Add standardized Ubuntu LXC security install process with npm and codex

2026-05-10 20:08:47 +00:00
commit be6ddf1416
4 changed files with 158 additions and 0 deletions
@@ -0,0 +1,36 @@
+# Sicherheit: Ubuntu LXC Standard-Setup
+
+Standardisierter Installationsprozess fuer neue Ubuntu-LXC-Container.
+
+Installiert unter anderem:
+- Security-Basis: `ufw`, `fail2ban`, `unattended-upgrades`, `auditd`
+- Admin-Tools: `git`, `curl`, `jq`, `tmux`, `htop`
+- Runtime: `nodejs`, `npm`
+- CLI: `@openai/codex`
+
+## Standardprozess nach Download
+
+```bash
+git clone https://gitea.kanu1.duckdns.org/Kanu/Sicherheit.git
+cd Sicherheit
+chmod +x bin/sicherheit-install scripts/bootstrap_ubuntu_lxc_security.sh
+./bin/sicherheit-install
+```
+
+Optional global verlinken:
+
+```bash
+sudo ln -sf "$(pwd)/bin/sicherheit-install" /usr/local/bin/sicherheit-install
+sudo sicherheit-install
+```
+
+## Pruefen
+
+```bash
+fail2ban-client status
+ufw status verbose
+systemctl status unattended-upgrades --no-pager
+node --version
+npm --version
+codex --help
+```