blob: 0dc1a6bb8e99596a5d92f993445ba3a723a7c3ad (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
|
#!/bin/sh
site=myhomelab
domain=idm.example.com
email_domain=example.com
turn_domain=turn.example.com
locale=en_US.UTF-8
ntp_pools='pool.ntp.org'
root_password=changeme
boxconf_password=changeme
root_authorized_keys='ssh-ed25519 changeme
ssh-ed25519 changeme'
root_mail_alias="you@${email_domain}"
smtp_host_ip=1.2.3.4
pkg_host_ip=1.2.3.4
timezone=America/New_York
# hostname id ipv4
idm_server_list="\
idm1 1 1.2.3.4
idm2 2 5.6.7.8"
reverse_dns_zones="0.168.192.in-addr.arpa 12.11.10.in-addr.arpa"
kerberized_cidrs=192.168.0.0/24
rspamd_privkey='changeme with: rspamadm keypair'
rspamd_pubkey='changeme with: rspamadm keypair'
rspamd_ro_password='changeme'
rspamd_rw_password='changeme'
###############################################################################
# Variables following this line do not (generally) need to be changed.
###############################################################################
nproc=$(nproc)
allowed_tcp_ports=ssh
bootstrap_resolvers='1.1.1.1'
desktop_type=kde
enable_serial_console=true
graphics_type=intel
boxconf_username='s-boxconf'
host_keytab_groupname=hostkeytab
host_keytab_gid=788
lmtp_port=25
quota_status_port=10993
icinga_username='s-icinga'
krb5_ticket_lifetime=24h
krb5_renew_lifetime=7d
nslcd_min_uid=1000
nscd_ttl=600
nscd_negative_ttl=20
prosody_username='s-prosody'
prosody_uid=20005
rspamd_port=11334
ssh_authzkeys_uid=789
ssh_authzkeys_username=sshkeys
tcp_buffer_size=2097152 # suitable for 1 GigE
nginx_nofile=2048
nginx_worker_connections=768
if [ "$nproc" -gt 4 ]; then
nginx_worker_processes=4
else
nginx_worker_processes=$nproc
fi
|
