1
0
mirror of https://github.com/tommytran732/Arch-Setup-Script synced 2024-11-22 01:21:34 -05:00
Commit Graph

259 Commits

Author SHA1 Message Date
e812fa7185
Typo fix
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-02 00:14:37 -07:00
0128fd93b6
Support networkd for server installs
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-02 00:02:15 -07:00
cca5ac2d5d
Remove grub modules (for now)
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 19:17:57 -07:00
63516f369d
More minimal initramfs
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 18:56:40 -07:00
584603cf27
Allow ping on server
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 16:14:36 -07:00
90dff901cc
Easier to read regex
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 16:02:15 -07:00
edb0e04404
Only configure org.gnome.Shell@wayland on desktop
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 15:50:23 -07:00
a0af762521
Remove unnecessary if check
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 15:43:45 -07:00
b44c8046e9
Allow SSH password auth by default
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 15:41:17 -07:00
f7b46e88b9
Remove unnecessary sudo calls
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 15:39:36 -07:00
8d46f9561b
SSH server hardening
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 15:38:01 -07:00
65e6dcb581
Remove unnecessary command
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 15:17:32 -07:00
3cfdbc422c
SSH client hardening
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 15:04:41 -07:00
78e653261f
Split GNOME settings out for desktop only
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 14:46:06 -07:00
81bf0790f7
Remove incorrect mount options
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 04:15:36 -07:00
27d7935de2
Add missing mountpoints
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 12:02:03 -07:00
98d4106ba7
Disable XWayland
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 01:57:24 -07:00
5957f7673d
Add dconf config
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 01:54:06 -07:00
9f6c9d7a79
Add flatpak handling
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 01:09:40 -07:00
0fa2e8c88e
Add note on mkinitcpio first run
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-01 00:39:15 -07:00
9499824cd5
Upgrade to LUKS2 with PBKDF2
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 22:53:33 -07:00
5bdf823804
Re-add karg for apparmor
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 22:29:38 -07:00
45e516c841
Add missing escape
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 22:25:56 -07:00
fa114696fa
Only enable gdm service on desktop
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 22:04:33 -07:00
adcb55a6e0
hardcode hostname to localhost for desktop installs
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 21:59:27 -07:00
f68b02c7e2
Split common packages out
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 21:53:28 -07:00
8a886784e7
Rearrange package list
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 21:50:30 -07:00
4fa525d3aa
Hardcode linux-hardened and linux-lts
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 21:49:21 -07:00
b298669bfe
Add comment on disabling subvol pinning
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 20:13:48 -07:00
5d8c96396e
Enable gdm
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 20:07:06 -07:00
85399bc680
Install sbctl by default
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 20:06:43 -07:00
0d1cb58727
Remove unnecessary output hiding
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 16:31:00 -07:00
7de2799cfb
Rearrange command
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 16:13:21 -07:00
16331d8f2f
Use rd.luks.key
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 16:12:27 -07:00
87595278e0
Fix grub-btrfs
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 16:06:24 -07:00
8412ddcb5b
Add efibootmgr
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 15:07:59 -07:00
19942b80fd
Add KVM guest agents
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 14:35:50 -07:00
78220c311d
Update kernel hardening
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 13:59:44 -07:00
b8e23af72d
Add regex escape
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 13:35:38 -07:00
577ebc5fb4
Better regex
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 13:14:13 -07:00
d9a451b28f
Fix ShellCheck issues
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 10:40:17 -07:00
8cf9d0370b
Typo fix
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 10:37:59 -07:00
eeeb6f0f03
https for fwupd
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 05:14:52 -07:00
8f9bda05c0
Delete legacy scripts
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 05:13:20 -07:00
541d48f9ea
Use rd.luks.name
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 04:39:10 -07:00
dcbae1fd2d
Ree-add snapper configuration
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 04:05:10 -07:00
c74b56a456
Remove unnecessary prompt
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 03:50:33 -07:00
eefffc2d8b
Use systemd hook
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 03:39:38 -07:00
3e74eab90d
Lots of small fixes
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 03:31:45 -07:00
8dac3b4346
Split out snap-pac
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 01:52:10 -07:00
33197000d4
Remove unnecessary space_cache
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 00:55:59 -07:00
ac1ba91ef2
Remove unnecessary \
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 00:40:55 -07:00
3002feddd8
Fix partition label
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-31 00:39:51 -07:00
2ea12a051a
Add lsblk command
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-30 23:46:05 -07:00
cd0939fa64
Typo Fix
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-30 23:44:41 -07:00
13b27b4ca9
Finish cleanup
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-30 23:20:02 -07:00
325f80455f
Typo fix
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-30 22:15:53 -07:00
8fb069f128
Only install microcode if running on bare metal
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-30 22:11:58 -07:00
f72a957468
Cleanup mountpoints
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-30 22:03:12 -07:00
dcf1536d2a
Initial port to new script
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-30 21:27:47 -07:00
25123dbba6
Rename install.sh to desktop.sh
Signed-off-by: Tommy <contact@tommytran.io>
2023-07-02 06:27:08 -07:00
1e81c853bf
Remove disable connectivity checks
Signed-off-by: Tommy <contact@tommytran.io>
2023-03-05 05:40:13 -05:00
74e4d65193
Update kicksecure sysctl
Signed-off-by: Tommy <contact@tommytran.io>
2023-02-04 05:19:19 -05:00
Welteam
26cdbbd06f
Fix regression caused by last commit (#23)
Configure locales after mount of filesystem

