#!/bin/bash ################################################################################ ### File Type : Preseed ### Profile : vmssrvraid1 ### Date : 2025-05-01-1452 ################################################################################ #_preseed_V1 ### Preseeding commands # Shell command or commands to run immediately before partitioning #d-i partman/early_command string \ # anna-install localechooser fdisk-udeb parted-udeb disk-detect cryptsetup-udeb hw-detect && logger "Preseed anna-install done"; \ # interface=`ip -o link show | grep -Eio '2\:\s+.*\:\s+' | cut -d ' ' -f 2| cut -d ':' -f 1`; \ # debconf-set netcfg/choose_interface select ${interface}; \ # dlist=`ls -al /dev/disk/by-diskseq | grep -E '^l' | grep -v sr0 | awk '{ print $11 }' | cut -d '/' -f3`; \ # for d in $dlist; do \ # res=`mount | grep -i $d | cut -d ' ' -f 1`; if [ ! -z "$res" ]; then umount $res && logger "Umount $res done"; else logger "umount not done or not needed"; fi; \ # sfdisk -f --delete $(echo "/dev/"$d) && logger " **** sfdisk /dev/$d deleted done"; done; #_preseed_V1 # Shell command or commands to run immediately before partitioning # - Installation of some udeb packages # - Chose first network interface (always wired if any exist to avoid Wifi issues) # - Clear disks of any previous partitioning d-i partman/early_command string \ anna-install localechooser fdisk-udeb parted-udeb disk-detect cryptsetup-udeb hw-detect && logger "Preseed anna-install done"; \ interface=`ip -o link show | grep -Eio '2\:\s+.*\:\s+' | cut -d ' ' -f 2| cut -d ':' -f 1`; \ debconf-set netcfg/choose_interface select ${interface} && logger "Preseed interface selected done"; sfdisk --delete /dev/sda && logger "Preseed sfdisk /dev/sda delete done"; \ sfdisk --delete /dev/sdb && logger "Preseed sfdisk /dev/sdb delete done"; #_preseed_V1 ### Localization # Select the default locale for the installed system d-i debian-installer/locale select fr_FR.UTF-8 # The values can also be preseeded individually for greater flexibility. #d-i debian-installer/language string fr #d-i debian-installer/country string FR #d-i debian-installer/locale string fr_FR.UTF-8 # Optionally specify additional locales to be generated. # d-i localechooser/supported-locales multiselect fr_FR.UTF-8 ### Description: Language: # Choose the language to be used for the installation process. The selected # language will also be the default language for the installed system. # d-i localechooser/languagelist select fr # Possible choices: ${NAMES_EN} # d-i localechooser/language-name string French # Keymap to use d-i console-keymaps-at/keymap select French # Keymap to use for a USB keyboard d-i console-keymaps-usb/keymap select French ### Description: Country of origin for the keyboard: # The layout of keyboards varies per country, with some countries # having multiple common layouts. Please select the country of origin # for the keyboard of this computer. d-i keyboard-configuration/layout select fr_FR.UTF-8 ### Description: For internal use (keyboard chosen by user) d-i debian-installer/keymap string fr #_preseed_V1 # ### Network configuration # Disable network configuration entirely. This is useful for cdrom # installations on non-networked devices where the network questions, # warning and long timeouts are a nuisance. #d-i netcfg/enable boolean false # netcfg will choose an interface that has link if possible. This makes it # skip displaying a list if there is more than one interface. #d-i netcfg/choose_interface select auto # To pick a particular interface instead: #d-i netcfg/choose_interface select eth1 # To set a different link detection timeout (default is 3 seconds). # Values are interpreted as seconds. #d-i netcfg/link_wait_timeout string 10 # If you have a slow dhcp server and the installer times out waiting for # it, this might be useful. #d-i netcfg/dhcp_timeout string 60 #d-i netcfg/dhcpv6_timeout string 60 # If you prefer to configure the network manually, uncomment this line and # the static network configuration below. #d-i netcfg/disable_autoconfig boolean true # If you want the preconfiguration file to work on systems both with and # without a dhcp server, uncomment these lines and the static network # configuration below. d-i netcfg/dhcp_failed note d-i netcfg/dhcp_options select Configure network manually # Static network configuration. # # IPv4 example d-i netcfg/get_ipaddress string 192.168.1.200 d-i netcfg/get_netmask string 255.255.255.0 d-i netcfg/get_gateway