make sure systemd-timesyncd is installed as the time-daemon, remove unwanted packages

make systemd default backed for fail2ban
2024-12-08 14:18:41 -08:00 · 2024-12-08 14:17:31 -08:00
2 changed files with 10 additions and 1 deletions
--- a/fail2ban/jail.local
+++ b/fail2ban/jail.local
@ -1,4 +1,5 @@
 # Fail2Ban configuration file.
 [DEFAULT]
-ignoreip = 127.0.0.1/8
+ignoreip  = 127.0.0.1/8
 banaction = firewallcmd-nftset
+backend   = systemd
--- a/install.sh
+++ b/install.sh
@ -37,11 +37,19 @@ if [[ ! -f /etc/sysctl.d/60-swappiness.conf ]]; then
  /sbin/sysctl --quiet --system
 fi

+# remove unwanted packages
+DEBIAN_FRONTEND=noninteractive apt-get -y purge snapd cryptsetup ufw iptables popularity-contest ntpsec
+DEBIAN_FRONTEND=noninteractive apt-get -y autoremove
+systemctl daemon-reload
+
 # update system
 DEBIAN_FRONTEND=noninteractive apt-get -y update
 # special dpkg options needed for things like nointeractive grub updates
 DEBIAN_FRONTEND=noninteractive apt-get -y -o Dpkg::Options::="--force-confdef" -o Dpkg::Options::="--force-confold" dist-upgrade

+# Install systemd-timesyncd as the time-daemon. It may already be installed, or ntpsec (purged above) may have been in it's place.
+DEBIAN_FRONTEND=noninteractive apt-get -y install systemd-timesyncd
+
 # configure unattended upgrades with automatic reboots
 DEBIAN_FRONTEND=noninteractive apt-get -y install unattended-upgrades apt-listchanges
 sed -i 's|//      "origin=Debian,codename=${distro_codename}-updates";|        "origin=Debian,codename=${distro_codename}-updates";|g' /etc/apt/apt.conf.d/50unattended-upgrades
Author	SHA1	Message	Date
Matthew Saunders Brown	14244a4d3d	make sure systemd-timesyncd is installed as the time-daemon, remove unwanted packages	2024-12-08 14:18:41 -08:00
Matthew Saunders Brown	8ffdb74ce2	make systemd default backed for fail2ban	2024-12-08 14:17:31 -08:00