diff options
| author | Sean Whitton <spwhitton@spwhitton.name> | 2015-11-11 17:58:47 -0700 |
|---|---|---|
| committer | Sean Whitton <spwhitton@spwhitton.name> | 2015-11-11 17:58:47 -0700 |
| commit | 5e7c9f78a6309ef99a427a4828b1f64f16d898a0 (patch) | |
| tree | 28960ffe7d108c1d2710f721988d294f143d4ad6 /tech/crux.mdwn | |
| parent | 0f9207433381be7488045a77585dd1471a895ea4 (diff) | |
| download | wiki-5e7c9f78a6309ef99a427a4828b1f64f16d898a0.tar.gz | |
fix up CRUX installation notes
Diffstat (limited to 'tech/crux.mdwn')
| -rw-r--r-- | tech/crux.mdwn | 904 |
1 files changed, 451 insertions, 453 deletions
diff --git a/tech/crux.mdwn b/tech/crux.mdwn index eafdaef..6657062 100644 --- a/tech/crux.mdwn +++ b/tech/crux.mdwn @@ -66,17 +66,18 @@ TeX Live and had to do crazy repartitioning of encrypted partitions… Here’s a summary of the sizes I choose for my partitions: - Partition Size Filesystem - ----------- ----------------- ------------ - `/` 10GB ext3 - `/var` 5GB ReiserFS - `/home` remaining HDD ext4 - `/tmp` max. 50% of RAM tmpfs +[[!table date=""" + Partition |Size |Filesystem + `/` |10GB |ext3 + `/var` |5GB |ReiserFS + `/home` |remaining HDD |ext4 + `/tmp` |max. 50% of RAM |tmpfs +"""]] so ``` {.nil} -,# mkfs.ext3 /dev/sda1 +# mkfs.ext3 /dev/sda1 ``` or, `mkfs.ext4` on my single-partition desktop. @@ -91,8 +92,8 @@ that can later be moved into the encrypted partition, rather than supplying the installation with the scripts and modules to encrypt now. ``` {.nil} -,# mount /dev/sda1 /mnt -,# setup +# mount /dev/sda1 /mnt +# setup ``` Select all three port collections and then **deselect** the following @@ -125,9 +126,9 @@ my desktop. Leave services and font as they are for now. Generate locales: ``` {.nil} -,# localedef -i en_GB -f ISO-8859-1 en_GB -,# localedef -i en_GB -f ISO-8859-1 en_GB.ISO-8859-1 -,# localedef -i en_GB -f UTF-8 en_GB.utf8 +# localedef -i en_GB -f ISO-8859-1 en_GB +# localedef -i en_GB -f ISO-8859-1 en_GB.ISO-8859-1 +# localedef -i en_GB -f UTF-8 en_GB.utf8 ``` ### Temporary network setup @@ -242,284 +243,281 @@ nameserver 208.67.220.220 The commented out address will be of use once OpenVPN is operational. -#### DONE Post other machines config too +<!-- #### DONE Post other machines config too --> -CLOSED: \[2011-08-29 Mon 14:56\] +<!-- CLOSED: \[2011-08-29 Mon 14:56\] --> -Also note need to restart on both ends after reboot. +<!-- Also note need to restart on both ends after reboot. --> Compiling the kernel -------------------- Here are changes I have made; everything else is left as-is. -- General setup - - Disable development/incomplete code/drivers - - Disable swap support - - Enable BSD Process Accounting - - Disable kernel .config support - - Enable UTS & IPC namespace support - - Disable initramfs/initrd - - Disable optimisation for size - - On zephyr, enable configure standard kernel features (for +* General setup + * Disable development/incomplete code/drivers + * Disable swap support + * Enable BSD Process Accounting + * Disable kernel .config support + * Enable UTS & IPC namespace support + * Disable initramfs/initrd + * Disable optimisation for size + * On zephyr, enable configure standard kernel features (for small systems) \[Apple keyboard\] -- Enable loadable module support - - Disable unloading modules -- Processor type and features - - Processor family: Core 2/newer Xeon - - Maximum number of CPUs set to 2 - - Disable SMT (Hyperthreading) scheduler support - - Enable machine check / overheating reporting - - Disable AMD MCE features - - High Memory Support: 4GB - - Enable KSM for page merging - - Enable Math emulation - - Enable MTRR cleanup support - - Enable -fstack-protector buffer overflow detection -- Power management and ACPI options - - Enable power management support - - Enable run-time PM core functionality - - Enable APM for laptop (though this is known to be dodgy; care) - - Enable CPU frequency scaling on artemis - - Disable CPU frequency translation statistics - - Enable the powersave, userspace, and conservative governors +* Enable loadable module support + * Disable unloading modules +* Processor type and features + * Processor family: Core 2/newer Xeon + * Maximum number of CPUs set to 2 + * Disable SMT (Hyperthreading) scheduler support + * Enable machine check / overheating reporting + * Disable AMD MCE features + * High Memory Support: 4GB + * Enable KSM for page merging + * Enable Math emulation + * Enable MTRR cleanup support + * Enable -fstack-protector buffer overflow detection +* Power management and ACPI options + * Enable power management support + * Enable run-time PM core functionality + * Enable APM for laptop (though this is known to be dodgy; care) + * Enable CPU frequency scaling on artemis + * Disable CPU frequency translation statistics + * Enable the powersave, userspace, and conservative governors on artemis, and ondemand instead of conservative on zephyr. Set default governor to performance - - Module ACPI Processor P-states driver -- Bus options - - Enable Message Signaled Interrupts - - Disable ISA support - - PCMCIA—disable on zephyr - - Disable Cirrus PD6729 compatible bridge support - - Disable i82092 compatible bridge support -- Executable file formats / emulations - - Enable kernel support for MISC binaries -- Networking support - - Networking options - - For the Oxford VPN, we will need to module these: - - Transformation user configuration interface - - PF~KEY~ sockets - - IP: GRE tunnels over IP - - IP: AH transformation - - IP: ESP transformation - - IP: IPComp transformation - - IP: IPsec transport mode - - IP: IPsec tunnel mode - - IP: IPsec BEET mode - - Enable INET: socket monitoring interface - - Disable IPv6 (I’m never on a network that supports it) - - Enable Netfilter - - Core Netfilter Configuration - - Enable Netfilter connection tracking support - - IP: Netfilter configuration - - Enable IPv4 connection tracking support - - Enable IP tables support - - Enable Full NAT - - Enable MASQUERADE target support - - Enable REDIRECT target support - - Module 802.1d ethernet bridging - - Wireless - - Enable (*i.e.