├── boot └── loader │ ├── entries │ ├── linux-bmq.conf │ ├── linux-lqx.conf │ ├── linux-lts.conf │ ├── linux-muqss-v3.conf │ ├── linux-muqss.conf │ ├── linux-tkg-muqss-v3.conf │ └── linux-zen.conf │ ├── loader.conf │ └── random-seed ├── devtools ├── bamvpkgs └── inspkgs ├── docs ├── .gitkeep ├── dns.md ├── firefox-profile-in-RAM.md ├── fix-epicgames-looking-for-patches.md └── fix-rust-windows.md ├── etc ├── .ignore ├── NetworkManager.conf ├── X11 │ ├── xinit │ │ ├── xinitrc │ │ ├── xinitrc.d │ │ │ ├── 40-libcanberra-gtk-module.sh │ │ │ └── 50-systemd-user.sh │ │ └── xserverrc │ └── xorg.conf.d │ │ ├── 00-keyboard.conf │ │ ├── 20-intel.conf │ │ ├── 40-libinput.conf │ │ └── 41-wired-mouse.conf ├── autofs ├── bashrc ├── blacklist.conf ├── cpupower ├── default │ ├── grub │ └── tlp ├── dhcpcd.conf ├── dnscrypt-proxy.conf ├── firejail │ ├── dino.local │ ├── discord.local │ ├── firefox-common.local │ ├── gajim.local │ ├── globals.local │ ├── qpdfview.local │ ├── signal-desktop.local │ ├── steam.local │ └── virtualbox.local ├── grub ├── gvimrc ├── hostname ├── iwd │ └── main.conf ├── lz5.conf ├── makepkg.conf ├── mirrorlist ├── mkinitcpio.conf ├── mkinitcpio.d │ ├── linux-hardened.preset │ └── linux.preset ├── modprobe.d │ ├── blacklist.conf │ ├── bonding.conf │ ├── i915.conf │ ├── nvidia.conf │ └── r8822be.conf ├── modules-load.d │ └── virtualbox.conf ├── mt7601u.conf ├── pacman.conf ├── passwd ├── pulse │ ├── client.conf │ ├── daemon.conf │ ├── default.pa │ └── system.pa ├── resolv.conf ├── rusnapshot │ ├── config-containers.toml │ ├── config-home.toml │ └── config-root.toml ├── sysctl.d │ ├── 80-network-tuning.conf │ └── 90-vm-tuning.conf ├── systemd │ ├── coredump.conf │ ├── journal-remote.conf │ ├── journal-upload.conf │ ├── journald.conf │ ├── journald.conf.pacnew │ ├── logind.conf │ ├── network │ │ ├── Bonded 8023ad │ │ │ ├── 10-bond1.netdev │ │ │ ├── 10-bond1.network │ │ │ ├── 20-wired.network │ │ │ └── 25-wireless.network │ │ ├── Bonded Active Backup │ │ │ ├── 10-bond1.netdev │ │ │ ├── 10-bond1.network │ │ │ ├── 20-wired.network │ │ │ └── 25-wireless.network │ │ ├── Containers │ │ │ └── 10-macvlan.network │ │ └── Normal │ │ │ ├── 20-wired.network │ │ │ ├── 25-wireless.network │ │ │ └── 26-wireless.network │ ├── networkd.conf │ ├── nspawn │ │ ├── 10-macvlan.network │ │ ├── 20-machines-profile.sh │ │ ├── ArchARM.nspawn │ │ ├── ArchLinux.nspawn │ │ ├── ArchLinux.nspawn.bk │ │ ├── BlackArch.nspawn │ │ ├── BlackArch.nspawn.bk │ │ ├── Debian.nspawn │ │ ├── Debian.nspawn.bk │ │ ├── Fedora34.nspawn │ │ ├── KaliLinux.nspawn │ │ ├── KaliLinux.nspawn.bk │ │ ├── ParrotSec.nspawn.bk │ │ ├── README.md │ │ └── SoundContainer.nspawn │ ├── resolved.conf │ ├── resolved.conf.d │ │ └── custom.conf │ ├── resolved.conf.pacnew │ ├── sleep.conf │ ├── swap.conf │ ├── system.conf │ ├── system │ │ ├── bluetooth.target.wants │ │ │ └── bluetooth.service │ │ ├── dbus-org.bluez.service │ │ ├── dbus-org.freedesktop.network1.service │ │ ├── dbus-org.freedesktop.resolve1.service │ │ ├── dbus-org.freedesktop.timesync1.service │ │ ├── disable-turbo-boost.service │ │ ├── dnscrypt-proxy.socket.d │ │ │ └── .#override.conf71faa65b5fe17951 │ │ ├── fix-wifi.service │ │ ├── getty.target.wants │ │ │ └── getty@tty1.service │ │ ├── graphical.target.wants │ │ │ └── threema-web.service │ │ ├── iwd.service │ │ ├── lvm2-monitor.service │ │ ├── multi-user.target.wants │ │ │ ├── apparmor.service │ │ │ ├── irqbalance.service │ │ │ ├── libvirtd.service │ │ │ ├── lm_sensors.service │ │ │ ├── randomvpn.service │ │ │ ├── remote-fs.target │ │ │ ├── systemd-networkd.service │ │ │ ├── systemd-resolved.service │ │ │ └── ufw.service │ │ ├── netctl@failover.service │ │ ├── randomvpn.service │ │ ├── rnetworking.service │ │ ├── rnetworking.timer │ │ ├── rusnapshot-daily.service │ │ ├── rusnapshot-daily.timer │ │ ├── rusnapshot-monthly.service │ │ ├── rusnapshot-monthly.timer │ │ ├── rusnapshot-weekly.service │ │ ├── rusnapshot-weekly.timer │ │ ├── sockets.target.wants │ │ │ ├── systemd-networkd.socket │ │ │ ├── virtlockd.socket │ │ │ └── virtlogd.socket │ │ ├── sysinit.target.wants │ │ │ ├── enable-processor-performance.service │ │ │ └── systemd-timesyncd.service │ │ ├── systemd-journal-flush.service │ │ ├── systemd-journald-audit.socket │ │ ├── timers.target.wants │ │ │ └── rnetworking.timer │ │ ├── tlp.service │ │ ├── tor-router.service │ │ ├── update-ablock-hosts.service │ │ └── update-ablock-hosts.timer │ ├── timesyncd.conf │ ├── user.conf │ └── user │ │ └── sockets.target.wants │ │ ├── dirmngr.socket │ │ ├── gpg-agent-browser.socket │ │ ├── gpg-agent-extra.socket │ │ ├── gpg-agent-ssh.socket │ │ ├── gpg-agent.socket │ │ ├── p11-kit-server.socket │ │ └── pulseaudio.socket ├── udev │ ├── rules.d │ │ └── 06-hddtunning.rules │ └── udev.conf ├── ufw ├── useradd ├── vimrc └── virtualbox.conf ├── fonts ├── openbox ├── autostart ├── menu.xml └── rc.xml ├── ps_mem.py ├── system-bin ├── conectar ├── processor-performance ├── randomvpn ├── rnetworking ├── upnet └── wget ├── system-units ├── disable-turbo-boost.service ├── enable-processor-performance.service ├── randomvpn.service ├── rnetworking.service └── rnetworking.timer ├── user-bin ├── .gitkeep ├── firefox-sync ├── fix-vpn-config ├── newpost ├── propershutdown ├── tsshot ├── vcschecker.sh └── version-check.sh ├── user-config ├── Xdefaults ├── bash_aliases ├── bash_functions ├── bashrc ├── chrome-flags.conf ├── conkyp ├── dunst │ └── dunstrc ├── i3 │ └── config ├── i3status │ └── config ├── infos ├── nvim │ ├── .netrwhist │ └── init.vim ├── pipewire │ ├── media-session.d │ │ ├── default-nodes │ │ ├── default-routes │ │ └── restore-stream │ ├── pipewire-pulse.conf │ └── pipewire.conf ├── psd │ ├── .psd.conf │ └── psd.conf ├── redshift │ └── redshift.conf ├── rofi │ └── config ├── settings.ini ├── sway │ ├── config │ └── config-monitor ├── systemd-user-units │ └── user │ │ ├── actualizar.service │ │ ├── actualizar.timer │ │ ├── default.target.wants │ │ └── firefox-profile@8xtka20s.default.service │ │ ├── findomain.service │ │ ├── findomain.timer │ │ ├── firefox-profile@.service │ │ └── multi-user.target.wants │ │ └── rnetworking.timer ├── waybar │ ├── config │ └── style.css ├── xfce4 │ ├── desktop │ │ ├── icons.screen.latest.rc │ │ ├── icons.screen0-1264x673.rc │ │ ├── icons.screen0-1904x1033.rc │ │ ├── icons.screen0-1904x1037.rc │ │ └── icons.screen0-784x553.rc │ ├── help.rc │ ├── helpers.rc │ ├── panel │ │ └── xfce4-sensors-plugin-9.rc │ ├── terminal │ │ ├── accels.scm │ │ └── terminalrc │ └── xfconf │ │ └── xfce-perchannel-xml │ │ ├── accessibility.xml │ │ ├── displays.xml │ │ ├── keyboard-layout.xml │ │ ├── keyboards.xml │ │ ├── ristretto.xml │ │ ├── thunar-volman.xml │ │ ├── thunar.xml │ │ ├── xfce4-appfinder.xml │ │ ├── xfce4-desktop.xml │ │ ├── xfce4-keyboard-shortcuts.xml │ │ ├── xfce4-notifyd.xml │ │ ├── xfce4-panel.xml │ │ ├── xfce4-power-manager.xml │ │ ├── xfce4-screensaver.xml │ │ ├── xfce4-session.xml │ │ ├── xfce4-settings-manager.xml │ │ ├── xfwm4.xml │ │ └── xsettings.xml └── xinitrc ├── user-local └── share │ └── xfce4 │ └── terminal │ └── colorschemes │ ├── gruvbox-dark-hard.theme │ ├── gruvbox-dark-soft.theme │ ├── gruvbox-dark.theme │ ├── gruvbox-light-hard.theme │ ├── gruvbox-light-soft.theme │ └── gruvbox-light.theme ├── user ├── default.target.wants │ ├── firefox-profile@8xtka20s.default.service │ ├── firefox-profile@zvhb5hqr.default.service │ └── icecat-profile@5u5odth2.default.service ├── firefox-profile@.service ├── multi-user.target.wants │ └── rnetworking.timer ├── rnetworking.service └── rnetworking.timer └── xorg.conf.d ├── 00-keyboard.conf └── 40-libinput.conf /boot/loader/entries/linux-bmq.conf: -------------------------------------------------------------------------------- 1 | title Linux Tkg BMQ 2 | linux /vmlinuz-linux-tkg-bmq-generic_v3 3 | initrd /amd-ucode.img 4 | initrd /initramfs-linux-tkg-bmq-generic_v3-fallback.img 5 | options root=/dev/nvme0n1p3 rootflags=subvol=_active/root resume=/dev/nvme0n1p2 mitigations=off nowatchdog quiet rw 6 | -------------------------------------------------------------------------------- /boot/loader/entries/linux-lqx.conf: -------------------------------------------------------------------------------- 1 | title Linux LQX - MuQSS 2 | linux /vmlinuz-linux-lqx 3 | initrd /amd-ucode.img 4 | initrd /initramfs-linux-lqx-fallback.img 5 | options root=/dev/nvme0n1p3 rootflags=subvol=_active/root resume=/dev/nvme0n1p2 mitigations=off nowatchdog quiet rw 6 | -------------------------------------------------------------------------------- /boot/loader/entries/linux-lts.conf: -------------------------------------------------------------------------------- 1 | title Linux LTS 2 | linux /vmlinuz-linux-lts 3 | initrd /amd-ucode.img 4 | initrd /initramfs-linux-lts.img 5 | options root=/dev/nvme0n1p3 rootflags=subvol=_active/root resume=/dev/nvme0n1p2 mitigations=off nowatchdog quiet rw 6 | -------------------------------------------------------------------------------- /boot/loader/entries/linux-muqss-v3.conf: -------------------------------------------------------------------------------- 1 | title Linux MUQSS v3 2 | linux /vmlinuz-linux-tkg-muqss-generic_v3 3 | initrd /amd-ucode.img 4 | initrd /initramfs-linux-tkg-muqss-generic_v3.img 5 | options root=/dev/nvme0n1p3 rootflags=subvol=_active/root resume=/dev/nvme0n1p2 mitigations=off nowatchdog quiet rw 6 | -------------------------------------------------------------------------------- /boot/loader/entries/linux-muqss.conf: -------------------------------------------------------------------------------- 1 | title Linux MUQSS 2 | linux /vmlinuz-linux-tkg-muqss-zen2 3 | initrd /amd-ucode.img 4 | initrd /initramfs-linux-tkg-muqss-zen2.img 5 | options root=/dev/nvme0n1p5 resume=/dev/nvme0n1p7 mitigations=off systemd.unified_cgroup_hierarchy=1 nowatchdog quiet rw 6 | -------------------------------------------------------------------------------- /boot/loader/entries/linux-tkg-muqss-v3.conf: -------------------------------------------------------------------------------- 1 | title Linux Tkg MuQSS v3 2 | linux /vmlinuz-linux-tkg-muqss-generic_v3 3 | initrd /amd-ucode.img 4 | initrd /initramfs-linux-tkg-muqss-generic_v3.img 5 | options root=/dev/nvme0n1p3 rootflags=subvol=_active/root resume=/dev/nvme0n1p2 mitigations=off nowatchdog quiet rw 6 | -------------------------------------------------------------------------------- /boot/loader/entries/linux-zen.conf: -------------------------------------------------------------------------------- 1 | title Linux Zen 2 | linux /vmlinuz-linux-zen 3 | initrd /amd-ucode.img 4 | initrd /initramfs-linux-zen.img 5 | options root=/dev/nvme0n1p3 rootflags=subvol=_active/root resume=/dev/nvme0n1p2 mitigations=off nowatchdog quiet rw 6 | -------------------------------------------------------------------------------- /boot/loader/loader.conf: -------------------------------------------------------------------------------- 1 | timeout 5 2 | console-mode max 3 | -------------------------------------------------------------------------------- /boot/loader/random-seed: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Edu4rdSHL/linuxscripts/afd8e609b38ab1de29f389e1ca02ee76ca3897e8/boot/loader/random-seed -------------------------------------------------------------------------------- /devtools/bamvpkgs: -------------------------------------------------------------------------------- 1 | #!