distros:opensuse_tumbleweed_server
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
distros:opensuse_tumbleweed_server [2019/05/28 08:48] – Sean Rhone | distros:opensuse_tumbleweed_server [2024/08/13 16:59] (current) – removed Sean Rhone | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | ====== Information ====== | ||
- | * openSUSE ((https:// | ||
- | * Tumbleweed ((https:// | ||
- | * Server | ||
- | |||
- | ====== Download ====== | ||
- | |||
- | ===== DVD-x86_64-Current.iso ===== | ||
- | |||
- | * http:// | ||
- | |||
- | http:// | ||
- | |||
- | ===== Hashes ===== | ||
- | |||
- | * http:// | ||
- | |||
- | ====== Installation Notes ====== | ||
- | |||
- | * '' | ||
- | * XFS, no separate ''/ | ||
- | |||
- | ====== HOSTS ====== | ||
- | |||
- | * https:// | ||
- | * Using '' | ||
- | |||
- | sudo wget -O '/ | ||
- | |||
- | cat '/ | ||
- | |||
- | sudo -e '/ | ||
- | |||
- | ====== Repositories ====== | ||
- | |||
- | ===== PackMan Essentials ===== | ||
- | |||
- | * http:// | ||
- | |||
- | * Repository Priority: 98 | ||
- | * Provides extended multimedia support | ||
- | * :!: TODO: Doubt this is needed on a server... | ||
- | |||
- | sudo rpm --import ' | ||
- | |||
- | ====== Software ====== | ||
- | |||
- | ===== List ===== | ||
- | |||
- | * http:// | ||
- | |||
- | ===== Disable USB Source ===== | ||
- | |||
- | **** | ||
- | |||
- | sudo zypper modifyrepo --disable --medium-type ' | ||
- | |||
- | ===== Update ===== | ||
- | |||
- | ==== System ==== | ||
- | |||
- | **** | ||
- | |||
- | sudo zypper clean --all && sudo zypper refresh --force --services && sudo zypper dist-upgrade --details --allow-downgrade --allow-name-change --allow-arch-change --allow-vendor-change && sync | ||
- | |||
- | ==== Firmware ==== | ||
- | |||
- | **** | ||
- | |||
- | sudo fwupdmgr refresh && sudo fwupdmgr update --verbose | ||
- | |||
- | ===== GNU nano ===== | ||
- | |||
- | * Installs '' | ||
- | * Sets '' | ||
- | * Sets '' | ||
- | |||
- | sudo zypper install ' | ||
- | |||
- | ===== General ===== | ||
- | |||
- | **** | ||
- | |||
- | sudo zypper install p7zip unar aria2 hdparm nano htop wget irqbalance | ||
- | |||
- | ===== Keybase ===== | ||
- | |||
- | * https:// | ||
- | * :!: TODO: Figure out how to do automated bcakups to KBFS | ||
- | |||
- | keybase | ||
- | |||
- | ====== Settings ====== | ||
- | |||
- | ===== Network ===== | ||
- | |||
- | ==== DNS ==== | ||
- | |||
- | === UncensoredDNS === | ||
- | |||
- | * https:// | ||
- | |||
- | 89.233.43.71, | ||
- | |||
- | 2a01: | ||
- | |||
- | === OpenNIC Anycast === | ||
- | |||
- | * https:// | ||
- | |||
- | 185.121.177.177, | ||
- | |||
- | 2a05: | ||
- | |||
- | ===== GRUB ===== | ||
- | |||
- | ==== Other Parameters ==== | ||
- | |||
- | * See [[notes: | ||
- | |||
- | ==== blk_mq ==== | ||
- | |||
- | **** | ||
- | |||
- | scsi_mod.use_blk_mq=y dm_mod.use_blk_mq=y | ||
- | |||
- | ==== Reboot ==== | ||
- | |||
- | * '' | ||
- | * '' | ||
- | * There are other values possible should either of those not work | ||
- | |||
- | reboot=pci | ||
- | |||
- | reboot=efi | ||
- | |||
- | ==== PCIe ASPM ==== | ||
- | |||
- | **** | ||
- | |||
- | pcie_aspm=force | ||
- | |||
- | ==== Blacklist Watchdogs ==== | ||
- | |||
- | * '' | ||
- | * '' | ||
- | * '' | ||
- | * Apparently this reduces power usage slightly | ||
