4fa525d3aa
Hardcode linux-hardened and linux-lts
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 21:49:21 -07:00
b298669bfe
Add comment on disabling subvol pinning
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 20:13:48 -07:00
5d8c96396e
Enable gdm
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 20:07:06 -07:00
85399bc680
Install sbctl by default
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 20:06:43 -07:00
0d1cb58727
Remove unnecessary output hiding
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 16:31:00 -07:00
7de2799cfb
Rearrange command
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 16:13:21 -07:00
16331d8f2f
Use rd.luks.key
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 16:12:27 -07:00
87595278e0
Fix grub-btrfs
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 16:06:24 -07:00
8412ddcb5b
Add efibootmgr
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 15:07:59 -07:00
19942b80fd
Add KVM guest agents
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 14:35:50 -07:00
78220c311d
Update kernel hardening
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 13:59:44 -07:00
b8e23af72d
Add regex escape
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 13:35:38 -07:00
577ebc5fb4
Better regex
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 13:14:13 -07:00
d9a451b28f
Fix ShellCheck issues
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 10:40:17 -07:00
8cf9d0370b
Typo fix
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 10:37:59 -07:00
eeeb6f0f03
https for fwupd
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 05:14:52 -07:00
8f9bda05c0
Delete legacy scripts
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 05:13:20 -07:00
541d48f9ea
Use rd.luks.name
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 04:39:10 -07:00
dcbae1fd2d
Ree-add snapper configuration
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 04:05:10 -07:00
c74b56a456
Remove unnecessary prompt
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 03:50:33 -07:00
eefffc2d8b
Use systemd hook
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 03:39:38 -07:00
3e74eab90d
Lots of small fixes
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 03:31:45 -07:00
8dac3b4346
Split out snap-pac
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 01:52:10 -07:00
33197000d4
Remove unnecessary space_cache
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 00:55:59 -07:00
ac1ba91ef2
Remove unnecessary \
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 00:40:55 -07:00
3002feddd8
Fix partition label
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 00:39:51 -07:00
2ea12a051a
Add lsblk command
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-30 23:46:05 -07:00
cd0939fa64
Typo Fix
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-30 23:44:41 -07:00
13b27b4ca9
Finish cleanup
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-30 23:20:02 -07:00
325f80455f
Typo fix
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-30 22:15:53 -07:00
8fb069f128
Only install microcode if running on bare metal
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-30 22:11:58 -07:00
f72a957468
Cleanup mountpoints
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-30 22:03:12 -07:00
dcf1536d2a
Initial port to new script
...
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-30 21:27:47 -07:00
25123dbba6
Rename install.sh to desktop.sh
...
Signed-off-by: Tommy <contact@tommytran.io>
2023-07-02 06:27:08 -07:00
1e81c853bf
Remove disable connectivity checks
...
Signed-off-by: Tommy <contact@tommytran.io>
2023-03-05 05:40:13 -05:00
74e4d65193
Update kicksecure sysctl
...
Signed-off-by: Tommy <contact@tommytran.io>
2023-02-04 05:19:19 -05:00
Welteam
26cdbbd06f
Fix regression caused by last commit ( #23 )
...
Configure locales after mount of filesystem
Signed-off-by: Welteam <8932313+Welteam@users.noreply.github.com>
2023-01-27 18:31:21 -05:00
calvinreu
71a5f7eb18
input at start ( #20 )
...
move input to start
2022-12-17 20:05:23 -05:00
c164464010
Typo fix
...
Signed-off-by: Tommy <contact@tommytran.io>
2022-12-16 15:16:43 -05:00
Welteam
7ff0405c60
Fix sed command for sudo access ( #21 )
...
Adapt sed regexp to variations of sudoers file
Signed-off-by: Welteam <8932313+Welteam@users.noreply.github.com>
2022-12-16 15:12:18 -05:00
d5e6eaf479
Fix file names
...
Signed-off-by: Tommy <contact@tommytran.io>
2022-12-03 17:07:36 -05:00
a9e28ec90f
Change links to Kicksecure
...
Signed-off-by: tommytran732 <contact@tommytran.io>
2022-11-17 18:21:44 -05:00
funk-on-code
8a7f338708
Auditd should point to chroot, not live install. ( #18 )
...
Auditd fails to start on ArchLinux 2022.10 because the auditd.conf file does not exist in the chroot after install.
Signed-off-by: funk-on-code <113871227+funk-on-code@users.noreply.github.com>
2022-10-22 14:05:39 -04:00
funk-on-code
4eb5e78be2
Fixes ESP Generation from Archlinux 2022.07+ ( #16 )
...
Fixes ESP filesystem generation on Live Archlinux ISOs from July 2022 to September (fixes both "Sector Not Allocated" error from mkfs.fat and the grub-install command since the changes to grub-install introduced in the latest update.
Signed-off-by: funk-on-code <113871227+funk-on-code@users.noreply.github.com>
2022-09-28 12:23:11 -04:00
11c4907534
Getting Install.sh Functioning Again
2022-08-27 03:16:08 -04:00
calvinreu
7305ac3232
autodetect partions ( #13 )
2022-08-27 03:13:51 -04:00
b036b47fc9
Secure Timesync with NTS
2022-08-27 03:13:51 -04:00
415a567c8b
Removed IO udev rules
2022-08-27 03:13:51 -04:00
i-c-u-p
839616fa68
Made shell scripts executable
...
Changed permissions of install.sh and secureboot.sh from 644 to 755 to be able to run them via "./<script name>" without first executing "chmod u+x <script name>". Also updated the README to reflect the change.