/usr/bin/bash 2 | 3 | fshared="/mnt/Shared/bapkgs" 4 | 5 | rm -f "$fshared"/* 6 | if [ -z "$*" ]; then 7 | for file in $(ls *.pkg.tar.xz); do $(sudo mv "$file" "$fshared"); done 8 | exit 9 | else 10 | for file in "${@:1}"; do $(sudo mv "$file" "$fshared"); done 11 | fi 12 | -------------------------------------------------------------------------------- /devtools/inspkgs: -------------------------------------------------------------------------------- 1 | #!/usr/bin/bash 2 | 3 | fshared="/mnt/Shared/bapkgs" 4 | 5 | if [ -z "$*" ]; then 6 | cd "$fshared" 7 | pkgs=$(ls *.pkg.tar.xz) 8 | sudo pacman -U $pkgs 9 | fi 10 | -------------------------------------------------------------------------------- /docs/.gitkeep: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Edu4rdSHL/linuxscripts/afd8e609b38ab1de29f389e1ca02ee76ca3897e8/docs/.gitkeep -------------------------------------------------------------------------------- /docs/dns.md: -------------------------------------------------------------------------------- 1 | # Info about DNS and their SNI 2 | 1.1.1.1#cloudflare-dns.com 3 | 8.8.8.8#dns.google 4 | -------------------------------------------------------------------------------- /docs/firefox-profile-in-RAM.md: -------------------------------------------------------------------------------- 1 | # Perfil de Firefox en RAM 2 | 3 | Suponiendo que hay memoria de sobra, colocar la memoria caché de Firefox o el perfil completo en la RAM ofrece ventajas significativas. A pesar de que optar por la ruta parcial es una mejora en sí misma, esto último puede hacer que Firefox sea aún más sensible en comparación con su configuración por defecto. Los beneficios incluyen, entre otros: 4 | 5 | 1. Cantidad reducida de lecturas/ escrituras en disco; 6 | 2. Mayor velocidad de respuesta; 7 | 3. Muchas operaciones dentro de Firefox, como la búsqueda rápida y las consultas de historial, son casi instantáneas. 8 | 9 | Para ello podemos hacer uso de un tmpfs Sistema de archivos temporal). 10 | 11 | Debido a que los datos colocados allí no pueden sobrevivir a un apagado, es necesario un script responsable de la sincronización con la unidad antes del cierre del sistema si se desea la persistencia (lo que es probable en el caso de la reubicación del perfil). Por otro lado, solo la reubicación de la memoria caché es una solución rápida y menos inclusiva que acelerará ligeramente la experiencia del usuario al vaciar la memoria caché de Firefox en cada reinicio. 12 | 13 | **Antes de iniciar:** 14 | 15 | Realice una copia de seguridad de su perfil actual de Firefox y asegúrese de que solo tendrá uno en el directorio $HOME/.mozilla/firefox. Normalmente los perfiles presentan un nombre similar a xyz.default, para esta guía usaremos como referencia el nombre anterior. Para conocer que perfiles tiene en su equipo, ejecute lo siguiente: 16 | 17 | ``` 18 | $ ls $HOME/.mozilla/firefox |grep *.default 19 | ``` 20 | 21 | Luego haga una copia de seguridad de su perfil con: 22 | 23 | ``` 24 | $ tar zcvfp ~/firefox_profile_backup.tar.gz ~/.mozilla/firefox/xyz.default 25 | ``` 26 | 27 | Finalmente instale [rsync](https://rsync.samba.org) en su equipo. Suele estar en los repositorios de todas las distribuciones así que solo basta con que instales el paquete rsync con su administrador de paquetes (pacman, apt, dnf, etc). 28 | 29 | # **El script que coloca el perfil de Firefox en RAM:** 30 | 31 | El script lo encontrarán en este enlace: https://github.com/edu4rdshl/linuxscripts/blob/master/user-bin/firefox-sync, deben crear un archivo dentro de $HOME/.local/bin con el nombre *firefox-sync*, una vez creado deben seguir estos pasos: 32 | 33 | Terminar todos los procesos de firefox corriendo: 34 | 35 | ``` 36 | $ killall firefox firefox-bin 37 | ``` 38 | 39 | Darle permisos de ejecución al archivo creado: 40 | 41 | ``` 42 | $ chmod +x ~/.local/bin/firefox-sync 43 | ``` 44 | 45 | Encontrar el nombre del perfil de Firefox: 46 | 47 | ``` 48 | $ ls ~/.mozilla/firefox 49 | ``` 50 | 51 | Ejecutar el binario seguido del nombre del perfil: 52 | 53 | ``` 54 | $ ~/.local/bin/firefox-sync 55 | ``` 56 | 57 | En nuestro caso que el perfil se llama xyz.default, se ejecutaría este comando: 58 | 59 | ``` 60 | $ ~/.local/bin/firefox-sync xyz.default 61 | ``` 62 | 63 | # Caché en RAM 64 | 65 | Para colocar nuestra caché en la memoria RAM solo hace falta modificar unas pocas cosas dentro de about:config en Firefox, sigue estos pasos: 66 | 67 | 1. Ingresa en la barra de búsqueda esto: about:config, luego das en aceptar los riesgos. 68 | 2. Buscar el parámetro `browser.cache.disk.enable` y lo cambias a **false**. 69 | 3. Buscas el parámetro `browser.cache.memory.enable` y lo cambias a **true**. 70 | 4. Creas un nuevo registro del tipo **integer** con el parámetro `browser.cache.memory.capacity` y le asignas un valor de **-1**, de este modo Firefox se encargará de asignar de manera automática la caché en RAM usando estos parámetros: 71 | 72 | Memoria RAM Física Memoria Cache (en KB) 73 | 32 MB 2048 74 | 64 MB 4096 75 | 128 MB 6144 76 | 256 MB 10240 77 | 512 MB 14336 78 | 1 GB 18432 79 | 2 GB 24576 80 | 4 GB 30720 81 | 8 GB y más 32768 82 | 83 | # **Automatizando la tarea:** 84 | 85 | **Mediante systemD** 86 | 87 | Los pasos explicados a continuación solo funcionan si su distribución GNU/Linux está usnado SystemD. 88 | 89 | Cree un archivo llamado *firefox-profile@.service* dentro del directorio *$HOME/.config/systemd/user*, si el directorio no existe debe crearlo. El archivo debe contener el contenido que se encuentra en este link: https://github.com/edu4rdshl/linuxscripts/blob/master/user/firefox-profile@.service. No olvide reemplazar **YourUsername** con el nombre de usuario que usted tenga en su sistema. 90 | 91 | Luego ejecute estos comandos: 92 | 93 | ``` 94 | $ systemctl --user daemon-reload 95 | $ systemctl --user enable firefox-profile@.service 96 | $ systemctl --user start firefox-profile@.service 97 | ``` 98 | No olvide reemplazar `` con el nombre de su perfil, en nuestro caso xyz.default. 99 | 100 | **Mediante CRON** 101 | 102 | Ejecute: 103 | 104 | ``` 105 | crontab -e 106 | ``` 107 | 108 | Añada esta línea para ejecutar el script cada 30 minutos: 109 | 110 | `*/30 * * * * ~/.local/bin/firefox-sync` 111 | 112 | O esta para hacerlo cada 2 horas: 113 | 114 | `0 */2 * * * ~/.local/bin/firefox-sync` 115 | 116 | **Para ejecutarlo al hacer login/cerrar sesión:** 117 | 118 | Ejecute este comando para añadir las líneas necesarias en *.bash_logout* y *.bash_profile*: 119 | 120 | `$ echo '~/.local/bin/firefox-sync' | tee -a ~/.bash_logout ~/.bash_profile >/dev/null` 121 | 122 | Con esto finalizamos, no olvides registrarte en nuestro foro: https://foro.securityhacklabs.net, unirte a nuestro servidor de chat Discord en: https://chat.securityhacklabs.net, en él podrás tratar temas de hacking, sistemas operativos y todo lo relacionado con seguridad en general. Las instrucciones para instalar Discord en todas las plataformas las encontrará aquí: https://github.com/sechacklabs/hacking/blob/master/instalacion%20de%20discord.md 123 | -------------------------------------------------------------------------------- /docs/fix-epicgames-looking-for-patches.md: -------------------------------------------------------------------------------- 1 | 1. Run Winetricks in Uplay's Lutris instance 2 | 2. Follow : "Select the default wineprefix" > "Install a Windows DLL or component" 3 | 3. Check "crypt32", validate, and wait for the installation to complete 4 | 4. Close Winetricks 5 | 5. Run Wine configuration in Uplay's Lutris instance 6 | 6. In the "Library" tab, select the "crypt32" entry in the list 7 | 7. Click "Edit", select "integrated (Wine)", validate 8 | 8. Close Wine configuration 9 | 10 | -------------------------------------------------------------------------------- /docs/fix-rust-windows.md: -------------------------------------------------------------------------------- 1 | If you receive messages about an undefined reference to `__onexitbegin` or something similar, you may have an older version of crt2.o, instead of the version that ming has available to it. 2 | 3 | Try this in your terminal and see if it helps: 4 | 5 | ```bash 6 | $ cd ~/.rustup/toolchains/stable-x86_64-unknown-linux-gnu/lib/rustlib/x86_64-pc-windows-gnu/lib/ 7 | $ mv crt2.o crt2.o.bak 8 | $ cp /usr/x86_64-w64-mingw32/lib/crt2.o ./ 9 | ``` 10 | -------------------------------------------------------------------------------- /etc/.ignore: -------------------------------------------------------------------------------- 1 | 2 | -------------------------------------------------------------------------------- /etc/NetworkManager.conf: -------------------------------------------------------------------------------- 1 | # Configuration file for NetworkManager. 2 | # See "man 5 NetworkManager.conf" for details. 3 | [main] 4 | dns=none 5 | -------------------------------------------------------------------------------- /etc/X11/xinit/xinitrc: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | 3 | userresources=$HOME/.Xresources 4 | usermodmap=$HOME/.Xmodmap 5 | sysresources=/etc/X11/xinit/.Xresources 6 | sysmodmap=/etc/X11/xinit/.Xmodmap 7 | 8 | # merge in defaults and keymaps 9 | 10 | if [ -f $sysresources ]; then 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | xrdb -merge $sysresources 19 | 20 | fi 21 | 22 | if [ -f $sysmodmap ]; then 23 | xmodmap $sysmodmap 24 | fi 25 | 26 | if [ -f "$userresources" ]; then 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | xrdb -merge "$userresources" 35 | 36 | fi 37 | 38 | if [ -f "$usermodmap" ]; then 39 | xmodmap "$usermodmap" 40 | fi 41 | 42 | # start some nice programs 43 | 44 | if [ -d /etc/X11/xinit/xinitrc.d ] ; then 45 | for f in /etc/X11/xinit/xinitrc.d/?