- | |||
- | modprobe.blacklist=iTCO_wdt, | ||
- | |||
- | ===== Hostname ===== | ||
- | |||
- | * Change '' | ||
- | |||
- | sudo hostnamectl set-hostname ' | ||
- | |||
- | ===== Keybase ===== | ||
- | |||
- | * :!: Run after initial install | ||
- | * :!: TODO: Might not be needed with CLI Keybase | ||
- | |||
- | run_keybase | ||
- | |||
- | ===== Kernel Options ===== | ||
- | |||
- | * Enables '' | ||
- | * Sets '' | ||
- | |||
- | echo -e " | ||
- | |||
- | cat '/ | ||
- | |||
- | ===== Secure Shell ===== | ||
- | |||
- | * See [[Clients: | ||
- | |||
- | ===== systemd ===== | ||
- | |||
- | * Log data is stored in volatile storage | ||
- | * Max log file sizes of '' | ||
- | |||
- | sudo mkdir -p '/ | ||
- | |||
- | ===== TRIM ===== | ||
- | |||
- | ==== Swap ==== | ||
- | |||
- | * Add '' | ||
- | * According to the '' | ||
- | |||
- | sudo -e '/ | ||
- | |||
- | ,discard | ||
- | |||
- | ==== Service ==== | ||
- | |||
- | **** | ||
- | |||
- | sudo systemctl enable ' | ||
- | |||
- | ====== Automatic Updates ====== | ||
- | |||
- | ===== Service ===== | ||
- | |||
- | sudo -e '/ | ||
- | |||
- | < | ||
- | [Service] | ||
- | Type=oneshot | ||
- | ExecStartPre='/ | ||
- | ExecStart='/ | ||
- | ExecStart='/ | ||
- | ExecStartPost='/ | ||
- | ExecStartPost='/ | ||
- | |||
- | ===== Timer ===== | ||
- | |||
- | * 06:10 Kraityn | ||
- | * 06:20 Alira | ||
- | |||
- | sudo -e '/ | ||
- | |||
- | < | ||
- | [Unit] | ||
- | Description=Software Package Maintenance and Updater | ||
- | After=network-online.target | ||
- | Wants=network-online.target | ||
- | |||
- | [Timer] | ||
- | OnCalendar=*-*-* 06:10:00 | ||
- | Persistent=true | ||
- | |||
- | [Install] | ||
- | WantedBy=timers.target</ | ||
- | |||
- | ====== External Backup ====== | ||
- | |||
- | ===== fstab ===== | ||
- | |||
- | * Expects a drive of some kind with a XFS partition at ''/ | ||
- | |||
- | sudo mkdir -p '/ | ||
- | |||
- | < | ||
- | # USB | ||
- | /dev/sdb1 /mnt/USB xfs rw, | ||
- | |||
- | sudo mount '/ | ||
- | |||
- | ===== Service ===== | ||
- | |||
- | sudo -e '/ | ||
- | |||
- | < | ||
- | [Service] | ||
- | Type=oneshot | ||
- | ExecStartPre='/ | ||
- | ExecStart='/ | ||
- | ExecStartPost='/ | ||
- | |||
- | ===== Timer ===== | ||
- | |||
- | sudo -e '/ | ||
- | |||
- | < | ||
- | [Unit] | ||
- | Description=Backup Backups to External Device | ||
- | |||
- | [Timer] | ||
- | OnCalendar=*-*-* 07:00:00 | ||
- | Persistent=true | ||
- | |||
- | [Install] | ||
- | WantedBy=timers.target</ | ||
- | |||
- | ====== Notable Folders and Commands ====== | ||
- | |||
- | ===== Zypper ===== | ||
- | |||
- | ==== Find Orphans ==== | ||
- | |||
- | **** | ||
- | |||
- | zypper packages --orphaned | ||
- | |||
- | ==== Remove Package and Deps ==== | ||
- | |||
- | **** | ||
- | |||
- | sudo zypper remove --clean-deps ' | ||
- | |||
- | ==== Show Installed Patterns ==== | ||
- | |||
- | **** | ||
- | |||
- | sudo zypper patterns --installed-only | ||
- | |||
- | ==== Folder ==== | ||
- | |||
- | **** | ||
- | |||
- | ls '/ | ||
- | |||
- | ==== List ==== | ||
- | |||
- | **** | ||
- | |||
- | zypper repos --priority | ||
- | |||
- | ===== GPG Keys ===== | ||
- | |||
- | ==== Check Keys ==== | ||
- | |||
- | **** | ||
- | |||
- | rpm -q gpg-pubkey --qf ' | ||
- | |||
- | ==== Remove Keys ==== | ||
