We've known each other for so long

harden

@@ -425,6 +425,7 @@ EOF
 # }
 
 # Fix banaction ufw with iptables
+# Does not persist after reboot
 function configureFail2ban {
 FAIL2BAN_LOCAL=$(cat <<'EOF'
 [Definition]
@@ -523,14 +524,17 @@ function enableServices {
 
 function deleteRemainingUsers {
     # Delete possible remaining users
-    sudo systemctl enable --now atd
-    at now + 1 minute << 'EOF'
-    [[ -d /home/admin ]] && sudo userdel -r admin && sudo groupdel admin
-    [[ -d /home/ec2-user ]] && sudo userdel -r ec2-user && sudo groupdel ec2-user
-    [[ -d /home/centos ]] && sudo userdel -r centos && sudo groupdel centos
-    [[ -d /home/fedora ]] && sudo userdel -r fedora && sudo groupdel fedora
-    [[ -d /home/ubuntu ]] && sudo userdel -r ubuntu && sudo groupdel ubuntu
+    cat << EOF | sudo tee /root/delete_users.sh
+[[ -d /home/admin ]] && sudo userdel -r admin && sudo groupdel admin
+[[ -d /home/ec2-user ]] && sudo userdel -r ec2-user && sudo groupdel ec2-user
+[[ -d /home/centos ]] && sudo userdel -r centos && sudo groupdel centos
+[[ -d /home/fedora ]] && sudo userdel -r fedora && sudo groupdel fedora
+[[ -d /home/ubuntu ]] && sudo userdel -r ubuntu && sudo groupdel ubuntu
+sudo rm -f /root/delete_users.sh
 EOF
+    sudo systemctl enable --now atd
+    # Use at as root because if it is run as one of the users above it will fail
+    sudo at now + 1 minute <<< "bash /root/delete_users.sh"
 }
 
 # The main function will call the check_dependencies function and exit if it fails.