• Fedora Server ¹⁾
• 30

• https://getfedora.org/en/server/download

• Disables Delta RPMs with deltarpm=false

cat '/etc/dnf/dnf.conf' | grep 'deltarpm=false' || echo 'deltarpm=false' | sudo tee --append '/etc/dnf/dnf.conf' > '/dev/null' && cat '/etc/dnf/dnf.conf'

sudo dnf clean 'all' && sudo dnf distro-sync -y && sudo dnf autoremove -y && sync

• Installs nano
• Sets VISUAL and EDITOR to nano via environment variable
• Sets nowrap for current user

sudo dnf install 'nano' -y && export 'VISUAL=nano' && export 'EDITOR=nano' && echo -e 'export VISUAL=nano\nexport EDITOR=nano' | sudo tee '/etc/profile.d/editor-nano.sh' > '/dev/null' && cat '/etc/profile.d/editor-nano.sh' && mkdir -p ~/'.config/nano' && echo 'set nowrap' | tee ~/'.config/nano/nanorc' > '/dev/null' && cat ~/'.config/nano/nanorc'

sudo dnf install htop

p7zip unar aria2

policycoreutils-devel

• Expects single-partition flash drive with ext4
• TODO: If multiple drives beyond sda main and sdb USB are ever involved, use UUID instead

sudo mkdir -p '/mnt/USB' && sudo -e '/etc/fstab'

# USB Backup
/dev/sdb1 /mnt/USB ext4 defaults 0 2

mkdir -p ~/'backups' && sudo -e '/etc/systemd/system/usb-b.service'

[Service]
Type=oneshot
ExecStart='/usr/bin/rsync' -r '/home/espionage724/backups' '/mnt/USB' -v --ignore-existing

• See server-specific configurations to make use of this

sudo -e '/etc/systemd/system/usb-b.timer' && sudo systemctl daemon-reload && sudo systemctl enable 'usb-b.timer' --now

[Unit]
Description=USB Backup

[Timer]
OnCalendar=*-*-* 04:00:00
Persistent=true

[Install]
WantedBy=timers.target

sudo setenforce '0'

su

> '/var/log/audit/audit.log'

sudo systemctl start 'usb-b'

sudo audit2allow -a -M 'usb-b'

sudo semodule -i 'usb-b.pp'

sudo setenforce '1'

sudo rm usb-b.pp usb-b.te && sync

• TODO: If this ever fails because of the modular repo not being available, look into auto-restart

sudo -e '/etc/systemd/system/fedora-up.service'

[Service]
Type=oneshot
ExecStartPre='/usr/bin/dnf' clean 'all'
ExecStart='/usr/bin/dnf' distro-sync -y
ExecStart='/usr/bin/dnf' autoremove -y
ExecStartPost='/usr/bin/sync'
ExecStartPost='/usr/bin/systemctl' reboot

• 06:10 Kraityn
• 06:20 Alira
• 06:30 Oak

sudo -e '/etc/systemd/system/fedora-up.timer' && sudo systemctl daemon-reload && sudo systemctl enable 'fedora-up.timer' --now

[Unit]
Description=Software Package Maintenance and Updater
After=network-online.target
Wants=network-online.target

[Timer]
OnCalendar=*-*-* 06:10:00
Persistent=true

[Install]
WantedBy=timers.target

/etc/yum.repos.d

sudo fstrim -v --all

sudo touch '/.autorelabel'

grep 'MHz' '/proc/cpuinfo'

watch -n 0.1 grep \'cpu MHz\' '/proc/cpuinfo'

df -hT

gcc -v -E -x c -march=native -mtune=native - < /dev/null 2>&1 | grep cc1 | perl -pe 's/ -mno-\S+//g; s/^.* - //g;'

sudo firewall-cmd --list-all

sudo firewall-cmd --get-service

sudo firewall-cmd --reload

• Add --permanent as-needed to allow the rule to persist

sudo firewall-cmd --add-service=x

sudo firewall-cmd --remove-service=x

• Add --permanent as-needed to allow the rule to persist
• Change tcp to udp as-needed

sudo firewall-cmd --add-port=x/tcp

sudo firewall-cmd --remove-port=x/tcp