From fc015bfa2e430d8d084232397523120532d7e5be Mon Sep 17 00:00:00 2001 From: Bertrand Jacquin Date: Sun, 22 Sep 2019 20:15:28 +0100 Subject: factory-default/sys-apps/systemd: add default config --- .../sys-apps/systemd/etc/systemd/coredump.conf | 8 +++ .../sys-apps/systemd/etc/systemd/journald.conf | 26 +++++++++ .../sys-apps/systemd/etc/systemd/logind.conf | 14 +++++ .../systemd/etc/systemd/network/10-eth0.network | 66 ++++++++++++++++++++++ .../sys-apps/systemd/etc/systemd/networkd.conf | 5 ++ .../sys-apps/systemd/etc/systemd/resolved.conf | 28 +++++++++ .../sys-apps/systemd/etc/systemd/sleep.conf | 3 + .../sys-apps/systemd/etc/systemd/system.conf | 17 ++++++ .../systemd/etc/systemd/system/ctrl-alt-del.target | 1 + .../systemd/etc/systemd/system/default.target | 1 + .../sys-apps/systemd/etc/systemd/timesyncd.conf | 5 ++ 11 files changed, 174 insertions(+) create mode 100644 factory-default/sys-apps/systemd/etc/systemd/coredump.conf create mode 100644 factory-default/sys-apps/systemd/etc/systemd/journald.conf create mode 100644 factory-default/sys-apps/systemd/etc/systemd/logind.conf create mode 100644 factory-default/sys-apps/systemd/etc/systemd/network/10-eth0.network create mode 100644 factory-default/sys-apps/systemd/etc/systemd/networkd.conf create mode 100644 factory-default/sys-apps/systemd/etc/systemd/resolved.conf create mode 100644 factory-default/sys-apps/systemd/etc/systemd/sleep.conf create mode 100644 factory-default/sys-apps/systemd/etc/systemd/system.conf create mode 120000 factory-default/sys-apps/systemd/etc/systemd/system/ctrl-alt-del.target create mode 120000 factory-default/sys-apps/systemd/etc/systemd/system/default.target create mode 100644 factory-default/sys-apps/systemd/etc/systemd/timesyncd.conf (limited to 'factory-default') diff --git a/factory-default/sys-apps/systemd/etc/systemd/coredump.conf b/factory-default/sys-apps/systemd/etc/systemd/coredump.conf new file mode 100644 index 00000000..9ea322e8 --- /dev/null +++ b/factory-default/sys-apps/systemd/etc/systemd/coredump.conf @@ -0,0 +1,8 @@ +# See coredump.conf(5) for details. + +[Coredump] +# Store coredump in /var/lib/systemd/coredump +Storage=external + +# Compress coredump +Compress=yes diff --git a/factory-default/sys-apps/systemd/etc/systemd/journald.conf b/factory-default/sys-apps/systemd/etc/systemd/journald.conf new file mode 100644 index 00000000..975ab628 --- /dev/null +++ b/factory-default/sys-apps/systemd/etc/systemd/journald.conf @@ -0,0 +1,26 @@ +# See journald.conf(5) for details. + +[Journal] +# Store journal log only in memory +Storage=volatile + +# Compress journal log +Compress=yes + +# Read /dev/kmsg +ReadKMsg=yes + +# Forward debug+ messages to storage +MaxLevelStore=debug + +# Forward debug+ messages to syslog +MaxLevelSyslog=debug + +# Forward notice+ messages to kmsg +MaxLevelKMsg=notice + +# Forward info+ messages to console +MaxLevelConsole=info + +# Forward emergent+ messages to wall +MaxLevelWall=emerg diff --git a/factory-default/sys-apps/systemd/etc/systemd/logind.conf b/factory-default/sys-apps/systemd/etc/systemd/logind.conf new file mode 100644 index 00000000..9ad2ee4b --- /dev/null +++ b/factory-default/sys-apps/systemd/etc/systemd/logind.conf @@ -0,0 +1,14 @@ +# See logind.conf(5) for details. + +[Login] +# Disable automatic spawning of autovt +NAutoVTs=0 + +# Power off system when PowerKey is pressed +HandlePowerKey=poweroff + +# Hibernate systemd when SuspendKey is pressed +HandleSuspendKey=hibernate + +# Hibernate systemd when HibernateKey is pressed +HandleHibernateKey=hibernate diff --git a/factory-default/sys-apps/systemd/etc/systemd/network/10-eth0.network b/factory-default/sys-apps/systemd/etc/systemd/network/10-eth0.network new file mode 100644 index 00000000..2e591e27 --- /dev/null +++ b/factory-default/sys-apps/systemd/etc/systemd/network/10-eth0.network @@ -0,0 +1,66 @@ +# See systemd.network(5) for details + +[Match] +Name=eth0 + +[Network] +# Enables DHCPv4 and DHCPv6 client +DHCP=yes + +# Enables link-local for IPv6 only +LinkLocalAddressing=ipv6 + +# Create a manual route to 169.254.0.0/16 +IPv4LLRoute=yes + +# Disable Link-Local Multicast Name Resolution +LLMNR=no + +# Disable Multicast DNS +MulticastDNS=no + +# Attempt DNSSEC validation> If the server does not support DNSSEC