summaryrefslogtreecommitdiffhomepage
path: root/tech/crux.mdwn
diff options
context:
space:
mode:
authorSean Whitton <spwhitton@spwhitton.name>2015-11-11 17:58:47 -0700
committerSean Whitton <spwhitton@spwhitton.name>2015-11-11 17:58:47 -0700
commit5e7c9f78a6309ef99a427a4828b1f64f16d898a0 (patch)
tree28960ffe7d108c1d2710f721988d294f143d4ad6 /tech/crux.mdwn
parent0f9207433381be7488045a77585dd1471a895ea4 (diff)
downloadwiki-5e7c9f78a6309ef99a427a4828b1f64f16d898a0.tar.gz
fix up CRUX installation notes
Diffstat (limited to 'tech/crux.mdwn')
-rw-r--r--tech/crux.mdwn904
1 files changed, 451 insertions, 453 deletions
diff --git a/tech/crux.mdwn b/tech/crux.mdwn
index eafdaef..6657062 100644
--- a/tech/crux.mdwn
+++ b/tech/crux.mdwn
@@ -66,17 +66,18 @@ TeX Live and had to do crazy repartitioning of encrypted partitions…
Here’s a summary of the sizes I choose for my partitions:
- Partition Size Filesystem
- ----------- ----------------- ------------
- `/` 10GB ext3
- `/var` 5GB ReiserFS
- `/home` remaining HDD ext4
- `/tmp` max. 50% of RAM tmpfs
+[[!table date="""
+ Partition |Size |Filesystem
+ `/` |10GB |ext3
+ `/var` |5GB |ReiserFS
+ `/home` |remaining HDD |ext4
+ `/tmp` |max. 50% of RAM |tmpfs
+"""]]
so
``` {.nil}
-,# mkfs.ext3 /dev/sda1
+# mkfs.ext3 /dev/sda1
```
or, `mkfs.ext4` on my single-partition desktop.
@@ -91,8 +92,8 @@ that can later be moved into the encrypted partition, rather than
supplying the installation with the scripts and modules to encrypt now.
``` {.nil}
-,# mount /dev/sda1 /mnt
-,# setup
+# mount /dev/sda1 /mnt
+# setup
```
Select all three port collections and then **deselect** the following
@@ -125,9 +126,9 @@ my desktop. Leave services and font as they are for now.
Generate locales:
``` {.nil}
-,# localedef -i en_GB -f ISO-8859-1 en_GB
-,# localedef -i en_GB -f ISO-8859-1 en_GB.ISO-8859-1
-,# localedef -i en_GB -f UTF-8 en_GB.utf8
+# localedef -i en_GB -f ISO-8859-1 en_GB
+# localedef -i en_GB -f ISO-8859-1 en_GB.ISO-8859-1
+# localedef -i en_GB -f UTF-8 en_GB.utf8
```
### Temporary network setup
@@ -242,284 +243,281 @@ nameserver 208.67.220.220
The commented out address will be of use once OpenVPN is operational.
-#### DONE Post other machines config too
+<!-- #### DONE Post other machines config too -->
-CLOSED: \[2011-08-29 Mon 14:56\]
+<!-- CLOSED: \[2011-08-29 Mon 14:56\] -->
-Also note need to restart on both ends after reboot.
+<!-- Also note need to restart on both ends after reboot. -->
Compiling the kernel
--------------------
Here are changes I have made; everything else is left as-is.
-- General setup
- - Disable development/incomplete code/drivers
- - Disable swap support
- - Enable BSD Process Accounting
- - Disable kernel .config support
- - Enable UTS & IPC namespace support
- - Disable initramfs/initrd
- - Disable optimisation for size
- - On zephyr, enable configure standard kernel features (for
+* General setup
+ * Disable development/incomplete code/drivers
+ * Disable swap support
+ * Enable BSD Process Accounting
+ * Disable kernel .config support
+ * Enable UTS & IPC namespace support
+ * Disable initramfs/initrd
+ * Disable optimisation for size
+ * On zephyr, enable configure standard kernel features (for
small systems) \[Apple keyboard\]
-- Enable loadable module support
- - Disable unloading modules
-- Processor type and features
- - Processor family: Core 2/newer Xeon
- - Maximum number of CPUs set to 2
- - Disable SMT (Hyperthreading) scheduler support
- - Enable machine check / overheating reporting
- - Disable AMD MCE features
- - High Memory Support: 4GB
- - Enable KSM for page merging
- - Enable Math emulation
- - Enable MTRR cleanup support
- - Enable -fstack-protector buffer overflow detection
-- Power management and ACPI options
- - Enable power management support
- - Enable run-time PM core functionality
- - Enable APM for laptop (though this is known to be dodgy; care)
- - Enable CPU frequency scaling on artemis
- - Disable CPU frequency translation statistics
- - Enable the powersave, userspace, and conservative governors
+* Enable loadable module support
+ * Disable unloading modules
+* Processor type and features
+ * Processor family: Core 2/newer Xeon
+ * Maximum number of CPUs set to 2
+ * Disable SMT (Hyperthreading) scheduler support
+ * Enable machine check / overheating reporting
+ * Disable AMD MCE features
+ * High Memory Support: 4GB
+ * Enable KSM for page merging
+ * Enable Math emulation
+ * Enable MTRR cleanup support
+ * Enable -fstack-protector buffer overflow detection
+* Power management and ACPI options
+ * Enable power management support
+ * Enable run-time PM core functionality
+ * Enable APM for laptop (though this is known to be dodgy; care)
+ * Enable CPU frequency scaling on artemis
+ * Disable CPU frequency translation statistics
+ * Enable the powersave, userspace, and conservative governors
on artemis, and ondemand instead of conservative on zephyr.