*.sh ; do 46 | [ -x "$f" ] && . "$f" 47 | done 48 | unset f 49 | fi 50 | 51 | twm & 52 | xclock -geometry 50x50-1+1 & 53 | xterm -geometry 80x50+494+51 & 54 | xterm -geometry 80x20+494-0 & 55 | exec xterm -geometry 80x66+0+0 -name login 56 | -------------------------------------------------------------------------------- /etc/X11/xinit/xinitrc.d/40-libcanberra-gtk-module.sh: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | 3 | case "${DESKTOP_SESSION-}" in 4 | gnome*) # Done by gnome-settings-daemon 5 | ;; 6 | *) 7 | # Extra check in case DESKTOP_SESSION is not set correctly 8 | if [ -z "${GNOME_DESKTOP_SESSION_ID-}" ]; then 9 | GTK_MODULES="${GTK_MODULES:+$GTK_MODULES:}canberra-gtk-module" 10 | export GTK_MODULES 11 | fi 12 | ;; 13 | esac 14 | -------------------------------------------------------------------------------- /etc/X11/xinit/xinitrc.d/50-systemd-user.sh: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | 3 | systemctl --user import-environment DISPLAY XAUTHORITY 4 | 5 | if which dbus-update-activation-environment >/dev/null 2>&1; then 6 | dbus-update-activation-environment DISPLAY XAUTHORITY 7 | fi 8 | -------------------------------------------------------------------------------- /etc/X11/xinit/xserverrc: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | exec /usr/bin/X -nolisten tcp "$@" 3 | -------------------------------------------------------------------------------- /etc/X11/xorg.conf.d/00-keyboard.conf: -------------------------------------------------------------------------------- 1 | # Written by systemd-localed(8), read by systemd-localed and Xorg. It's 2 | # probably wise not to edit this file manually. Use localectl(1) to 3 | # instruct systemd-localed to update it. 4 | Section "InputClass" 5 | Identifier "system-keyboard" 6 | MatchIsKeyboard "on" 7 | Option "XkbLayout" "latam" 8 | Option "XkbModel" "pc105" 9 | Option "XkbOptions" "terminate:ctrl_alt_bksp" 10 | EndSection 11 | -------------------------------------------------------------------------------- /etc/X11/xorg.conf.d/20-intel.conf: -------------------------------------------------------------------------------- 1 | Section "OutputClass" 2 | Identifier "Intel Graphics" 3 | Driver "intel" 4 | Option "TearFree" "true" 5 | EndSection 6 | -------------------------------------------------------------------------------- /etc/X11/xorg.conf.d/40-libinput.conf: -------------------------------------------------------------------------------- 1 | Section "InputClass" 2 | Identifier "libinput touchpad catchall" 3 | MatchIsTouchpad "on" 4 | MatchDevicePath "/dev/input/event*" 5 | Driver "libinput" 6 | Option "Tapping" "on" 7 | EndSection 8 | -------------------------------------------------------------------------------- /etc/X11/xorg.conf.d/41-wired-mouse.conf: -------------------------------------------------------------------------------- 1 | Section "InputClass" 2 | Identifier "Wired Mouse" 3 | MatchDriver "libinput" 4 | MatchIsPointer "yes" 5 | Option "AccelSpeed" "1.0" 6 | EndSection 7 | -------------------------------------------------------------------------------- /etc/autofs: -------------------------------------------------------------------------------- 1 | # 2 | # Init syatem options 3 | # 4 | # If the kernel supports using the autofs miscellanous device 5 | # and you wish to use it you must set this configuration option 6 | # to "yes" otherwise it will not be used. 7 | # 8 | USE_MISC_DEVICE="yes" 9 | # 10 | # Use OPTIONS to add automount(8) command line options that 11 | # will be used when the daemon is started. 12 | # 13 | #OPTIONS="" 14 | # 15 | -------------------------------------------------------------------------------- /etc/bashrc: -------------------------------------------------------------------------------- 1 | # 2 | # ~/.bashrc 3 | # 4 | 5 | # If not running interactively, don't do anything 6 | [[ $- != *i* ]] && return 7 | 8 | alias ls='ls --color=auto' 9 | PS1='[\u@\h \W]\$ ' 10 | alias pb='curl -F c=@- https://ptpb.pw/' 11 | MSF_DATABASE_CONFIG='/etc/metasploit/database.yml' 12 | export MSF_DATABASE_CONFIG 13 | -------------------------------------------------------------------------------- /etc/blacklist.conf: -------------------------------------------------------------------------------- 1 | blacklist r8822be 2 | -------------------------------------------------------------------------------- /etc/cpupower: -------------------------------------------------------------------------------- 1 | # Define CPUs governor 2 | # valid governors: ondemand, performance, powersave, conservative, userspace. 3 | governor='performance' 4 | 5 | # Limit frequency range 6 | # Valid suffixes: Hz, kHz (default), MHz, GHz, THz 7 | #min_freq="2.25GHz" 8 | #max_freq="3GHz" 9 | 10 | # Specific frequency to be set. 11 | # Requires userspace governor to be available. 12 | # Do not set governor field if you use this one. 13 | #freq= 14 | 15 | # Utilizes cores in one processor package/socket first before processes are 16 | # scheduled to other processor packages/sockets. 17 | # See man (1) CPUPOWER-SET for additional details. 18 | #mc_scheduler= 19 | 20 | # Utilizes thread siblings of one processor core first before processes are 21 | # scheduled to other cores. See man (1) CPUPOWER-SET for additional details. 22 | #smp_scheduler= 23 | 24 | # Sets a register on supported Intel processore which allows software to convey 25 | # its policy for the relative importance of performance versus energy savings to 26 | # the processor. See man (1) CPUPOWER-SET for additional details. 27 | #perf_bias= 28 | 29 | # vim:set ts=2 sw=2 ft=sh et: 30 | -------------------------------------------------------------------------------- /etc/default/grub: -------------------------------------------------------------------------------- 1 | # GRUB boot loader configuration 2 | 3 | GRUB_DEFAULT="1>2" 4 | GRUB_TIMEOUT=2 5 | GRUB_DISTRIBUTOR="Arch" 6 | GRUB_CMDLINE_LINUX_DEFAULT="quiet" 7 | GRUB_CMDLINE_LINUX="cryptdevice=/dev/sda3:luks:allow-discards resume=/dev/vg0/swap zswap.enabled=1 zswap.compressor=lz4 zswap.max_pool_percent=20 zswap.zpool=z3fold vm.dirty_ratio=3 vm.dirty_background_ratio=2 vm.vfs_cache_pressure=60 apparmor=1 security=apparmor" 8 | 9 | # Preload both GPT and MBR modules so that they are not missed 10 | GRUB_PRELOAD_MODULES="part_gpt part_msdos" 11 | 12 | # Uncomment to enable booting from LUKS encrypted devices 13 | GRUB_ENABLE_CRYPTODISK=y 14 | 15 | # Uncomment to enable Hidden Menu, and optionally hide the timeout count 16 | #GRUB_HIDDEN_TIMEOUT=5 17 | #GRUB_HIDDEN_TIMEOUT_QUIET=true 18 | 19 | # Uncomment to use basic console 20 | GRUB_TERMINAL_INPUT=console 21 | 22 | # Uncomment to disable graphical terminal 23 | #GRUB_TERMINAL_OUTPUT=console 24 | 25 | # The resolution used on graphical terminal 26 | # note that you can use only modes which your graphic card supports via VBE 27 | # you can see them in real GRUB with the command `vbeinfo' 28 | GRUB_GFXMODE=auto 29 | 30 | # Uncomment to allow the kernel use the same resolution used by grub 31 | GRUB_GFXPAYLOAD_LINUX=keep 32 | 33 | # Uncomment if you want GRUB to pass to the Linux kernel the old parameter 34 | # format "root=/dev/xxx" instead of "root=/dev/disk/by-uuid/xxx" 35 | #GRUB_DISABLE_LINUX_UUID=true 36 | 37 | # Uncomment to disable generation of recovery mode menu entries 38 | GRUB_DISABLE_RECOVERY=true 39 | 40 | # Uncomment and set to the desired menu colors. Used by normal and wallpaper 41 | # modes only. Entries specified as foreground/background. 42 | #GRUB_COLOR_NORMAL="light-blue/black" 43 | #GRUB_COLOR_HIGHLIGHT="light-cyan/blue" 44 | 45 | # Uncomment one of them for the gfx desired, a image background or a gfxtheme 46 | #GRUB_BACKGROUND="/path/to/wallpaper" 47 | #GRUB_THEME="/path/to/gfxtheme" 48 | 49 | # Uncomment to get a beep at GRUB start 50 | #GRUB_INIT_TUNE="480 440 1" 51 | 52 | # Uncomment to make GRUB remember the last selection. This requires to 53 | # set 'GRUB_DEFAULT=saved' above. 54 | #GRUB_SAVEDEFAULT="true" 55 | -------------------------------------------------------------------------------- /etc/dhcpcd.conf: -------------------------------------------------------------------------------- 1 | # A sample configuration for dhcpcd. 2 | # See dhcpcd.conf(5) for details. 3 | 4 | # Allow users of this group to interact with dhcpcd via the control socket. 5 | #controlgroup wheel 6 | 7 | # Inform the DHCP server of our hostname for DDNS. 8 | hostname 9 | 10 | # Use the hardware address of the interface for the Client ID. 11 | #clientid 12 | # or 13 | # Use the same DUID + IAID as set in DHCPv6 for DHCPv4 ClientID as per RFC4361. 14 | # Some non-RFC compliant DHCP servers do not reply with this set. 15 | # In this case, comment out duid and enable clientid above. 16 | duid 17 | 18 | # Persist interface configuration when dhcpcd exits. 19 | persistent 20 | 21 | # Rapid commit support. 22 | # Safe to enable by default because it requires the equivalent option set 23 | # on the server to actually work. 24 | option rapid_commit 25 | 26 | # A list of options to request from the DHCP server. 27 | option domain_name_servers, domain_name, domain_search, host_name 28 | option classless_static_routes 29 | # Most distributions have NTP support. 30 | option ntp_servers 31 | # Respect the network MTU. This is applied to DHCP routes. 32 | option interface_mtu 33 | 34 | # A ServerID is required by RFC2131. 35 | require dhcp_server_identifier 36 | 37 | # Generate Stable Private IPv6 Addresses instead of hardware based ones 38 | # slaac private 39 | noipv4ll 40 | nohook resolv.conf 41 | ipv4only 42 | noarp 43 | -------------------------------------------------------------------------------- /etc/firejail/dino.local: -------------------------------------------------------------------------------- 1 | # Dino local configuration 2 | 3 | whitelist ${HOME}/Documents 4 | whitelist ${HOME}/Pictures 5 | whitelist ${HOME}/Videos 6 | -------------------------------------------------------------------------------- /etc/firejail/discord.local: -------------------------------------------------------------------------------- 1 | # Discord local profile 2 | 3 | whitelist ${HOME}/Documents 4 | whitelist ${HOME}/Pictures 5 | whitelist ${HOME}/Videos 6 | whitelist ${HOME}/Rust 7 | -------------------------------------------------------------------------------- /etc/firejail/firefox-common.local: -------------------------------------------------------------------------------- 1 | # Firefox local profile 2 | 3 | whitelist ${HOME}/Documents 4 | whitelist ${HOME}/Pictures 5 | whitelist ${HOME}/Videos 6 | whitelist ${HOME}/Rust 7 | -------------------------------------------------------------------------------- /etc/firejail/gajim.local: -------------------------------------------------------------------------------- 1 | # Gajim local profile 2 | # ignore "include disable-xdg.inc" 3 | 4 | ignore blacklist ${DOCUMENTS} 5 | ignore blacklist ${MUSIC} 6 | ignore blacklist ${PICTURES} 7 | ignore blacklist ${VIDEOS} 8 | 9 | whitelist ${HOME}/Documents 10 | whitelist ${HOME}/Pictures 11 | whitelist ${HOME}/Videos 12 | whitelist ${HOME}/Rust 13 | -------------------------------------------------------------------------------- /etc/firejail/globals.local: -------------------------------------------------------------------------------- 1 | # enable Apparmor globally 2 | apparmor 3 | 4 | # Whitelist sx xauthority 5 | whitelist ${HOME}/.local/share/sx/xauthority 6 | -------------------------------------------------------------------------------- /etc/firejail/qpdfview.local: -------------------------------------------------------------------------------- 1 | ignore nodbus 2 | -------------------------------------------------------------------------------- /etc/firejail/signal-desktop.local: -------------------------------------------------------------------------------- 1 | # Signal local profile 2 | 3 | whitelist ${HOME}/Documents 4 | whitelist ${HOME}/Pictures 5 | -------------------------------------------------------------------------------- /etc/firejail/steam.local: -------------------------------------------------------------------------------- 1 | # Profile for steam 2 | whitelist ${HOME}/.local/share/Steam 3 | -------------------------------------------------------------------------------- /etc/firejail/virtualbox.local: -------------------------------------------------------------------------------- 1 | # VirtualBox local profile 2 | 3 | whitelist ${HOME}/Shared 4 | whitelist ${HOME}/.Genymobile 5 | -------------------------------------------------------------------------------- /etc/grub: -------------------------------------------------------------------------------- 1 | # GRUB boot loader configuration 2 | 3 | GRUB_DEFAULT=0 4 | GRUB_TIMEOUT=2 5 | GRUB_DISTRIBUTOR="Arch" 6 | GRUB_CMDLINE_LINUX_DEFAULT="quiet" 7 | GRUB_CMDLINE_LINUX="cryptdevice=/dev/sda3:luks:allow-discards ipv6.disable_ipv6=1 zswap.enabled=1 zswap.compressor=lz4 zswap.max_pool_percent=20 zswap.zpool=z3fold vm.dirty_ratio=3 vm.dirty_background_ratio=2 vm.vfs_cache_pressure=60" 8 | 9 | # Preload both GPT and MBR modules so that they are not missed 10 | GRUB_PRELOAD_MODULES="part_gpt part_msdos" 11 | 12 | # Uncomment to enable booting from LUKS encrypted devices 13 | GRUB_ENABLE_CRYPTODISK=y 14 | 15 | # Uncomment to enable Hidden Menu, and optionally hide the timeout count 16 | #GRUB_HIDDEN_TIMEOUT=5 17 | #GRUB_HIDDEN_TIMEOUT_QUIET=true 18 | 19 | # Uncomment to use basic console 20 | GRUB_TERMINAL_INPUT=console 21 | 22 | # Uncomment to disable graphical terminal 23 | #GRUB_TERMINAL_OUTPUT=console 24 | 25 | # The resolution used on graphical terminal 26 | # note that you can use only modes which your graphic card supports via VBE 27 | # you can see them in real GRUB with the command `vbeinfo' 28 | GRUB_GFXMODE=auto 29 | 30 | # Uncomment to allow the kernel use the same resolution used by grub 31 | GRUB_GFXPAYLOAD_LINUX=keep 32 | 33 | # Uncomment if you want GRUB to pass to the Linux kernel the old parameter 34 | # format "root=/dev/xxx" instead of "root=/dev/disk/by-uuid/xxx" 35 | #GRUB_DISABLE_LINUX_UUID=true 36 | 37 | # Uncomment to disable generation of recovery mode menu entries 38 | GRUB_DISABLE_RECOVERY=true 39 | 40 | # Uncomment and set to the desired menu colors. Used by normal and wallpaper 41 | # modes only. Entries specified as foreground/background. 