string 192.168.1.254 d-i netcfg/get_nameservers string 192.168.1.254 d-i netcfg/confirm_static boolean true # # IPv6 example #d-i netcfg/get_ipaddress string fc00::2 #d-i netcfg/get_netmask string ffff:ffff:ffff:ffff:: #d-i netcfg/get_gateway string fc00::1 #d-i netcfg/get_nameservers string fc00::1 #d-i netcfg/confirm_static boolean true # Any hostname and domain names assigned from dhcp take precedence over # values set here. However, setting the values still prevents the questions # from being shown, even if values come from dhcp. d-i netcfg/get_hostname string vmssrv d-i netcfg/get_domain string net.enedwaith.org # If you want to force a hostname, regardless of what either the DHCP # server returns or what the reverse DNS entry for the IP is, uncomment # and adjust the following line. #d-i netcfg/hostname string vmssrvstd # Disable that annoying WEP key dialog. #d-i netcfg/wireless_wep string # The wacky dhcp hostname that some ISPs use as a password of sorts. #d-i netcfg/dhcp_hostname string # If non-free firmware is needed for the network or other hardware, you can # configure the installer to always try to load it, without prompting. Or # change to false to disable asking. d-i hw-detect/load_firmware boolean true ### Network console # Use the following settings if you wish to make use of the network-console # component for remote installation over SSH. This only makes sense if you # intend to perform the remainder of the installation manually. #d-i anna/choose_modules string network-console #d-i network-console/authorized_keys_url string http://10.0.0.1/openssh-key #d-i network-console/password password r00tme #d-i network-console/password-again password r00tme #_preseed_V1 ### Mirror settings # If you select ftp, the mirror/country string does not need to be set. #d-i mirror/protocol string ftp d-i mirror/country string manual #d-i mirror/http/hostname string ftp.fr.debian.org d-i mirror/http/hostname string deb.debian.org d-i mirror/http/directory string /debian d-i mirror/http/proxy string # Suite to install. d-i mirror/suite string stable # Suite to use for loading installer components (optional). d-i mirror/udeb/suite string stable # You now have the option to scan additional CDs or DVDs for use by the # package manager (apt). Normally these should be from the same set as the # installation CD/DVD. If you do not have any additional CDs or DVDs # available, this step can just be skipped. # . # If you wish to scan another CD or DVD, please insert it now. d-i apt-setup/cdrom/set-first boolean false ### Description: for internal use; can be preseeded # When set to true, apt-setup always disables cdrom entries from APT's # configuration. Otherwise, it disables them only when a netinst image # has been used. # . # This option can be preseeded for automated installations that should # not reference the installation media in the target system. d-i apt-setup/disable-cdrom-entries boolean true #_preseed_V1 ### Account setup # Skip creation of a root account (normal user account will be able to # use sudo). d-i passwd/root-login boolean true # Alternatively, to skip creation of a normal user account. #d-i passwd/make-user boolean false # Root password, either in clear text #d-i passwd/root-password password myrootpassword #d-i passwd/root-password-again password myrootpassword # or encrypted using a crypt(3) hash. #d-i passwd/root-password-crypted password [crypt(3) hash] d-i passwd/root-password-crypted password $6$UTTH6tIRhRNhTtPE$AccCkpAqxWnrQ9LvFzXI0Ijl35SoAPfC7w1nGHNy4RLuZoba/7p.gRSAv2WESYJjIxxRKi7ycoX7narXBC5tZ1 # To create a normal user account. d-i passwd/user-fullname string Zargos Lord d-i passwd/username string zargos # Normal user's password, either in clear text #d-i passwd/user-password password myuserpassword #d-i passwd/user-password-again password myuserpassword # or encrypted using a crypt(3) hash. d-i passwd/user-password-crypted password $6$phLrkvjv8QxeuClk$sw1U9h1gXf4kW7uM5JXxH8CoQKt/c1pS4p50BXDBA7xTDLCAcEjg9afebyqYTjhZAdZBTUkZ9nvvR6G4S5jhb. # Create the first user with the specified UID instead of the default. #d-i passwd/user-uid string 1010 # The user account will be added to some standard initial groups. To # override that, use this. d-i passwd/user-default-groups string audio cdrom video sudo plugdev dip netdev #_preseed_V1 ### Clock and time zone setup # Controls whether or not the hardware clock is set to UTC. d-i clock-setup/utc boolean true # You may set this to any