User Tools

Site Tools


distros:ubuntu_server

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision
Previous revision
Both sides next revision
distros:ubuntu_server [2019/10/18 12:57]
Sean Rhone
distros:ubuntu_server [2020/06/12 03:03] (current)
Sean Rhone [OpenSSH]
Line 2: Line 2:
  
   * Ubuntu Server ((http://www.ubuntu.com/server))   * Ubuntu Server ((http://www.ubuntu.com/server))
-  * 18.04.3 LTS+  * 20.04 LTS 
 + 
 +====== Known Issues ====== 
 + 
 +  * None
  
 ====== Download ====== ====== Download ======
Line 11: Line 15:
 ====== Installation Notes ====== ====== Installation Notes ======
  
-  * :!: Either use the Alternate or Network installer images to avoid cloud-init stuff 
   * During installation, allow network autoconfig to occur, and then go back once prompted for a hostname; this will allow setting a static IPv4 address and custom DNS settings   * During installation, allow network autoconfig to occur, and then go back once prompted for a hostname; this will allow setting a static IPv4 address and custom DNS settings
  
-====== Software ======+====== Repositories ======
  
-===== Repositories ===== +===== Additional Ubuntu =====
- +
-=== Additional Ubuntu ===+
  
   * https://help.ubuntu.com/community/Repositories/Ubuntu   * https://help.ubuntu.com/community/Repositories/Ubuntu
Line 29: Line 30:
  
   sudo add-apt-repository 'restricted'   sudo add-apt-repository 'restricted'
 +
 +====== Software ======
  
 ===== Update ===== ===== Update =====
 +
 +==== System ====
  
 **** ****
Line 36: Line 41:
   sudo apt update && sudo apt full-upgrade -y && sudo apt autoremove -y && sudo apt clean && sync   sudo apt update && sudo apt full-upgrade -y && sudo apt autoremove -y && sudo apt clean && sync
  
-====== Settings ======+==== Snaps ====
  
-===== Secure Shell =====+****
  
-  * See [[Clients:Secure Shell]]+  sudo snap refresh
  
-===== TRIM =====+===== General =====
  
-==== Swap ====+==== Bare-metal ====
  
-  Add ''discard'' after ''defaults'' for the ''swap'' mountpoint ((defaults,discard))+****
  
-  sudo -e '/etc/fstab'+  sudo apt install lm-sensors
  
-  ,discard+===== Keybase =====
  
-==== Service ====+  * https://keybase.io 
 +  * TODO: Figure out backup script
  
-  ''fstrim.timer'' is already enabled out-the-box, but this is useful for historical purposes +  wget -O '/tmp/keybase_amd64.deb' 'https://prerelease.keybase.io/keybase_amd64.deb' && sudo dpkg --install '/tmp/keybase_amd64.deb' && sudo apt install -f && rm '/tmp/keybase_amd64.deb' && sync && run_keybase 
-  * TODOVerify+ 
 +====== Settings ====== 
 + 
 +===== OpenSSH ===== 
 + 
 +  * See [[clients:secure_shell|Client]] notes to generate/restore public key 
 +  * See [[servers:secure_shell|Server]] notes to force public key auth and to further secure the OpenSSH server 
 + 
 +===== Sensors ===== 
 + 
 +==== Detect ==== 
 + 
 +**** 
 + 
 +  sudo sensors-detect --auto 
 + 
 +==== Watch ==== 
 + 
 +****
  
-  sudo systemctl enable 'fstrim.timer' --now && sudo systemctl start 'fstrim' && sync && sudo systemctl status 'fstrim' -l+  sudo watch -n0.1 sensors
  
 ===== Uncomplicated Firewall ===== ===== Uncomplicated Firewall =====
  
   * Allows SSH   * Allows SSH
 +  * :!: Does not limit SSH ((this caused issues; better to just secure SSH))
 +  * See [[notes:ufw|ufw]] for more notes
  
   sudo ufw reset && sudo ufw default deny && sudo ufw logging off && sudo ufw allow 'ssh' && sudo ufw enable && sudo systemctl enable 'ufw'   sudo ufw reset && sudo ufw default deny && sudo ufw logging off && sudo ufw allow 'ssh' && sudo ufw enable && sudo systemctl enable 'ufw'
distros/ubuntu_server.1571417839.txt.gz · Last modified: 2019/10/18 12:57 by Sean Rhone