* not just module) cfg80211 - - Enable Generic IEEE 802.11 Networking Stack (mac80211) - - Enable RF switch subsystem support on artemis -- Device drivers - - Generic driver options - - Enable maintain a devtmpfs filesystem to mount at /dev - - Automount devtmpfs at /dev. after the kernel… - - Enable include in-kernel firmware blobs in kernel binary - - Enable connector—unified userspace <-> kernelspace linker - - Plug and play support - - Enable PNP debugging messages - - Block devices - - Module normal floppy disk support on artemis, enable on + * Module ACPI Processor P-states driver +* Bus options + * Enable Message Signaled Interrupts + * Disable ISA support + * PCMCIA—disable on zephyr + * Disable Cirrus PD6729 compatible bridge support + * Disable i82092 compatible bridge support +* Executable file formats / emulations + * Enable kernel support for MISC binaries +* Networking support + * Networking options + * For the Oxford VPN, we will need to module these: + * Transformation user configuration interface + * PF~KEY~ sockets + * IP: GRE tunnels over IP + * IP: AH transformation + * IP: ESP transformation + * IP: IPComp transformation + * IP: IPsec transport mode + * IP: IPsec tunnel mode + * IP: IPsec BEET mode + * Enable INET: socket monitoring interface + * Disable IPv6 (I’m never on a network that supports it) + * Enable Netfilter + * Core Netfilter Configuration + * Enable Netfilter connection tracking support + * IP: Netfilter configuration + * Enable IPv4 connection tracking support + * Enable IP tables support + * Enable Full NAT + * Enable MASQUERADE target support + * Enable REDIRECT target support + * Module 802.1d ethernet bridging + * Wireless + * Enable (*i.e.* not just module) cfg80211 + * Enable Generic IEEE 802.11 Networking Stack (mac80211) + * Enable RF switch subsystem support on artemis +* Device drivers + * Generic driver options + * Enable maintain a devtmpfs filesystem to mount at /dev + * Automount devtmpfs at /dev. after the kernel… + * Enable include in-kernel firmware blobs in kernel binary + * Enable connector—unified userspace <-> kernelspace linker + * Plug and play support + * Enable PNP debugging messages + * Block devices + * Module normal floppy disk support on artemis, enable on zephyr - - Disable Compaq SMART2 support - - Disable Compaq Smart Array 5xxx support - - Disable Mylex DAC960/DAC1100 PCI RAID controller support - - Module loopback device support - - Disable network block device support - - Module RAM block device support (this may break tmpfs?) - - Disable ATA over ethernet support - - On zephyr enable ATA/ATAPI/MFM/RLL support (DEPRECATED) \[this + * Disable Compaq SMART2 support + * Disable Compaq Smart Array 5xxx support + * Disable Mylex DAC960/DAC1100 PCI RAID controller support + * Module loopback device support + * Disable network block device support + * Module RAM block device support (this may break tmpfs?) + * Disable ATA over ethernet support + * On zephyr enable ATA/ATAPI/MFM/RLL support (DEPRECATED) \[this may or may not help failure to boot issue, really have no idea atm\] - - Enable support for SATA (deprecated; conflicts with libata + * Enable support for SATA (deprecated; conflicts with libata SATA driver) - - Enable generic ATA/ATAPI disk support - - Enable ATA disk support - - Enable Include IDE/ATAPI CDROM support - - Enable IDE ACPI support - - Enable generic/default IDE chipset support - - Enable Platform driver for IDE interfaces - - Enable AMD and nVidia IDE support - - SCSI device support - - Enable SCSI disk support - - Enable SCSI CDROM support - - Enable vendor-specific extensions (for SCSI CDROM) on + * Enable generic ATA/ATAPI disk support + * Enable ATA disk support + * Enable Include IDE/ATAPI CDROM support + * Enable IDE ACPI support + * Enable generic/default IDE chipset support + * Enable Platform driver for IDE interfaces + * Enable AMD and nVidia IDE support + * SCSI device support + * Enable SCSI disk support + * Enable SCSI CDROM support + * Enable vendor-specific extensions (for SCSI CDROM) on zephyr only - - Enable SCSI generic support - - Probe all LUNs on each SCSI device - - Enable asynchronous SCSI scanning - - Enable serial ATA and parallel ATA drivers - - Enable AHCI SATA support - - Enable platform AHCI SATA support - - On zephyr enable NVIDIA SATA support - - Enable multiple devices driver support (RAID and LVM) - - Enable device mapper support - - Enable crypt target support - - Enable snapshot target - - Enable mirror target - - Disable Fusion MPT device support - - IEEE 1394 (FireWire) support - - Disable FireWire driver stack - - Enable Macintosh device drivers (hmm shouldn’t keyboard be + * Enable SCSI generic support + * Probe all LUNs on each SCSI device + * Enable asynchronous SCSI scanning + * Enable serial ATA and parallel ATA drivers + * Enable AHCI SATA support + * Enable platform AHCI SATA support + * On zephyr enable NVIDIA SATA support + * Enable multiple devices driver support (RAID and LVM) + * Enable device mapper support + * Enable crypt target support + * Enable snapshot target + * Enable mirror target + * Disable Fusion MPT device support + * IEEE 1394 (FireWire) support + * Disable FireWire driver stack + * Enable Macintosh device drivers (hmm shouldn’t keyboard be under here?) - - Network device support - - Module dummy net driver support - - Module universal TUN/TAP device driver support - - Wireless LAN - - Enable Intel Wireless Wifi on artemis - - Enable Intel Wireless WiFi Next Gen AGN (iwlagn) on + * Network device support + * Module dummy net driver support + * Module universal TUN/TAP device driver support + * Wireless LAN + * Enable Intel Wireless Wifi on artemis + * Enable Intel Wireless WiFi Next Gen AGN (iwlagn) on artemis - - Enable Intel Wireless WiFi 5000AGN … on artemis - - Enable Ralink driver support on zephyr - - Enable rt2500 (USB) support - - Enable rt2501/rt73 (USB) support - - Enable Ralink debug output - - Disable PPP support - - Input device support - - Disable support for memoryless force-feedback devices - - Disable polled input device skeleton - - Set horizontal and vertical screen resolution - - Enable event interface - - Mice - - On zephyr, enable PS/2 mouse - - Disable serial mouse - - Disable Apple USB touchpad support - - Disable Apple USB BCM5974 Multitouch trackpad support - - Character