Set default governor to performance
- - Module ACPI Processor P-states driver
-- Bus options
- - Enable Message Signaled Interrupts
- - Disable ISA support
- - PCMCIA—disable on zephyr
- - Disable Cirrus PD6729 compatible bridge support
- - Disable i82092 compatible bridge support
-- Executable file formats / emulations
- - Enable kernel support for MISC binaries
-- Networking support
- - Networking options
- - For the Oxford VPN, we will need to module these:
- - Transformation user configuration interface
- - PF~KEY~ sockets
- - IP: GRE tunnels over IP
- - IP: AH transformation
- - IP: ESP transformation
- - IP: IPComp transformation
- - IP: IPsec transport mode
- - IP: IPsec tunnel mode
- - IP: IPsec BEET mode
- - Enable INET: socket monitoring interface
- - Disable IPv6 (I’m never on a network that supports it)
- - Enable Netfilter
- - Core Netfilter Configuration
- - Enable Netfilter connection tracking support
- - IP: Netfilter configuration
- - Enable IPv4 connection tracking support
- - Enable IP tables support
- - Enable Full NAT
- - Enable MASQUERADE target support
- - Enable REDIRECT target support
- - Module 802.1d ethernet bridging
- - Wireless
- - Enable (*i.e.* not just module) cfg80211
- - Enable Generic IEEE 802.11 Networking Stack (mac80211)
- - Enable RF switch subsystem support on artemis
-- Device drivers
- - Generic driver options
- - Enable maintain a devtmpfs filesystem to mount at /dev
- - Automount devtmpfs at /dev. after the kernel…
- - Enable include in-kernel firmware blobs in kernel binary
- - Enable connector—unified userspace &lt;-&gt; kernelspace linker
- - Plug and play support
- - Enable PNP debugging messages
- - Block devices
- - Module normal floppy disk support on artemis, enable on
+ * Module ACPI Processor P-states driver
+* Bus options
+ * Enable Message Signaled Interrupts
+ * Disable ISA support
+ * PCMCIA—disable on zephyr
+ * Disable Cirrus PD6729 compatible bridge support
+ * Disable i82092 compatible bridge support
+* Executable file formats / emulations
+ * Enable kernel support for MISC binaries
+* Networking support
+ * Networking options
+ * For the Oxford VPN, we will need to module these:
+ * Transformation user configuration interface
+ * PF~KEY~ sockets
+ * IP: GRE tunnels over IP
+ * IP: AH transformation
+ * IP: ESP transformation
+ * IP: IPComp transformation
+ * IP: IPsec transport mode
+ * IP: IPsec tunnel mode
+ * IP: IPsec BEET mode
+ * Enable INET: socket monitoring interface
+ * Disable IPv6 (I’m never on a network that supports it)
+ * Enable Netfilter
+ * Core Netfilter Configuration
+ * Enable Netfilter connection tracking support
+ * IP: Netfilter configuration
+ * Enable IPv4 connection tracking support
+ * Enable IP tables support
+ * Enable Full NAT
+ * Enable MASQUERADE target support
+ * Enable REDIRECT target support
+ * Module 802.1d ethernet bridging
+ * Wireless
+ * Enable (*i.e.* not just module) cfg80211
+ * Enable Generic IEEE 802.11 Networking Stack (mac80211)
+ * Enable RF switch subsystem support on artemis
+* Device drivers
+ * Generic driver options
+ * Enable maintain a devtmpfs filesystem to mount at /dev
+ * Automount devtmpfs at /dev. after the kernel…
+ * Enable include in-kernel firmware blobs in kernel binary
+ * Enable connector—unified userspace &lt;-&gt; kernelspace linker
+ * Plug and play support
+ * Enable PNP debugging messages
+ * Block devices
+ * Module normal floppy disk support on artemis, enable on
zephyr
- - Disable Compaq SMART2 support
- - Disable Compaq Smart Array 5xxx support
- - Disable Mylex DAC960/DAC1100 PCI RAID controller support
- - Module loopback device support
- - Disable network block device support
- - Module RAM block device support (this may break tmpfs?)
- - Disable ATA over ethernet support
- - On zephyr enable ATA/ATAPI/MFM/RLL support (DEPRECATED) \[this
+ * Disable Compaq SMART2 support
+ * Disable Compaq Smart Array 5xxx support
+ * Disable Mylex DAC960/DAC1100 PCI RAID controller support
+ * Module loopback device support
+ * Disable network block device support
+ * Module RAM block device support (this may break tmpfs?)
+ * Disable ATA over ethernet support
+ * On zephyr enable ATA/ATAPI/MFM/RLL support (DEPRECATED) \[this
may or may not help failure to boot issue, really have no idea
atm\]
- - Enable support for SATA (deprecated; conflicts with libata
+ * Enable support for SATA (deprecated; conflicts with libata
SATA driver)
- - Enable generic ATA/ATAPI disk support
- - Enable ATA disk support
- - Enable Include IDE/ATAPI CDROM support
- - Enable IDE ACPI support
- - Enable generic/default IDE chipset support
- - Enable Platform driver for IDE interfaces
- - Enable AMD and nVidia IDE support
- - SCSI device support
- - Enable SCSI disk support
- - Enable SCSI CDROM support
- - Enable vendor-specific extensions (for SCSI CDROM) on
+ * Enable generic ATA/ATAPI disk support
+ * Enable ATA disk support
+ * Enable Include IDE/ATAPI CDROM support
+ * Enable IDE ACPI support
+ * Enable generic/default IDE chipset support
+ * Enable Platform driver for IDE interfaces
+ * Enable AMD and nVidia IDE support
+ * SCSI device support
+ * Enable SCSI disk support
+ * Enable SCSI CDROM support
+ * Enable vendor-specific extensions (for SCSI CDROM) on
zephyr only
- - Enable SCSI generic support
- - Probe all LUNs on each SCSI device
- - Enable asynchronous SCSI scanning
- - Enable serial ATA and parallel ATA drivers
- - Enable AHCI SATA support
- - Enable platform AHCI SATA support
- - On zephyr enable NVIDIA SATA support
- - Enable multiple devices driver support (RAID and LVM)
- - Enable device mapper support
- - Enable crypt target support
- - Enable snapshot target
- - Enable mirror target
- - Disable Fusion MPT device support
- - IEEE 1394 (FireWire) support
- - Disable FireWire driver stack
- - Enable Macintosh device drivers (hmm shouldn’t keyboard be
+ * Enable SCSI generic support
+ * Probe all LUNs on each SCSI device
+ * Enable asynchronous SCSI scanning
+ * Enable serial ATA and parallel ATA drivers
+ * Enable AHCI SATA support
+ * Enable platform AHCI SATA support
+ * On zephyr enable NVIDIA SATA support
+ * Enable multiple devices driver support (RAID and LVM)
+ * Enable device mapper support
+ * Enable crypt target support
+ * Enable snapshot target
+ * Enable mirror target
+ * Disable Fusion MPT device support
+ * IEEE 1394 (FireWire) support
+ * Disable FireWire driver stack
+ * Enable Macintosh device drivers (hmm shouldn’t keyboard be
under here?)
