diff --git a/install.sh b/install.sh index b567859..de6f8e4 100644 --- a/install.sh +++ b/install.sh @@ -10,48 +10,54 @@ fi # # USER # +read -p "Create a user ? (y/n) " answer +if [[ "$answer" == "y" ]]; then + echo "Create user" -echo "Create user" + read -p "Enter username: " username -read -p "Enter username: " username + if id "$username" &>/dev/null; then + echo "User '$username' already exists." + exit 1 + fi -if id "$username" &>/dev/null; then - echo "User '$username' already exists." - exit 1 + echo "Generate and store the password somewhere safe" + read -s -p "Enter password: " password + echo + useradd -m "$username" + chsh -s /bin/bash $username + echo "$username:$password" | chpasswd + + usermod -aG sudo $username + + echo "User '$username' created with password successfully." fi -echo "Generate and store the password somewhere safe" -read -s -p "Enter password: " password -echo -useradd -m "$username" -chsh -s /bin/bash $username -echo "$username:$password" | chpasswd - -usermod -aG sudo $username - -echo "User '$username' created with password successfully." - # # SSH # +read -p "Setup SSH ? (y/n) " answer +if [[ "$answer" == "y" ]]; then + echo "Setup SSH" -echo "Setup SSH" - -touch /etc/ssh/sshd_config.d/custom.conf -echo "PermitRootLogin no" >> /etc/ssh/sshd_config.d/custom.conf -echo "PermitEmptyPasswords no" >> /etc/ssh/sshd_config.d/custom.conf -systemctl reload ssh + touch /etc/ssh/sshd_config.d/custom.conf + echo "PermitRootLogin no" >> /etc/ssh/sshd_config.d/custom.conf + echo "PermitEmptyPasswords no" >> /etc/ssh/sshd_config.d/custom.conf + systemctl reload ssh +fi # # FIREWALL AND FAIL2BAN # - -echo "Setup Firewall and Fail2Ban" -apt install -y ufw fail2ban -systemctl enable fail2ban -ufw allow ssh -ufw allow http -ufw allow https +read -p "Setup Firewall and Fail2Ban ? (y/n) " answer +if [[ "$answer" == "y" ]]; then + echo "Setup Firewall and Fail2Ban" + apt install -y ufw fail2ban + systemctl enable fail2ban + ufw allow ssh + ufw allow http + ufw allow https +fi # # TODO : ZABBIX AND URBACKUP @@ -62,11 +68,12 @@ echo "TODO : Zabbix and Urbackup" # # CADDY # - -echo "Install Caddy Webserver" -apt install -y debian-keyring debian-archive-keyring apt-transport-https curl -curl -1sLf 'https://dl.cloudsmith.io/public/caddy/stable/gpg.key' | gpg --dearmor -o /usr/share/keyrings/caddy-stable-archive-keyring.gpg -curl -1sLf 'https://dl.cloudsmith.io/public/caddy/stable/debian.deb.txt' | tee /etc/apt/sources.list.d/caddy-stable.list -apt update -apt install -y caddy -caddy run \ No newline at end of file +read -p "Install Caddy webserver ? (y/n) " answer +if [[ "$answer" == "y" ]]; then + echo "Install Caddy Webserver" + apt install -y debian-keyring debian-archive-keyring apt-transport-https curl + curl -1sLf 'https://dl.cloudsmith.io/public/caddy/stable/gpg.key' | gpg --dearmor -o /usr/share/keyrings/caddy-stable-archive-keyring.gpg + curl -1sLf 'https://dl.cloudsmith.io/public/caddy/stable/debian.deb.txt' | tee /etc/apt/sources.list.d/caddy-stable.list + apt update + apt install -y caddy +fi \ No newline at end of file