devices - - Serial drivers - - Disable 8250/16550 and compatible serial support - - Enable Timer IOMEM HW Random Number General support - - Enable Intel HW Random Number Generator support - - Disable AMD … random number generator support × 2 - - Enable /dev/nvram support - - Enable SPI support - - Power supply class support - - Module test power driver - - Module all battery types on artemis for now - - Enable hardware monitoring support - - Generic thermal sysfs driver - - Enable hardware monitoring support - - Disable multimedia support - - Graphics support - - Enable laptop hybrid graphics on artemis - - Module direct rendering manager - - Disable support for frame buffer devices - - Enable backlight & LCD device support on artemis - - Display device support - - Enable display panel/monitor support - - Console display driver support - - Disable scrollback buffer in system RAM - - Enable sound card support - - Enable ALSA - - Enable sequencer support - - Enable OSS mixer API - - Enable OSS PCM - - Enable OSS sequencer API - - Disable verbose procfs contents - - PCI sound devices - - Enable Intel HD Audio - - On artemis enable aggressive power-saving on + * Enable Intel Wireless WiFi 5000AGN … on artemis + * Enable Ralink driver support on zephyr + * Enable rt2500 (USB) support + * Enable rt2501/rt73 (USB) support + * Enable Ralink debug output + * Disable PPP support + * Input device support + * Disable support for memoryless force-feedback devices + * Disable polled input device skeleton + * Set horizontal and vertical screen resolution + * Enable event interface + * Mice + * On zephyr, enable PS/2 mouse + * Disable serial mouse + * Disable Apple USB touchpad support + * Disable Apple USB BCM5974 Multitouch trackpad support + * Character devices + * Serial drivers + * Disable 8250/16550 and compatible serial support + * Enable Timer IOMEM HW Random Number General support + * Enable Intel HW Random Number Generator support + * Disable AMD … random number generator support × 2 + * Enable /dev/nvram support + * Enable SPI support + * Power supply class support + * Module test power driver + * Module all battery types on artemis for now + * Enable hardware monitoring support + * Generic thermal sysfs driver + * Enable hardware monitoring support + * Disable multimedia support + * Graphics support + * Enable laptop hybrid graphics on artemis + * Module direct rendering manager + * Disable support for frame buffer devices + * Enable backlight & LCD device support on artemis + * Display device support + * Enable display panel/monitor support + * Console display driver support + * Disable scrollback buffer in system RAM + * Enable sound card support + * Enable ALSA + * Enable sequencer support + * Enable OSS mixer API + * Enable OSS PCM + * Enable OSS sequencer API + * Disable verbose procfs contents + * PCI sound devices + * Enable Intel HD Audio + * On artemis enable aggressive power-saving on HD-audio - - Default time-out for HD-audio power-save + * Default time-out for HD-audio power-save mode: 60 - - On zephyr enable build nvidia HDMI HD-audio + * On zephyr enable build nvidia HDMI HD-audio codec support - - Disable HID drivers on artemis, enable on zephyr—enable/module + * Disable HID drivers on artemis, enable on zephyr—enable/module on artemis if want USB mouse support - - Special HID drivers - - Enable Apple - - USB support - - Enable support for host-side usb - - Enable USB device filesystem - - Enable WUSB cable based association - - Enable EHCI HCD (USB 2.0) support - - Disable USB modem support - - Enable MMC/SD/SDIO card support on artemis - - On artemis, enable Secure Digital host controller interface + * Special HID drivers + * Enable Apple + * USB support + * Enable support for host-side usb + * Enable USB device filesystem + * Enable WUSB cable based association + * Enable EHCI HCD (USB 2.0) support + * Disable USB modem support + * Enable MMC/SD/SDIO card support on artemis + * On artemis, enable Secure Digital host controller interface support - - On artemis enable SDHCI support on PCI bus - - On artemis enable Ricoh MMC controller disabler - - Disable Real Time Clock - - Enable auxiliary display support - - Disable X86 platform specific device drivers - - ~~On artemis, module Acer WMI laptop extras, Asus laptop + * On artemis enable SDHCI support on PCI bus + * On artemis enable Ricoh MMC controller disabler + * Disable Real Time Clock + * Enable auxiliary display support + * Disable X86 platform specific device drivers + * ~~On artemis, module Acer WMI laptop extras, Asus laptop extras and ThikPad ACPI laptop extras—don’t think it’s the latter but one of three for SL300 which has IdeaPad internals, not proper ThinkPad~~ —using `lenovo-sl-laptop` - - On zephyr enable staging drivers - - Disable exclude staging drivers from being built - - Enable Ralink 2870/3070 wireless support -- File systems - - Enable ext2 - - Enable ext3 - - Default to ‘data-ordered’ in ext3 - - Enable ext4 - - Enable reiserfs - - Disable JFS - - Disable XFS - - Enable kernel automounter version 4 support (also supports v3) - - Enable FUSE - - Module character device in userpace \[sic\] suppose - - CD-ROM/DVD filesystems - - Enable ISO 9660 CDROM file system support - - Enable Microsoft Joliet CDROM extensions - - Enable transparent decompression extension - - UDF file system support - - DOS/FAT/NT filesystems - - Disable MSDOC fs support - - Enable VFAT (Windows-95) fs support - - On zephyr, enable NTFS file system support; disable on + * On zephyr enable staging drivers + * Disable exclude staging drivers from being built + * Enable Ralink 2870/3070 wireless support +* File systems + * Enable ext2 + * Enable ext3 + * Default to ‘data-ordered’ in ext3 + * Enable ext4 + * Enable reiserfs + * Disable JFS + * Disable XFS + * Enable kernel automounter version 4 support (also supports v3) + * Enable FUSE + * Module character device in userpace \[sic\] suppose + * CD-ROM/DVD filesystems + * Enable ISO 9660 CDROM file system support + * Enable Microsoft Joliet CDROM extensions + * Enable transparent decompression extension + * UDF file system support + * DOS/FAT/NT filesystems + * Disable MSDOC fs support + * Enable VFAT (Windows-95) fs