sed -i 's/serial console/console serial/' /boot/grub/grub.conf # Deploy configuration files rhncfg-client get # MOTD echo >> /etc/motd echo "RHN kickstart on $(date +'%Y-%m-%d')" >> /etc/motd echo >> /etc/motd # end of generated kickstart file