properly, +# DNSSEC is disabled +DNSSEC=allow-downgrade + +# Attempt DNS-over-TLS. If the DNS server does not support TLS, DNS-over-TLS +# is disabled +DNSOverTLS=opportunistic + +# Disable Ethernet LLDP packet reception +LLDP=no + +# Disable Ethernet LLDP packet emission +EmitLLDP=no + +[DHCP] +# Use MTU sent by DHCP server +UseMTU=yes + +# Use DNS servers sent by DHCP server +UseDNS=yes + +# Use NTP servers sent by DHCP server +UseNTP=yes + +# Set machine hostname as sent by DHCP server +UseHostname=yes + +# Do not use domain sent by DHCP server +UseDomains=no + +# Use routes sent by DHCP server +UseRoutes=yes + +# Do not use timezone sent by DHCP server +UseTimezone=no + +# Use a RFC4361-compliant Client ID +ClientIdentifier=duid + +[IPv6AcceptRA] +# Use DNS servers sent by DHCP server +UseDNS=yes + +# Do not use domain sent by DHCP server +UseDomains=no diff --git a/factory-default/sys-apps/systemd/etc/systemd/networkd.conf b/factory-default/sys-apps/systemd/etc/systemd/networkd.conf new file mode 100644 index 00000000..a1974352 --- /dev/null +++ b/factory-default/sys-apps/systemd/etc/systemd/networkd.conf @@ -0,0 +1,5 @@ +# See networkd.conf(5) for details + +[DHCP] +# Use MAC address of the interface as a DUID value +DUIDType=link-layer diff --git a/factory-default/sys-apps/systemd/etc/systemd/resolved.conf b/factory-default/sys-apps/systemd/etc/systemd/resolved.conf new file mode 100644 index 00000000..999e7eac --- /dev/null +++ b/factory-default/sys-apps/systemd/etc/systemd/resolved.conf @@ -0,0 +1,28 @@ +# See resolved.conf(5) for details + +[Resolve] +# Fallback DNS servers +FallbackDNS=8.8.8.8,1.1.1.1,9.9.9.9 + +# Disable Link-Local Multicast Name Resolution +LLMNR=no + +# Disable Multicast DNS +MulticastDNS=no + +# Attempt DNSSEC validation> If the server does not support DNSSEC properly, +# DNSSEC is disabled +DNSSEC=allow-downgrade + +# Attempt DNS-over-TLS. If the DNS server does not support TLS, DNS-over-TLS +# is disabled +DNSOverTLS=opportunistic + +# Cache DNS responses +Cache=yes + +# Listen for DNS requests on address 127.0.0.53 +DNSStubListener=yes + +# Read /etc/hosts +ReadEtcHosts=yes diff --git a/factory-default/sys-apps/systemd/etc/systemd/sleep.conf b/factory-default/sys-apps/systemd/etc/systemd/sleep.conf new file mode 100644 index 00000000..0a8c6c17 --- /dev/null +++ b/factory-default/sys-apps/systemd/etc/systemd/sleep.conf @@ -0,0 +1,3 @@ +# See systemd-sleep.conf(5) for details + +[Sleep] diff --git a/factory-default/sys-apps/systemd/etc/systemd/system.conf b/factory-default/sys-apps/systemd/etc/systemd/system.conf new file mode 100644 index 00000000..973bf98d --- /dev/null +++ b/factory-default/sys-apps/systemd/etc/systemd/system.conf @@ -0,0 +1,17 @@ +# See systemd-system.conf(5) for details. + +[Manager] +# Enable core dumping on systemd crash +DumpCore=yes + +# Do not spawn a shell on systemd crash +CrashShell=no + +# Do not reboot on systemd crash +CrashReboot=no + +# Hardware watchdog device +WatchdogDevice=/dev/watchdog + +# Reboot the system if it is not contacted within the specified timeout +RuntimeWatchdogSec=60 diff --git a/factory-default/sys-apps/systemd/etc/systemd/system/ctrl-alt-del.target b/factory-default/sys-apps/systemd/etc/systemd/system/ctrl-alt-del.target new file mode 120000 index 00000000..2e22770e --- /dev/null +++ b/factory-default/sys-apps/systemd/etc/systemd/system/ctrl-alt-del.target @@ -0,0 +1 @@ +/lib/systemd/system/reboot.target \ No newline at end of file diff --git a/factory-default/sys-apps/systemd/etc/systemd/system/default.target b/factory-default/sys-apps/systemd/etc/systemd/system/default.target new file mode 120000 index 00000000..08ace2a5 --- /dev/null +++ b/factory-default/sys-apps/systemd/etc/systemd/system/default.target @@ -0,0 +1 @@ +/lib/systemd/system/multi-user.target \ No newline at end of file diff --git a/factory-default/sys-apps/systemd/etc/systemd/timesyncd.conf b/factory-default/sys-apps/systemd/etc/systemd/timesyncd.conf new file mode 100644 index 00000000..ed985ab3 --- /dev/null +++ b/factory-default/sys-apps/systemd/etc/systemd/timesyncd.conf @@ -0,0 +1,5 @@ +# See timesyncd.conf(5) for details. + +[Time] +# Fallback NTP servers +FallbackNTP=0.pool.ntp.org,1.pool.ntp.org,2.pool.ntp.org,3.pool.ntp.org -- cgit v1.2.3