support + * On zephyr, enable NTFS file system support; disable on artemis - - On zephyr enable NTFS write support - - Network file systems - - Enable NFS client support - - Enable NFS client support for the NFSv3 ACL protocol + * On zephyr enable NTFS write support + * Network file systems + * Enable NFS client support + * Enable NFS client support for the NFSv3 ACL protocol extension - - Enable NFS server support for the NFSv3 ACL protocol + * Enable NFS server support for the NFSv3 ACL protocol extension - - Disable SMB file system support - - Disable CIFS support -- Kernel hacking - - Enable timing information on printks - - Enable \_~mustcheck~ logic - - Disable Magic SysRq key - - Enable sysctl checks - - Filter access to /dev/mem - - Maybe enable verbose x86 bootup info messages -- Cryptographic API - - Module null algorithms - - Module CCM support (Oxford VPN) - - Module GCM/GMAC support (Oxford VPN) - - Enable SHA224 and SHA256 digest algorithm - - Enable Zlib - - Enable LZO - - Enable pseudo random number generation for cryptographic modules -- Virtualisation - - Enable KVM support - - Enable KVM for Intel processors support - - Module Virtio balloon driver + * Disable SMB file system support + * Disable CIFS support +* Kernel hacking + * Enable timing information on printks + * Enable \_~mustcheck~ logic + * Disable Magic SysRq key + * Enable sysctl checks + * Filter access to /dev/mem + * Maybe enable verbose x86 bootup info messages +* Cryptographic API + * Module null algorithms + * Module CCM support (Oxford VPN) + * Module GCM/GMAC support (Oxford VPN) + * Enable SHA224 and SHA256 digest algorithm + * Enable Zlib + * Enable LZO + * Enable pseudo random number generation for cryptographic modules +* Virtualisation + * Enable KVM support + * Enable KVM for Intel processors support + * Module Virtio balloon driver Once done with `menuconfig`, we set things up: ``` {.nil} -,# make all && make modules_install -,# cp arch/x86/boot/bzImage /boot/vmlinuz -,# cp System.map /boot +# make all && make modules_install +# cp arch/x86/boot/bzImage /boot/vmlinuz +# cp System.map /boot ``` - -nil - Bootloader ---------- @@ -572,9 +570,9 @@ other=/dev/sda2 # reboot ``` -### DONE Actually fill this section in<span class="tag" data-tag-name="NOEXPORT"></span> +<!-- ### DONE Actually fill this section in<span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-07-17 Sun 16:12\] +<!-- CLOSED: \[2011-07-17 Sun 16:12\] --> Post-install configuration ========================== @@ -590,12 +588,12 @@ We create our user account here because otherwise pkgmk will get the first UID. ``` {.nil} -,# groupadd pkgmk -,# useradd swhitton -M -s /bin/zsh -G lp,wheel,audio,video,floppy,cdrom,scanner,tape,pkgmk -,# useradd -m -d /var/pkgmk -g pkgmk pkgmk -,# mkdir /var/pkgmk/{distfiles,packages,work} -,# chown pkgmk:pkgmk /var/pkgmk/* -,# chmod 775 /var/pkgmk/* +# groupadd pkgmk +# useradd swhitton -M -s /bin/zsh -G lp,wheel,audio,video,floppy,cdrom,scanner,tape,pkgmk +# useradd -m -d /var/pkgmk -g pkgmk pkgmk +# mkdir /var/pkgmk/{distfiles,packages,work} +# chown pkgmk:pkgmk /var/pkgmk/* +# chmod 775 /var/pkgmk/* ``` `/etc/prt-get.conf`: @@ -618,9 +616,9 @@ PKGMK_WORK_DIR="/var/pkgmk/work/$name" 193.1.193.66 download.sf.net dl.sourceforge.net dl.sf.net ``` -### CANCELLED Fix permissions for creating .md5sum (maybe) and also grok how this actually works<span class="tag" data-tag-name="NOEXPORT"></span> +<!-- ### CANCELLED Fix permissions for creating .md5sum (maybe) and also grok how this actually works<span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-08-29 Mon 14:55\] +<!-- CLOSED: \[2011-08-29 Mon 14:55\] --> Pre-encryption tweaks—packages ------------------------------ @@ -645,8 +643,8 @@ the `/etc/rc` script. First we enable the `contrib` ports collection ``` {.nil} -,# mv /etc/ports/contrib.rsync.inactive /etc/ports/contrib.rsync -,# ports -u contrib +# mv /etc/ports/contrib.rsync.inactive /etc/ports/contrib.rsync +# ports -u contrib ``` We tell `prt-get` that we’ve done so by uncommenting the line @@ -661,8 +659,8 @@ except only specific ports are fetched, rather than a whole irrelevant repository. ``` {.nil} -,# prt-get depinst mpup -,# mv /etc/ports/meta.mpup.inactive /etc/ports/meta.mpup +# prt-get depinst mpup +# mv /etc/ports/meta.mpup.inactive /etc/ports/meta.mpup ``` Now we add my personal repository TODO and gnome and xfce TODO (gnome @@ -710,15 +708,15 @@ runscripts yes now ``` {.nil} -,# ports -u meta swhitton -,# prt-get depinst zile emacs cryptsetup gnupg zsh screen mercurial git cvs subversion mr ca-certificates consoleswapcaps rxvt-unicode urxvtcd atd git-annex -,# prt-get remove vim +# ports -u meta swhitton +# prt-get depinst zile emacs cryptsetup gnupg zsh screen mercurial git cvs subversion mr ca-certificates consoleswapcaps rxvt-unicode urxvtcd atd git-annex +# prt-get remove vim ``` Change the keymap in `/etc/rc.conf` to `uk.swapcaps` and then ``` {.nil} -,# loadkeys uk.swapcaps +# loadkeys uk.swapcaps ``` to make caps lock into a control key, as it should be. @@ -727,20 +725,20 @@ This should be enough to bootstrap my standard CLI interface into `/root`, which’ll make things more comfortable. ``` {.nil} -,# cd ~ -,# rm -rf .ssh -,# mr --trust-all bootstrap xyrael.net/mrconfig-crux -,# chsh -s /bin/zsh -,# zsh +# cd ~ +# rm -rf .ssh +# mr --trust-all bootstrap xyrael.net/mrconfig-crux +# chsh -s /bin/zsh +# zsh ``` -### DONE Paste u/mount error<span class="tag" data-tag-name="NOEXPORT"></span> +<!-- ### DONE Paste u/mount error<span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-08-29 Mon 15:01\] +<!-- CLOSED: \[2011-08-29 Mon 15:01\] --> -### DONE Fill in more from actual file<span class="tag" data-tag-name="NOEXPORT"></span> +<!-- ### DONE Fill in more from actual file<span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-08-29 Mon 14:53\] +<!