Contributed by louis on from the everyone's-partying-except-me dept.
The terminal room has 30 workstations running OpenBSD 2.7-STABLE, with a stock install and a few useful applications like Netscape, Emacs, Acroread, Ghostscript and gv. The hardware is Dell P3/500, 128MB RAM, 12GB disk, ATI Rage Pro. The T1 feed was donated by Earthlink [ The service provider was previously incorrectly identified. Our apologies for the mistake -louis ].
At OpenBSD Journal's insistence, he divulged his installation secrets...
Aaron writes:
The install process was as follows: setup one machine, i.e. install the OS, install the packages, tweak settings etc. Add one 'guest' user, password 'guest'. Run Netscape once, set some bookmarks up (to OpenBSD and USENIX-related pages). Exit Netscape. Now flesh out/home/guest
(remove Netscape cache files et al) and rm -rf .ssh. Now we have a nice, skeletal/home/guest
directory with simple Netscape settings etc.Create a tarball of /home/guest and put it in
/usr/X11R6/lib/X11/xdm/homedir.tar.gz
. Add some script magic to/usr/X11R6/lib/X11/xdm/TakeConsole
that wipes out all user-writable directories (/home/guest
,/tmp/
, /var/tmp ) then untars the skeletal guest home dir tarball back into/home/guest
. Now the next person who logs in will have a clean system with which to work with.Some tweaks that were done:
To duplicate the install on every machine was easy. After I was satisfied with the initial PC setup, I created one huge tarball of the entire system named base27.tgz. Then I activated the ftp daemon, went around to each workstation, booted off a floppy, setup partitions, then simply chose ftp install and pointed it at the initial setup machine. It comes up with just 'base27.tgz' as the only package available so you choose that. It installs it, you select a timezone, reboot, and you're done.
- Disable consoles in
/etc/ttys
and remove the 'secure' keyword (so that users don't get root prompt when ^C'ing out of fsck at boot-time).echo boot > /etc/boot.conf
to get rid of the 5 second delay at the boot> prompt on reboots,- Disable inetd, sshd, and portmapper.
- Setup usermount so users can mount floppies and CD-ROMs.
- Set BIOS password and enable 'boot from hard disk only'.
(Comments are closed)
By LiNT () on
Anyways....thanks Aaron.
LiNT
By Tom () tdesot@quadlink.com on mailto:tdesot@quadlink.com
By Chris () kingsqueak@kingsqueak.org on mailto:kingsqueak@kingsqueak.org
company's trade-show demo setup with OpenBSD.
I needed an external link dhcp, and scripted a bit of a mess to translate the info to the dhcpd config for the demo terminals and off I went.
Best part is that it has performed flawlessly for a few weeks now with a team of DFU's running the show. It is so simple to make a gateway 'appliance' type install....great OS.
By Barry Grumbine () on
Now the drive has decided to die on me, every other time I start the system up.
Don't know how many more times it will start successfully...
THEN, I remembered this article I read at OBSDJ a couple of weeks ago...
"To duplicate the install on every machine was easy. After I was satisfied with the initial PC setup, I created one huge tarball of the entire system named base27.tgz."
- the article read
Would you mind giving me the full command you used to make "one huge tarball...base27.tgz", I may only have one chance and I don't want to screw it up.
Will there be a problem creating the tarball within the same filesystem I am tarballing?
Should I (could I) hook up a slave drive and just mount and cp the contents over, then replace the master with the slave (preping the slave with the OBSD install floppy beforehand perhaps?)
From the man page it looks as though cp -p will not keep all permissions(SUID & SGID)...this will be a problem?
Any help would be greatly appreciated.
-Barry