- - Network device support
- - Module dummy net driver support
- - Module universal TUN/TAP device driver support
- - Wireless LAN
- - Enable Intel Wireless Wifi on artemis
- - Enable Intel Wireless WiFi Next Gen AGN (iwlagn) on
+ * Network device support
+ * Module dummy net driver support
+ * Module universal TUN/TAP device driver support
+ * Wireless LAN
+ * Enable Intel Wireless Wifi on artemis
+ * Enable Intel Wireless WiFi Next Gen AGN (iwlagn) on
artemis
- - Enable Intel Wireless WiFi 5000AGN … on artemis
- - Enable Ralink driver support on zephyr
- - Enable rt2500 (USB) support
- - Enable rt2501/rt73 (USB) support
- - Enable Ralink debug output
- - Disable PPP support
- - Input device support
- - Disable support for memoryless force-feedback devices
- - Disable polled input device skeleton
- - Set horizontal and vertical screen resolution
- - Enable event interface
- - Mice
- - On zephyr, enable PS/2 mouse
- - Disable serial mouse
- - Disable Apple USB touchpad support
- - Disable Apple USB BCM5974 Multitouch trackpad support
- - Character devices
- - Serial drivers
- - Disable 8250/16550 and compatible serial support
- - Enable Timer IOMEM HW Random Number General support
- - Enable Intel HW Random Number Generator support
- - Disable AMD … random number generator support × 2
- - Enable /dev/nvram support
- - Enable SPI support
- - Power supply class support
- - Module test power driver
- - Module all battery types on artemis for now
- - Enable hardware monitoring support
- - Generic thermal sysfs driver
- - Enable hardware monitoring support
- - Disable multimedia support
- - Graphics support
- - Enable laptop hybrid graphics on artemis
- - Module direct rendering manager
- - Disable support for frame buffer devices
- - Enable backlight & LCD device support on artemis
- - Display device support
- - Enable display panel/monitor support
- - Console display driver support
- - Disable scrollback buffer in system RAM
- - Enable sound card support
- - Enable ALSA
- - Enable sequencer support
- - Enable OSS mixer API
- - Enable OSS PCM
- - Enable OSS sequencer API
- - Disable verbose procfs contents
- - PCI sound devices
- - Enable Intel HD Audio
- - On artemis enable aggressive power-saving on
+ * Enable Intel Wireless WiFi 5000AGN … on artemis
+ * Enable Ralink driver support on zephyr
+ * Enable rt2500 (USB) support
+ * Enable rt2501/rt73 (USB) support
+ * Enable Ralink debug output
+ * Disable PPP support
+ * Input device support
+ * Disable support for memoryless force-feedback devices
+ * Disable polled input device skeleton
+ * Set horizontal and vertical screen resolution
+ * Enable event interface
+ * Mice
+ * On zephyr, enable PS/2 mouse
+ * Disable serial mouse
+ * Disable Apple USB touchpad support
+ * Disable Apple USB BCM5974 Multitouch trackpad support
+ * Character devices
+ * Serial drivers
+ * Disable 8250/16550 and compatible serial support
+ * Enable Timer IOMEM HW Random Number General support
+ * Enable Intel HW Random Number Generator support
+ * Disable AMD … random number generator support × 2
+ * Enable /dev/nvram support
+ * Enable SPI support
+ * Power supply class support
+ * Module test power driver
+ * Module all battery types on artemis for now
+ * Enable hardware monitoring support
+ * Generic thermal sysfs driver
+ * Enable hardware monitoring support
+ * Disable multimedia support
+ * Graphics support
+ * Enable laptop hybrid graphics on artemis
+ * Module direct rendering manager
+ * Disable support for frame buffer devices
+ * Enable backlight & LCD device support on artemis
+ * Display device support
+ * Enable display panel/monitor support
+ * Console display driver support
+ * Disable scrollback buffer in system RAM
+ * Enable sound card support
+ * Enable ALSA
+ * Enable sequencer support
+ * Enable OSS mixer API
+ * Enable OSS PCM
+ * Enable OSS sequencer API
+ * Disable verbose procfs contents
+ * PCI sound devices
+ * Enable Intel HD Audio
+ * On artemis enable aggressive power-saving on
HD-audio
- - Default time-out for HD-audio power-save
+ * Default time-out for HD-audio power-save
mode: 60
- - On zephyr enable build nvidia HDMI HD-audio
+ * On zephyr enable build nvidia HDMI HD-audio
codec support
- - Disable HID drivers on artemis, enable on zephyr—enable/module
+ * Disable HID drivers on artemis, enable on zephyr—enable/module
on artemis if want USB mouse support
- - Special HID drivers
- - Enable Apple
- - USB support
- - Enable support for host-side usb
- - Enable USB device filesystem
- - Enable WUSB cable based association
- - Enable EHCI HCD (USB 2.0) support
- - Disable USB modem support
- - Enable MMC/SD/SDIO card support on artemis
- - On artemis, enable Secure Digital host controller interface
+ * Special HID drivers
+ * Enable Apple
+ * USB support
+ * Enable support for host-side usb
+ * Enable USB device filesystem
+ * Enable WUSB cable based association
+ * Enable EHCI HCD (USB 2.0) support
+ * Disable USB modem support
+ * Enable MMC/SD/SDIO card support on artemis
+ * On artemis, enable Secure Digital host controller interface
support
- - On artemis enable SDHCI support on PCI bus
- - On artemis enable Ricoh MMC controller disabler
- - Disable Real Time Clock
- - Enable auxiliary display support
- - Disable X86 platform specific device drivers
- - ~~On artemis, module Acer WMI laptop extras, Asus laptop
+ * On artemis enable SDHCI support on PCI bus
+ * On artemis enable Ricoh MMC controller disabler
+ * Disable Real Time Clock
+ * Enable auxiliary display support
+ * Disable X86 platform specific device drivers
+ * ~~On artemis, module Acer WMI laptop extras, Asus laptop
extras and ThikPad ACPI laptop extras—don’t think it’s the
latter but one of three for SL300 which has IdeaPad
internals, not proper ThinkPad~~ —using `lenovo-sl-laptop`
- - On zephyr enable staging drivers
- - Disable exclude staging drivers from being built
- - Enable Ralink 2870/3070 wireless support
-- File systems
- - Enable ext2
- - Enable ext3
- - Default to ‘data-ordered’ in ext3
- - Enable ext4
- - Enable reiserfs
- - Disable JFS
- - Disable XFS
- - Enable kernel automounter version 4 support (also supports v3)
- - Enable FUSE
- - Module character device in userpace \[sic\] suppose
- - CD-ROM/DVD filesystems
- - Enable ISO 9660 CDROM file system support
- - Enable Microsoft Joliet CDROM extensions
- - Enable transparent decompression extension
- - UDF file system support
- - DOS/FAT/NT filesystems
- - Disable MSDOC fs support
- - Enable VFAT (Windows-95) fs support
- - On zephyr, enable NTFS file system support; disable on
+ * On zephyr enable staging drivers
+ * Disable exclude staging drivers from being built
+ * Enable Ralink 2870/3070 wireless support
+* File systems
+ * Enable ext2
+ * Enable ext3
+ * Default to ‘data-ordered’ in ext3
+ * Enable ext4
+ * Enable reiserfs
+ * Disable JFS
+ * Disable XFS
+ * Enable kernel automounter version 4 support (also supports v3)
+ * Enable FUSE
+ * Module character device in userpace \[sic\] suppose
+ * CD-ROM/DVD filesystems
+ * Enable ISO 9660 CDROM file system support
+ * Enable Microsoft Joliet CDROM extensions
+ * Enable transparent decompression extension
+ * UDF file system support
+ * DOS/FAT/NT filesystems
+ * Disable MSDOC fs support
+ * Enable VFAT (Windows-95) fs support
+ * On zephyr, enable NTFS file system support; disable on
artemis
- - On zephyr enable NTFS write support
- - Network file systems
- - Enable NFS client support
- - Enable NFS client support for the NFSv3 ACL protocol
+ * On zephyr enable NTFS write support
+ * Network file systems
+ * Enable NFS client support
+ * Enable NFS client support for the NFSv3 ACL protocol
extension
- - Enable NFS server support for the NFSv3 ACL protocol
+ * Enable NFS server support for the NFSv3 ACL protocol
extension
- - Disable SMB file system support
- - Disable CIFS support
-- Kernel hacking
- - Enable timing information on printks
- - Enable \_~mustcheck~ logic
- - Disable Magic SysRq key
- - Enable sysctl checks
- - Filter access to /dev/mem
- - Maybe enable verbose x86 bootup info messages
-- Cryptographic API
- - Module null algorithms
- - Module CCM support (Oxford VPN)
- - Module GCM/GMAC support (Oxford VPN)
- - Enable SHA224 and SHA256 digest algorithm
- - Enable Zlib
- - Enable LZO
- - Enable pseudo random number generation for cryptographic modules
-- Virtualisation
- - Enable KVM support
- - Enable KVM for Intel processors support
- - Module Virtio balloon driver
+ * Disable SMB file system support
+ * Disable CIFS support
+* Kernel hacking
+ * Enable timing information on printks
+ * Enable \_~mustcheck~ logic
+ * Disable Magic SysRq key
+ * Enable sysctl checks
+ * Filter access to /dev/mem
+ * Maybe enable verbose x86 bootup info messages
+* Cryptographic API
+ * Module null algorithms
+ * Module CCM support (Oxford VPN)
+ * Module GCM/GMAC support (Oxford VPN)
+ * Enable SHA224 and SHA256 digest algorithm
+ * Enable Zlib
+ * Enable LZO
+ * Enable pseudo random number generation for cryptographic modules
+* Virtualisation
+ * Enable KVM support
+ * Enable KVM for Intel processors support
+ * Module Virtio balloon driver
Once done with `menuconfig`, we set things up:
``` {.nil}
-,# make all && make modules_install
-,# cp arch/x86/boot/bzImage /boot/vmlinuz
-,# cp System.map /boot
+# make all && make modules_install
+# cp arch/x86/boot/bzImage /boot/vmlinuz
+# cp System.map /boot
```
-
-nil
-
Bootloader
----------
@@ -572,9 +570,9 @@ other=/dev/sda2
# reboot
```
-### DONE Actually fill this section in<span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- ### DONE Actually fill this section in<span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-07-17 Sun 16:12\]
+<!-- CLOSED: \[2011-07-17 Sun 16:12\] -->
Post-install configuration
==========================
@@ -590,12 +588,12 @@ We create our user account here because otherwise pkgmk will get the
first UID.