-- CLOSED: \[2011-08-29 Mon 14:53\] --> Encrypted partitions -------------------- @@ -751,20 +749,20 @@ sensitive data into them and then to have them decrypted at boot. ### Create partitions ``` {.nil} -,# cryptsetup luksFormat /dev/sda2 -,# cryptsetup luksFormat /dev/sda3 -,# cryptsetup luksOpen /dev/sda2 artemis-var -,# cryptsetup luksOpen /dev/sda2 artemis-home -,# mkfs.reiserfs /dev/mapper/artemis-var -,# mkfs.ext4 /dev/mapper/artemis-home +# cryptsetup luksFormat /dev/sda2 +# cryptsetup luksFormat /dev/sda3 +# cryptsetup luksOpen /dev/sda2 artemis-var +# cryptsetup luksOpen /dev/sda2 artemis-home +# mkfs.reiserfs /dev/mapper/artemis-var +# mkfs.ext4 /dev/mapper/artemis-home ``` We’ll mount up the home partition and put something in it for testing purposes. ``` {.nil} -,# mount /dev/mapper/artemis-home /home -,# echo "it works\!" > /home/test.txt +# mount /dev/mapper/artemis-home /home +# echo "it works\!" > /home/test.txt ``` ### Decryption @@ -776,16 +774,16 @@ to be careful about moving. Open up `/etc/rc` and find the line ``` {.bash} -,# Check filesystems +# Check filesystems ``` Above the chunk of lines this line heralds the commencement of, we are going to add our decryption commands. These are ``` {.bash} -,# SEAN DECRYPTION BEGIN +# SEAN DECRYPTION BEGIN -,# we need to set the keymap early in order to be able to decrypt +# we need to set the keymap early in order to be able to decrypt if [ "$KEYMAP" ]; then /usr/bin/loadkeys -q $KEYMAP fi @@ -803,7 +801,7 @@ echo -n "$PASSPHRASE" | cryptsetup --key-file=- luksOpen /dev/sda3 artemis-home PASSPHRASE="ilikedmcryptoncruxreallyreallyreallalot" unset PASSPHRASE -,# SEAN DECRYPTION END +# SEAN DECRYPTION END ``` The idea of this code is to stop someone from being able to do anything @@ -830,22 +828,22 @@ First add this line to `/etc/fstab`: then ``` {.nil} -,# mkdir /mnt/tmp -,# mount /dev/mapper/artemis-var /mnt/tmp -,# /etc/rc.d/sysklogd stop -,# /etc/rc.d/crond stop -,# /etc/rc.d/net stop -,# mv /var/* /mnt/tmp -,# mv /var/.* /mnt/tmp -,# reboot +# mkdir /mnt/tmp +# mount /dev/mapper/artemis-var /mnt/tmp +# /etc/rc.d/sysklogd stop +# /etc/rc.d/crond stop +# /etc/rc.d/net stop +# mv /var/* /mnt/tmp +# mv /var/.* /mnt/tmp +# reboot ``` This doesn't really require a reboot, but it's nice to see all the encryption stuff now fully working in tandem. -### DONE On artemis, unmount /var in rc.shutdown to prevent reiserfs journal replay on every boot<span class="tag" data-tag-name="TechFix"></span><span class="tag" data-tag-name="NOEXPORT"></span> +<!-- ### DONE On artemis, unmount /var in rc.shutdown to prevent reiserfs journal replay on every boot<span class="tag" data-tag-name="TechFix"></span><span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-08-29 Mon 14:53\] +<!-- CLOSED: \[2011-08-29 Mon 14:53\] --> Post-encryption setup --------------------- @@ -858,12 +856,12 @@ environment. First bring the distribution up-to-date: ``` {.nil} -,# prt-get sysup +# prt-get sysup ``` This will take a while since the packages will need to be compiled, unlike during the installation where this has already been done. Also -=prt-get=’s dependency resolution isn’t perfect, and you may be required +`prt-get`’s dependency resolution isn’t perfect, and you may be required to intervene to upgrade some packages before others. Now we’ve hacked `/etc/rc` we need to lock it to prevent it being @@ -898,10 +896,10 @@ doesn’t get updated enough/at all in the sysup so do it again here (maybe). ``` {.nil} -,# prt-get update glib -,# prt-get depinst wicd urwid -,# /etc/rc.d/dbus start -,# /etc/rc.d/wicd start +# prt-get update glib +# prt-get depinst wicd urwid +# /etc/rc.d/dbus start +# /etc/rc.d/wicd start ``` Add the `atd`, `dbus` and `wicd` daemons (in that order) to @@ -916,8 +914,8 @@ Remember to add `10.9.8.1` as first DNS server, globally, then OpenDNS. At this point I tend to notice my system clock drifting. ``` {.nil} -,# prt-get depinst openntpd -,# /etc/rc.d/ntpd start +# prt-get depinst openntpd +# /etc/rc.d/ntpd start ``` Add ntpd to list of daemons in `/etc/rc.conf`. In `/etc/rc.d/ntpd`, make @@ -932,16 +930,16 @@ UPGRADE ^etc/rc\.d/ntpd$ NO to protect our changes. -#### DONE Exclude /etc/rc.d/ntpd from being changed on package updates<span class="tag" data-tag-name="NOEXPORT"></span> +<!-- #### DONE Exclude /etc/rc.d/ntpd from being changed on package updates<span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-08-29 Mon 14:58\] +<!-- CLOSED: \[2011-08-29 Mon 14:58\] --> ### User account ``` {.nil} -,# mkdir /home/swhitton -,# chown swhitton:users /home/swhitton -,# passwd swhitton +# mkdir /home/swhitton +# chown swhitton:users /home/swhitton +# passwd swhitton ``` Log out and login again as the new user. Bootstrap its homedir: @@ -950,9 +948,9 @@ Log out and login again as the new user. Bootstrap its homedir: $ mr --trust-all bootstrap xyrael.net/mrconfig-crux ``` -### DONE Apple keyboard at console +<!-- ### DONE Apple keyboard at console --> -CLOSED: \[2011-08-29 Mon 14:59\] +<!-- CLOSED: \[2011-08-29 Mon 14:59\] --> On zephyr, add to `/etc/rc.local`: @@ -968,10 +966,10 @@ We’re going with the non-free nVidia drivers since we have a nVidia card we want to make some use of: ``` {.nil} -,# prt-get depinst nvidia -,# reboot -,# nvidia-xconfig -,# gl-select use nvidia +# prt-get depinst nvidia +# reboot +# nvidia-xconfig +# gl-select use nvidia ``` To test X, back as `swhitton`, we prepare a minimal `.xinitrc` with just @@ -1009,7 +1007,7 @@ The Arch package provides all three at once, I believe, or at least the first two so should probably be looked into at some point. ``` {.nil} -,# prt-get depinst xorg-font-terminus console-font-terminus terminus-font +# prt-get depinst xorg-font-terminus console-font-terminus terminus-font ``` In the `Files` section of `/etc/X11/xorg.conf`, add the line @@ -1047,8 +1045,8 @@ UPGRADE ^var/lib/pkg/prt-get.aliases$ NO ``` ``` {.nil} -,# prt-get remove freetype xorg-libxft cairo -,# prt-get install freetype2-cleartype libxft-cleartype cairo-cleartype +# prt-get remove freetype xorg-libxft cairo +# prt-get install freetype2-cleartype libxft-cleartype cairo-cleartype ``` Taking the -ubuntu approach means no Xft Terminus so require the hacked @@ -1066,22 +1064,22 @@ Check in `/etc/fonts/fonts.conf` that near the top there is as the second line might be missing. This should be packaged up/automated at some point. -##### DONE Tidy up dependency installation around this stuff<span class="tag" data-tag-name="NOEXPORT"></span> +<!-- ##### DONE Tidy up dependency installation around this stuff<span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-07-17 Sun 21:48\] +<!