2022-02-23 19:36:03 +01:00
|
|
|
#cloud-config
|
|
|
|
|
2022-03-02 14:30:19 +01:00
|
|
|
# Resize /var, not /, as that's the last partition in MicroOS image.
|
|
|
|
growpart:
|
|
|
|
devices: ["/var"]
|
|
|
|
|
2022-03-02 22:19:58 +01:00
|
|
|
write_files:
|
|
|
|
# Configure private network
|
|
|
|
- content: |
|
|
|
|
BOOTPROTO='dhcp'
|
|
|
|
STARTMODE='auto'
|
|
|
|
path: /etc/sysconfig/network/ifcfg-eth1
|
|
|
|
|
|
|
|
# Disable ssh password authentication
|
|
|
|
- content: |
|
|
|
|
PasswordAuthentication no
|
|
|
|
X11Forwarding no
|
|
|
|
MaxAuthTries 2
|
|
|
|
AllowTcpForwarding no
|
|
|
|
AllowAgentForwarding no
|
|
|
|
AuthorizedKeysFile .ssh/authorized_keys
|
|
|
|
path: /etc/ssh/sshd_config.d/kube-hetzner.conf
|
|
|
|
|
|
|
|
# Setting the right reboot mode
|
|
|
|
- content: |
|
|
|
|
REBOOT_METHOD=rebootmgr
|
|
|
|
path: /etc/transactional-update.conf
|
|
|
|
|
|
|
|
# Add ssh authorized keys
|
|
|
|
ssh_authorized_keys:
|
|
|
|
%{ for key in sshAuthorizedKeys ~}
|
|
|
|
- ${key}
|
|
|
|
%{ endfor ~}
|
|
|
|
|
2022-03-02 22:23:36 +01:00
|
|
|
# Make sure the hostname is set correctly
|
2022-03-02 22:19:58 +01:00
|
|
|
manage_etc_hosts: "localhost"
|
|
|
|
preserve_hostname: true
|
|
|
|
prefer_fqdn_over_hostname: false
|
|
|
|
hostname: ${hostname}
|
2022-02-23 19:36:03 +01:00
|
|
|
|
|
|
|
runcmd:
|
2022-03-02 22:23:36 +01:00
|
|
|
# As above, make sure the hostname is not reset
|
|
|
|
- sed -i 's#NETCONFIG_NIS_SETDOMAINNAME="yes"#NETCONFIG_NIS_SETDOMAINNAME="no"#g' /etc/sysconfig/network/config
|
|
|
|
|
2022-03-01 21:57:57 +01:00
|
|
|
# Activate the private network
|
|
|
|
- systemctl reload network
|
2022-02-23 19:36:03 +01:00
|
|
|
|
2022-03-01 21:57:57 +01:00
|
|
|
# Activate ssh configuration
|
|
|
|
- systemctl reload sshd
|
2022-02-23 19:36:03 +01:00
|
|
|
|
2022-03-01 21:57:57 +01:00
|
|
|
# Finishing automatic reboot via Kured setup
|
2022-03-01 22:13:41 +01:00
|
|
|
- rebootmgrctl set-strategy off
|
2022-03-02 22:19:58 +01:00
|
|
|
|
|
|
|
# Reduce the default number of snapshots from 2-10 number limit, to 4
|
|
|
|
# And from 4-10 number limit important, to 2
|
|
|
|
- snapper -c root set-config "NUMBER_LIMIT=4"
|
|
|
|
- snapper -c root set-config "NUMBER_LIMIT_IMPORTANT=2"
|