``` {.nil}
-,# groupadd pkgmk
-,# useradd swhitton -M -s /bin/zsh -G lp,wheel,audio,video,floppy,cdrom,scanner,tape,pkgmk
-,# useradd -m -d /var/pkgmk -g pkgmk pkgmk
-,# mkdir /var/pkgmk/{distfiles,packages,work}
-,# chown pkgmk:pkgmk /var/pkgmk/*
-,# chmod 775 /var/pkgmk/*
+# groupadd pkgmk
+# useradd swhitton -M -s /bin/zsh -G lp,wheel,audio,video,floppy,cdrom,scanner,tape,pkgmk
+# useradd -m -d /var/pkgmk -g pkgmk pkgmk
+# mkdir /var/pkgmk/{distfiles,packages,work}
+# chown pkgmk:pkgmk /var/pkgmk/*
+# chmod 775 /var/pkgmk/*
```
`/etc/prt-get.conf`:
@@ -618,9 +616,9 @@ PKGMK_WORK_DIR="/var/pkgmk/work/$name"
193.1.193.66 download.sf.net dl.sourceforge.net dl.sf.net
```
-### CANCELLED Fix permissions for creating .md5sum (maybe) and also grok how this actually works<span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- ### CANCELLED Fix permissions for creating .md5sum (maybe) and also grok how this actually works<span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-08-29 Mon 14:55\]
+<!-- CLOSED: \[2011-08-29 Mon 14:55\] -->
Pre-encryption tweaks—packages
------------------------------
@@ -645,8 +643,8 @@ the `/etc/rc` script.
First we enable the `contrib` ports collection
``` {.nil}
-,# mv /etc/ports/contrib.rsync.inactive /etc/ports/contrib.rsync
-,# ports -u contrib
+# mv /etc/ports/contrib.rsync.inactive /etc/ports/contrib.rsync
+# ports -u contrib
```
We tell `prt-get` that we’ve done so by uncommenting the line
@@ -661,8 +659,8 @@ except only specific ports are fetched, rather than a whole irrelevant
repository.
``` {.nil}
-,# prt-get depinst mpup
-,# mv /etc/ports/meta.mpup.inactive /etc/ports/meta.mpup
+# prt-get depinst mpup
+# mv /etc/ports/meta.mpup.inactive /etc/ports/meta.mpup
```
Now we add my personal repository TODO and gnome and xfce TODO (gnome
@@ -710,15 +708,15 @@ runscripts yes
now
``` {.nil}
-,# ports -u meta swhitton
-,# prt-get depinst zile emacs cryptsetup gnupg zsh screen mercurial git cvs subversion mr ca-certificates consoleswapcaps rxvt-unicode urxvtcd atd git-annex
-,# prt-get remove vim
+# ports -u meta swhitton
+# prt-get depinst zile emacs cryptsetup gnupg zsh screen mercurial git cvs subversion mr ca-certificates consoleswapcaps rxvt-unicode urxvtcd atd git-annex
+# prt-get remove vim
```
Change the keymap in `/etc/rc.conf` to `uk.swapcaps` and then
``` {.nil}
-,# loadkeys uk.swapcaps
+# loadkeys uk.swapcaps
```
to make caps lock into a control key, as it should be.
@@ -727,20 +725,20 @@ This should be enough to bootstrap my standard CLI interface into
`/root`, which’ll make things more comfortable.
``` {.nil}
-,# cd ~
-,# rm -rf .ssh
-,# mr --trust-all bootstrap xyrael.net/mrconfig-crux
-,# chsh -s /bin/zsh
-,# zsh
+# cd ~
+# rm -rf .ssh
+# mr --trust-all bootstrap xyrael.net/mrconfig-crux
+# chsh -s /bin/zsh
+# zsh
```
-### DONE Paste u/mount error<span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- ### DONE Paste u/mount error<span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-08-29 Mon 15:01\]
+<!-- CLOSED: \[2011-08-29 Mon 15:01\] -->
-### DONE Fill in more from actual file<span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- ### DONE Fill in more from actual file<span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-08-29 Mon 14:53\]
+<!-- CLOSED: \[2011-08-29 Mon 14:53\] -->
Encrypted partitions
--------------------
@@ -751,20 +749,20 @@ sensitive data into them and then to have them decrypted at boot.
### Create partitions
``` {.nil}
-,# cryptsetup luksFormat /dev/sda2
-,# cryptsetup luksFormat /dev/sda3
-,# cryptsetup luksOpen /dev/sda2 artemis-var
-,# cryptsetup luksOpen /dev/sda2 artemis-home
-,# mkfs.reiserfs /dev/mapper/artemis-var
-,# mkfs.ext4 /dev/mapper/artemis-home
+# cryptsetup luksFormat /dev/sda2
+# cryptsetup luksFormat /dev/sda3
+# cryptsetup luksOpen /dev/sda2 artemis-var
+# cryptsetup luksOpen /dev/sda2 artemis-home
+# mkfs.reiserfs /dev/mapper/artemis-var
+# mkfs.ext4 /dev/mapper/artemis-home
```
We’ll mount up the home partition and put something in it for testing
purposes.
``` {.nil}
-,# mount /dev/mapper/artemis-home /home
-,# echo "it works\!" > /home/test.txt
+# mount /dev/mapper/artemis-home /home
+# echo "it works\!" > /home/test.txt
```
### Decryption
@@ -776,16 +774,16 @@ to be careful about moving.