-- CLOSED: \[2011-07-17 Sun 21:48\] --> -Atm there will be clashes, particularly concerning the freetype files. +<!-- Atm there will be clashes, particularly concerning the freetype files. --> -<Romster> edit /var/lib/pkg/prt-get.aliases and add your port as -an alias \[16:50\] <Romster> be sure to add that file to -/etc/pkgadd.conf else changes will be gone should you ever -reinstall/update prt-get. +<!-- <Romster> edit /var/lib/pkg/prt-get.aliases and add your port as --> +<!-- an alias \[16:50\] <Romster> be sure to add that file to --> +<!-- /etc/pkgadd.conf else changes will be gone should you ever --> +<!-- reinstall/update prt-get. --> -##### DONE Add `--install-scripts` throughout this file, as probably needed in lots of places<span class="tag" data-tag-name="NOEXPORT"></span> +<!-- ##### DONE Add `--install-scripts` throughout this file, as probably needed in lots of places<span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-07-17 Sun 21:48\] +<!-- CLOSED: \[2011-07-17 Sun 21:48\] --> -Or just use prt-get config variable `runscripts` +<!-- Or just use prt-get config variable `runscripts` --> #### Lisp @@ -1091,9 +1089,9 @@ ArchWiki](https://wiki.archlinux.org/index.php/Stumpwm#With_Quicklisp_.28recomme When my lisp knowledge improves I will make this into a package. ``` {.nil} -,# prt-get depinst sbcl texinfo -,# wget beta.quicklisp.org/quicklisp.lisp -,# sbcl --load quicklisp.lisp +# prt-get depinst sbcl texinfo +# wget beta.quicklisp.org/quicklisp.lisp +# sbcl --load quicklisp.lisp ``` and then in the interactive shell @@ -1117,16 +1115,16 @@ haven’t got the package set up right. So first we comment out the lines we added to `/etc/prt-get.conf` and `/etc/pkgmk.conf` and then ``` {.nil} -,# cd /usr/ports/swhitton/stumpwm -,# pkgmk -d -,# chown pkgmk:pkgmk stumpwm\#git-1.pkg.tar.gz -,# mv stumpwm\#git-1.pkg.tar.gz /var/pkgmk/packages +# cd /usr/ports/swhitton/stumpwm +# pkgmk -d +# chown pkgmk:pkgmk stumpwm\#git-1.pkg.tar.gz +# mv stumpwm\#git-1.pkg.tar.gz /var/pkgmk/packages ``` Now uncomment the lines again and ``` {.nil} -,# prt-get depinst xbindkeys avfs stumpwm +# prt-get depinst xbindkeys avfs stumpwm $ mkdir .avfs # echo "user_allow_other" >> /etc/fuse.conf ``` @@ -1145,7 +1143,7 @@ Using a display manager is much neater than running startx from `~/.zshrc`. ``` {.nil} -,# prt-get depinst mingetty slim slimlock +# prt-get depinst mingetty slim slimlock ``` We use mingetty because it allows autologin if we ever want it and it @@ -1189,17 +1187,17 @@ username_x 170 password_x 170 ``` -##### CANCELLED Make this fix a patched version of the package +<!-- ##### CANCELLED Make this fix a patched version of the package --> -CLOSED: \[2011-08-29 Mon 12:20\] +<!-- CLOSED: \[2011-08-29 Mon 12:20\] --> ### ALSA Let’s get sound operational. ``` {.nil} -,# prt-get depinst alsa-lib alsa-utils alsa-oss -,# alsamixer +# prt-get depinst alsa-lib alsa-utils alsa-oss +# alsamixer ``` Hit `M` to unmute the main channel. Raise the volume until the db gain @@ -1207,14 +1205,14 @@ is 0 and then play a sound to test. If it doesn’t play, raise the other sliders around a bit. ``` {.nil} -,# aplay /home/swhitton/lib/beep.wav +# aplay /home/swhitton/lib/beep.wav ``` Now add alsa to the daemons array in `/etc/rc.conf` and run ``` {.nil} -,# alsactl -f /var/lib/alsa/asound.state store -,# /etc/rc.d/alsa start +# alsactl -f /var/lib/alsa/asound.state store +# /etc/rc.d/alsa start ``` ### sshd @@ -1234,8 +1232,8 @@ No reason to go any further without some tunes. We need to install `libmms` first in order to get proper streaming support. ``` {.nil} -,# prt-get depinst libmms libfaac -,# prt-get depinst mpd mpc ncmpcpp mpdscribble +# prt-get depinst libmms libfaac +# prt-get depinst mpd mpc ncmpcpp mpdscribble ``` #### Sync media library @@ -1243,7 +1241,7 @@ No reason to go any further without some tunes. We need to install One of unison’s dependencies, ocaml, will need a .footprint deleting. ``` {.nil} -,# prt-get depinst unison +# prt-get depinst unison ``` Reconnect ethernet cable and run `/etc/rc.d/net restart` on both @@ -1264,8 +1262,8 @@ mpd volume independent of everything else) make sensible edits and run ``` {.nil} $ mkdir -p .mpd/playlists -,# chown swhitton.users /var/cache/mpdscribble/*.journal -,# usermod -a -G audio swhitton +# chown swhitton.users /var/cache/mpdscribble/*.journal +# usermod -a -G audio swhitton ``` At some point we should move the config we use inside `/home/swhitton` @@ -1304,7 +1302,7 @@ to give swhitton full sudo access. ### Desktop software ``` {.nil} -,# prt-get depinst xpdf epdfview firefox feh gtk-chtheme gnome-themes +# prt-get depinst xpdf epdfview firefox feh gtk-chtheme gnome-themes flash-player-plugin texlive-full auctex sshfs-fuse mplayer vlock gimp xclip libreoffice scrot shared-mime-info gnome-mime-data htop at filezilla abook libogg flac libvorbis easytag unzip imagemagick bc @@ -1335,69 +1333,69 @@ contain the Pkgfile: link [2](http://crux.nu/gitweb/?p%3Dports/opt.git%3Ba%3Dblob%3Bf%3Dxulrunner/mozconfig%3Bh%3D411ffaf26f2e0456c2c313e688cbc0c7bcfbfe7f%3Bhb%3D765241f5fc2ef30ca99e643ea667930f6e8e163f), [3](http://crux.nu/gitweb/?p%3Dports/opt.git%3Ba%3Dblob%3Bf%3Dxulrunner/xulrunner.diff%3Bh%3D5503c8d399a8ba9af88790d2c9c64de38e191ddc%3Bhb%3D765241f5fc2ef30ca99e643ea667930f6e8e163f). -#### DONE Fix lack of `conkeror-spawn-helper`<span class="tag" data-tag-name="NOEXPORT"></span> +<!-- #### DONE Fix lack of `conkeror-spawn-helper`<span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-07-14 Thu 16:42\] +<!-- CLOSED: \[2011-07-14 Thu 16:42\] --> -#### CANCELLED Write Pkgfile for TeX Live<span class="tag" data-tag-name="NOEXPORT"></span> +<!-- #### CANCELLED Write Pkgfile for TeX Live<span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-08-29 Mon 14:50\] +<!-- CLOSED: \[2011-08-29 Mon 14:50\] --> -This will need these pages: -<http://www.tug.org/texlive/quickinstall.html> -<http://www.tug.org/texlive/acquire-netinstall.html> and then some way -of telling the install script what to do without doing so interactively. --profile seems to be the way to go. Symlinks for manpages, infopages and -the binaries, too. +<!