valid setting for $TZ; see the contents of # /usr/share/zoneinfo/ for valid values. d-i time/zone string Europe/Paris # Controls whether to use NTP to set the clock during the install d-i clock-setup/ntp boolean true # NTP server to use. The default is almost always fine here. d-i clock-setup/ntp-server string 192.168.1.254 #_preseed_V1 ### Partitioning ### Description: Force UEFI installation? # This machine's firmware has started the installer in UEFI mode but # it looks like there may be existing operating systems already # installed using "BIOS compatibility mode". If you # continue to install Debian in UEFI mode, it might be difficult to # reboot the machine into any BIOS-mode operating systems later. # . # If you wish to install in UEFI mode and don't care about # keeping the ability to boot one of the existing systems, you have the # option to force that here. If you wish to keep the option to boot an # existing operating system, you should choose NOT to force UEFI # installation here. d-i partman-efi/non_efi_system boolean false ### Description: Go back to the menu and resume partitioning? # No EFI partition was found. d-i partman-efi/no_efi boolean false # enforce usage of GPT - a must have to use EFI! # Label for the file system in this partition d-i partman-basicfilesystems/choose_label string gpt d-i partman-basicfilesystems/default_label string gpt ### Description: Partition table type: # Select the type of partition table to use. d-i partman-partitioning/choose_label string gpt ### Description: for internal use; can be preseeded # You may preseed this template to override the partitioner's # platform-specific default choice of disk label. For example, on x86 # architectures it may be useful to set this to "gpt" to cause new partition # tables to be created using GPT. d-i partman-partitioning/default_label string gpt ### Description: for internal use; can be preseeded # Device to partition, in either devfs or non format # Alternatively, you may specify a disk to partition. If the system has only # one disk the installer will default to using that, but otherwise the device # name must be given in traditional, non-devfs format (so e.g. /dev/sda # and not e.g. /dev/discs/disc0/disc). # For example, to use the first SCSI/SATA hard disk: d-i partman-auto/disk string /dev/sda /dev/sdb ### Description: for internal use; can be preseeded # Method to use for partitioning # The presently available methods are: # - regular: use the usual partition types for your architecture # - lvm: use LVM to partition the disk # - crypto: use LVM within an encrypted partition # - raid: use raid to partition the disks d-i partman-auto/method string raid # Name of the volume group for the new system d-i partman-auto-lvm/new_vg_name string vg01 ### Description: Amount of volume group to use for guided partitioning: # You may use the whole volume group for guided partitioning, or part of it. # If you use only part of it, or if you add more disks later, then you will # be able to grow logical volumes later using the LVM tools, so using a # smaller part of the volume group at installation time may offer more # flexibility. # . # The minimum size of the selected partitioning recipe is ${MINSIZE} (or # ${PERCENT}); please note that the packages you choose to install may # require more space than this. The maximum available size is ${MAXSIZE}. # . # Hint: "max" can be used as a shortcut to specify the maximum size, or # enter a percentage (e.g. "20%") to use that percentage of the maximum size. d-i partman-auto-lvm/guided_size string max ### Description: Remove existing logical volume data? # The selected device already contains the following LVM logical volumes, # volume groups and physical volumes which are about to be removed: # . # Logical volume(s) to be removed: ${LVTARGETS} # . # Volume group(s) to be removed: ${VGTARGETS} # . # Physical volume(s) to be removed: ${PVTARGETS} # . # Note that this will also permanently erase any data currently on the # logical volumes. d-i partman-lvm/device_remove_lvm boolean true ### Description: Write the changes to disks and configure LVM? # Before the Logical Volume Manager can be configured, the current # partitioning scheme has to be written to disk. These changes cannot # be undone. # . # After the Logical Volume Manager is configured, no additional changes # to the partitioning scheme of disks containing physical volumes are # allowed during the installation. Please decide if you are