Add more scripts

readme

@@ -0,0 +1,4 @@
+Configs for debian 12 setup.
+
+Clone to $HOME, run ./scripts/full.sh and pray.
+

scripts/full.sh

@@ -12,8 +12,12 @@ sudo apt install -y \
     python3-pip \
     vim
 
+sudo cp "$HOME/.vimrc" /root/.vimrc
+
+./zfs.sh
 ./sshd.sh
 ./nginx.sh
 ./ufw.sh
 ./podman.sh
 ./unattended.sh
+./beszel.sh

scripts/podman.sh

@@ -4,5 +4,8 @@ set -euo pipefail
 
 sudo apt install -y podman
 
+sudo mkdir -p /etc/containers/
+sudo cp "$HOME/.config/containers/storage.conf" /etc/containers/storage.conf
+
 systemctl --user enable podman.socket
 systemctl --user start podman.socket

scripts/sshd.sh

@@ -2,7 +2,7 @@
 
 set -euo pipefail
 
-# TODO: just 'sed' the usual hardenings
+# TODO: 'sed' automate the usual hardenings
 sudo vim /etc/ssh/sshd_config
 
 if ! sudo sshd -t; then

scripts/ufw.sh

@@ -7,9 +7,11 @@ sudo apt install -y ufw
 sudo ufw default deny incoming
 sudo ufw default allow outgoing
 
+# Allow SSH port
 port=$(cat /etc/ssh/sshd_config | grep -o 'Port [0-9]*' | grep -o '[0-9]*')
 sudo ufw allow "$port/tcp"
 
+# Allow Nginx if installed
 if ! which nginx; then
     sudo ufw allow "Nginx Full"
 fi