@@ -48,7 +48,10 Set the desired Debian release name. The script at this time supports the bootst | |||||
48 | Set system host name. It's recommended that the host name is unique in the corresponding subnet. |
|
48 | Set system host name. It's recommended that the host name is unique in the corresponding subnet. | |
49 |
|
49 | |||
50 | ##### `PASSWORD`="raspberry" |
|
50 | ##### `PASSWORD`="raspberry" | |
51 |
Set system `root` password. |
|
51 | Set system `root` password. It's **STRONGLY** recommended that you choose a custom password. | |
|
52 | ||||
|
53 | ##### `USER_PASSWORD`="raspberry" | |||
|
54 | Set password for the created non-root user `USER_NAME`=pi. Ignored if `ENABLE_USER`=false. It's **STRONGLY** recommended that you choose a custom password. | |||
52 |
|
55 | |||
53 | ##### `DEFLOCAL`="en_US.UTF-8" |
|
56 | ##### `DEFLOCAL`="en_US.UTF-8" | |
54 | Set default system locale. This setting can also be changed inside the running OS using the `dpkg-reconfigure locales` command. Please note that on using this parameter the script will automatically install the required packages `locales`, `keyboard-configuration` and `console-setup`. |
|
57 | Set default system locale. This setting can also be changed inside the running OS using the `dpkg-reconfigure locales` command. Please note that on using this parameter the script will automatically install the required packages `locales`, `keyboard-configuration` and `console-setup`. | |
@@ -159,7 +162,7 Install and enable the [hardware accelerated Xorg video driver](https://github.c | |||||
159 | Enable iptables IPv4/IPv6 firewall. Simplified ruleset: Allow all outgoing connections. Block all incoming connections except to OpenSSH service. |
|
162 | Enable iptables IPv4/IPv6 firewall. Simplified ruleset: Allow all outgoing connections. Block all incoming connections except to OpenSSH service. | |
160 |
|
163 | |||
161 | ##### `ENABLE_USER`=true |
|
164 | ##### `ENABLE_USER`=true | |
162 | Create non-root user with password raspberry. Unless overridden with `USER_NAME`=user, username will be `pi`. |
|
165 | Create non-root user with password `USER_PASSWORD`=raspberry. Unless overridden with `USER_NAME`=user, username will be `pi`. | |
163 |
|
166 | |||
164 | ##### `USER_NAME`=pi |
|
167 | ##### `USER_NAME`=pi | |
165 | Non-root user to create. Ignored if `ENABLE_USER`=false |
|
168 | Non-root user to create. Ignored if `ENABLE_USER`=false |
@@ -7,12 +7,13 | |||||
7 |
|
7 | |||
8 | # Generate crypt(3) password string |
|
8 | # Generate crypt(3) password string | |
9 | ENCRYPTED_PASSWORD=`mkpasswd -m sha-512 "${PASSWORD}"` |
|
9 | ENCRYPTED_PASSWORD=`mkpasswd -m sha-512 "${PASSWORD}"` | |
|
10 | ENCRYPTED_USER_PASSWORD=`mkpasswd -m sha-512 "${USER_PASSWORD}"` | |||
10 |
|
11 | |||
11 | # Setup default user |
|
12 | # Setup default user | |
12 | if [ "$ENABLE_USER" = true ] ; then |
|
13 | if [ "$ENABLE_USER" = true ] ; then | |
13 | chroot_exec adduser --gecos $USER_NAME --add_extra_groups \ |
|
14 | chroot_exec adduser --gecos $USER_NAME --add_extra_groups \ | |
14 | --disabled-password $USER_NAME |
|
15 | --disabled-password $USER_NAME | |
15 | chroot_exec usermod -a -G sudo -p "${ENCRYPTED_PASSWORD}" $USER_NAME |
|
16 | chroot_exec usermod -a -G sudo -p "${ENCRYPTED_USER_PASSWORD}" $USER_NAME | |
16 | fi |
|
17 | fi | |
17 |
|
18 | |||
18 | # Setup root password or not |
|
19 | # Setup root password or not |
@@ -78,6 +78,7 RPI_FIRMWARE_DIR=${RPI_FIRMWARE_DIR:=""} | |||||
78 | # General settings |
|
78 | # General settings | |
79 | HOSTNAME=${HOSTNAME:=rpi${RPI_MODEL}-${RELEASE}} |
|
79 | HOSTNAME=${HOSTNAME:=rpi${RPI_MODEL}-${RELEASE}} | |
80 | PASSWORD=${PASSWORD:=raspberry} |
|
80 | PASSWORD=${PASSWORD:=raspberry} | |
|
81 | USER_PASSWORD=${USER_PASSWORD:=raspberry} | |||
81 | DEFLOCAL=${DEFLOCAL:="en_US.UTF-8"} |
|
82 | DEFLOCAL=${DEFLOCAL:="en_US.UTF-8"} | |
82 | TIMEZONE=${TIMEZONE:="Europe/Berlin"} |
|
83 | TIMEZONE=${TIMEZONE:="Europe/Berlin"} | |
83 | EXPANDROOT=${EXPANDROOT:=true} |
|
84 | EXPANDROOT=${EXPANDROOT:=true} |
General Comments 0
Vous devez vous connecter pour laisser un commentaire.
Se connecter maintenant