satisfied # with the current partitioning scheme before continuing. d-i partman-lvm/confirm boolean true ### Description: Keep current partition layout and configure LVM? # After the Logical Volume Manager is configured, no additional changes # to the partitions in the disks containing physical volumes are # allowed. Please decide if you are satisfied with the current # partitioning scheme in these disks before continuing. d-i partman-lvm/confirm_nochanges boolean true # Old option not seen anymore in partman-lvm udeb but still needed d-i partman-lvm/confirm_nooverwrite boolean true # The same applies to pre-existing software RAID array: ### Description: Remove existing software RAID partitions? # The selected device contains partitions used for software RAID devices. # The following devices and partitions are about to be removed: # . # Software RAID devices about to be removed: ${REMOVED_DEVICES} # . # Partitions used by these RAID devices: ${REMOVED_PARTITIONS} # . # Note that this will also permanently erase any data currently on the # software RAID devices. d-i partman-md/device_remove_md boolean false ### Description: Write the changes to the storage devices and configure RAID? # Before RAID can be configured, the changes # have to be written to the storage devices. These changes cannot be # undone. # . # When RAID is configured, no additional changes # to the partitions in the disks containing physical volumes are # allowed. Please convince yourself that you are satisfied with the # current partitioning scheme in these disks. d-i partman-md/confirm boolean true ### Description: Keep current partition layout and configure RAID? # When RAID is configured, no additional changes # to the partitions in the disks containing physical volumes are # allowed. Please convince yourself that you are satisfied with the # current partitioning scheme in these disks. d-i partman-md/confirm_nochanges boolean true # Old option not seen anymore in partman-md udeb but still needed d-i partman-md/confirm_nooverwrite boolean true ### Description: Continue installation without /boot partition? # The recipe you selected does not contain a separate partition for /boot. # This is normally needed to allow you to boot the system when using LVM. d-i partman-auto-lvm/no_boot boolean true # You can choose one of the three predefined partitioning recipes: # - atomic: all files in one partition # - home: separate /home partition # - multi: separate /home, /var, and /tmp partitions #d-i partman-auto/choose_recipe select boot-root # Or provide a recipe of your own... # If you have a way to get a recipe file into the d-i environment, you can # just point at it. #d-i partman-auto/expert_recipe_file string /hd-media/recipe ### Description: for internal use; can be preseeded # Default filesystem used for new partitions d-i partman/default_filesystem string ext4 # If not, you can put an entire recipe into the preconfiguration file in one # (logical) line. This example creates a small /boot partition, suitable # swap, and uses the rest of the space for the root partition: #d-i partman-auto/expert_recipe string \ # boot-root :: \ # 40 50 100 ext3 \ # $primary{ } $bootable{ } \ # method{ format } format{ } \ # use_filesystem{ } filesystem{ ext3 } \ # mountpoint{ /boot } \ # . \ # 500 10000 1000000000 ext3 \ # method{ format } format{ } \ # use_filesystem{ } filesystem{ ext3 } \ # mountpoint{ / } \ # . \ # 64 512 300% linux-swap \ # method{ swap } format{ } \ # . ### Description: for internal use; can be preseeded # File to load for expert recipe d-i partman-auto/expert_recipe string \ multiraid :: \ 600 512 620 raid \ $lvmignore{ } \ $primary{ } \ method{ raid } \ . \ 20000 30 100% raid \ $lvmignore{ } \ method{ raid } \ .\ 300% 2048 8000 linux-swap \ $defaultignore{ } \ $lvmok{ } lv_name{ swap } \ method{ swap } format{ } \ . \ 256 512 320 ext4 \ $defaultignore{ } \ $lvmok{ } lv_name{ boot } \ method{ lvm } format{ } \ use_filesystem{ } filesystem{ ext4 } \ label{ BOOT } \ mountpoint{ /boot } \ . \ 10000 2260000 100000 ext4 \ $defaultignore{ } \ $lvmok{ } lv_name{ root } \ method{ lvm } format{ } \ use_filesystem{ } filesystem{ ext4 } \ label{ ROOT } \ mountpoint{ / } \ options/relatime{ relatime } \ options/errors{ errors=remount-ro } \ . \ 4000 904000 25000 ext4 \ $defaultignore{ } \ $lvmok{ } lv_name{ home } \ method{ lvm } format{ } \ use_filesystem{ } filesystem{ ext4 } \ label{ HOME } \ mountpoint{ /home } \ options/relatime{ relatime } \ options/nodev{ nodev } \ options/nosuid{ nosuid } \ . \ 10000 2260000 100000 ext4 \ $defaultignore{ } \ $lvmok{ } lv_name{ var } \ method{ lvm } format{ } \ use_filesystem{ } filesystem{ ext4 } \ label{ VAR } \ mountpoint{ /var } \ options/relatime{ relatime } \ options/nodev{ nodev } \ options/nosuid{ nosuid } \ . \ 4000 904000 25000 ext4 \ $defaultignore{ } \ $lvmok{ } lv_name{ var_log } \ method{ lvm } format{ } \ use_filesystem{ } filesystem{ ext4 } \ label{ LOG } \ mountpoint{ /var/log } \ options/relatime{ relatime } \ options/nodev{ nodev } \ options/nosuid{ nosuid } \ options/noexec{ noexec } \ . \ 4000 904000 25000 ext4 \ $defaultignore{ } \ $lvmok{ } lv_name{ var_log_audit } \ method{ lvm } format{ } \ use_filesystem{ } filesystem{ ext4 } \ label{ AUDIT } \ mountpoint{ /var/log/audit } \ options/relatime{ relatime } \ options/nodev{ nodev } \ options/nosuid{ nosuid } \ options/noexec{ noexec } \ . \ 2000 452000 8000 ext4 \ $defaultignore{ } \ $lvmok{ } lv_name{ var_tmp } \ method{ lvm } format{ } \ use_filesystem{ } filesystem{ ext4 } \ label{ VARTMP } \ mountpoint{ /var/tmp } \ options/relatime{ relatime } \ options/nodev{ nodev } \ options/nosuid{ nosui/boot/efi d } \ options/noexec{ noexec } \ . \ 2000 452000 8000 ext4 \ $defaultignore{ } \ $lvmok{ } lv_name{ tmp } \ method{ lvm } format{ } \ use_filesystem{ } filesystem{ ext4 } \ label{ TMP } \ mountpoint{ /tmp } \ options/relatime{ relatime } \ options/nodev{ nodev } \ options/nosuid{ nosuid } \ . \ 1 1 -1 ext4 \ $defaultignore{ } \ $lvmok{ } lv_name{ todelete } \ method{ lvm } format{ } \ . ### Description: for internal use; can be preseeded # RAID recipe for automated install/boot/efi d-i partman-auto-raid/recipe string \ 1 2 0 vfat /boot/efi \ /dev/sda1#/dev/sdb1 \ # \ --metadata=0 \ . \ 1 2 0 lvm - \ /dev/sda2#/dev/sdb2 \ . ### Description: Write a new empty partition table? # Because of limitations in the current implementation of the Sun # partition tables in libparted, the newly created partition table has # to be written to the disk immediately. # . # You will NOT be able to undo this operation later and all existing # data on the disk will be irreversibly removed. # . # Confirm whether you actually want to create a new partition table and # write it to disk. d-i partman-partitioning/confirm_write_new_label boolean true ### Description: This is an overview of your currently configured partitions and mount points. Select a partition to modify its settings (file system, mount point, etc.), a free space to create partitions, or a device to initialize its partition table. d-i partman/choose_partition select finish ### Description: Write the changes to disks? # If you continue, the changes listed below will be written to the disks. # Otherwise, you will be able to make further changes manually. # . # WARNING: This will destroy all data on any partitions you have # removed as well as on the partitions that are going to be formatted. d-i partman/confirm boolean true ### Description: Write the changes to disks? # If you continue, the changes listed below will be written to the disks. # Otherwise, you will be able to make further changes manually. d-i partman/confirm_nooverwrite boolean true ## Controlling how partitions are mounted # The default is to mount by UUID, but you can also choose "traditional" to # use traditional device names, or "label" to try filesystem labels before # falling back to UUIDs. #d-i partman/mount_style select uuid #_preseed_V1 ### Base system installation # Configure APT to not install recommended packages by default. Use of this # option can result in an incomplete system and should only be used by very # experienced users. #d-i base-installer/install-recommends boolean false ### Description: Kernel to install: # The list shows the available kernels. Please choose one of them in order # to make the system bootable from the hard drive. d-i base-installer/kernel/image string linux-image-amd64 ### Description: Linux command line: # The following Linux command line was extracted from /etc/default/grub or the # `kopt' parameter in GRUB Legacy's menu.lst. Please verify that it is correct, # and modify it if necessary. The command line is allowed to be empty. d-i grub2/linux_cmdline string "apparmor=1 security=apparmor audit=1 audit_backlog_limit=8192" ### Description: Linux default command line: # The following string will be used as Linux parameters for the default menu # entry but not for the recovery mode. d-i