2023-02-01 15:31:21 +01:00
|
|
|
# Void-desktop
|
2022-10-17 20:06:02 +02:00
|
|
|
|
2023-02-01 15:31:21 +01:00
|
|
|
Guides and configuration files of my desktop Void install.
|
2023-07-13 13:28:46 +02:00
|
|
|
|
2023-08-19 11:40:53 +02:00
|
|
|
To begin go to the [wiki](https://git.bijl.us/luc/void-desktop/wiki)!
|
|
|
|
|
|
|
|
|
|
## To do for void-desktop
|
|
|
|
|
|
|
|
|
|
Important:
|
|
|
|
|
|
|
|
|
|
- [ ] User packages
|
|
|
|
|
- [ ] User services (Turnstile backend)
|
|
|
|
|
- [x] Automatic decryption through TPM (Clevis)
|
|
|
|
|
- [x] Clevis package
|
|
|
|
|
- [x] Booster
|
|
|
|
|
- [ ] Hardenend kernel
|
|
|
|
|
- [ ] Sysctl optimisations
|
|
|
|
|
- [ ] Better luks encryption algoritm (faster)
|
|
|
|
|
- [ ] Better boot parameters
|
|
|
|
|
- [ ] Better partitioning (/usr, /proc etc their own partitions and also more secure root partition)
|
|
|
|
|
- [ ] Better polkit permisissions
|
|
|
|
|
- [ ] Application sandboxing (bubblejail, bubblewrap, apparmor)
|
|
|
|
|
|
|
|
|
|
Less important:
|
|
|
|
|
|
|
|
|
|
- [ ] macchanger
|
|
|
|
|
- [ ] plymouth (for graphical boot up) (not possible with booster)
|
|
|
|
|
- [ ] ABRoot
|
|
|
|
|
- [ ] Firewall (ufw)
|
|
|
|
|
|
|
|
|
|
Notes:
|
|
|
|
|
|
|
|
|
|
https://madaidans-insecurities.github.io/guides/linux-hardening.html#kernel
|