- | |||
- | **** | ||
- | |||
- | sudo rpm -e x | ||
- | |||
- | ===== fstrim ===== | ||
- | |||
- | **** | ||
- | |||
- | sudo fstrim -v --all | ||
- | |||
- | ===== Show CPU Frequency ===== | ||
- | |||
- | grep ' | ||
- | |||
- | watch -n 0.1 grep \'cpu MHz\' '/ | ||
- | |||
- | ===== OpenSSL Supported Ciphers ===== | ||
- | |||
- | **** | ||
- | |||
- | openssl ciphers -v | awk ' | ||
- | |||
- | ===== Partition Information ===== | ||
- | |||
- | * Both commands do the same things | ||
- | |||
- | df -hT | ||
- | |||
- | df --human-readable --print-type | ||
- | |||
- | ===== Encryption Information ===== | ||
- | |||
- | **** | ||
- | |||
- | sudo cryptsetup -v status '/ | ||
- | |||
- | ===== ATA Secure Erase ===== | ||
- | |||
- | * :!: All '' | ||
- | |||
- | ==== Preparation ==== | ||
- | |||
- | sudo zypper install ' | ||
- | |||
- | sudo hdparm -I '/ | ||
- | |||
- | systemctl suspend | ||
- | |||
- | ==== ATA Secure Erase ==== | ||
- | |||
- | < | ||
- | |||
- | < | ||
- | |||
- | < | ||
- | |||
- | ===== NVMe Erase ===== | ||
- | |||
- | * NVMe Erase from the start page lands here and I usually use a Ubuntu LiveUSB to do this, hence the '' | ||
- | |||
- | sudo apt install ' | ||
- | |||
- | sudo zypper install ' | ||
- | |||
- | sudo nvme format '/ | ||
- | |||
- | ===== Clean EFI Variables ===== | ||
- | |||
- | * :!: Could potentially cause a firmware brick or other issues with improper EFI implementations, | ||
- | * Safer way is to use '' | ||
- | |||
- | sudo rm -f '/ | ||
- | |||
- | ===== RAID ===== | ||
- | |||
- | ==== Controller Details ==== | ||
- | |||
- | **** | ||
- | |||
- | sudo mdadm --detail-platform | ||
- | |||
- | ==== Create Software RAID ==== | ||
- | |||
- | * :?: Came from old notes; I **assume** this worked at some point, but in any case, the syntax looks nice :p | ||
- | |||
- | sudo mdadm --create '/ | ||
- | |||
- | ===== Hyper-threading Information ===== | ||
- | |||
- | **** | ||
- | |||
- | grep -e " | ||
- | |||
- | ===== Optimal GCC compiler flags ===== | ||
- | |||
- | **** | ||
- | |||
- | gcc -v -E -x c -march=native -mtune=native - < /dev/null 2>&1 | grep cc1 | perl -pe 's/ -mno-\S+// | ||
- | |||
- | ===== FirewallD ===== | ||
- | |||
- | ==== List Active Rules ==== | ||
- | |||
- | **** | ||
- | |||
- | sudo firewall-cmd --list-all | ||
- | |||
- | ==== List Available Services ==== | ||
- | |||
- | **** | ||
- | |||
- | sudo firewall-cmd --get-service | ||
- | |||
- | ==== Reload ==== | ||
- | |||
- | **** | ||
- | |||
- | sudo firewall-cmd --reload | ||
- | |||
- | ==== Add/Remove Service ==== | ||
- | |||
- | * Add '' | ||
- | |||
- | sudo firewall-cmd --add-service=x | ||
- | |||
- | sudo firewall-cmd --remove-service=x | ||
- | |||
- | ==== Add/Remove Port ==== | ||
- | |||
- | * Add '' | ||
- | * Change '' | ||
- | |||
- | sudo firewall-cmd --add-port=x/ | ||
- | |||
- | sudo firewall-cmd --remove-port=x/ | ||
- | |||
- | ===== Privacy ===== | ||
- | |||
- | ==== Clear Terminal History ==== | ||
- | |||
- | **** | ||
- | |||
- | history -cw | ||
- | |||
- | ==== Create 7z Password Archive ==== | ||
- | |||
- | * Change '' | ||
- | * Change '' | ||
- | * Change '' | ||
- | |||
- | 7za a ' | ||
- | |||
- | 7za a ' |
C:/www/wiki/data/attic/distros/opensuse_tumbleweed_server.1559047730.txt.gz · Last modified: by Sean Rhone