Does it really make sense to do this with containers. Should just get a security focused tiny distro like Alpine? Alpine Rpi Install

  • Document how to get started with making your own container

    • with voice over and video
  • DHCP vs Pihole

  • nginx/hugo

  • squid vs. nginx revers

  • encrypted SMTP with drop if not signed by someone in your address book

  • how to manage address book in x-platfom way?

  • talk to raspberry foundation and linus tech tips

  • test.rktpi.com setup

  • RKT research. whats the container root running?

List of tools required in Rocket PI Core

  • rkt
  • keys
  • cut here and cron every 5s?
  • nginx
  • frisbee - static and signed git fetch / checkout
  • dhcpd
  • CA?
  • cat eth0 config > /etc/dhcpcd.conf
  • set up time sync
  • fix raspi busted ass locale shittyness
  • bash / vim / cron / apt-get update/upgrade base
  • included flock
  • apt-get list: git, rkt, acbuild
  • what can we disable in the raspbian lite base (bluetooth, dhcpd, timesync, avahi)
  • rkt pods formatted in AppContainer Spec (appc)
  • writing robust bash shell scripts
  • 1 command is: sudo
    1
    
    sh -c "$(curl -sSL https://rktpi.com/install)"
    or
    1
    
    sh -c "$(curl -sSL http://test.rktpi.com:8080/install)"
  • docker command is:
    1
    
    curl -fsSL get.docker.com -o get-docker.sh && sh get-docker.sh
  • consider openbsd vs. rkt on pi
  • Frisbee Dropbox (512GB SD version)

first headless boot instructions

RKT packages

  • prebuilt and installed simply with apt install rkt acbuild on raspbian
  • on desktop Ubuntu use rkt maintained packages

install process

  • download public bash script (see curl as above)
  • script downloads then executes (no chance to fuck up the pipe)

install script

  • update
  • upgrade
  • update
  • aptbase (my alias)
  • git clone
  • setup basic pf
  • disable ssh
  • install nginx
  • run hugo

dns rebinds

  • have an issue with the fritz.box
  • home > Network > settings > bottom
  • DNS Rebinding

changing locales

1
2
3
4
5
export LANGUAGE=en_US.UTF-8
export LANG=en_US.UTF-8
export LC_ALL=en_US.UTF-8
sudo locale-gen en_US.UTF-8
sudo dpkg-reconfigure locales

dpkg-reconfigure

http://man.he.net/man8/locale-gen

config pi non-interactive

1
2
3
4
5
6
7
8
# Configure timezone and locale
echo "Europe/Oslo" > /etc/timezone && \
dpkg-reconfigure -f noninteractive tzdata && \
sed -i -e 's/# en_US.UTF-8 UTF-8/en_US.UTF-8 UTF-8/' /etc/locale.gen && \
sed -i -e 's/# nb_NO.UTF-8 UTF-8/nb_NO.UTF-8 UTF-8/' /etc/locale.gen && \
echo 'LANG="nb_NO.UTF-8"'>/etc/default/locale && \
dpkg-reconfigure --frontend=noninteractive locales && \
update-locale LANG=nb_NO.UTF-8

rkt ACI image build overview

nginx build example