42 | #GRUB_COLOR_NORMAL="light-blue/black" 43 | #GRUB_COLOR_HIGHLIGHT="light-cyan/blue" 44 | 45 | # Uncomment one of them for the gfx desired, a image background or a gfxtheme 46 | #GRUB_BACKGROUND="/path/to/wallpaper" 47 | #GRUB_THEME="/path/to/gfxtheme" 48 | 49 | # Uncomment to get a beep at GRUB start 50 | #GRUB_INIT_TUNE="480 440 1" 51 | 52 | # Uncomment to make GRUB remember the last selection. This requires to 53 | # set 'GRUB_DEFAULT=saved' above. 54 | #GRUB_SAVEDEFAULT="true" 55 | -------------------------------------------------------------------------------- /etc/gvimrc: -------------------------------------------------------------------------------- 1 | syn on 2 | set guifont=Monospace\ Bold\ 12 3 | let do_syntax_sel_menu = 1|runtime! synmenu.vim|aunmenu &Syntax.&Show\ File\ Types\ in\ Menu 4 | colors industry 5 | set background=dark 6 | 7 | " Uncomment the following to have Vim jump to the last position when 8 | " reopening a file 9 | if has("autocmd") 10 | au BufReadPost * if line("'\"") > 1 && line("'\"") <= line("$") | exe "normal! g'\"" | endif 11 | endif 12 | 13 | " Uncomment the following to have Vim load indentation rules and plugins 14 | " according to the detected filetype. 15 | if has("autocmd") 16 | filetype plugin indent on 17 | endif 18 | 19 | set showmatch 20 | "set mouse=a 21 | set tabstop=4 22 | set expandtab 23 | set shiftwidth=4 24 | set smartindent 25 | set autoindent 26 | set cindent 27 | " 28 | -------------------------------------------------------------------------------- /etc/hostname: -------------------------------------------------------------------------------- 1 | SecHackLabs 2 | -------------------------------------------------------------------------------- /etc/iwd/main.conf: -------------------------------------------------------------------------------- 1 | # IWD config file, taked from https://git.kernel.org/pub/scm/network/wireless/iwd.git/tree/doc/main.conf 2 | 3 | # Note: The lines starting with # are ignored. To enable any of the 4 | # configuration options below, remove # from the beginning of a respective line. 5 | 6 | #[EAP] 7 | #mtu=1400 8 | 9 | #[EAPoL] 10 | #max_4way_handshake_time=5 11 | 12 | [General] 13 | # 14 | # Enable/Disable sending EAPoL packets over NL80211. Enabled by default if 15 | # kernel support is available. Doing so sends all EAPoL traffic over directly 16 | # to the supplicant process (iwd) instead of putting these on the Ethernet 17 | # device. Since only the supplicant can usually make sense / decrypt these 18 | # packets, enabling this option can save some CPU cycles on your system and 19 | # avoids certain long-standing race conditions. 20 | # 21 | # Note, iwmon cannot currently spy on unicast packets sent over netlink, so 22 | # if you need to capture EAPoL packets (e.g. for debugging) then this option 23 | # should be set to False. 24 | #ControlPortOverNL80211=True 25 | # 26 | # Set the threshold RSSI for roaming 27 | #roam_rssi_threshold=-70 28 | # 29 | # Do not allow iwd to destroy / recreate wireless interfaces at startup, 30 | # including default interfaces. Enable this behavior if your wireless card 31 | # driver is buggy or does not allow such an operation, or if you do not want 32 | # iwd to manage netdevs for another reason. For most users with an upstream 33 | # driver it should be safe to omit/disable this setting. 34 | # use_default_interface=true 35 | 36 | [Scan] 37 | # 38 | # Disable periodic scan. Setting this option to 'true' will prevent iwd from 39 | # issuing the periodic scans for the available networks while disconnected. 40 | # The behavior of the user-initiated scans isn't affected. 41 | # The periodic scan is enabled by default. 42 | #disable_periodic_scan=true 43 | # 44 | 45 | # 46 | # Disable roaming scan. Setting this option to 'true' will prevent iwd from 47 | # issuing the roaming scans for the available networks while connected. 48 | # The behavior of the user-initiated scans isn't affected. 49 | # The roaming scan is enabled by default. 50 | disable_roaming_scan=true 51 | # 52 | 53 | # 54 | # Disable MAC address randomization. Setting this option to 'true' will prevent 55 | # the capable network adapters from randomizing MAC addresses during the active 56 | # scans for networks, thus decreasing user privacy. 57 | # The MAC address randomization is enabled by default. 58 | #disable_mac_address_randomization=true 59 | # 60 | 61 | [Blacklist] 62 | # 63 | # Configure BSS blacklist time/multipler/max. If a connection to a BSS fails for 64 | # whatever reason we can avoid connecting to this BSS in the future by 65 | # blacklisting it. These three options configure how long a BSS is blacklisted 66 | # for. 67 | # 68 | # bss_blacklist_time - The initial timeout for a blacklisted BSS in 69 | # seconds. 70 | # bss_blacklist_multiplier - What bss_blacklist_time is multiplied by after 71 | # future unsuccessful connection attempts in 72 | # seconds. 73 | # bss_blacklist_max_time - The maximum time a BSS can be blacklisted for in 74 | # seconds. 75 | # 76 | #bss_blacklist_time=60 77 | #bss_blacklist_multiplier=30 78 | #bss_blacklist_max_time=86400 79 | 80 | [Rank] 81 | # 82 | # Manually specify a 5G ranking factor. 5G networks are already preferred but 83 | # only in terms of calculated data rate, which is RSSI dependent. This means it 84 | # is still possible for IWD to prefer a 2.4GHz AP in the right conditions. 85 | # This ranking provides a way to further weight the ranking towards 5G if 86 | # required. Also, a lower 5G factor could be used to weight 2.4GHz if that is 87 | # desired. 88 | # 89 | #rank_5g_factor=1.0 90 | -------------------------------------------------------------------------------- /etc/lz5.conf: -------------------------------------------------------------------------------- 1 | lz4_compress 2 | -------------------------------------------------------------------------------- /etc/mirrorlist: -------------------------------------------------------------------------------- 1 | Server = https://mirrors.kernel.org/archlinux/$repo/os/$arch 2 | -------------------------------------------------------------------------------- /etc/mkinitcpio.conf: -------------------------------------------------------------------------------- 1 | # vim:set ft=sh 2 | # MODULES 3 | # The following modules are loaded before any boot hooks are 4 | # run. Advanced users may wish to specify all system modules 5 | # in this array. For instance: 6 | # MODULES=(piix ide_disk reiserfs) 7 | MODULES=(ext4 lz4 lz4_compress) 8 | 9 | # BINARIES 10 | # This setting includes any additional binaries a given user may 11 | # wish into the CPIO image. This is run last, so it may be used to 12 | # override the actual binaries included by a given hook 13 | # BINARIES are dependency parsed, so you may safely ignore libraries 14 | BINARIES=() 15 | 16 | # FILES 17 | # This setting is similar to BINARIES above, however, files are added 18 | # as-is and are not parsed in any way. This is useful for config files. 19 | FILES=() 20 | 21 | # HOOKS 22 | # This is the most important setting in this file. The HOOKS control the 23 | # modules and scripts added to the image, and what happens at boot time. 24 | # Order is important, and it is recommended that you do not change the 25 | # order in which HOOKS are added. Run 'mkinitcpio -H ' for 26 | # help on a given hook. 27 | # 'base' is _required_ unless you know precisely what you are doing. 28 | # 'udev' is _required_ in order to automatically load modules 29 | # 'filesystems' is _required_ unless you specify your fs modules in MODULES 30 | # Examples: 31 | ## This setup specifies all modules in the MODULES setting above. 32 | ## No raid, lvm2, or encrypted root is needed. 33 | # HOOKS=(base) 34 | # 35 | ## This setup will autodetect all modules for your system and should 36 | ## work as a sane default 37 | # HOOKS=(base udev autodetect block filesystems) 38 | # 39 | ## This setup will generate a 'full' image which supports most systems. 40 | ## No autodetection is done. 41 | # HOOKS=(base udev block filesystems) 42 | # 43 | ## This setup assembles a pata mdadm array with an encrypted root FS. 44 | ## Note: See 'mkinitcpio -H mdadm' for more information on raid devices. 45 | # HOOKS=(base udev block mdadm encrypt filesystems) 46 | # 47 | ## This setup loads an lvm2 volume group on a usb device. 48 | # HOOKS=(base udev block lvm2 filesystems) 49 | # 50 | ## NOTE: If you have /usr on a separate partition, you MUST include the 51 | # usr, fsck and shutdown hooks. 52 | HOOKS=(base udev autodetect modconf block encrypt lvm2 filesystems keyboard resume fsck) 53 | 54 | # COMPRESSION 55 | # Use this to compress the initramfs image. By default, gzip compression 56 | # is used. Use 'cat' to create an uncompressed image. 