mirror of
https://github.com/tommytran732/Arch-Setup-Script
synced 2024-11-23 10:01:34 -05:00
37 lines
2.1 KiB
Bash
37 lines
2.1 KiB
Bash
#!/bin/sh
|
|
# Copyright (C) 2021-2024 Thien Tran
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License"); you may not
|
|
# use this file except in compliance with the License. You may obtain a copy of
|
|
# the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
|
# License for the specific language governing permissions and limitations under
|
|
# the License.
|
|
|
|
# Make sure secureboot is in setup mode before running this
|
|
|
|
set -eu
|
|
|
|
# Secure boot enrollment
|
|
sudo sbctl enroll-keys
|
|
sudo sbctl sign /boot/efi/EFI/GRUB/grubx64.efi
|
|
|
|
# Setup Flatpak
|
|
sudo flatpak override --system --nosocket=x11 --nosocket=fallback-x11 --nosocket=pulseaudio --nosocket=session-bus --nosocket=system-bus --unshare=network --unshare=ipc --nofilesystem=host:reset --nodevice=input --nodevice=shm --nodevice=all --no-talk-name=org.freedesktop.Flatpak --no-talk-name=org.freedesktop.systemd1 --no-talk-name=ca.desrt.dconf --no-talk-name=org.gnome.Shell.Extensions
|
|
flatpak override --user --nosocket=x11 --nosocket=fallback-x11 --nosocket=pulseaudio --nosocket=session-bus --nosocket=system-bus --unshare=network --unshare=ipc --nofilesystem=host:reset --nodevice=input --nodevice=shm --nodevice=all --no-talk-name=org.freedesktop.Flatpak --no-talk-name=org.freedesktop.systemd1 --no-talk-name=ca.desrt.dconf --no-talk-name=org.gnome.Shell.Extensions
|
|
flatpak remote-add --if-not-exists --user flathub https://dl.flathub.org/repo/flathub.flatpakrepo
|
|
flatpak --user install org.gnome.Extensions com.github.tchx84.Flatseal org.gnome.Loupe -y
|
|
flatpak --user override com.github.tchx84.Flatseal --filesystem=/var/lib/flatpak/app:ro --filesystem=xdg-data/flatpak/app:ro --filesystem=xdg-data/flatpak/overrides:create
|
|
flatpak --user override org.gnome.Extensions --talk-name=org.gnome.Shell.Extensions
|
|
flatpak update -y
|
|
|
|
# Firewalld setup
|
|
sudo firewall-cmd --set-default-zone=block
|
|
sudo firewall-cmd --permanent --add-service=dhcpv6-client
|
|
sudo firewall-cmd --reload
|
|
sudo firewall-cmd --lockdown-on |