boxgrinder/f15/fedora15.appl | 17 -----
boxgrinder/f18/fedora18.appl | 14 ----
container/fedora-20-container.ks | 124 +++++++++++++++++++++++++++++++++++++++
3 files changed, 124 insertions(+), 31 deletions(-)
New commits:
commit c34846d3aaeda808f48fea6d8457e9dd3dc14914
Author: Matthew Miller <mattdm(a)mattdm.org>
Date: Thu Sep 5 21:55:13 2013 -0400
remove boxgrinder, because these templates aren't maintained
diff --git a/boxgrinder/f15/fedora15.appl b/boxgrinder/f15/fedora15.appl
deleted file mode 100644
index dbaf50f..0000000
--- a/boxgrinder/f15/fedora15.appl
+++ /dev/null
@@ -1,17 +0,0 @@
-name: Fedora-15
-summary: Fedora 15
-os:
- name: fedora
- version: 15
-hardware:
- partitions:
- "/":
- size: 10
-packages:
- - @base
- - @core
- - yum
- - openssh-server
- - openssh-clients
- - system-config-firewall-base
- - sudo
diff --git a/boxgrinder/f18/fedora18.appl b/boxgrinder/f18/fedora18.appl
deleted file mode 100644
index e3f269a..0000000
--- a/boxgrinder/f18/fedora18.appl
+++ /dev/null
@@ -1,14 +0,0 @@
-name: Fedora-18-min
-summary: Fedora 18 Minimal
-os:
- name: fedora
- version: 18
- release: 0
-hardware:
- partitions:
- "/":
- size: 10
-packages:
- - @core
- - pciutils
- - kernel
commit 3b76f286bcace88de625ba732ecd8e3c7c4ab9cf
Author: Matthew Miller <mattdm(a)mattdm.org>
Date: Thu Sep 5 21:33:33 2013 -0400
first cut at a kickstart to generate a (non-bootable) container image
diff --git a/container/fedora-20-container.ks b/container/fedora-20-container.ks
new file mode 100644
index 0000000..1423c9e
--- /dev/null
+++ b/container/fedora-20-container.ks
@@ -0,0 +1,124 @@
+# This is a kickstart for making a non-bootable container environment.
+#
+# Convert the result to a tarfile with
+#
+# virt-tar-out -a fedora.qcow2 / - | bzip2 --best > fedora.tar.bz2
+#
+#
+# This kickstart file is designed to be used with appliance-creator and
+# may need slight modification for use with actual anaconda or other tools.
+# We intend to target anaconda-in-a-vm style image building for F20.
+
+lang en_US.UTF-8
+keyboard us
+timezone --utc Etc/UTC
+
+auth --useshadow --enablemd5
+selinux --enforcing
+rootpw --lock --iscrypted locked
+
+zerombr
+clearpart --all
+part / --size 1024 --fstype ext4
+
+# Repositories
+#repo --name=fedora
--mirrorlist=http://mirrors.fedoraproject.org/mirrorlist?repo=fedora-20&arch=$basearch
+#repo --name=fedora-updates
--mirrorlist=http://mirrors.fedoraproject.org/mirrorlist?repo=updates-released-f20&arch=$basearch
+repo --name=fedora
--mirrorlist=http://mirrors.fedoraproject.org/mirrorlist?repo=rawhide&arch=$basearch
+
+
+reboot
+
+# Package list.
+%packages --excludedocs
+
+bash
+coreutils
+filesystem
+setup
+yum
+
+# removed below
+findutils
+passwd
+
+%end
+
+
+
+%post --erroronfail
+
+# setup systemd to boot to the right runlevel
+echo -n "Setting default runlevel to multiuser text mode"
+rm -f /etc/systemd/system/default.target
+ln -s /lib/systemd/system/multi-user.target /etc/systemd/system/default.target
+echo .
+
+echo -n "Network fixes"
+# initscripts don't like this file to be missing.
+cat > /etc/sysconfig/network << EOF
+NETWORKING=yes
+NOZEROCONF=yes
+EOF
+
+# For cloud images, 'eth0' _is_ the predictable device name, since
+# we don't want to be tied to specific virtual (!) hardware
+rm -f /etc/udev/rules.d/70*
+ln -s /dev/null /etc/udev/rules.d/80-net-name-slot.rules
+
+# simple eth0 config, again not hard-coded to the build hardware
+cat > /etc/sysconfig/network-scripts/ifcfg-eth0 << EOF
+DEVICE="eth0"
+BOOTPROTO="dhcp"
+ONBOOT="yes"
+TYPE="Ethernet"
+EOF
+
+# generic localhost names
+cat > /etc/hosts << EOF
+127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4
+::1 localhost localhost.localdomain localhost6 localhost6.localdomain6
+
+EOF
+echo .
+
+
+# Because memory is scarce resource in most cloud/virt environments,
+# and because this impedes forensics, we are differing from the Fedora
+# default of having /tmp on tmpfs.
+echo "Disabling tmpfs for /tmp."
+systemctl mask tmp.mount
+
+echo "Removing random-seed so it's not the same in every image."
+rm -f /var/lib/random-seed
+
+
+echo "Compressing cracklib."
+gzip -9 /usr/share/cracklib/pw_dict.pwd
+
+echo "Minimizing locale-archive."
+localedef --list-archive | grep -v en_US | xargs localedef --delete-from-archive
+mv /usr/lib/locale/locale-archive /usr/lib/locale/locale-archive.tmpl
+/usr/sbin/build-locale-archive
+
+echo "Removing extra packages."
+yum -C -y remove passwd --setopt="clean_requirements_on_remove=1"
+yum -C -y remove findutils --setopt="clean_requirements_on_remove=1"
+
+
+echo "Cleaning old yum repodata."
+yum clean all
+truncate -c -s 0 /var/log/yum.log
+
+echo "Fixing SELinux contexts."
+/usr/sbin/fixfiles -R -a restore
+
+
+echo "Zeroing out empty space."
+# This forces the filesystem to reclaim space from deleted files
+dd bs=1M if=/dev/zero of=/var/tmp/zeros || :
+rm -f /var/tmp/zeros
+echo "(Don't worry -- that out-of-space error was expected.)"
+
+%end
+
Show replies by date