edwin
/
mailcow-dockerized-proxy
mirror of https://github.com/practical-engelbart/mailcow-dockerized-proxy.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Update ubuntu-vps-setup.sh

Browse Source
master
Edwin Lyon 5 years ago committed by GitHub
parent 3bf2b6286f
commit aaf67baa6d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 8 additions and 0 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 8
      ubuntu-vps-setup.sh

8
ubuntu-vps-setup.sh
Unescape View File

@ -348,12 +348,14 @@ echo 'export PATH=$PATH:/usr/local/go/bin:$GOPATH/bin' >> /etc/profile
export GOPATH=$HOME/go export GOPATH=$HOME/go
export PATH=$PATH:/usr/local/go/bin:$GOPATH/bin export PATH=$PATH:/usr/local/go/bin:$GOPATH/bin
## Optional Either Cloudflare DNS-over-TLS or DNSCrypt-Proxy
cd /opt cd /opt
git clone https://github.com/DNSCrypt/dnscrypt-proxy.git git clone https://github.com/DNSCrypt/dnscrypt-proxy.git
mkdir /etc/dnscrypt-proxy/ mkdir /etc/dnscrypt-proxy/
cp /opt/dnscrypt-proxy/dnscrypt-proxy/example-dnscrypt-proxy.toml /etc/dnscrypt-proxy/dnscrypt-proxy.toml cp /opt/dnscrypt-proxy/dnscrypt-proxy/example-dnscrypt-proxy.toml /etc/dnscrypt-proxy/dnscrypt-proxy.toml
cp -r /opt/dnscrypt-proxy/utils/generate-domains-blocklists/ /etc/dnscrypt-proxy/utils cp -r /opt/dnscrypt-proxy/utils/generate-domains-blocklists/ /etc/dnscrypt-proxy/utils
# Setting up USBGuard # Setting up USBGuard
usbguard generate-policy > /tmp/rules.conf usbguard generate-policy > /tmp/rules.conf
install -m 0600 -o root -g root /tmp/rules.conf /etc/usbguard/rules.conf install -m 0600 -o root -g root /tmp/rules.conf /etc/usbguard/rules.conf
@ -426,6 +428,9 @@ mkdir -p /etc/docker/ssl
mkdir -p /etc/docker/certs.d/peer mkdir -p /etc/docker/certs.d/peer
mkdir -p /etc/docker/certs.d/client mkdir -p /etc/docker/certs.d/client
echo 'GRUB_CMDLINE_LINUX="cgroup_enable=memory swapaccount=1"' >> /etc/default/grub echo 'GRUB_CMDLINE_LINUX="cgroup_enable=memory swapaccount=1"' >> /etc/default/grub
echo 'export DOCKER_HOST=tcp://172.22.1.1:2376' >> /etc/profile
echo 'export DOCKER_TLS_VERIFY=1' >> /etc/profile
echo 'export DOCKER_CERT_PATH=$HOME/.docker/' >> /etc/profile
# CFSSL Setup for mTLS on Docker Socket # CFSSL Setup for mTLS on Docker Socket
mkdir -p /etc/cfssl/cacert mkdir -p /etc/cfssl/cacert
cat > /etc/cfssl/cacert/config.json <<EOF cat > /etc/cfssl/cacert/config.json <<EOF
@ -607,3 +612,6 @@ systemctl enable apparmor
systemctl enable haveged systemctl enable haveged
systemctl enable docker systemctl enable docker
systemctl enable unattended-upgrades systemctl enable unattended-upgrades
update-grub
update-ca-certificates

Write Preview
Loading…
Cancel
Save