Open up `/etc/rc` and find the line
``` {.bash}
-,# Check filesystems
+# Check filesystems
```
Above the chunk of lines this line heralds the commencement of, we are
going to add our decryption commands. These are
``` {.bash}
-,# SEAN DECRYPTION BEGIN
+# SEAN DECRYPTION BEGIN
-,# we need to set the keymap early in order to be able to decrypt
+# we need to set the keymap early in order to be able to decrypt
if [ "$KEYMAP" ]; then
/usr/bin/loadkeys -q $KEYMAP
fi
@@ -803,7 +801,7 @@ echo -n "$PASSPHRASE" | cryptsetup --key-file=- luksOpen /dev/sda3 artemis-home
PASSPHRASE="ilikedmcryptoncruxreallyreallyreallalot"
unset PASSPHRASE
-,# SEAN DECRYPTION END
+# SEAN DECRYPTION END
```
The idea of this code is to stop someone from being able to do anything
@@ -830,22 +828,22 @@ First add this line to `/etc/fstab`:
then
``` {.nil}
-,# mkdir /mnt/tmp
-,# mount /dev/mapper/artemis-var /mnt/tmp
-,# /etc/rc.d/sysklogd stop
-,# /etc/rc.d/crond stop
-,# /etc/rc.d/net stop
-,# mv /var/* /mnt/tmp
-,# mv /var/.* /mnt/tmp
-,# reboot
+# mkdir /mnt/tmp
+# mount /dev/mapper/artemis-var /mnt/tmp
+# /etc/rc.d/sysklogd stop
+# /etc/rc.d/crond stop
+# /etc/rc.d/net stop
+# mv /var/* /mnt/tmp
+# mv /var/.* /mnt/tmp
+# reboot
```
This doesn't really require a reboot, but it's nice to see all the
encryption stuff now fully working in tandem.
-### DONE On artemis, unmount /var in rc.shutdown to prevent reiserfs journal replay on every boot<span class="tag" data-tag-name="TechFix"></span><span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- ### DONE On artemis, unmount /var in rc.shutdown to prevent reiserfs journal replay on every boot<span class="tag" data-tag-name="TechFix"></span><span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-08-29 Mon 14:53\]
+<!-- CLOSED: \[2011-08-29 Mon 14:53\] -->
Post-encryption setup
---------------------
@@ -858,12 +856,12 @@ environment.
First bring the distribution up-to-date:
``` {.nil}
-,# prt-get sysup
+# prt-get sysup
```
This will take a while since the packages will need to be compiled,
unlike during the installation where this has already been done. Also
-=prt-get=’s dependency resolution isn’t perfect, and you may be required
+`prt-get`’s dependency resolution isn’t perfect, and you may be required
to intervene to upgrade some packages before others.
Now we’ve hacked `/etc/rc` we need to lock it to prevent it being
@@ -898,10 +896,10 @@ doesn’t get updated enough/at all in the sysup so do it again here
(maybe).
``` {.nil}
-,# prt-get update glib
-,# prt-get depinst wicd urwid
-,# /etc/rc.d/dbus start
-,# /etc/rc.d/wicd start
+# prt-get update glib
+# prt-get depinst wicd urwid
+# /etc/rc.d/dbus start
+# /etc/rc.d/wicd start
```
Add the `atd`, `dbus` and `wicd` daemons (in that order) to
@@ -916,8 +914,8 @@ Remember to add `10.9.8.1` as first DNS server, globally, then OpenDNS.
At this point I tend to notice my system clock drifting.
``` {.nil}
-,# prt-get depinst openntpd
-,# /etc/rc.d/ntpd start
+# prt-get depinst openntpd
+# /etc/rc.d/ntpd start
```
Add ntpd to list of daemons in `/etc/rc.conf`. In `/etc/rc.d/ntpd`, make
@@ -932,16 +930,16 @@ UPGRADE ^etc/rc\.d/ntpd$ NO
to protect our changes.
-#### DONE Exclude /etc/rc.d/ntpd from being changed on package updates<span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- #### DONE Exclude /etc/rc.d/ntpd from being changed on package updates<span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-08-29 Mon 14:58\]
+<!-- CLOSED: \[2011-08-29 Mon 14:58\] -->
### User account
``` {.nil}
-,# mkdir /home/swhitton
-,# chown swhitton:users /home/swhitton
-,# passwd swhitton
+# mkdir /home/swhitton
+# chown swhitton:users /home/swhitton
+# passwd swhitton
```
Log out and login again as the new user. Bootstrap its homedir:
@@ -950,9 +948,9 @@ Log out and login again as the new user. Bootstrap its homedir:
$ mr --trust-all bootstrap xyrael.net/mrconfig-crux
```
-### DONE Apple keyboard at console
+<!-- ### DONE Apple keyboard at console -->
-CLOSED: \[2011-08-29 Mon 14:59\]
+<!-- CLOSED: \[2011-08-29 Mon 14:59\] -->
On zephyr, add to `/etc/rc.local`:
@@ -968,10 +966,10 @@ We’re going with the non-free nVidia drivers since we have a nVidia card
we want to make some use of:
``` {.nil}
-,# prt-get depinst nvidia
-,# reboot
-,# nvidia-xconfig
-,# gl-select use nvidia
+# prt-get depinst nvidia
+# reboot
+# nvidia-xconfig
+# gl-select use nvidia
```
To test X, back as `swhitton`, we prepare a minimal `.xinitrc` with just
@@ -1009,7 +1007,7 @@ The Arch package provides all three at once, I believe, or at least the
first two so should probably be looked into at some point.
``` {.nil}
-,# prt-get depinst xorg-font-terminus console-font-terminus terminus-font
+# prt-get depinst xorg-font-terminus console-font-terminus terminus-font
```
In the `Files` section of `/etc/X11/xorg.conf`, add the line
@@ -1047,8 +1045,8 @@ UPGRADE ^var/lib/pkg/prt-get.aliases$ NO
```
``` {.nil}
-,# prt-get remove freetype xorg-libxft cairo
-,# prt-get install freetype2-cleartype libxft-cleartype cairo-cleartype
+# prt-get remove freetype xorg-libxft cairo
+# prt-get install freetype2-cleartype libxft-cleartype cairo-cleartype
```
Taking the -ubuntu approach means no Xft Terminus so require the hacked
@@ -1066,22 +1064,22 @@ Check in `/etc/fonts/fonts.conf` that near the top there is
as the second line might be missing. This should be packaged
up/automated at some point.
-##### DONE Tidy up dependency installation around this stuff<span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- ##### DONE Tidy up dependency installation around this stuff<span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-07-17 Sun 21:48\]
+<!-- CLOSED: \[2011-07-17 Sun 21:48\] -->
-Atm there will be clashes, particularly concerning the freetype files.
+<!-- Atm there will be clashes, particularly concerning the freetype files. -->
-&lt;Romster&gt; edit /var/lib/pkg/prt-get.aliases and add your port as
-an alias \[16:50\] &lt;Romster&gt; be sure to add that file to
-/etc/pkgadd.conf else changes will be gone should you ever
-reinstall/update prt-get.