grub2/linux_cmdline_default string "video=1920x1080 quiet splash" #_preseed_V1 ### Apt setup # You can choose to install non-free and contrib software. d-i apt-setup/contrib boolean true d-i apt-setup/non-free boolean true d-i apt-setup/non-free-firmware boolean true ### Description: Services to use: # Debian has two services that provide updates to releases: security and # release updates. # . # Security updates help to keep your system secured against attacks. Enabling # this service is strongly recommended. # . # Release updates provide more current versions for software that changes # relatively frequently and where not having the latest version could reduce # the usability of the software. It also provides regression fixes. # This service is only available for stable and oldstable releases. # . # Backported software are adapted from the development version to work with # this release. Although this software has not gone through such complete # testing as that contained in the release, it includes newer versions of # some applications which may provide useful features. Enabling backports # here does not cause any of them to be installed by default; it only # allows you to manually select backports to use. # Possible choices: security updates (from ${SEC_HOST}), release updates, backported software d-i apt-setup/services-select multiselect security, updates, release updates, backports ### Description: for internal use; can be preseeded # Host to use for security updates d-i apt-setup/security_host string ftp.fr.debian.org # Old option not seen anymore in apt-setup-udeb d-i apt-setup/security_path string /debian-security ### Description: Enable source repositories in APT? # By default source repositories are listed in /etc/apt/sources.list (with # appropriate "deb-src" lines) so that "apt-get source" works. However, if # you don't need this feature, you can disable those entries and save some # bandwidth during "apt-get update" operations. d-i apt-setup/enable-source-repositories boolean false # Additional repositories, local[0-9] available #d-i apt-setup/local0/repository string \ # http://local.server/debian stable main #d-i apt-setup/local0/comment string local server # Enable deb-src lines #d-i apt-setup/local0/source boolean true # URL to the public key of the local repository; you must provide a key or # apt will complain about the unauthenticated repository and so the # sources.list line will be left commented out #d-i apt-setup/local0/key string http://local.server/key # By default the installer requires that repositories be authenticated # using a known gpg key. This setting can be used to disable that # authentication. Warning: Insecure, not recommended. #d-i debian-installer/allow_unauthenticated boolean true # Uncomment this to add multiarch configuration for i386 #d-i apt-setup/multiarch string i386 #_preseed_V1 ### Description: Drivers to include in the initrd: # The primary function of an initrd is to allow the kernel to mount the # root file system. It therefore needs to contain all drivers and supporting # programs required to do that. # . # A generic initrd is much larger than a targeted one and may even be so # large that some boot loaders are unable to load it but has the advantage that # it can be used to boot the target system on almost any hardware. With the # smaller targeted initrd there is a very small chance that not all needed # drivers are included. d-i base-installer/initramfs-tools/driver-policy select include all available drivers # Possible choices: generic: include all available drivers, targeted: only include drivers needed for this system #_preseed_V1 ### Package selection #d-i tasksel/first multiselect standard, ssh-server #d-i tasksel/remove multiselect desktop, gnome-desktop, xfce-desktop, kde-desktop, cinnamon-desktop, mate-desktop, lxde-desktop, lxqt-desktop, web-server, print-server, laptop tasksel tasksel/first multiselect standard tasksel tasksel/remove multiselect desktop, print-server #d-i tasksel/tasks multiselect none #d-i tasksel/desktop multiselect none ### Description: Should non-superusers be able to capture packets? # Dumpcap can be installed in a way that allows members of the "wireshark" # system group to capture packets. This is recommended over the # alternative of running Wireshark/Tshark directly as root, because # less of the code will run with elevated privileges. # . # For more detailed information please see # /usr/share/doc/wireshark-common/README.Debian.gz