swaywm@fedora, mostly emacs for everything
Go to file
Frieder Schlesier 340573426b add tower-guix.scm 2024-05-27 22:20:13 +02:00
.archive move various files to .archive 2024-05-08 22:27:31 +02:00
.bin add tower-guix.scm 2024-05-27 22:20:13 +02:00
.config update sway+waybar 2024-05-19 13:43:28 +02:00
.ssh updates (before move to guix home) 2024-02-26 13:11:26 +01:00
bin updates and cleanup 2022-04-02 10:33:53 +02:00
etc symcthing: add systemd autostart on login 2021-10-30 10:06:40 +02:00
fschl add tower-guix.scm 2024-05-27 22:20:13 +02:00
scripts remove scripts/quicktinc.sh 2024-05-08 22:27:31 +02:00
sway update sway/config 2024-04-23 22:44:28 +02:00
waybar add waybar 2024-04-23 22:44:38 +02:00
wireguard updates and cleanup 2022-04-02 10:33:53 +02:00
.aliases kitty: fix kitty over ssh 2023-03-17 20:18:16 +01:00
.bashrc updates (before move to guix home) 2024-02-26 13:11:26 +01:00
.gitignore ignore private stuff 2016-09-13 10:33:58 +02:00
.path updates 2022-03-31 21:46:35 +02:00
.profile move tower to archlinux 2022-04-02 10:19:52 +02:00
.vimrc dirty update 2018-06-08 19:56:59 +02:00
.xsessionrc moar cleanup 2016-04-13 18:09:07 +02:00
20-thinkpad.conf more updates 2015-12-26 12:05:14 +01:00
LICENSE.md updates and cleanup 2022-04-02 10:33:53 +02:00
Makefile fix some typos 2018-11-12 11:48:41 +01:00
README-guix.org add first draft for guix-home on x230 2024-02-26 13:15:20 +01:00
README.org update README.org 2024-05-08 22:41:39 +02:00
Systems.org add first draft for guix-home on x230 2024-02-26 13:15:20 +01:00
restic-cheatsheet.org updates 2022-02-12 16:51:21 +01:00

README.org

fschl dotfiles

part of my personal computing environment. mainly contains configuration files for sway, some useful addons and system tools (git, terminal, ssh, backup). This repository also has some notes on security considerations when setting up a Linux system.

The relevant things for my workflows can be found in https://git.fschl-co.de/fschl/emacs.

(future) Features

  • reproducable machine setup (GNU Guix)
  • keyboard-based environment (Sway wm)
  • efficient, keyboard based (Emacs + CLI tools)
  • portable password management (KeepassXC)
  • similar environment on Desktop, Laptop, Android
  • for Laptop: encrypted boot + home partitions
  • TODO Can you get things done without your computer?

    • Rescue+Recover friends laptops/computers
    • panic-ops using a friends laptop

Security

SSH key generation

ED25519 keys are favored over RSA keys when backward compatibility ''is not required''. This is only compatible with OpenSSH 6.5+ and fixed-size (256 bytes).

  $ ssh-keygen -t ed25519 -f ~/.ssh/id_ed25519_host_$(date +%Y-%m-%d) -C "Key to HOST for user-xyz"

Fallback for really old systems (why do you still have those??) RSA keys are favored over ECDSA keys when backward compatibility ''is required'', thus, newly generated keys are always either ED25519 or RSA (NOT ECDSA or DSA).

  $ ssh-keygen -t rsa -b 8192 -f ~/.ssh/id_rsa_host_$(date +%Y-%m-%d) -C "Key to HOST for user-xyz"

  $ ssh-copy-id -i ~/.ssh/<file>.pub -p 22 user@host

GnuPG

Backup Secure Keys

Nowadays it's mere chance to find a USB thumb drive with less than 4GB storage. Though, you want a dedicated drive to transport your password database, ssh keys and GPG keys. Those don't require more than a couple MB. So what to do with the remaining space?

Scenarios:

  • You visit friends, only have your keys with you and you have to check your mails, assist a colleague in some network/ops emergency or just securely look up some confidential information.
  • A family member calls: their HDD just died and you are asked to quickly help out on recovery.

Boot into a safe environment, having all your credentials available in a secure manner. Have a bootable forensics toolbox around to quickly get going in a familiar setup.

Solution: multi-boot!

Thumb Drive Setup

3 partitions: boot+isos, luks encrypted, unencrypted partition for non-sensitive data

TODO [0/5]

  • explain setup, ideas, practises
  • add HOWTO
  • Check new bootable USB solution: https://ventoy.net/en/index.html
  • move to ansible for easier modularization of setup
  • OR: give GUIX a shot

Notes on Arch

TODO Fedora

  • fedora project
  • different Desktop/Workstation spins (Gnome, KDE, sway…)
  • dnf package manager, install updates on reboot
  • "Atomic Desktop", uses Fedora/RedHat CoreOS with rpm-ostree + flatpaks

ImageMagick Notes

convert multiple .png files into multipage pdf with downscaling

  convert filePrefix*.png -resize 1240x1753 \
          -extent 1240x1753 -gravity center \
          -units PixelsPerInch -density 150x150 multipage.pdf

lower resolution:

  convert filePrefix*.png -resize 620x876 \
          -extent 629x876 -gravity center \
          -units PixelsPerInch -density 100x100 multipage.pdf

combine multiple pdf file into one multipage file

  gs -dBATCH -dNOPAUSE -q -sDEVICE=pdfwrite -sOutputFile=result.pdf sourceFilePrefix-*.pdf

I read the answer like ImageMagick uses ghostscript internally. source: https://stackoverflow.com/questions/14738911/imagemagick-combine-2-generated-pdfs-into-1-multi-page-file