+<!-- &lt;Romster&gt; edit /var/lib/pkg/prt-get.aliases and add your port as -->
+<!-- an alias \[16:50\] &lt;Romster&gt; be sure to add that file to -->
+<!-- /etc/pkgadd.conf else changes will be gone should you ever -->
+<!-- reinstall/update prt-get. -->
-##### DONE Add `--install-scripts` throughout this file, as probably needed in lots of places<span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- ##### DONE Add `--install-scripts` throughout this file, as probably needed in lots of places<span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-07-17 Sun 21:48\]
+<!-- CLOSED: \[2011-07-17 Sun 21:48\] -->
-Or just use prt-get config variable `runscripts`
+<!-- Or just use prt-get config variable `runscripts` -->
#### Lisp
@@ -1091,9 +1089,9 @@ ArchWiki](https://wiki.archlinux.org/index.php/Stumpwm#With_Quicklisp_.28recomme
When my lisp knowledge improves I will make this into a package.
``` {.nil}
-,# prt-get depinst sbcl texinfo
-,# wget beta.quicklisp.org/quicklisp.lisp
-,# sbcl --load quicklisp.lisp
+# prt-get depinst sbcl texinfo
+# wget beta.quicklisp.org/quicklisp.lisp
+# sbcl --load quicklisp.lisp
```
and then in the interactive shell
@@ -1117,16 +1115,16 @@ haven’t got the package set up right. So first we comment out the lines
we added to `/etc/prt-get.conf` and `/etc/pkgmk.conf` and then
``` {.nil}
-,# cd /usr/ports/swhitton/stumpwm
-,# pkgmk -d
-,# chown pkgmk:pkgmk stumpwm\#git-1.pkg.tar.gz
-,# mv stumpwm\#git-1.pkg.tar.gz /var/pkgmk/packages
+# cd /usr/ports/swhitton/stumpwm
+# pkgmk -d
+# chown pkgmk:pkgmk stumpwm\#git-1.pkg.tar.gz
+# mv stumpwm\#git-1.pkg.tar.gz /var/pkgmk/packages
```
Now uncomment the lines again and
``` {.nil}
-,# prt-get depinst xbindkeys avfs stumpwm
+# prt-get depinst xbindkeys avfs stumpwm
$ mkdir .avfs
# echo "user_allow_other" >> /etc/fuse.conf
```
@@ -1145,7 +1143,7 @@ Using a display manager is much neater than running startx from
`~/.zshrc`.
``` {.nil}
-,# prt-get depinst mingetty slim slimlock
+# prt-get depinst mingetty slim slimlock
```
We use mingetty because it allows autologin if we ever want it and it
@@ -1189,17 +1187,17 @@ username_x 170
password_x 170
```
-##### CANCELLED Make this fix a patched version of the package
+<!-- ##### CANCELLED Make this fix a patched version of the package -->
-CLOSED: \[2011-08-29 Mon 12:20\]
+<!-- CLOSED: \[2011-08-29 Mon 12:20\] -->
### ALSA
Let’s get sound operational.
``` {.nil}
-,# prt-get depinst alsa-lib alsa-utils alsa-oss
-,# alsamixer
+# prt-get depinst alsa-lib alsa-utils alsa-oss
+# alsamixer
```
Hit `M` to unmute the main channel. Raise the volume until the db gain
@@ -1207,14 +1205,14 @@ is 0 and then play a sound to test. If it doesn’t play, raise the other
sliders around a bit.
``` {.nil}
-,# aplay /home/swhitton/lib/beep.wav
+# aplay /home/swhitton/lib/beep.wav
```
Now add alsa to the daemons array in `/etc/rc.conf` and run
``` {.nil}
-,# alsactl -f /var/lib/alsa/asound.state store
-,# /etc/rc.d/alsa start
+# alsactl -f /var/lib/alsa/asound.state store
+# /etc/rc.d/alsa start
```
### sshd
@@ -1234,8 +1232,8 @@ No reason to go any further without some tunes. We need to install
`libmms` first in order to get proper streaming support.
``` {.nil}
-,# prt-get depinst libmms libfaac
-,# prt-get depinst mpd mpc ncmpcpp mpdscribble
+# prt-get depinst libmms libfaac
+# prt-get depinst mpd mpc ncmpcpp mpdscribble
```
#### Sync media library
@@ -1243,7 +1241,7 @@ No reason to go any further without some tunes. We need to install
One of unison’s dependencies, ocaml, will need a .footprint deleting.
``` {.nil}
-,# prt-get depinst unison
+# prt-get depinst unison
```
Reconnect ethernet cable and run `/etc/rc.d/net restart` on both
@@ -1264,8 +1262,8 @@ mpd volume independent of everything else) make sensible edits and run
``` {.nil}
$ mkdir -p .mpd/playlists
-,# chown swhitton.users /var/cache/mpdscribble/*.journal
-,# usermod -a -G audio swhitton
+# chown swhitton.users /var/cache/mpdscribble/*.journal
+# usermod -a -G audio swhitton
```
At some point we should move the config we use inside `/home/swhitton`
@@ -1304,7 +1302,7 @@ to give swhitton full sudo access.
### Desktop software
``` {.nil}
-,# prt-get depinst xpdf epdfview firefox feh gtk-chtheme gnome-themes
+# prt-get depinst xpdf epdfview firefox feh gtk-chtheme gnome-themes
flash-player-plugin texlive-full auctex sshfs-fuse mplayer vlock gimp
xclip libreoffice scrot shared-mime-info gnome-mime-data htop at
filezilla abook libogg flac libvorbis easytag unzip imagemagick bc
@@ -1335,69 +1333,69 @@ contain the Pkgfile: link
[2](http://crux.nu/gitweb/?p%3Dports/opt.git%3Ba%3Dblob%3Bf%3Dxulrunner/mozconfig%3Bh%3D411ffaf26f2e0456c2c313e688cbc0c7bcfbfe7f%3Bhb%3D765241f5fc2ef30ca99e643ea667930f6e8e163f),
[3](http://crux.nu/gitweb/?p%3Dports/opt.git%3Ba%3Dblob%3Bf%3Dxulrunner/xulrunner.diff%3Bh%3D5503c8d399a8ba9af88790d2c9c64de38e191ddc%3Bhb%3D765241f5fc2ef30ca99e643ea667930f6e8e163f).
-#### DONE Fix lack of `conkeror-spawn-helper`<span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- #### DONE Fix lack of `conkeror-spawn-helper`<span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-07-14 Thu 16:42\]
+<!-- CLOSED: \[2011-07-14 Thu 16:42\] -->
-#### CANCELLED Write Pkgfile for TeX Live<span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- #### CANCELLED Write Pkgfile for TeX Live<span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-08-29 Mon 14:50\]
+<!-- CLOSED: \[2011-08-29 Mon 14:50\] -->
-This will need these pages:
-<http://www.tug.org/texlive/quickinstall.html>
-<http://www.tug.org/texlive/acquire-netinstall.html> and then some way
-of telling the install script what to do without doing so interactively.
--profile seems to be the way to go. Symlinks for manpages, infopages and
-the binaries, too.
+<!-- This will need these pages: -->
+<!-- <http://www.tug.org/texlive/quickinstall.html> -->
+<!-- <http://www.tug.org/texlive/acquire-netinstall.html> and then some way -->
+<!-- of telling the install script what to do without doing so interactively. -->
+<!-- -profile seems to be the way to go. Symlinks for manpages, infopages and -->
+<!-- the binaries, too. -->
-#### DONE Investigate `xulrunner`<span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- #### DONE Investigate `xulrunner`<span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-08-29 Mon 19:11\]
+<!-- CLOSED: \[2011-08-29 Mon 19:11\] -->
-It seems to be installed when the distro was installed yet isn’t in the
-ports db? Removed intentionally.