-- This will need these pages: --> +<!-- <http://www.tug.org/texlive/quickinstall.html> --> +<!-- <http://www.tug.org/texlive/acquire-netinstall.html> and then some way --> +<!-- of telling the install script what to do without doing so interactively. --> +<!-- -profile seems to be the way to go. Symlinks for manpages, infopages and --> +<!-- the binaries, too. --> -#### DONE Investigate `xulrunner`<span class="tag" data-tag-name="NOEXPORT"></span> +<!-- #### DONE Investigate `xulrunner`<span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-08-29 Mon 19:11\] +<!-- CLOSED: \[2011-08-29 Mon 19:11\] --> -It seems to be installed when the distro was installed yet isn’t in the -ports db? Removed intentionally. +<!-- It seems to be installed when the distro was installed yet isn’t in the --> +<!-- ports db? Removed intentionally. --> -#### CANCELLED Add xfce repository in order to install xfburn<span class="tag" data-tag-name="NOEXPORT"></span> +<!-- #### CANCELLED Add xfce repository in order to install xfburn<span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-08-29 Mon 14:50\] +<!-- CLOSED: \[2011-08-29 Mon 14:50\] --> -Don’t really want to do this until dealt with freetype issue. Maybe a -dummy package? +<!-- Don’t really want to do this until dealt with freetype issue. Maybe a --> +<!-- dummy package? --> -xcdroast? Tried to install it… +<!-- xcdroast? Tried to install it… --> -At the moment we just use: genisoimage -o tmp/dvd.iso local/toburn -growisofs -Z /dev/sr0=/home/swhitton/tmp/dvd.iso +<!-- At the moment we just use: genisoimage -o tmp/dvd.iso local/toburn --> +<!-- growisofs -Z /dev/sr0=/home/swhitton/tmp/dvd.iso --> -prt-get readme cdrkit explains why burndir won’t work: growisofs is -looking for mkisofs instead of genisoimage. +<!-- prt-get readme cdrkit explains why burndir won’t work: growisofs is --> +<!-- looking for mkisofs instead of genisoimage. --> -#### CANCELLED Make abiword work<span class="tag" data-tag-name="NOEXPORT"></span> +<!-- #### CANCELLED Make abiword work<span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-08-29 Mon 14:50\] +<!-- CLOSED: \[2011-08-29 Mon 14:50\] --> -gnome-keyring will need fixing/version bumping as it looks for a version -of libtasn that is too old. +<!-- gnome-keyring will need fixing/version bumping as it looks for a version --> +<!-- of libtasn that is too old. --> -#### DONE Fix /usr/share ownership when installing my recently created packages<span class="tag" data-tag-name="NOEXPORT"></span> +<!-- #### DONE Fix /usr/share ownership when installing my recently created packages<span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-08-29 Mon 20:24\] +<!-- CLOSED: \[2011-08-29 Mon 20:24\] --> -I think it has something to do with a package installing some zsh -completions. +<!-- I think it has something to do with a package installing some zsh --> +<!-- completions. --> -#### DONE Fix mpdscribble & xbindkeys<span class="tag" data-tag-name="TechFix"></span><span class="tag" data-tag-name="NOEXPORT"></span> +<!-- #### DONE Fix mpdscribble & xbindkeys<span class="tag" data-tag-name="TechFix"></span><span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-07-20 Wed 19:47\] SCHEDULED: <2011-07-15 Fri> +<!-- CLOSED: \[2011-07-20 Wed 19:47\] SCHEDULED: <2011-07-15 Fri> --> ### OpenVPN We want the OpenVPN configuration files to be encrypted. ``` {.nil} -,# mkdir -p /home/etc/openvpn -,# ln -s /home/etc/openvpn /etc -,# prt-get depinst openvpn +# mkdir -p /home/etc/openvpn +# ln -s /home/etc/openvpn /etc +# prt-get depinst openvpn ``` Copy into `/etc/openvpn` the files `ca.crt`, `artemis.crt` and @@ -1469,12 +1467,12 @@ esac and fire her up: ``` {.nil} -,# /etc/rc.d/openvpn start +# /etc/rc.d/openvpn start ``` -#### DONE Paste the `/etc/rc.d/openvpn` script<span class="tag" data-tag-name="NOEXPORT"></span> +<!-- #### DONE Paste the `/etc/rc.d/openvpn` script<span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-07-17 Sun 22:58\] +<!-- CLOSED: \[2011-07-17 Sun 22:58\] --> ### SSH configuration @@ -1500,8 +1498,8 @@ Our first real encounter with pre-install scripts. `prt-get readme dovecot/postfix` will provide an explanation. ``` {.nil} -,# pkgrm exim -,# prt-get depinst dovecot postfix offlineimap +# pkgrm exim +# prt-get depinst dovecot postfix offlineimap ``` We add the following line in `/etc/dovecot/conf.d/10-mail.conf`: @@ -1519,7 +1517,7 @@ relayhost = [10.9.8.1]:25 and we’re done. We may now run ``` {.nil} -,# /etc/rc.d/postfix start +# /etc/rc.d/postfix start $ offlineimap ``` @@ -1610,8 +1608,8 @@ block suspend (on zephyr & artemis). #### laptop-mode ``` {.nil} -,# rm /etc/cron/daily/mlocate -,# prt-get depinst powertop laptop-mode-tools pm-utils cpufrequtils acpi lm_sensors +# rm /etc/cron/daily/mlocate +# prt-get depinst powertop laptop-mode-tools pm-utils cpufrequtils acpi lm_sensors ``` Add the acpid and laptop-mode daemons to `/etc/rc.conf` (in that order). @@ -1623,9 +1621,9 @@ some point may wish to look into improving things, using the [wiki](https://wiki.archlinux.org/index.php/Laptop_Mode_Tools) (two links). -##### CANCELLED Make `laptop-mode` actually work<span class="tag" data-tag-name="NOEXPORT"></span> +<!-- ##### CANCELLED Make `laptop-mode` actually work<span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-08-30 Tue 16:48\] +<!-- CLOSED: \[2011-08-30 Tue 16:48\] --> #### =lenovo-sl-laptop= @@ -1634,14 +1632,14 @@ access to various hotkeys from X. Recompiling the kernel wipes it out so remember to re-add it should you need to do that. ``` {.nil} -,# cd ~/local/src -,# git clone git://github.com/tadzik/lenovo-sl-laptop.git -,# cd lenovo-sl-laptop -,# make -,# mkdir /lib/modules/2.6.35.6/kernel/lenovo-sl-laptop -,# cp lenovo-sl-laptop.ko /lib/modules/2.6.35.6/kernel/lenovo-sl-laptop -,# echo "options lenovo-sl-laptop control_backlight=1" >> /etc/modprobe.d/modprobe.conf -,# echo "modprobe lenovo-sl-laptop control_backlight=1" >> /etc/rc.autofs +# cd ~/local/src +# git clone git://github.com/tadzik/lenovo-sl-laptop.git +# cd lenovo-sl-laptop +# make +# mkdir /lib/modules/2.6.35.6/kernel/lenovo-sl-laptop +# cp lenovo-sl-laptop.ko /lib/modules/2.6.35.6/kernel/lenovo-sl-laptop +# echo "options lenovo-sl-laptop control_backlight=1" >> /etc/modprobe.d/modprobe.conf +# echo "modprobe lenovo-sl-laptop control_backlight=1" >> /etc/rc.autofs ``` nil @@ -1664,14 +1662,14 @@ Sometimes a stale lock file prevents `pm-suspend` from working with no errors or log messages. To deal with this: ``` {.nil} -,# rm /var/run/pm-utils/locks/pm-suspend.lock +# rm /var/run/pm-utils/locks/pm-suspend.lock ``` ### autofs & NFS ``` {.nil} -,# prt-get depinst autofs -,# rm /etc/autofs/auto.