Signed-off-by: Welteam <8932313+Welteam@users.noreply.github.com>
2023-01-27 18:31:21 -05:00
calvinreu
71a5f7eb18
input at start (#20)
move input to start
2022-12-17 20:05:23 -05:00
c164464010
Typo fix
Signed-off-by: Tommy <contact@tommytran.io>
2022-12-16 15:16:43 -05:00
Welteam
7ff0405c60
Fix sed command for sudo access (#21)
Adapt sed regexp to variations of sudoers file

Signed-off-by: Welteam <8932313+Welteam@users.noreply.github.com>
2022-12-16 15:12:18 -05:00
d5e6eaf479
Fix file names
Signed-off-by: Tommy <contact@tommytran.io>
2022-12-03 17:07:36 -05:00
a9e28ec90f
Change links to Kicksecure
Signed-off-by: tommytran732 <contact@tommytran.io>
2022-11-17 18:21:44 -05:00
funk-on-code
8a7f338708
Auditd should point to chroot, not live install. (#18)
Auditd fails to start on ArchLinux 2022.10 because the auditd.conf file does not exist in the chroot after install.
Signed-off-by: funk-on-code <113871227+funk-on-code@users.noreply.github.com>
2022-10-22 14:05:39 -04:00
funk-on-code
4eb5e78be2
Fixes ESP Generation from Archlinux 2022.07+ (#16)
Fixes ESP filesystem generation on Live Archlinux ISOs from July 2022 to September (fixes both "Sector Not Allocated" error from mkfs.fat and the grub-install command since the changes to grub-install introduced in the latest update.

Signed-off-by: funk-on-code <113871227+funk-on-code@users.noreply.github.com>
2022-09-28 12:23:11 -04:00
11c4907534
Getting Install.sh Functioning Again 2022-08-27 03:16:08 -04:00
calvinreu
7305ac3232
autodetect partions (#13) 2022-08-27 03:13:51 -04:00
b036b47fc9
Secure Timesync with NTS 2022-08-27 03:13:51 -04:00
415a567c8b
Removed IO udev rules 2022-08-27 03:13:51 -04:00
i-c-u-p
839616fa68
Made shell scripts executable
Changed permissions of install.sh and secureboot.sh from 644 to 755 to be able to run them via "./<script name>" without first executing "chmod u+x <script name>". Also updated the README to reflect the change.
2022-08-27 03:13:50 -04:00
AryunGupta
4f397a2cee
Merge changes from upstream 2022-08-27 03:13:50 -04:00
TommyTran732
cc7a1a25da
Removed snap-sync due to its bugginess 2022-08-27 03:13:50 -04:00
TommyTran732
363a61cd98
Enabled IPv6 privacy and disabled su for non-wheel users 2022-08-27 03:13:49 -04:00
TommyTran732
677a48f15e
Typo fix 2022-08-27 03:13:49 -04:00
TommyTran732
3005d42b2b
Fixed apparmor-notify config file path 2022-08-27 03:13:49 -04:00
TommyTran732
981336e025
AppArmor cache and notifications 2022-08-27 03:13:49 -04:00
TommyTran732
e69c7c15aa
Add notify2 2022-08-27 03:13:48 -04:00
TommyTran732
d0161ab829
Enable landlock 2022-08-27 03:13:48 -04:00
TommyTran732
2ce85003f0
Fix ZRAM config 2022-08-27 03:13:48 -04:00
TommyTran732
8293476125
Switch to zram-generator 2022-08-27 03:13:48 -04:00
TommyTran732
e3fb861554
Update 2022-08-27 03:13:47 -04:00
TommyTran732
4d745c0ac9
Update 2022-08-27 03:13:47 -04:00
TommyTran732
5dfc2ad5f0
Added fwupd 2022-08-27 03:13:47 -04:00
TommyTran732
4951e5f8d9
Update 2022-08-27 03:13:47 -04:00
TommyTran732
e663b92de1
Update 2022-08-27 03:13:46 -04:00
TommyTran732
0135dbba21
Update 2022-08-27 03:13:46 -04:00
TommyTran732
c88ba25eb8
Update 2022-08-27 03:13:46 -04:00
TommyTran732
3eaf3b0cc6
Update 2022-08-27 03:13:46 -04:00
TommyTran732
65ed6a4d06
Update install.sh 2022-08-27 03:13:45 -04:00
TommyTran732
1cddcfbc3e
Restricting file permissions 2022-08-27 03:13:43 -04:00
TommyTran732
f1347ccc57
Update install.sh 2022-08-27 03:13:42 -04:00
TommyTran732
d09fe558bf
Update install.sh 2022-08-27 03:13:41 -04:00
TommyTran732
1d85f5ff15
Update install.sh 2022-08-27 03:13:41 -04:00
TommyTran732
a348abfd15
Update install.sh 2022-08-27 03:13:41 -04:00