+<!-- It seems to be installed when the distro was installed yet isn’t in the -->
+<!-- ports db? Removed intentionally. -->
-#### CANCELLED Add xfce repository in order to install xfburn<span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- #### CANCELLED Add xfce repository in order to install xfburn<span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-08-29 Mon 14:50\]
+<!-- CLOSED: \[2011-08-29 Mon 14:50\] -->
-Don’t really want to do this until dealt with freetype issue. Maybe a
-dummy package?
+<!-- Don’t really want to do this until dealt with freetype issue. Maybe a -->
+<!-- dummy package? -->
-xcdroast? Tried to install it…
+<!-- xcdroast? Tried to install it… -->
-At the moment we just use: genisoimage -o tmp/dvd.iso local/toburn
-growisofs -Z /dev/sr0=/home/swhitton/tmp/dvd.iso
+<!-- At the moment we just use: genisoimage -o tmp/dvd.iso local/toburn -->
+<!-- growisofs -Z /dev/sr0=/home/swhitton/tmp/dvd.iso -->
-prt-get readme cdrkit explains why burndir won’t work: growisofs is
-looking for mkisofs instead of genisoimage.
+<!-- prt-get readme cdrkit explains why burndir won’t work: growisofs is -->
+<!-- looking for mkisofs instead of genisoimage. -->
-#### CANCELLED Make abiword work<span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- #### CANCELLED Make abiword work<span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-08-29 Mon 14:50\]
+<!-- CLOSED: \[2011-08-29 Mon 14:50\] -->
-gnome-keyring will need fixing/version bumping as it looks for a version
-of libtasn that is too old.
+<!-- gnome-keyring will need fixing/version bumping as it looks for a version -->
+<!-- of libtasn that is too old. -->
-#### DONE Fix /usr/share ownership when installing my recently created packages<span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- #### DONE Fix /usr/share ownership when installing my recently created packages<span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-08-29 Mon 20:24\]
+<!-- CLOSED: \[2011-08-29 Mon 20:24\] -->
-I think it has something to do with a package installing some zsh
-completions.
+<!-- I think it has something to do with a package installing some zsh -->
+<!-- completions. -->
-#### DONE Fix mpdscribble & xbindkeys<span class="tag" data-tag-name="TechFix"></span><span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- #### DONE Fix mpdscribble & xbindkeys<span class="tag" data-tag-name="TechFix"></span><span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-07-20 Wed 19:47\] SCHEDULED: &lt;2011-07-15 Fri&gt;
+<!-- CLOSED: \[2011-07-20 Wed 19:47\] SCHEDULED: &lt;2011-07-15 Fri&gt; -->
### OpenVPN
We want the OpenVPN configuration files to be encrypted.
``` {.nil}
-,# mkdir -p /home/etc/openvpn
-,# ln -s /home/etc/openvpn /etc
-,# prt-get depinst openvpn
+# mkdir -p /home/etc/openvpn
+# ln -s /home/etc/openvpn /etc
+# prt-get depinst openvpn
```
Copy into `/etc/openvpn` the files `ca.crt`, `artemis.crt` and
@@ -1469,12 +1467,12 @@ esac
and fire her up:
``` {.nil}
-,# /etc/rc.d/openvpn start
+# /etc/rc.d/openvpn start
```
-#### DONE Paste the `/etc/rc.d/openvpn` script<span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- #### DONE Paste the `/etc/rc.d/openvpn` script<span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-07-17 Sun 22:58\]
+<!-- CLOSED: \[2011-07-17 Sun 22:58\] -->
### SSH configuration
@@ -1500,8 +1498,8 @@ Our first real encounter with pre-install scripts. `prt-get readme
dovecot/postfix` will provide an explanation.
``` {.nil}
-,# pkgrm exim
-,# prt-get depinst dovecot postfix offlineimap
+# pkgrm exim
+# prt-get depinst dovecot postfix offlineimap
```
We add the following line in `/etc/dovecot/conf.d/10-mail.conf`:
@@ -1519,7 +1517,7 @@ relayhost = [10.9.8.1]:25
and we’re done. We may now run
``` {.nil}
-,# /etc/rc.d/postfix start
+# /etc/rc.d/postfix start
$ offlineimap
```
@@ -1610,8 +1608,8 @@ block suspend (on zephyr & artemis).
#### laptop-mode
``` {.nil}
-,# rm /etc/cron/daily/mlocate
-,# prt-get depinst powertop laptop-mode-tools pm-utils cpufrequtils acpi lm_sensors
+# rm /etc/cron/daily/mlocate
+# prt-get depinst powertop laptop-mode-tools pm-utils cpufrequtils acpi lm_sensors
```
Add the acpid and laptop-mode daemons to `/etc/rc.conf` (in that order).
@@ -1623,9 +1621,9 @@ some point may wish to look into improving things, using the
[wiki](https://wiki.archlinux.org/index.php/Laptop_Mode_Tools) (two
links).
-##### CANCELLED Make `laptop-mode` actually work<span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- ##### CANCELLED Make `laptop-mode` actually work<span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-08-30 Tue 16:48\]
+<!-- CLOSED: \[2011-08-30 Tue 16:48\] -->
#### =lenovo-sl-laptop=
@@ -1634,14 +1632,14 @@ access to various hotkeys from X. Recompiling the kernel wipes it out so
remember to re-add it should you need to do that.
``` {.nil}
-,# cd ~/local/src
-,# git clone git://github.com/tadzik/lenovo-sl-laptop.git
-,# cd lenovo-sl-laptop
-,# make
-,# mkdir /lib/modules/2.6.35.6/kernel/lenovo-sl-laptop
-,# cp lenovo-sl-laptop.ko /lib/modules/2.6.35.6/kernel/lenovo-sl-laptop
-,# echo "options lenovo-sl-laptop control_backlight=1" >> /etc/modprobe.d/modprobe.conf
-,# echo "modprobe lenovo-sl-laptop control_backlight=1" >> /etc/rc.autofs
+# cd ~/local/src
+# git clone git://github.com/tadzik/lenovo-sl-laptop.git
+# cd lenovo-sl-laptop
+# make
+# mkdir /lib/modules/2.6.35.6/kernel/lenovo-sl-laptop
+# cp lenovo-sl-laptop.ko /lib/modules/2.6.35.6/kernel/lenovo-sl-laptop
+# echo "options lenovo-sl-laptop control_backlight=1" >> /etc/modprobe.d/modprobe.conf
+# echo "modprobe lenovo-sl-laptop control_backlight=1" >> /etc/rc.autofs
```
nil
@@ -1664,14 +1662,14 @@ Sometimes a stale lock file prevents `pm-suspend` from working with no
errors or log messages. To deal with this:
``` {.nil}
-,# rm /var/run/pm-utils/locks/pm-suspend.lock
+# rm /var/run/pm-utils/locks/pm-suspend.lock
```
### autofs & NFS
``` {.nil}
-,# prt-get depinst autofs
-,# rm /etc/autofs/auto.{master,net,media}
+# prt-get depinst autofs
+# rm /etc/autofs/auto.{master,net,media}
```
`/etc/autofs/auto.master`:
@@ -1709,16 +1707,16 @@ Protect these configs in `/etc/pkgadd.conf`:
UPGRADE ^etc/autofs/auto\..*$ NO
```
-#### DONE Lock these config files<span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- #### DONE Lock these config files<span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-08-29 Mon 19:08\]
+<!-- CLOSED: \[2011-08-29 Mon 19:08\] -->
-### DONE Warcraft III, wine etc. (/opt in general)
+<!-- ### DONE Warcraft III, wine etc. (/opt in general) -->
-CLOSED: \[2011-08-29 Mon 14:54\]
+<!-- CLOSED: \[2011-08-29 Mon 14:54\] -->
``` {.nil}
-,# prt-get depinst wine
+# prt-get depinst wine
```
The AcceptEx patch has now been merged with Wine so you should just be
@@ -1729,9 +1727,9 @@ resolution issues. Nice.