57 | #COMPRESSION="gzip" 58 | #COMPRESSION="bzip2" 59 | #COMPRESSION="lzma" 60 | #COMPRESSION="xz" 61 | #COMPRESSION="lzop" 62 | #COMPRESSION="lz4" 63 | 64 | # COMPRESSION_OPTIONS 65 | # Additional options for the compressor 66 | #COMPRESSION_OPTIONS=() 67 | -------------------------------------------------------------------------------- /etc/mkinitcpio.d/linux-hardened.preset: -------------------------------------------------------------------------------- 1 | # mkinitcpio preset file for the 'linux-hardened' package 2 | 3 | ALL_config="/etc/mkinitcpio.conf" 4 | ALL_kver="/boot/vmlinuz-linux-hardened" 5 | 6 | PRESETS=('default' 'fallback') 7 | 8 | #default_config="/etc/mkinitcpio.conf" 9 | default_image="/boot/initramfs-linux-hardened.img" 10 | default_options="-S resume" 11 | 12 | #fallback_config="/etc/mkinitcpio.conf" 13 | fallback_image="/boot/initramfs-linux-hardened-fallback.img" 14 | fallback_options="-S autodetect" 15 | -------------------------------------------------------------------------------- /etc/mkinitcpio.d/linux.preset: -------------------------------------------------------------------------------- 1 | # mkinitcpio preset file for the 'linux' package 2 | 3 | ALL_config="/etc/mkinitcpio.conf" 4 | ALL_kver="/boot/vmlinuz-linux" 5 | 6 | PRESETS=('default' 'fallback') 7 | 8 | #default_config="/etc/mkinitcpio.conf" 9 | default_image="/boot/initramfs-linux.img" 10 | #default_options="" 11 | 12 | #fallback_config="/etc/mkinitcpio.conf" 13 | fallback_image="/boot/initramfs-linux-fallback.img" 14 | fallback_options="-S autodetect" 15 | -------------------------------------------------------------------------------- /etc/modprobe.d/blacklist.conf: -------------------------------------------------------------------------------- 1 | blacklist pcspkr 2 | blacklist rtw88_8822be 3 | blacklist rtwpci 4 | blacklist rtw88 5 | blacklist btrtl 6 | blacklist btusb 7 | blacklist iTCO_wdt 8 | -------------------------------------------------------------------------------- /etc/modprobe.d/bonding.conf: -------------------------------------------------------------------------------- 1 | options bonding mode=active-backup miimon=100 primary=eth0 max_bonds=0 2 | -------------------------------------------------------------------------------- /etc/modprobe.d/i915.conf: -------------------------------------------------------------------------------- 1 | options i915 fastboot=1 2 | -------------------------------------------------------------------------------- /etc/modprobe.d/nvidia.conf: -------------------------------------------------------------------------------- 1 | options nvidia-drm modeset=1 2 | options nvidia NVreg_UsePageAttributeTable=1 3 | options nvidia NVreg_EnablePCIeGen3=1 4 | options nvidia NVreg_EnableMSI=1 5 | options nvidia NVreg_InitializeSystemMemoryAllocations=0 6 | options nvidia NVreg_EnableStreamMemOPs=1 7 | options nvidia NVreg_RegistryDwords="PowerMizerEnable=0x1;PerfLevelSrc=0x3333;PowerMizerDefaultAC=0x1" 8 | -------------------------------------------------------------------------------- /etc/modprobe.d/r8822be.conf: -------------------------------------------------------------------------------- 1 | options r8822be aspm=0 2 | -------------------------------------------------------------------------------- /etc/modules-load.d/virtualbox.conf: -------------------------------------------------------------------------------- 1 | vboxdrv 2 | vboxnetflt 3 | vboxnetadp 4 | vboxpci 5 | -------------------------------------------------------------------------------- /etc/mt7601u.conf: -------------------------------------------------------------------------------- 1 | options mt7601u ips=0 fwlps=0 2 | -------------------------------------------------------------------------------- /etc/pacman.conf: -------------------------------------------------------------------------------- 1 | # 2 | # /etc/pacman.conf 3 | # 4 | # See the pacman.conf(5) manpage for option and repository directives 5 | 6 | # 7 | # GENERAL OPTIONS 8 | # 9 | [options] 10 | # The following paths are commented out with their default values listed. 11 | # If you wish to use different paths, uncomment and update the paths. 12 | #RootDir = / 13 | #DBPath = /var/lib/pacman/ 14 | #CacheDir = /var/cache/pacman/pkg/ 15 | #LogFile = /var/log/pacman.log 16 | #GPGDir = /etc/pacman.d/gnupg/ 17 | #HookDir = /etc/pacman.d/hooks/ 18 | HoldPkg = pacman glibc 19 | #XferCommand = /usr/bin/curl -L -C - -f -o %o %u 20 | #XferCommand = /usr/bin/wget --passive-ftp -c -O %o %u 21 | #CleanMethod = KeepInstalled 22 | Architecture = auto 23 | 24 | # Pacman won't upgrade packages listed in IgnorePkg and members of IgnoreGroup 25 | #IgnorePkg = 26 | #IgnoreGroup = 27 | 28 | #NoUpgrade = 29 | #NoExtract = 30 | 31 | # Misc options 32 | #UseSyslog 33 | #Color 34 | #TotalDownload 35 | #CheckSpace 36 | #VerbosePkgLists 37 | Color 38 | ParallelDownloads = 6 39 | VerbosePkgLists 40 | ILoveCandy 41 | 42 | # By default, pacman accepts packages signed by keys that its local keyring 43 | # trusts (see pacman-key and its man page), as well as unsigned packages. 44 | SigLevel = Required DatabaseOptional 45 | LocalFileSigLevel = Optional 46 | #RemoteFileSigLevel = Required 47 | 48 | # NOTE: You must run `pacman-key --init` before first using pacman; the local 49 | # keyring can then be populated with the keys of all official Arch Linux 50 | # packagers with `pacman-key --populate archlinux`. 51 | 52 | # 53 | # REPOSITORIES 54 | # - can be defined here or included from another file 55 | # - pacman will search repositories in the order defined here 56 | # - local/custom mirrors can be added here or in separate files 57 | # - repositories listed first will take precedence when packages 58 | # have identical names, regardless of version number 59 | # - URLs will have $repo replaced by the name of the current repo 60 | # - URLs will have $arch replaced by the name of the architecture 61 | # 62 | # Repository entries are of the format: 63 | # [repo-name] 64 | # Server = ServerName 65 | # Include = IncludePath 66 | # 67 | # The header [repo-name] is crucial - it must be present and 68 | # uncommented to enable the repo. 69 | # 70 | 71 | # The testing repositories are disabled by default. To enable, uncomment the 72 | # repo name header and Include lines. You can add preferred servers immediately 73 | # after the header, and they will be used before the default mirrors. 74 | 75 | # [testing] 76 | # Include = /etc/pacman.d/mirrorlist 77 | 78 | [core] 79 | Include = /etc/pacman.d/mirrorlist 80 | 81 | [extra] 82 | Include = /etc/pacman.d/mirrorlist 83 | 84 | # [community-testing] 85 | # Include = /etc/pacman.d/mirrorlist 86 | 87 | [community] 88 | Include = /etc/pacman.d/mirrorlist 89 | 90 | # If you want to run 32 bit applications on your x86_64 system, 91 | # enable the multilib repositories as required here. 92 | 93 | # [multilib-testing] 94 | # Include = /etc/pacman.d/mirrorlist 95 | 96 | [multilib] 97 | Include = /etc/pacman.d/mirrorlist 98 | 99 | # An example of a custom package repository. See the pacman manpage for 100 | # tips on creating your own repositories. 101 | #[custom] 102 | #SigLevel = Optional TrustAll 103 | #Server = file:///home/custompkgs 104 | 105 | [chaotic-aur] 106 | Include = /etc/pacman.d/chaotic-mirrorlist 107 | 108 | [blackarch] 109 | Server = https://blackarch.org/blackarch/$repo/os/$arch 110 | #SigLevel = Never 111 | 112 | [archlinuxcn] 113 | Include = /etc/pacman.d/archlinuxcn-mirrorlist 114 | -------------------------------------------------------------------------------- /etc/passwd: -------------------------------------------------------------------------------- 1 | # This file contains some information for 2 | # the passwd (1) command and other tools 3 | # creating or modifying passwords. 4 | 5 | # Define default crypt hash. 6 | # CRYPT={des,md5,blowfish,sha256,sha512} 7 | CRYPT=sha512 8 | 9 | # Use another crypt hash for group passwords. 10 | # This is used by gpasswd, fallback is the CRYPT entry. 11 | # GROUP_CRYPT=des 12 | 13 | # We can override the default for a specific service 14 | # by appending the service name (FILES, YP, NISPLUS, LDAP). 15 | # 16 | # For local files, use a more secure hash. We 17 | # don't need to be portable here: 18 | CRYPT_FILES=sha512 19 | # 20 | # For NIS, we should always use DES: 21 | CRYPT_YP=des 22 | 23 | # sometimes we need to specify special options for a hash (variable 24 | # is prepended by the name of the crypt hash). In case of blowfish 25 | # and sha* this is the number of rounds 26 | # blowfish: 4-31 27 | # BLOWFISH_CRYPT_FILES=5 28 | # sha256/sha512: 1000-9999999 29 | # SHA512_CRYPT_FILES=1000 30 | 31 | -------------------------------------------------------------------------------- /etc/pulse/client.conf: -------------------------------------------------------------------------------- 1 | # This file is part of PulseAudio. 2 | # 3 | # PulseAudio is free software; you can redistribute it and/or modify 4 | # it under the terms of the GNU Lesser General Public License as published by 5 | # the Free Software Foundation; either version 2 of the License, or 6 | # (at your option) any later version. 7 | # 8 | # PulseAudio is distributed in the hope that it will be useful, but 9 | # WITHOUT ANY WARRANTY; without even the implied warranty of 10 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU 11 | # General Public License for more details. 12 | # 13 | # You should have received a copy of the GNU Lesser General Public License 14 | # along with PulseAudio; if not, see . 15 | 16 | ## Configuration file for PulseAudio clients. See pulse-client.conf(5) for 17 | ## more information. Default values are commented out. Use either ; or # for 18 | ## commenting. 19 | 20 | ; default-sink = 21 | ; default-source = 22 | ; default-server = 23 | ; default-dbus-server = 24 | 25 | autospawn = no 26 | ; autospawn = yes 27 | ; daemon-binary = /usr/bin/pulseaudio 28 | ; extra-arguments = --log-target=syslog 29 | 30 | ; cookie-file = 31 | 32 | ; enable-shm = yes 33 | ; shm-size-bytes = 0 # setting this 0 will use the system-default, usually 64 MiB 34 | 35 | ; auto-connect-localhost = no 36 | ; auto-connect-display = no 37 | -------------------------------------------------------------------------------- /etc/pulse/daemon.conf: -------------------------------------------------------------------------------- 1 | # This file is part of PulseAudio. 2 | # 3 | # PulseAudio is free software; you can redistribute it and/or modify 4 | # it under the terms of the GNU Lesser General Public License as published by 5 | # the Free Software Foundation; either version 2 of the License, or 6 | # (at your option) any later version. 7 | # 8 | # PulseAudio is distributed in the hope that it will be useful, but 9 | # WITHOUT ANY WARRANTY; without even the implied warranty of 10 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU 11 | # General Public License for more details. 12 | # 13 | # You should have received a copy of the GNU Lesser General Public License 14 | # along with PulseAudio; if not, see . 15 | 16 | ## Configuration file for the PulseAudio daemon. See pulse-daemon.conf(5) for 17 | ## more information. Default values are commented out. Use either ; or # for 18 | ## commenting. 19 | 20 | ; daemonize = no 21 | ; fail = yes 22 | ; allow-module-loading = yes 23 | ; allow-exit = yes 24 | ; use-pid-file = yes 25 | ; system-instance = no 26 | ; local-server-type = user 27 | ; enable-shm = yes 28 | ; enable-memfd = yes 29 | ; shm-size-bytes = 0 # setting this 0 will use the system-default, usually 64 MiB 30 | ; lock-memory = no 31 | ; cpu-limit = no 32 | 33 | ; high-priority = yes 34 | ; nice-level = -11 35 | 36 | ; realtime-scheduling = yes 37 | ; realtime-priority = 5 38 | 39 | ; exit-idle-time = 20 40 | ; scache-idle-time = 20 41 | 42 | ; dl-search-path = (depends on architecture) 43 | 44 | ; load-default-script-file = yes 45 | ; default-script-file = /etc/pulse/default.pa 46 | 47 | ; log-target = auto 48 | ; log-level = notice 49 | ; log-meta = no 50 | ; log-time = no 51 | ; log-backtrace = 0 52 | 53 | ; resample-method = speex-float-1 54 | ; avoid-resampling = false 55 | ; enable-remixing = yes 56 | ; remixing-use-all-sink-channels = yes 57 | ; remixing-produce-lfe = no 58 | ; remixing-consume-lfe = no 59 | ; lfe-crossover-freq = 0 60 | 61 | ; flat-volumes = no 62 | 63 | ; rescue-streams = yes 64 | 65 | ; rlimit-fsize = -1 66 | ; rlimit-data = -1 67 | ; rlimit-stack = -1 68 | ; rlimit-core = -1 69 | ; rlimit-as = -1 70 | ; rlimit-rss = -1 71 | ; rlimit-nproc = -1 72 | ; rlimit-nofile = 256 73 | ; rlimit-memlock = -1 74 | ; rlimit-locks = -1 75 | ; rlimit-sigpending = -1 76 | ; rlimit-msgqueue = -1 77 | ; rlimit-nice = 31 78 | ; rlimit-rtprio = 9 79 | ; rlimit-rttime = 200000 80 | 81 | ; default-sample-format = s16le 82 | ; default-sample-rate = 44100 83 | ; alternate-sample-rate = 48000 84 | ; default-sample-channels = 2 85 | ; default-channel-map = front-left,front-right 86 | 87 | ; default-fragments = 4 88 | ; default-fragment-size-msec = 25 89 | 90 | ; enable-deferred-volume = yes 91 | ; deferred-volume-safety-margin-usec = 8000 92 | ; deferred-volume-extra-delay-usec = 0 93 | -------------------------------------------------------------------------------- /etc/pulse/default.pa: -------------------------------------------------------------------------------- 1 | #!