{master,net,media} +# prt-get depinst autofs +# rm /etc/autofs/auto.{master,net,media} ``` `/etc/autofs/auto.master`: @@ -1709,16 +1707,16 @@ Protect these configs in `/etc/pkgadd.conf`: UPGRADE ^etc/autofs/auto\..*$ NO ``` -#### DONE Lock these config files<span class="tag" data-tag-name="NOEXPORT"></span> +<!-- #### DONE Lock these config files<span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-08-29 Mon 19:08\] +<!-- CLOSED: \[2011-08-29 Mon 19:08\] --> -### DONE Warcraft III, wine etc. (/opt in general) +<!-- ### DONE Warcraft III, wine etc. (/opt in general) --> -CLOSED: \[2011-08-29 Mon 14:54\] +<!-- CLOSED: \[2011-08-29 Mon 14:54\] --> ``` {.nil} -,# prt-get depinst wine +# prt-get depinst wine ``` The AcceptEx patch has now been merged with Wine so you should just be @@ -1729,9 +1727,9 @@ resolution issues. Nice. `winecfg` and enable emulate virtual desktop to play. -### DONE StarCraft II +### <!-- DONE --> StarCraft II -CLOSED: \[2011-08-29 Mon 18:16\] +<!-- CLOSED: \[2011-08-29 Mon 18:16\] --> The most recent versions of wine allow you to get your mouse pointed trapped in the window and work great with fullscreen windowed, but an @@ -1742,7 +1740,7 @@ writing, 1.3.24) into `/var/pkgmk/packages`. Mount the StarCraft II DVD and copy the files to home directory to install: ``` {.nil} -,# mount -o ro,unhide,uid=100 /dev/sr0 /mnt/cd +# mount -o ro,unhide,uid=100 /dev/sr0 /mnt/cd $ mkdir ~/tmp/sc2 $ cp -R /mnt/cd/* ~/tmp/sc2 $ wine start ~/tmp/sc2/Installer.exe @@ -1758,7 +1756,7 @@ and tick the trap mouse in full screen checkbox under the Graphics tab. Cleanup: ``` {.nil} -,# umount /mnt/cd +# umount /mnt/cd $ rm -rf ~/tmp/sc2 ``` @@ -1784,15 +1782,15 @@ and then add to the `ServerLayout` section: Option "AllowEmptyInput" "false" ``` -### DONE VirtualBox +### <!-- DONE --> VirtualBox -CLOSED: \[2011-08-30 Tue 15:49\] +<!-- CLOSED: \[2011-08-30 Tue 15:49\] --> This need only be done on zephyr (since it’s more powerful). ``` {.nil} -,# prt-get depinst virtualbox -,# usermod -a -G vboxusers swhitton +# prt-get depinst virtualbox +# usermod -a -G vboxusers swhitton ``` Worth setting up an Ubuntu VPS for testing. Remember to modprobe @@ -1807,7 +1805,7 @@ glue (`require("noscript");`) doesn’t work very well. ### Emacs keys in GTK apps ``` {.nil} -,# prt-get install gconf +# prt-get install gconf $ echo 'gtk-key-theme-name = "Emacs"' >>~/.gtkrc-2.0 $ gconftool-2 -t string --set /desktop/gnome/interface/gtk_key_theme Emacs ``` @@ -1836,20 +1834,20 @@ The only other place there may be things to be saved are in `/srv` (should be symlinked into `/home` so that it’s encrypted, though), `/var` (unlikely) and of course the Windows partition. -Ports repository ----------------- +<!-- Ports repository --> +<!-- ---------------- --> -### DONE Set up `crux.sean.whitton.me` httpup ports repo<span class="tag" data-tag-name="ProjectIdea"></span><span class="tag" data-tag-name="NOEXPORT"></span> +<!-- ### DONE Set up `crux.sean.whitton.me` httpup ports repo<span class="tag" data-tag-name="ProjectIdea"></span><span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-08-30 Tue 16:56\] +<!-- CLOSED: \[2011-08-30 Tue 16:56\] --> -<http://crux.nu/Wiki/SettingUpAnHttpupRepo> +<!-- <http://crux.nu/Wiki/SettingUpAnHttpupRepo> --> -#### DONE [CRUX ports](http://obra.se/)<span class="tag" data-tag-name="ToRead"></span><span class="tag" data-tag-name="NOEXPORT"></span> +<!-- #### DONE [CRUX ports](http://obra.se/)<span class="tag" data-tag-name="ToRead"></span><span class="tag" data-tag-name="NOEXPORT"></span> --> -CLOSED: \[2011-07-17 Sun 22:43\] +<!-- CLOSED: \[2011-07-17 Sun 22:43\] --> -portspage script +<!-- portspage script --> Local LAMP setup for development -------------------------------- @@ -1857,12 +1855,12 @@ Local LAMP setup for development ### lighttpd & PHP ``` {.nil} -,# prt-get depinst lighttpd php -,# useradd -s /bin/false lighttpd -,# groupadd lighttpd -,# touch /var/www/logs/access_log -,# touch /var/www/logs/error_log -,# chown lighttpd:lighttpd /var/www/logs/* +# prt-get depinst lighttpd php +# useradd -s /bin/false lighttpd +# groupadd lighttpd +# touch /var/www/logs/access_log +# touch /var/www/logs/error_log +# chown lighttpd:lighttpd /var/www/logs/* ``` Add `mod_fastcgi` to modules listing and switch to the non-chroot setup. @@ -1897,18 +1895,18 @@ When you want to use the web server, call `/etc/rc.d/lighttpd start`. ### MySQL ``` {.nil} -,# prt-get depinst mysql php-mysql php-mysqli php-fcgi -,# mysql_install_db -,# mysqladmin -u root password <password_here> +# prt-get depinst mysql php-mysql php-mysqli php-fcgi +# mysql_install_db +# mysqladmin -u root password <password_here> ``` Comment out `skip-innodb` and `skip-networking` in `/etc/my.cnf`. Start the daemon when needed. -DONE ioquake setup +<!-- DONE --> ioquake setup ------------------ -CLOSED: \[2011-08-29 Mon 15:11\] +<!-- CLOSED: \[2011-08-29 Mon 15:11\] --> ioquake installs per-user, so this is very neat. Visit [the website](http://ioquake3.org/get-it/) and download the engine download @@ -1918,10 +1916,10 @@ as they are). Then take pak0.pk3 from copy of Quake III Arena and drop this into `~/local/bin/ioquake3/baseq3`. To run, edit .xinitrc to set ioquake3 as window manager and re-login. -DONE <http://crux.nu/ports/crux-2.7/opt/service/Pkgfile><span class="tag" data-tag-name="ToRead"></span> --------------------------------------------------------------------------------------------------------- +<!-- DONE <http://crux.nu/ports/crux-2.7/opt/service/Pkgfile><span class="tag" data-tag-name="ToRead"></span> --> +<!-- -------------------------------------------------------------------------------------------------------- --> -CLOSED: \[2011-08-29 Mon 14:49\] +<!-- CLOSED: \[2011-08-29 Mon 14:49\] --> Other resources =============== |