`winecfg` and enable emulate virtual desktop to play.
-### DONE StarCraft II
+### <!-- DONE --> StarCraft II
-CLOSED: \[2011-08-29 Mon 18:16\]
+<!-- CLOSED: \[2011-08-29 Mon 18:16\] -->
The most recent versions of wine allow you to get your mouse pointed
trapped in the window and work great with fullscreen windowed, but an
@@ -1742,7 +1740,7 @@ writing, 1.3.24) into `/var/pkgmk/packages`. Mount the StarCraft II DVD
and copy the files to home directory to install:
``` {.nil}
-,# mount -o ro,unhide,uid=100 /dev/sr0 /mnt/cd
+# mount -o ro,unhide,uid=100 /dev/sr0 /mnt/cd
$ mkdir ~/tmp/sc2
$ cp -R /mnt/cd/* ~/tmp/sc2
$ wine start ~/tmp/sc2/Installer.exe
@@ -1758,7 +1756,7 @@ and tick the trap mouse in full screen checkbox under the Graphics tab.
Cleanup:
``` {.nil}
-,# umount /mnt/cd
+# umount /mnt/cd
$ rm -rf ~/tmp/sc2
```
@@ -1784,15 +1782,15 @@ and then add to the `ServerLayout` section:
Option "AllowEmptyInput" "false"
```
-### DONE VirtualBox
+### <!-- DONE --> VirtualBox
-CLOSED: \[2011-08-30 Tue 15:49\]
+<!-- CLOSED: \[2011-08-30 Tue 15:49\] -->
This need only be done on zephyr (since it’s more powerful).
``` {.nil}
-,# prt-get depinst virtualbox
-,# usermod -a -G vboxusers swhitton
+# prt-get depinst virtualbox
+# usermod -a -G vboxusers swhitton
```
Worth setting up an Ubuntu VPS for testing. Remember to modprobe
@@ -1807,7 +1805,7 @@ glue (`require("noscript");`) doesn’t work very well.
### Emacs keys in GTK apps
``` {.nil}
-,# prt-get install gconf
+# prt-get install gconf
$ echo 'gtk-key-theme-name = "Emacs"' >>~/.gtkrc-2.0
$ gconftool-2 -t string --set /desktop/gnome/interface/gtk_key_theme Emacs
```
@@ -1836,20 +1834,20 @@ The only other place there may be things to be saved are in `/srv`
(should be symlinked into `/home` so that it’s encrypted, though),
`/var` (unlikely) and of course the Windows partition.
-Ports repository
-----------------
+<!-- Ports repository -->
+<!-- ---------------- -->
-### DONE Set up `crux.sean.whitton.me` httpup ports repo<span class="tag" data-tag-name="ProjectIdea"></span><span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- ### DONE Set up `crux.sean.whitton.me` httpup ports repo<span class="tag" data-tag-name="ProjectIdea"></span><span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-08-30 Tue 16:56\]
+<!-- CLOSED: \[2011-08-30 Tue 16:56\] -->
-<http://crux.nu/Wiki/SettingUpAnHttpupRepo>
+<!-- <http://crux.nu/Wiki/SettingUpAnHttpupRepo> -->
-#### DONE [CRUX ports](http://obra.se/)<span class="tag" data-tag-name="ToRead"></span><span class="tag" data-tag-name="NOEXPORT"></span>
+<!-- #### DONE [CRUX ports](http://obra.se/)<span class="tag" data-tag-name="ToRead"></span><span class="tag" data-tag-name="NOEXPORT"></span> -->
-CLOSED: \[2011-07-17 Sun 22:43\]
+<!-- CLOSED: \[2011-07-17 Sun 22:43\] -->
-portspage script
+<!-- portspage script -->
Local LAMP setup for development
--------------------------------
@@ -1857,12 +1855,12 @@ Local LAMP setup for development
### lighttpd & PHP
``` {.nil}
-,# prt-get depinst lighttpd php
-,# useradd -s /bin/false lighttpd
-,# groupadd lighttpd
-,# touch /var/www/logs/access_log
-,# touch /var/www/logs/error_log
-,# chown lighttpd:lighttpd /var/www/logs/*
+# prt-get depinst lighttpd php
+# useradd -s /bin/false lighttpd
+# groupadd lighttpd
+# touch /var/www/logs/access_log
+# touch /var/www/logs/error_log
+# chown lighttpd:lighttpd /var/www/logs/*
```
Add `mod_fastcgi` to modules listing and switch to the non-chroot setup.
@@ -1897,18 +1895,18 @@ When you want to use the web server, call `/etc/rc.d/lighttpd start`.
### MySQL
``` {.nil}
-,# prt-get depinst mysql php-mysql php-mysqli php-fcgi
-,# mysql_install_db
-,# mysqladmin -u root password <password_here>
+# prt-get depinst mysql php-mysql php-mysqli php-fcgi
+# mysql_install_db
+# mysqladmin -u root password <password_here>
```
Comment out `skip-innodb` and `skip-networking` in `/etc/my.cnf`. Start
the daemon when needed.
-DONE ioquake setup
+<!-- DONE --> ioquake setup
------------------
-CLOSED: \[2011-08-29 Mon 15:11\]
+<!-- CLOSED: \[2011-08-29 Mon 15:11\] -->
ioquake installs per-user, so this is very neat. Visit [the
website](http://ioquake3.org/get-it/) and download the engine download
@@ -1918,10 +1916,10 @@ as they are). Then take pak0.pk3 from copy of Quake III Arena and drop
this into `~/local/bin/ioquake3/baseq3`. To run, edit .xinitrc to set
ioquake3 as window manager and re-login.
-DONE <http://crux.nu/ports/crux-2.7/opt/service/Pkgfile><span class="tag" data-tag-name="ToRead"></span>
---------------------------------------------------------------------------------------------------------
+<!-- DONE <http://crux.nu/ports/crux-2.7/opt/service/Pkgfile><span class="tag" data-tag-name="ToRead"></span> -->
+<!-- -------------------------------------------------------------------------------------------------------- -->
-CLOSED: \[2011-08-29 Mon 14:49\]
+<!-- CLOSED: \[2011-08-29 Mon 14:49\] -->
Other resources
===============