blob: fc9a84a5a52c906d40decac7ef1b6b354b75d6e3 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
|
#########################################################################
# ansible-generated preseed file for Kali Rolling Release based machines
#########################################################################
d-i debian-installer/language string {{ debian_preseed_language }}
d-i debian-installer/country string {{ debian_preseed_country }}
d-i debian-installer/locale string {{ debian_preseed_locales | first }}
d-i keyboard-configuration/xkb-keymap select {{ debian_preseed_keyboard_layout }}
d-i console-keymaps-at/keymap select {{ debian_preseed_keyboard_layout }}
d-i hw-detect/load_firmware boolean false
d-i netcfg/choose_interface select {{ install_interface | default(network.primary.name) }}
{% if (install_dhcp | default(false)) %}
d-i netcfg/disable_dhcp boolean false
d-i netcfg/disable_autoconfig boolean false
{% else %}
d-i netcfg/disable_dhcp boolean true
d-i netcfg/disable_autoconfig boolean true
d-i netcfg/get_ipaddress string {{ network.primary.address | ansible.utils.ipaddr('address') }}
d-i netcfg/get_netmask string {{ network.primary.address | ansible.utils.ipaddr('netmask') }}
d-i netcfg/get_gateway string {{ network.primary.gateway }}
d-i netcfg/get_nameservers string {{ network.nameservers | join(' ') }}
d-i netcfg/confirm_static boolean true
{% endif %}
d-i netcfg/hostname string {{ host_name }}
d-i netcfg/get_hostname string {{ host_name }}
d-i netcfg/domain string {{ network.domain }}
d-i netcfg/get_domain string {{ network.domain }}
d-i netcfg/wireless_wep string
d-i mirror/country string manual
d-i mirror/http/hostname string {{ apt_repo_providers[apt_repo_provider].kali.host }}
d-i mirror/http/directory string {{ apt_repo_providers[apt_repo_provider].kali.path }}
d-i mirror/http/proxy string
d-i passwd/make-user boolean false
d-i passwd/root-password password this-very-very-secure-password-will-be-removed-by-latecommand
d-i passwd/root-password-again password this-very-very-secure-password-will-be-removed-by-latecommand
d-i clock-setup/utc boolean true
d-i time/zone string {{ debian_preseed_timezone }}
d-i clock-setup/ntp boolean false
{% if not debian_preseed_manual_partitioning %}
{% include 'partman_config.j2' %}
{% endif %}
{% if debian_preseed_kernel_image is defined %}
d-i base-installer/kernel/image string {{ debian_preseed_kernel_image }}
{% endif %}
d-i base-installer/install-recommends boolean false
d-i apt-setup/services-select multiselect
d-i apt-setup/enable-source-repositories boolean false
tasksel tasksel/first multiselect {{ debian_preseed_install_tasks | join(', ') }}
d-i pkgsel/include string openssh-server {{ python_basename }} {{ python_basename }}-apt
d-i pkgsel/upgrade select safe-upgrade
popularity-contest popularity-contest/participate boolean false
d-i finish-install/reboot_in_progress note
{% if debian_preseed_poweroff_when_done %}
d-i debian-installer/exit/poweroff boolean true
{% endif %}
d-i preseed/late_command string \
lvremove -f {{ host_name }}/dummy; \
in-target bash -c "apt-get update -q && apt-get full-upgrade -y -q"; \
in-target bash -c "sed -e 's/^allow-hotplug/auto/' -i /etc/network/interfaces"; \
in-target bash -c "rm -f /etc/systemd/network/73-usb-net-by-mac.link /etc/systemd/network/99-default.link"; \
{% if debian_preseed_force_net_ifnames_policy is defined %}
mkdir -p /target/etc/systemd/network; \
in-target bash -c "echo '[Match]' > /etc/systemd/network/90-namepolicy.link"; \
in-target bash -c "echo 'OriginalName=*' >> /etc/systemd/network/90-namepolicy.link"; \
in-target bash -c "echo '' >> /etc/systemd/network/90-namepolicy.link"; \
in-target bash -c "echo '[Link]' >> /etc/systemd/network/90-namepolicy.link"; \
in-target bash -c "echo 'NamePolicy={{ debian_preseed_force_net_ifnames_policy }}' >> /etc/systemd/network/90-namepolicy.link"; \
in-target bash -c "update-initramfs -u"; \
{% endif %}
in-target bash -c "passwd -d root && passwd -l root"; \
{% if ansible_port is defined %}
in-target bash -c "sed -e 's/^\(\s*#*\s*Port.*\)/Port {{ ansible_port }}/' -i /etc/ssh/sshd_config"; \
{% endif %}
in-target bash -c "systemctl enable ssh"; \
mkdir -p -m 0700 /target/root/.ssh; \
cp /authorized_keys /target/root/.ssh/
|