once the package # is installed. # . # Enabling this feature may be a security risk, so it is disabled by # default. If in doubt, it is suggested to leave it disabled. d-i wireshark-common/install-setuid boolean false # Pour la configuration de console-data d-i console-data/keymap/policy select keymap from arch list d-i console-data/keymap/family select azerty d-i console-data/keymap/template/layout select French ### Description: Disable SSH password authentication for root? # Previous versions of openssh-server permitted logging in as root over SSH # using password authentication. The default for new installations is now # "PermitRootLogin prohibit-password", which disables password authentication # for root without breaking systems that have explicitly configured SSH # public key authentication for root. # . # This change makes systems more secure against brute-force password # dictionary attacks on the root user (a very common target for such # attacks). However, it may break systems that are set up with the # expectation of being able to SSH as root using password authentication. You # should only make this change if you do not need to do that. d-i openssh-server/permit-root-login boolean false # Suppress Strongswan Runlevel changes Note prompt d-i strongswan/runlevel_changes note d-i strongswan-starter/runlevel_changes note # Individual additional packages to install #d-i pkgsel/include string apt \ ### Description: for internal use; can be preseeded # type of upgrade to perform # Whether to upgrade packages after debootstrap. # Allowed values: none, safe-upgrade, full-upgrade d-i pkgsel/upgrade select safe-upgrade # Some versions of the installer can report back on what software you have # installed, and what software you use. The default is not to report back, # but sending reports helps the project determine what software is most # popular and include it on CDs. popularity-contest popularity-contest/participate boolean false #_preseed_V1 ### Boot loader installation ### Description: for internal use; can be preseeded # Skip installing grub? d-i grub-installer/skip boolean true ### Description: Continue without installing GRUB? # You chose not to install GRUB to any devices. If you continue, the boot # loader may not be properly configured, and when this computer next starts # up it will use whatever was previously in the boot sector. If there is an # earlier version of GRUB 2 in the boot sector, it may be unable to load # modules or handle the current configuration file. # . # If you are already using a different boot loader and want to carry on # doing so, or if this is a special environment where you do not need a boot # loader, then you should continue anyway. Otherwise, you should install # GRUB somewhere. d-i grub-pc/install_devices_empty boolean true # Don't show information about no boot loader installed nobootloader nobootloader/confirmation_common note ### Description: Install the GRUB boot loader to your primary drive? # It seems that this new installation is the only operating system # on this computer. If so, it should be safe to install the GRUB boot loader # to your primary drive (UEFI partition/boot record). # . # Warning: If your computer has another operating system that the installer # failed to detect, this will make that operating system temporarily # unbootable, though GRUB can be manually configured later to boot it. d-i grub-installer/only_debian boolean false ### Description: Install the GRUB boot loader to your primary drive? # The following other operating systems have been detected on this # computer: ${OS_LIST} # . # If all of your operating systems are listed above, then it should be safe to # install the boot loader to your primary drive (UEFI partition/boot record). # When your computer boots, you will be able to choose to load one of these # operating systems or the newly installed Debian system. d-i grub-installer/with_other_os boolean true # To avoiçd message handler information note d-i grub-installer/exception_handler_note note # To avoid message information note about no boot loader d-i grub-installer/nobootloader_note note # Due notably to potential USB sticks, the location of the MBR can not be # determined safely in general, so this needs to be specified: #d-i grub-installer/bootdev string /dev/sda # To install to the first device (assuming it is not a USB stick): #d-i grub-installer/bootdev string default # Alternatively, if you want to install to a