Skip to content

Charlie-Root/ansible-archlinux

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

277 Commits
ansible
ansible
 
 
doc
doc
 
 
vagrant
vagrant
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
README.md
README.md
 
 

Repository files navigation

Automated ArchLinux

This ansible playbook automates my personal Arch Linux installation. The goal is a fully encrypted and secure desktop system. All dotfiles are kept in an independent repository. They are managed using rcm and will only get installed if the dotfiles variable is defined.

Main features of this installation

  • Full disk encryption
  • LVM on LUKS partitioning scheme
  • A desktop environment consisting of i3gaps, i3status-rust, rofi and picom

Additional security features

  • Restrictive and comprahensive iptables rules
  • Use of linux-hardened
  • Automatic mac address spoofer for wireless network devices
  • No bullshit installed

Install base system

You can eighter install your own minimal system or you follow the instructions provided in the two installation guides below.

  • INSTALL_BIOS to setup a LVM on LUKS system using syslinux in MBR BIOS boot mode.
  • INSTALL_EFI to setup a LVM on LUKS system using grub2 in GPT EFI boot mode.

The Ansible playbook does not depend on any specific installation method.

How to run the ansible playbook after the initial installation

First install ansible

$ sudo pacman -S ansible

then download the playbook and make sure you adjust the values of the global config in group_vars/all to match your system stats. Then run it.

$ git clone --recurse-submodules -j8 https://github.com/id101010/ansible-archlinux.git
$ cd ansible-archlinux/ansible
$ sudo ansible-playbook -i inventory/localhost playbook.yml [--tags $LIMIT_TO_TAG]

Lean back and watch the installation.

Testing and development (local vagrant machine)

Warning, this is kind of buggy. Vagrant looks quite abandoned. Hashicorp does not react to issues. I might remove this section soon.

Assuming you've already installed vagrant you can set up a vritual machine with just these steps

$ git clone --recurse-submodules -j8 https://github.com/id101010/ansible-archlinux.git
$ cd ansible-archlinux/vagrant
$ vagrant up --provision

Now reboot the machine and start a graphical session using virtualbox. The default credentials are user:vagrant pw:vagrant. Alternativly you can log into your machine using the command vagrant ssh.

Hint: To reload the configuration into the vagrant box you can eighter reload (issues a graceful shutdown) the machine using vagrant reload or you can update and apply the configuration changes using vagrant rsync && vagrant provision. This way you don't need to wait for the machine to boot when testing changes.

About

Automated arch linux desktop environment

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Jinja 100.0%