This repository contains scripts and configurations for remastering various operating systems to include custom partition layouts and configurations needed for CIS Level 1 compliance.
- Build Host: Rocky Linux 9
- ISO Version: Ubuntu 22.04.5
- Scripts:
env.sh: All vars to rebuild the iso have movied into this file00_requirements.sh: Install necessary packages on the build host.01_setup_remaster_22.04.sh: Download and prepare the ISO.02_change_passwords.sh: Change passwords for root and GRUB.03_remaster.sh: Build the remastered ISO.99_cleanup.sh: Cleanup script for git checking, backup, etc.
- Post-Setup:
- Apply CIS Level 1 Ansible role from ansible-lockdown.
- Run sysprep script from joe-speedboat.
- you now can use /root/.sysprep.sh within system, which is a short form of universal sysprep.sh, stripped down to clean-up the system
- keep in mind, since debian-based system do not created deleted ssh-host-keys, you have to regenerate them on your own when cloning is done, I do not touch them on debian based systems
- Note: The Ansible role
MindPointGroup.ubuntu24_cisis not yet released. This is just a preview to get ready for when the role becomes available. - Build Host: Rocky Linux 9
- ISO Version: Ubuntu 24.04.1
- Scripts:
env.sh: All vars to rebuild the iso have movied into this file00_requirements.sh: Install necessary packages on the build host.01_setup_remaster_24.04.sh: Download and prepare the ISO.02_change_passwords.sh: Change passwords for root and GRUB.03_remaster.sh: Build the remastered ISO.99_cleanup.sh: Cleanup script for git checking, backup, etc.
- Post-Setup:
- Apply CIS Level 1 Ansible role from ansible-lockdown once it is released.
- Run sysprep script from joe-speedboat.
- you now can use /root/.sysprep.sh within system, which is a short form of universal sysprep.sh, stripped down to clean-up the system
- keep in mind, since debian-based system do not created deleted ssh-host-keys, you have to regenerate them on your own when cloning is done, I do not touch them on debian based systems
- Build Host: Rocky Linux 9
- ISO Version: Rocky Linux 9.4
- Scripts:
env.sh: All vars to rebuild the iso have movied into this file00_requirements.sh: Install necessary packages on the build host.01_setup_remaster_rocky9.sh: Download and prepare the ISO.02_change_passwords.sh: Change passwords for root and GRUB.03_remaster.sh: Build the remastered ISO.99_cleanup.sh: Cleanup script for git checking, backup, etc.
- Post-Setup:
- Run sysprep script from joe-speedboat.
- you now can use /root/.sysprep.sh within system, which is a short form of universal sysprep.sh, stripped down to clean-up the system
- Run sysprep script from joe-speedboat.
- Build Host: Rocky Linux 9
- ISO Version: RHEL 9.4
- Scripts:
env.sh: All vars to rebuild the iso have movied into this file00_requirements.sh: Install necessary packages on the build host.01_setup_remaster_rhel9.sh: Download and prepare the ISO.02_change_passwords.sh: Change passwords for root and GRUB.03_remaster.sh: Build the remastered ISO.99_cleanup.sh: Cleanup script for git checking, backup, etc.
- Post-Setup:
- Run sysprep script from joe-speedboat.
- you now can use /root/.sysprep.sh within system, which is a short form of universal sysprep.sh, stripped down to clean-up the system
- Run sysprep script from joe-speedboat.
- Run
00_requirements.shto install necessary packages on the build host. - Run the setup script for the specific OS to download and prepare the ISO.
- Change passwords for root and GRUB using the
02_change_passwords.shscript. - Build the remastered ISO using the
03_remaster.shscript. - Apply the CIS Level 1 Ansible role (if available) and run the sysprep script.
- Use the
99_cleanup.shscript to clean up the build environment.