location other than the mbr, # uncomment and edit these lines: #d-i grub-installer/bootdev string (hd0,1) # To install grub to multiple disks: #d-i grub-installer/bootdev string (hd0,1) (hd1,1) (hd2,1) ### Description: Force GRUB installation to the EFI removable media path? # It seems that this computer is configured to boot via EFI, but maybe # that configuration will not work for booting from the hard # drive. Some EFI firmware implementations do not meet the EFI # specification (i.e. they are buggy!) and do not support proper # configuration of boot options from system hard drives. # . # A workaround for this problem is to install an extra copy of the EFI # version of the GRUB boot loader to a fallback location, the # "removable media path". Almost all EFI systems, no matter how buggy, # will boot GRUB that way. # . # Warning: If the installer failed to detect another operating system # that is present on your computer that also depends on this fallback, # installing GRUB there will make that operating system temporarily # unbootable. GRUB can be manually configured later to boot it if # necessary. d-i grub-installer/force-efi-extra-removable boolean true # Optional password for grub, either in clear text #d-i grub-installer/password password r00tme #d-i grub-installer/password-again password r00tme # or encrypted using an MD5 hash, see grub-md5-crypt(8). #d-i grub-installer/password-crypted password [MD5 hash] # Use the following option to add additional boot parameters for the # installed system (if supported by the bootloader installer). # Note: options passed to the installer will be added automatically. #d-i debian-installer/add-kernel-opts string nousb #_preseed_V1 ### Finishing up the installation # During installations from serial console, the regular virtual consoles # (VT1-VT6) are normally disabled in /etc/inittab. Uncomment the next # line to prevent this. #d-i finish-install/keep-consoles boolean true # Avoid that last message about the install being complete. d-i finish-install/reboot_in_progress note # This will prevent the installer from ejecting the CD during the reboot, # which is useful in some situations. #d-i cdrom-detect/eject boolean false # This is how to make the installer shutdown when finished, but not # reboot into the installed system. #d-i debian-installer/exit/halt boolean true # This will power off the machine instead of just halting it. #d-i debian-installer/exit/poweroff boolean true #_preseed_V1 ### Preseeding other packages # Depending on what software you choose to install, or if things go wrong # during the installation process, it's possible that other questions may # be asked. You can preseed those too, of course. To get a list of every # possible question that could be asked during an install, do an # installation, and then run these commands: # debconf-get-selections --installer > file # debconf-get-selections >> file #_preseed_V1 #### Advanced options ### Running custom commands during the installation # d-i preseeding is inherently not secure. Nothing in the installer checks # for attempts at buffer overflows or other exploits of the values of a # preconfiguration file like this one. Only use preconfiguration files from # trusted locations! To drive that home, and because it's generally useful, # here's a way to run any shell command you'd like inside the installer, # automatically. # This command is run just before the install finishes, but when there is # still a usable /target directory. You can chroot to /target and use it # directly, or use the apt-install and in-target commands to easily install # packages and run commands in the target system. ### Description: for internal use; can be preseeded # Shell command or commands to run in the d-i environment as late as possible d-i preseed/late_command string \ logger "late_command: remove todelete"; \ if [ -n "`mount | grep todelete`" ]; then umount /target/todelete; fi; \ rm -fr /target/todelete; \ lvchange -an /dev/mapper/vg01-todelete; \ lvremove -y /dev/mapper/vg01-todelete; \ sed -Ei '/todelete/d' /target/etc/fstab && logger "todete removed from /etc/fstab"; \ mkfs.fat /dev/md0; mkdir -p /target/boot/efi; mount -t vfat /dev/md0 /target/boot/efi; \ chroot /target grub-install --target=x86_64-efi --force-extra-removable --efi-directory=/boot/efi; \ echo "# /boot/efi was on /dev/md0 during installation" >> /target/etc/fstab; \ echo "/dev/md0 /boot/efi vfat umask=0077 0 1" >> /target/etc/fstab; # END-OF-FILE