/usr/bin/pulseaudio -nF 2 | # 3 | # This file is part of PulseAudio. 4 | # 5 | # PulseAudio is free software; you can redistribute it and/or modify it 6 | # under the terms of the GNU Lesser General Public License as published by 7 | # the Free Software Foundation; either version 2 of the License, or 8 | # (at your option) any later version. 9 | # 10 | # PulseAudio is distributed in the hope that it will be useful, but 11 | # WITHOUT ANY WARRANTY; without even the implied warranty of 12 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU 13 | # General Public License for more details. 14 | # 15 | # You should have received a copy of the GNU Lesser General Public License 16 | # along with PulseAudio; if not, see . 17 | 18 | # This startup script is used only if PulseAudio is started per-user 19 | # (i.e. not in system mode) 20 | 21 | .fail 22 | 23 | ### Automatically restore the volume of streams and devices 24 | load-module module-device-restore 25 | load-module module-stream-restore 26 | load-module module-card-restore 27 | 28 | ### Automatically augment property information from .desktop files 29 | ### stored in /usr/share/application 30 | load-module module-augment-properties 31 | 32 | ### Should be after module-*-restore but before module-*-detect 33 | load-module module-switch-on-port-available 34 | 35 | ### Load audio drivers statically 36 | ### (it's probably better to not load these drivers manually, but instead 37 | ### use module-udev-detect -- see below -- for doing this automatically) 38 | #load-module module-alsa-sink 39 | #load-module module-alsa-source device=hw:1,0 40 | #load-module module-oss device="/dev/dsp" sink_name=output source_name=input 41 | #load-module module-oss-mmap device="/dev/dsp" sink_name=output source_name=input 42 | #load-module module-null-sink 43 | #load-module module-pipe-sink 44 | 45 | ### Automatically load driver modules depending on the hardware available 46 | .ifexists module-udev-detect.so 47 | load-module module-udev-detect 48 | .else 49 | ### Use the static hardware detection module (for systems that lack udev support) 50 | load-module module-detect 51 | .endif 52 | 53 | ### Automatically connect sink and source if JACK server is present 54 | .ifexists module-jackdbus-detect.so 55 | .nofail 56 | load-module module-jackdbus-detect channels=2 57 | .fail 58 | .endif 59 | 60 | ### Automatically load driver modules for Bluetooth hardware 61 | .ifexists module-bluetooth-policy.so 62 | load-module module-bluetooth-policy 63 | .endif 64 | 65 | .ifexists module-bluetooth-discover.so 66 | load-module module-bluetooth-discover 67 | .endif 68 | 69 | ### Load several protocols 70 | load-module module-dbus-protocol 71 | .ifexists module-esound-protocol-unix.so 72 | load-module module-esound-protocol-unix 73 | .endif 74 | load-module module-native-protocol-unix 75 | 76 | ### Network access (may be configured with paprefs, so leave this commented 77 | ### here if you plan to use paprefs) 78 | #load-module module-esound-protocol-tcp 79 | #load-module module-native-protocol-tcp 80 | #load-module module-zeroconf-publish 81 | 82 | ### Load the RTP receiver module (also configured via paprefs, see above) 83 | #load-module module-rtp-recv 84 | 85 | ### Load the RTP sender module (also configured via paprefs, see above) 86 | #load-module module-null-sink sink_name=rtp format=s16be channels=2 rate=44100 sink_properties="device.description='RTP Multicast Sink'" 87 | #load-module module-rtp-send source=rtp.monitor 88 | 89 | ### Load additional modules from GSettings. This can be configured with the paprefs tool. 90 | ### Please keep in mind that the modules configured by paprefs might conflict with manually 91 | ### loaded modules. 92 | .ifexists module-gsettings.so 93 | .nofail 94 | load-module module-gsettings 95 | .fail 96 | .endif 97 | 98 | 99 | ### Automatically restore the default sink/source when changed by the user 100 | ### during runtime 101 | ### NOTE: This should be loaded as early as possible so that subsequent modules 102 | ### that look up the default sink/source get the right value 103 | load-module module-default-device-restore 104 | 105 | ### Make sure we always have a sink around, even if it is a null sink. 106 | load-module module-always-sink 107 | 108 | ### Honour intended role device property 109 | load-module module-intended-roles 110 | 111 | ### Automatically suspend sinks/sources that become idle for too long 112 | load-module module-suspend-on-idle 113 | 114 | ### If autoexit on idle is enabled we want to make sure we only quit 115 | ### when no local session needs us anymore. 116 | .ifexists module-console-kit.so 117 | load-module module-console-kit 118 | .endif 119 | .ifexists module-systemd-login.so 120 | load-module module-systemd-login 121 | .endif 122 | 123 | ### Enable positioned event sounds 124 | load-module module-position-event-sounds 125 | 126 | ### Cork music/video streams when a phone stream is active 127 | load-module module-role-cork 128 | 129 | ### Modules to allow autoloading of filters (such as echo cancellation) 130 | ### on demand. module-filter-heuristics tries to determine what filters 131 | ### make sense, and module-filter-apply does the heavy-lifting of 132 | ### loading modules and rerouting streams. 133 | load-module module-filter-heuristics 134 | load-module module-filter-apply 135 | 136 | ### Make some devices default 137 | #set-default-sink output 138 | #set-default-source input 139 | 140 | load-module module-native-protocol-unix auth-anonymous=1 socket=/tmp/pa_containers.socket 141 | -------------------------------------------------------------------------------- /etc/pulse/system.pa: -------------------------------------------------------------------------------- 1 | #!/usr/bin/pulseaudio -nF 2 | # 3 | # This file is part of PulseAudio. 4 | # 5 | # PulseAudio is free software; you can redistribute it and/or modify it 6 | # under the terms of the GNU Lesser General Public License as published by 7 | # the Free Software Foundation; either version 2 of the License, or 8 | # (at your option) any later version. 9 | # 10 | # PulseAudio is distributed in the hope that it will be useful, but 11 | # WITHOUT ANY WARRANTY; without even the implied warranty of 12 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU 13 | # General Public License for more details. 14 | # 15 | # You should have received a copy of the GNU Lesser General Public License 16 | # along with PulseAudio; if not, see . 17 | 18 | # This startup script is used only if PulseAudio is started in system 19 | # mode. 20 | 21 | ### Automatically restore the volume of streams and devices 22 | load-module module-device-restore 23 | load-module module-stream-restore 24 | load-module module-card-restore 25 | 26 | ### Automatically load driver modules depending on the hardware available 27 | .ifexists module-udev-detect.so 28 | load-module module-udev-detect 29 | .else 30 | ### Use the static hardware detection module (for systems that lack udev/hal support) 31 | load-module module-detect 32 | .endif 33 | 34 | ### Load several protocols 35 | .ifexists module-esound-protocol-unix.so 36 | load-module module-esound-protocol-unix 37 | .endif 38 | load-module module-native-protocol-unix 39 | 40 | ### Automatically restore the default sink/source when changed by the user 41 | ### during runtime 42 | ### NOTE: This should be loaded as early as possible so that subsequent modules 43 | ### that look up the default sink/source get the right value 44 | load-module module-default-device-restore 45 | 46 | ### Make sure we always have a sink around, even if it is a null sink. 47 | load-module module-always-sink 48 | 49 | ### Automatically suspend sinks/sources that become idle for too long 50 | load-module module-suspend-on-idle 51 | 52 | ### Enable positioned event sounds 53 | load-module module-position-event-sounds 54 | -------------------------------------------------------------------------------- /etc/resolv.conf: -------------------------------------------------------------------------------- 1 | nameserver 127.0.0.1 2 | options timeout:1 3 | -------------------------------------------------------------------------------- /etc/rusnapshot/config-containers.toml: -------------------------------------------------------------------------------- 1 | dest_dir = "/mnt/defvol/_snapshots/" 2 | source_dir = "/var/lib/machines/" 3 | database_file = "/mnt/defvol/_snapshots/rustnapshot.sqlite" 4 | snapshot_prefix = "containers" 5 | keep_only = "1" 6 | -------------------------------------------------------------------------------- /etc/rusnapshot/config-home.toml: -------------------------------------------------------------------------------- 1 | dest_dir = "/mnt/defvol/_snapshots/" 2 | source_dir = "/home/" 3 | database_file = "/mnt/defvol/_snapshots/rustnapshot.sqlite" 4 | snapshot_prefix = "home" 5 | keep_only = "1" 6 | -------------------------------------------------------------------------------- /etc/rusnapshot/config-root.toml: -------------------------------------------------------------------------------- 1 | dest_dir = "/mnt/defvol/_snapshots/" 2 | source_dir = "/" 3 | database_file = "/mnt/defvol/_snapshots/rustnapshot.sqlite" 4 | snapshot_prefix = "root" 5 | keep_only = "1" 6 | -------------------------------------------------------------------------------- /etc/sysctl.d/80-network-tuning.conf: -------------------------------------------------------------------------------- 1 | # Disable Explicit Congestion Notification in TCP 2 | net.ipv4.tcp_ecn=0 3 | 4 | # window scaling 5 | net.ipv4.tcp_window_scaling=1 6 | 7 | # Tuning dedicated memory to network cards 8 | net.core.rmem_default = 1048576 9 | net.core.wmem_default = 1048576 10 | 11 | # UDP tuning 12 | net.ipv4.udp_rmem_min = 8192 13 | net.ipv4.udp_wmem_min = 8192 14 | 15 | # increase linux autotuning tcp buffer limits 16 | net.ipv4.tcp_rmem = 4096 1048576 2097152 17 | net.ipv4.tcp_wmem = 4096 65536 16777216 18 | 19 | # increase TCP max buffer size 20 | net.core.rmem_max=16777216 21 | net.core.wmem_max=16777216 22 | 23 | # Increase number of incoming connections backlog 24 | net.core.netdev_max_backlog=16384 25 | net.core.dev_weight=64 26 | 27 | # Increase number of incoming connections 28 | # net.core.somaxconn=8096 29 | 30 | # Increase the maximum amount of option memory buffers 31 | net.core.optmem_max = 65536 32 | 33 | # Increase the tcp-time-wait buckets pool size to prevent simple DOS attacks 34 | net.ipv4.tcp_max_tw_buckets=1440000 35 | 36 | # try to reuse time-wait connections, but don't recycle them (recycle can break clients behind NAT) 37 | net.ipv4.tcp_tw_reuse=1 38 | 39 | # Limit number of orphans, each orphan can eat up to 16M (max wmem) of unswappable memory 40 | net.ipv4.tcp_max_orphans=16384 41 | net.ipv4.tcp_orphan_retries=0 42 | 43 | # don't cache ssthresh from previous connection 44 | net.ipv4.tcp_no_metrics_save=1 45 | net.ipv4.tcp_moderate_rcvbuf=1 46 | 47 | # Increase size of RPC datagram queue length 48 | net.unix.max_dgram_qlen=50 49 | 50 | # Don't allow the arp table to become bigger than this 51 | net.ipv4.neigh.default.gc_thresh3=2048 52 | 53 | # Tell the gc when to become aggressive with arp table cleaning. 