Harden scripts and bump debian-13 ISO to 13.4

debian-13/scripts/networkd.sh

@@ -1,8 +1,19 @@
 #!/usr/bin/env bash
-set -eux
+set -x
 
-install -d -m 755 -o root -g root /etc/systemd/network
-cat > /etc/systemd/network/lan0.network << 'EOF'
+err() {
+	printf "[ERROR]: %s\n" "$1" >&2
+	exit 1
+}
+
+export DEBIAN_FRONTEND=noninteractive
+apt-get update || err "failed to update APT cache"
+apt-get install -y systemd-resolved || err "failed to install systemd-resolved"
+
+install -d -m 755 -o root -g root /etc/systemd/network ||
+	err "failed to create /etc/systemd/network"
+
+cat >/etc/systemd/network/lan0.network <<'EOF' || err "failed to write lan0"
 [Match]
 Name=e*
 Type=ether
@@ -11,12 +22,10 @@ Type=ether
 DHCP=ipv4
 EOF
 
-chown root:root /etc/systemd/network/lan0.network
-chmod 644 /etc/systemd/network/lan0.network
+chown root:root /etc/systemd/network/lan0.network || err "failed to chown"
+chmod 644 /etc/systemd/network/lan0.network || err "failed to chmod 644"
 
-mv /etc/network/interfaces /etc/network/interfaces.save
-mv /etc/network/interfaces.d /etc/network/interfaces.d.save
-systemctl enable systemd-networkd
-systemctl disable networking
-
-echo "nameserver 192.168.121.1" >/etc/resolv.conf
+systemctl enable systemd-networkd || err "failed to enable networkd"
+systemctl enable systemd-resolved || err "failed to enable resolved"
+systemctl disable networking || err "failed to disable networking service"
+apt-get purge -y ifupdown || err "failed to purge ifupdown"