2022-08-27 03:13:50 -04:00
AryunGupta
4f397a2cee
Merge changes from upstream
2022-08-27 03:13:50 -04:00
TommyTran732
cc7a1a25da
Removed snap-sync due to its bugginess
2022-08-27 03:13:50 -04:00
TommyTran732
363a61cd98
Enabled IPv6 privacy and disabled su for non-wheel users
2022-08-27 03:13:49 -04:00
TommyTran732
677a48f15e
Typo fix
2022-08-27 03:13:49 -04:00
TommyTran732
3005d42b2b
Fixed apparmor-notify config file path
2022-08-27 03:13:49 -04:00
TommyTran732
981336e025
AppArmor cache and notifications
2022-08-27 03:13:49 -04:00
TommyTran732
e69c7c15aa
Add notify2
2022-08-27 03:13:48 -04:00
TommyTran732
d0161ab829
Enable landlock
2022-08-27 03:13:48 -04:00
TommyTran732
2ce85003f0
Fix ZRAM config
2022-08-27 03:13:48 -04:00
TommyTran732
8293476125
Switch to zram-generator
2022-08-27 03:13:48 -04:00
TommyTran732
e3fb861554
Update
2022-08-27 03:13:47 -04:00
TommyTran732
4d745c0ac9
Update
2022-08-27 03:13:47 -04:00
TommyTran732
5dfc2ad5f0
Added fwupd
2022-08-27 03:13:47 -04:00
TommyTran732
4951e5f8d9
Update
2022-08-27 03:13:47 -04:00
TommyTran732
e663b92de1
Update
2022-08-27 03:13:46 -04:00
TommyTran732
0135dbba21
Update
2022-08-27 03:13:46 -04:00
TommyTran732
c88ba25eb8
Update
2022-08-27 03:13:46 -04:00
TommyTran732
3eaf3b0cc6
Update
2022-08-27 03:13:46 -04:00
TommyTran732
65ed6a4d06
Update install.sh
2022-08-27 03:13:45 -04:00
TommyTran732
1cddcfbc3e
Restricting file permissions
2022-08-27 03:13:43 -04:00
TommyTran732
f1347ccc57
Update install.sh
2022-08-27 03:13:42 -04:00
TommyTran732
d09fe558bf
Update install.sh
2022-08-27 03:13:41 -04:00
TommyTran732
1d85f5ff15
Update install.sh
2022-08-27 03:13:41 -04:00
TommyTran732
a348abfd15
Update install.sh
2022-08-27 03:13:41 -04:00
TommyTran732
619c3ac2d1
Fixed styling
2022-08-27 03:13:40 -04:00
TommyTran732
79729d65ac
Update install.sh
2022-08-27 03:13:40 -04:00
TommyTran732
1f359ef750
Update install.sh
2022-08-27 03:13:40 -04:00
TommyTran732
0713a4389a
Update install.sh
2022-08-27 03:13:40 -04:00
TommyTran732
d1d22c50d0
Update install.sh
2022-08-27 03:13:40 -04:00
TommyTran732
9c0d7aeede
Update install.sh
2022-08-27 03:13:39 -04:00
TommyTran732
e177886169
Update install.sh
2022-08-27 03:13:39 -04:00
TommyTran732
e28effdd0d
Update install.sh
2022-08-27 03:13:38 -04:00
TommyTran732
3adb403754
Add some grub settings from whonix
2022-08-27 03:13:38 -04:00
TommyTran732
d421ed5a56
Update install.sh
2022-08-27 03:13:38 -04:00
TommyTran732
75215fe0a7
Add user creation
...
Based on the changes made in https://github.com/patarapolw/arch-btrfs/blob/main/scripts/03-root-install.sh
2022-08-27 03:13:37 -04:00
ajeyrgowda
f202bd0a6f
replacing earlyoom with systemd-oomd
...
earlyoom is not needed since systemd already provides that
2022-08-27 03:13:37 -04:00
TommyTran732
f3da738195
Added EarlyOOM
2022-08-27 03:13:36 -04:00
TommyTran732
c9f994e532
Revert to using the old layout
...
OverlayFS doesn't allow snapper rollback when you are booted into a read only snapshot
2022-08-27 03:13:36 -04:00
TommyTran732
fcab538c2e
Update install.sh
2022-08-27 03:13:36 -04:00
TommyTran732
018a6c1769
Update install.sh
2022-08-27 03:13:35 -04:00
TommyTran732
7ba6e45f6b
Update install.sh
2022-08-27 03:13:35 -04:00
TommyTran732
88f2612e42
Add new subvol for /var/lib/machines
...
Seems like snapd creates a subvol for this and cause problems with deleting snapshots, might as well just create it here and avoid the headache
2022-08-27 03:13:35 -04:00
TommyTran732
af306aeb76
Update install.sh
2022-08-27 03:13:35 -04:00
TommyTran732
bb5e850cd2
Another typo fix
2022-08-27 03:13:34 -04:00
TommyTran732
f971624253
Typo fix
2022-08-27 03:13:34 -04:00
TommyTran732
1862d6bdcf
Update install.sh
2022-08-27 03:13:34 -04:00
TommyTran732
a776ec585b
Remove @/tmp sulvol
...
/tmp on Arch linux should be using tmpfs
2022-08-27 03:13:34 -04:00
TommyTran732
df4c1f1f65
Switch to overlayfs
2022-08-27 03:13:32 -04:00
TommyTran732
208b1ea59e
Update install.sh
2022-08-27 03:13:32 -04:00
TommyTran732
f6f6b7f3a3
Switch back to LUKS1
...
Grub does not nicely work with LUKS2 Argon yet, and grub-install is broken with LUKS2
2022-08-27 03:13:32 -04:00
TommyTran732
19702d39ea
Update install.sh
2022-08-27 03:13:32 -04:00