Created page with " = FreeBSD = == Bootstrapping a node == * Install base os * Update base with security updates ** freebsd-update fetch ** freebsd-update install * Reboot * Update ports tree..."
= FreeBSD =
== Bootstrapping a node ==
* Install base os
* Update base with security updates
** freebsd-update fetch
** freebsd-update install
* Reboot
* Update ports tree
** portsnap fetch extract
* Install base packages
** cd /usr/ports/ports-mgmt/portmaster
** make install distclean
** rehash
** portmaster -d shells/bash editors/vim-lite sysutils/tmux net/nss-pam-ldapd-sasl sysutils/msktutil security/cyrus-sasl2-gssapi
*** NOTE: Make sure to enable GSSAPI for openldap-sasl-client
** rehash
* Setup /etc/krb5.conf
* Setup /usr/local/etc/openldap/ldap.conf
* Install samba ssl root CA cert in /usr/local/etc/trusted.pem
* Join the box to the domain
** kinit [email protected]
** msktutil -c --server=bob
** Install /usr/local/sbin/renew.sh (chmod +x)
** Install /etc/periodic/hourly/100.renew (chmod +x)
** Enable hourly periodics in /etc/crontab
*** 0 * * * * root periodic hourly
== /etc/periodic/100.renew ==
<pre>
#!/bin/sh
if [ -r /etc/defaults/periodic.conf ]
then
. /etc/defaults/periodic.conf
source_periodic_confs
fi