LXC container for lightweight remote access
I am running a lxc container for my access to the makerspace. here are the steps I took to stand up the lxc container. You can use this as a guide for standing up your own personal LXC container. you dont have to do tailscale on there but this has some info on securing the container.
1. login as root/PAM auth on the proxmox cluster
2. get to the shell on a particular system
3. run a proxmox convience script to standup a very basic ubuntu lxc container
4. once the container is stood up and running get into the root console and do the following
1. change password for root `passwd` to something secure and your own
2. modify system to prevent auto-login using the command below and remove the `--auto-login root` portion of the line that is there.
nano /etc/systemd/system/container-getty@1.service.d/override.conf3. reboot the container
4. login to your root user
5. run `wget https://github.com/YOUR-GITHUB-USERNAME.keys` to pull down your ssh keys
6. modify your /etc/ssh/sshd_config file to allow for root login via ssh
7. verify you can ssh to the system
8. modify system hostname using proxmox gui under container > DNS > hostname
9. reboot to apply hostname
10. once all that works install tailscale the normal way you do that on linux servers.
11. setup subnet routing
12. **TURN OFF SUBNET ROUTING ONCE IT WORKS** we should be using the wireguard VPN for access. this is a backup in the case the wireguard is acting up
5. once the system is configured, your backdoor now should work just fine. I recomend not going crazy with this system.