54 | # Adjust this based on size of the LAN. 1024 is suitable for most /24 networks 55 | net.ipv4.neigh.default.gc_thresh2=1024 56 | 57 | # Adjust where the gc will leave arp table alone - set to 32. 58 | net.ipv4.neigh.default.gc_thresh1=32 59 | 60 | # Adjust to arp table gc to clean-up more often 61 | net.ipv4.neigh.default.gc_interval=30 62 | 63 | # Increase TCP queue length 64 | net.ipv4.neigh.default.proxy_qlen=96 65 | net.ipv4.neigh.default.unres_qlen=6 66 | 67 | # Enable Explicit Congestion Notification (RFC 3168), disable it if it doesn't work for you 68 | net.ipv4.tcp_ecn=1 69 | net.ipv4.tcp_reordering=3 70 | 71 | # How many times to retry killing an alive TCP connection 72 | net.ipv4.tcp_retries2=15 73 | net.ipv4.tcp_retries1=3 74 | 75 | # Avoid falling back to slow start after a connection goes idle 76 | # keeps our cwnd large with the keep alive connections (kernel > 3.6) 77 | net.ipv4.tcp_slow_start_after_idle=0 78 | 79 | # Allow the TCP fastopen flag to be used, beware some firewalls do not like TFO! (kernel > 3.7) 80 | net.ipv4.tcp_fastopen=3 81 | 82 | # This will enusre that immediatly subsequent connections use the new values 83 | net.ipv4.route.flush=1 84 | net.ipv6.route.flush=1 85 | 86 | # Tune TCP keepalive parameters 87 | net.ipv4.tcp_keepalive_time = 60 88 | net.ipv4.tcp_keepalive_intvl = 10 89 | net.ipv4.tcp_keepalive_probes = 6 90 | -------------------------------------------------------------------------------- /etc/sysctl.d/90-vm-tuning.conf: -------------------------------------------------------------------------------- 1 | vm.swappiness=0 2 | vm.dirty_ratio = 3 3 | vm.dirty_background_ratio = 2 4 | vm.vfs_cache_pressure = 50 5 | vm.dirty_expire_centisecs = 12000 6 | -------------------------------------------------------------------------------- /etc/systemd/coredump.conf: -------------------------------------------------------------------------------- 1 | # This file is part of systemd. 2 | # 3 | # systemd is free software; you can redistribute it and/or modify it 4 | # under the terms of the GNU Lesser General Public License as published by 5 | # the Free Software Foundation; either version 2.1 of the License, or 6 | # (at your option) any later version. 7 | # 8 | # Entries in this file show the compile time defaults. 9 | # You can change settings by editing this file. 10 | # Defaults can be restored by simply deleting this file. 11 | # 12 | # See coredump.conf(5) for details. 13 | 14 | [Coredump] 15 | #Storage=external 16 | #Compress=yes 17 | #ProcessSizeMax=2G 18 | #ExternalSizeMax=2G 19 | #JournalSizeMax=767M 20 | #MaxUse= 21 | #KeepFree= 22 | -------------------------------------------------------------------------------- /etc/systemd/journal-remote.conf: -------------------------------------------------------------------------------- 1 | # This file is part of systemd. 2 | # 3 | # systemd is free software; you can redistribute it and/or modify it 4 | # under the terms of the GNU Lesser General Public License as published by 5 | # the Free Software Foundation; either version 2.1 of the License, or 6 | # (at your option) any later version. 7 | # 8 | # Entries in this file show the compile time defaults. 9 | # You can change settings by editing this file. 10 | # Defaults can be restored by simply deleting this file. 11 | # 12 | # See journal-remote.conf(5) for details 13 | 14 | [Remote] 15 | # Seal=false 16 | # SplitMode=host 17 | # ServerKeyFile=/etc/ssl/private/journal-remote.pem 18 | # ServerCertificateFile=/etc/ssl/certs/journal-remote.pem 19 | # TrustedCertificateFile=/etc/ssl/ca/trusted.pem 20 | -------------------------------------------------------------------------------- /etc/systemd/journal-upload.conf: -------------------------------------------------------------------------------- 1 | # This file is part of systemd. 2 | # 3 | # systemd is free software; you can redistribute it and/or modify it 4 | # under the terms of the GNU Lesser General Public License as published by 5 | # the Free Software Foundation; either version 2.1 of the License, or 6 | # (at your option) any later version. 7 | # 8 | # Entries in this file show the compile time defaults. 9 | # You can change settings by editing this file. 10 | # Defaults can be restored by simply deleting this file. 11 | # 12 | # See journal-upload.conf(5) for details 13 | 14 | [Upload] 15 | # URL= 16 | # ServerKeyFile=/etc/ssl/private/journal-upload.pem 17 | # ServerCertificateFile=/etc/ssl/certs/journal-upload.pem 18 | # TrustedCertificateFile=/etc/ssl/ca/trusted.pem 19 | -------------------------------------------------------------------------------- /etc/systemd/journald.conf: -------------------------------------------------------------------------------- 1 | # This file is part of systemd. 2 | # 3 | # systemd is free software; you can redistribute it and/or modify it 4 | # under the terms of the GNU Lesser General Public License as published by 5 | # the Free Software Foundation; either version 2.1 of the License, or 6 | # (at your option) any later version. 7 | # 8 | # Entries in this file show the compile time defaults. 9 | # You can change settings by editing this file. 10 | # Defaults can be restored by simply deleting this file. 11 | # 12 | # See journald.conf(5) for details. 13 | 14 | [Journal] 15 | #Storage=volatile 16 | #Compress=yes 17 | #Seal=yes 18 | #SplitMode=uid 19 | #SyncIntervalSec=5m 20 | #RateLimitIntervalSec=30s 21 | #RateLimitBurst=1000 22 | SystemMaxUse=50M 23 | #SystemKeepFree= 24 | #SystemMaxFileSize= 25 | #SystemMaxFiles=100 26 | #RuntimeMaxUse= 27 | #RuntimeKeepFree= 28 | #RuntimeMaxFileSize= 29 | #RuntimeMaxFiles=100 30 | #MaxRetentionSec= 31 | MaxFileSec=1week 32 | #ForwardToSyslog=no 33 | #ForwardToKMsg=no 34 | #ForwardToConsole=no 35 | #ForwardToWall=yes 36 | #TTYPath=/dev/console 37 | #MaxLevelStore=debug 38 | #MaxLevelSyslog=debug 39 | #MaxLevelKMsg=notice 40 | #MaxLevelConsole=info 41 | #MaxLevelWall=emerg 42 | #LineMax=48K 43 | -------------------------------------------------------------------------------- /etc/systemd/journald.conf.pacnew: -------------------------------------------------------------------------------- 1 | # This file is part of systemd. 2 | # 3 | # systemd is free software; you can redistribute it and/or modify it 4 | # under the terms of the GNU Lesser General Public License as published by 5 | # the Free Software Foundation; either version 2.1 of the License, or 6 | # (at your option) any later version. 7 | # 8 | # Entries in this file show the compile time defaults. 9 | # You can change settings by editing this file. 10 | # Defaults can be restored by simply deleting this file. 11 | # 12 | # See journald.conf(5) for details. 13 | 14 | [Journal] 15 | #Storage=auto 16 | #Compress=yes 17 | #Seal=yes 18 | #SplitMode=uid 19 | #SyncIntervalSec=5m 20 | #RateLimitIntervalSec=30s 21 | #RateLimitBurst=10000 22 | #SystemMaxUse= 23 | #SystemKeepFree= 24 | #SystemMaxFileSize= 25 | #SystemMaxFiles=100 26 | #RuntimeMaxUse= 27 | #RuntimeKeepFree= 28 | #RuntimeMaxFileSize= 29 | #RuntimeMaxFiles=100 30 | #MaxRetentionSec= 31 | #MaxFileSec=1month 32 | #ForwardToSyslog=no 33 | #ForwardToKMsg=no 34 | #ForwardToConsole=no 35 | #ForwardToWall=yes 36 | #TTYPath=/dev/console 37 | #MaxLevelStore=debug 38 | #MaxLevelSyslog=debug 39 | #MaxLevelKMsg=notice 40 | #MaxLevelConsole=info 41 | #MaxLevelWall=emerg 42 | #LineMax=48K 43 | #ReadKMsg=yes 44 | -------------------------------------------------------------------------------- /etc/systemd/logind.conf: -------------------------------------------------------------------------------- 1 | # This file is part of systemd. 2 | # 3 | # systemd is free software; you can redistribute it and/or modify it 4 | # under the terms of the GNU Lesser General Public License as published by 5 | # the Free Software Foundation; either version 2.1 of the License, or 6 | # (at your option) any later version. 7 | # 8 | # Entries in this file show the compile time defaults. 9 | # You can change settings by editing this file. 10 | # Defaults can be restored by simply deleting this file. 11 | # 12 | # See logind.conf(5) for details. 13 | 14 | [Login] 15 | #NAutoVTs=1 16 | #ReserveVT=6 17 | #KillUserProcesses=no 18 | #KillOnlyUsers= 19 | #KillExcludeUsers=root 20 | #InhibitDelayMaxSec=5 21 | HandlePowerKey=ignore 22 | #HandleSuspendKey=suspend 23 | #HandleHibernateKey=hibernate 24 | #HandleLidSwitch=suspend 25 | #HandleLidSwitchExternalPower=suspend 26 | #HandleLidSwitchDocked=ignore 27 | #PowerKeyIgnoreInhibited=no 28 | #SuspendKeyIgnoreInhibited=no 29 | #HibernateKeyIgnoreInhibited=no 30 | #LidSwitchIgnoreInhibited=yes 31 | #HoldoffTimeoutSec=30s 32 | #IdleAction=ignore 33 | #IdleActionSec=30min 34 | #RuntimeDirectorySize=10% 35 | #RemoveIPC=yes 36 | #InhibitorsMax=8192 37 | #SessionsMax=8192 38 | #UserTasksMax=33% 39 | -------------------------------------------------------------------------------- /etc/systemd/network/Bonded 8023ad/10-bond1.netdev: -------------------------------------------------------------------------------- 1 | [NetDev] 2 | Name=bond1 3 | Kind=bond 4 | 5 | [Bond] 6 | Mode=802.3ad 7 | PrimaryReselectPolicy=always 8 | TransmitHashPolicy=layer3+4 9 | MIIMonitorSec=1s 10 | LACPTransmitRate=fast 11 | -------------------------------------------------------------------------------- /etc/systemd/network/Bonded 8023ad/10-bond1.network: -------------------------------------------------------------------------------- 1 | [Match] 2 | Name=bond1 3 | 4 | [Network] 5 | DHCP=ipv4 6 | -------------------------------------------------------------------------------- /etc/systemd/network/Bonded 8023ad/20-wired.network: -------------------------------------------------------------------------------- 1 | [Match] 2 | Name=en* 3 | 4 | [Network] 5 | Bond=bond1 6 | -------------------------------------------------------------------------------- /etc/systemd/network/Bonded 8023ad/25-wireless.network: -------------------------------------------------------------------------------- 1 | [Match] 2 | Driver=rtl8192eu 3 | 4 | [Network] 5 | Bond=bond1 6 | -------------------------------------------------------------------------------- /etc/systemd/network/Bonded Active Backup/10-bond1.netdev: -------------------------------------------------------------------------------- 1 | [NetDev] 2 | Name=bond1 3 | Kind=bond 4 | 5 | [Bond] 6 | Mode=active-backup 7 | PrimaryReselectPolicy=always 8 | TransmitHashPolicy=layer3+4 9 | MIIMonitorSec=1s 10 | LACPTransmitRate=fast 11 | -------------------------------------------------------------------------------- /etc/systemd/network/Bonded Active Backup/10-bond1.network: -------------------------------------------------------------------------------- 1 | [Match] 2 | Name=bond1 3 | 4 | [Network] 5 | DHCP=ipv4 6 | LinkLocalAddressing=ipv4 7 | IPv6AcceptRA=no 8 | 9 | [DHCP] 10 | UseDNS=no 11 | -------------------------------------------------------------------------------- /etc/systemd/network/Bonded Active Backup/20-wired.network: -------------------------------------------------------------------------------- 1 | [Match] 2 | Name=en* 3 | 4 | [Network] 5 | Bond=bond1 6 | LinkLocalAddressing=no 7 | PrimarySlave=true 8 | -------------------------------------------------------------------------------- /etc/systemd/network/Bonded Active Backup/25-wireless.network: -------------------------------------------------------------------------------- 1 | [Match] 2 | Driver=mt76x2u 3 | 4 | [Network] 5 | LinkLocalAddressing=no 6 | Bond=bond1 7 | -------------------------------------------------------------------------------- /etc/systemd/network/Containers/10-macvlan.network: -------------------------------------------------------------------------------- 1 | [Match] 2 | Type=ether 3 | 4 | [Network] 5 | DHCP=ipv4 6 | -------------------------------------------------------------------------------- /etc/systemd/network/Normal/20-wired.network: -------------------------------------------------------------------------------- 1 | [Match] 2 | Name=en* 3 | 4 | [Network] 5 | DHCP=ipv4 6 | -------------------------------------------------------------------------------- /etc/systemd/network/Normal/25-wireless.network: -------------------------------------------------------------------------------- 1 | [Match] 2 | Name=wl* 3 | 4 | [Network] 5 | DHCP=ipv4 6 | -------------------------------------------------------------------------------- /etc/systemd/network/Normal/26-wireless.network: -------------------------------------------------------------------------------- 1 | [Match] 2 | Driver=mt76x2u 3 | 4 | [Network] 5 | DHCP=ipv4 6 | -------------------------------------------------------------------------------- /etc/systemd/networkd.conf: -------------------------------------------------------------------------------- 1 | # This file is part of systemd. 2 | # 3 | # systemd is free software; you can redistribute it and/or modify it 4 | # under the terms of the GNU Lesser General Public License as published by 5 | # the Free Software Foundation; either version 2.1 of the License, or 6 | # (at your option) any later version. 7 | # 8 | # Entries in this file show the compile time defaults. 9 | # You can change settings by editing this file. 10 | # Defaults can be restored by simply deleting this file. 11 | # 12 | # See networkd.conf(5) for details 13 | 14 | [DHCP] 15 | #DUIDType=vendor 16 | #DUIDRawData= 17 | -------------------------------------------------------------------------------- /etc/systemd/nspawn/10-macvlan.network: -------------------------------------------------------------------------------- 1 | [Match] 2 | Type=ether 3 | 4 | [Network] 5 | DHCP=ipv4 6 | -------------------------------------------------------------------------------- /etc/systemd/nspawn/20-machines-profile.sh: -------------------------------------------------------------------------------- 1 | export DISPLAY=":0.0" 2 | export LC_ALL="en_US.UTF-8" 3 | export PULSE_SERVER="unix:/tmp/pa_containers.socket" 4 | # Fix Qt4 GUIs ("invalid Pixmap or Window parameter") 5 | export QT_X11_NO_MITSHM=1 6 | -------------------------------------------------------------------------------- /etc/systemd/nspawn/ArchARM.nspawn: -------------------------------------------------------------------------------- 1 | [Exec] 2 | Boot=true 3 | PrivateUsers=pick 4 | 5 | [Files] 6 | Bind=/etc/systemd/nspawn/20-machines-profile.sh:/etc/profile.d/20-machines-profile.sh 7 | BindReadOnly=/tmp/.X11-unix 8 | BindReadOnly=/etc/systemd/nspawn/10-macvlan.network:/etc/systemd/network/10-macvlan.network 9 | 10 | [Network] 11 | MACVLAN=bond1 12 | -------------------------------------------------------------------------------- /etc/systemd/nspawn/ArchLinux.nspawn: -------------------------------------------------------------------------------- 1 | [Exec] 2 | Boot=true 3 | PrivateUsers=false 4 | 5 | [Files] 6 | Bind=/etc/systemd/nspawn/20-machines-profile.sh:/etc/profile.d/20-machines-profile.sh 7 | BindReadOnly=/tmp/.X11-unix 8 | BindReadOnly=/etc/systemd/nspawn/10-macvlan.network:/etc/systemd/network/10-macvlan.network 9 | 10 | [Network] 11 | MACVLAN=bond1 12 | -------------------------------------------------------------------------------- /etc/systemd/nspawn/ArchLinux.nspawn.bk: -------------------------------------------------------------------------------- 1 | [Exec] 2 | Boot=true 3 | PrivateUsers=false 4 | 5 | [Files] 6 | Bind=/dev/dri 7 | Bind=/dev/shm 8 | Bind=/dev/snd 9 | Bind=/dev/nvidia0 10 | Bind=/dev/nvidiactl 11 | Bind=/dev/nvidia-modeset 12 | Bind=/run/user/1000/pulse/native:/tmp/pulse_server 13 | Bind=/etc/systemd/nspawn/20-machines-profile.sh:/etc/profile.d/20-machines-profile.sh 14 | BindReadOnly=/tmp/.X11-unix 15 | 16 | [Network] 17 | VirtualEthernet=true 18 | -------------------------------------------------------------------------------- /etc/systemd/nspawn/BlackArch.nspawn: -------------------------------------------------------------------------------- 1 | [Exec] 2 | Boot=true 3 | Capability=CAP_NET_ADMIN CAP_NET_RAW 4 | PrivateUsers=pick 5 | 6 | [Files] 7 | Bind=/etc/systemd/nspawn/20-machines-profile.sh:/etc/profile.d/20-machines-profile.sh 8 | BindReadOnly=/tmp/.X11-unix 9 | BindReadOnly=/etc/systemd/nspawn/10-macvlan.network:/etc/systemd/network/10-macvlan.network 10 | 11 | [Network] 12 | MACVLAN=bond1 13 | -------------------------------------------------------------------------------- /etc/systemd/nspawn/BlackArch.nspawn.bk: -------------------------------------------------------------------------------- 1 | [Exec] 2 | Boot=true 3 | Capability=CAP_NET_ADMIN 4 | PrivateUsers=false 5 | 6 | [Files] 7 | Bind=/dev/dri 8 | Bind=/dev/shm 9 | Bind=/dev/snd 10 | Bind=/dev/nvidia0 11 | Bind=/dev/nvidiactl 12 | Bind=/dev/nvidia-modeset 13 | Bind=/run/user/1000/pulse/native:/tmp/pulse_server 14 | Bind=/etc/systemd/nspawn/20-machines-profile.sh:/etc/profile.d/20-machines-profile.sh 15 | BindReadOnly=/tmp/.X11-unix 16 | 17 | [Network] 18 | VirtualEthernet=false 19 | -------------------------------------------------------------------------------- /etc/systemd/nspawn/Debian.nspawn: -------------------------------------------------------------------------------- 1 | [Exec] 2 | Boot=true 3 | Capability=CAP_NET_ADMIN 4 | PrivateUsers=pick 5 | 6 | [Files] 7 | Bind=/etc/systemd/nspawn/20-machines-profile.sh:/etc/profile.d/20-machines-profile.sh 8 | BindReadOnly=/tmp/.X11-unix 9 | 10 | [Network] 11 | MACVLAN=bond1 12 | -------------------------------------------------------------------------------- /etc/systemd/nspawn/Debian.nspawn.bk: -------------------------------------------------------------------------------- 1 | [Exec] 2 | Boot=true 3 | PrivateUsers=pick 4 | 5 | [Files] 6 | Bind=/dev/dri 7 | Bind=/dev/shm 8 | Bind=/dev/snd 9 | Bind=/dev/nvidia0 10 | Bind=/dev/nvidiactl 11 | Bind=/dev/nvidia-modeset 12 | Bind=/run/user/1000/pulse/native:/tmp/pulse_server 13 | Bind=/etc/systemd/nspawn/20-machines-profile.sh:/etc/profile.d/20-machines-profile.sh 14 | BindReadOnly=/tmp/.X11-unix 15 | 16 | [Network] 17 | VirtualEthernet=true 18 | -------------------------------------------------------------------------------- /etc/systemd/nspawn/Fedora34.nspawn: -------------------------------------------------------------------------------- 1 | [Exec] 2 | Boot=true 3 | Capability=CAP_NET_ADMIN 4 | PrivateUsers=pick 5 | 6 | [Files] 7 | Bind=/etc/systemd/nspawn/20-machines-profile.sh:/etc/profile.d/20-machines-profile.sh 8 | BindReadOnly=/tmp/.X11-unix 9 | BindReadOnly=/etc/systemd/nspawn/10-macvlan.network:/etc/systemd/network/10-macvlan.network 10 | 11 | [Network] 12 | MACVLAN=bond1 13 | -------------------------------------------------------------------------------- /etc/systemd/nspawn/KaliLinux.nspawn: -------------------------------------------------------------------------------- 1 | [Exec] 2 | Boot=true 3 | Capability=CAP_NET_ADMIN 4 | PrivateUsers=pick 5 | 6 | [Files] 7 | Bind=/etc/systemd/nspawn/20-machines-profile.sh:/etc/profile.d/20-machines-profile.sh 8 | BindReadOnly=/tmp/.X11-unix 9 | BindReadOnly=/etc/systemd/nspawn/10-macvlan.network:/etc/systemd/network/10-macvlan.network 10 | 11 | [Network] 12 | MACVLAN=bond1 13 | -------------------------------------------------------------------------------- /etc/systemd/nspawn/KaliLinux.nspawn.bk: -------------------------------------------------------------------------------- 1 | [Exec] 2 | Boot=true 3 | Capability=CAP_NET_ADMIN 4 | PrivateUsers=false 5 | 6 | [Files] 7 | Bind=/dev/dri 8 | Bind=/dev/shm 9 | Bind=/dev/snd 10 | Bind=/dev/nvidia0 11 | Bind=/dev/nvidiactl 12 | Bind=/dev/nvidia-modeset 13 | Bind=/run/user/1000/pulse/native:/tmp/pulse_server 14 | Bind=/etc/systemd/nspawn/20-machines-profile.sh:/etc/profile.d/20-machines-profile.sh 15 | BindReadOnly=/tmp/.X11-unix 16 | 17 | [Network] 18 | VirtualEthernet=false 19 | -------------------------------------------------------------------------------- /etc/systemd/nspawn/ParrotSec.nspawn.bk: -------------------------------------------------------------------------------- 1 | [Exec] 2 | Boot=true 3 | Capability=CAP_NET_ADMIN 4 | PrivateUsers=false 5 | 6 | [Files] 7 | Bind=/dev/dri 8 | Bind=/dev/shm 9 | Bind=/dev/snd 10 | Bind=/dev/nvidia0 11 | Bind=/dev/nvidiactl 12 | Bind=/dev/nvidia-modeset 13 | Bind=/run/user/1000/pulse/native:/tmp/pulse_server 14 | Bind=/etc/systemd/nspawn/20-machines-profile.sh:/etc/profile.d/20-machines-profile.sh 15 | BindReadOnly=/tmp/.X11-unix 16 | 17 | [Network] 18 | VirtualEthernet=false 19 | -------------------------------------------------------------------------------- /etc/systemd/nspawn/README.md: -------------------------------------------------------------------------------- 1 | This Nspawn configuration allow you to run graphical apps inside the container on X11 systems only. You need additonally to configure Xauthority or xhost to allow X connections to the host server. See https://wiki.archlinux.org/index.php/Systemd-nspawn#Use_an_X_environment 2 | -------------------------------------------------------------------------------- /etc/systemd/nspawn/SoundContainer.nspawn: -------------------------------------------------------------------------------- 1 | [Exec] 2 | Boot=true 3 | Capability=CAP_NET_ADMIN 4 | PrivateUsers=pick 5 | 6 | [Files] 7 | Bind=/etc/systemd/nspawn/20-machines-profile.sh:/etc/profile.d/20-machines-profile.sh 8 | Bind=/tmp/pa_containers.socket 9 | Bind=/dev/shm 10 | Bind=/dev/snd 11 | BindReadOnly=/tmp/.X11-unix 12 | 13 | [Network] 14 | MACVLAN=bond1 15 | -------------------------------------------------------------------------------- /etc/systemd/resolved.conf: -------------------------------------------------------------------------------- 1 | # This file is part of systemd. 2 | # 3 | # systemd is free software; you can redistribute it and/or modify it 4 | # under the terms of the GNU Lesser General Public License as published by 5 | # the Free Software Foundation; either version 2.1 of the License, or 6 | # (at your option) any later version. 7 | # 8 | # Entries in this file show the compile time defaults. 9 | # You can change settings by editing this file. 10 | # Defaults can be restored by simply deleting this file. 11 | # 12 | # See resolved.conf(5) for details 13 | 14 | [Resolve] 15 | #DNS=1.1.1.1 9.9.9.9 16 | #FallbackDNS=1.1.1.1 9.9.9.9 17 | #Domains= 18 | #LLMNR=yes 19 | #MulticastDNS=yes 20 | #DNSSEC=no 21 | #DNSOverTLS=no 22 | Cache=yes 23 | #DNSStubListener=udp 24 | 25 | -------------------------------------------------------------------------------- /etc/systemd/resolved.conf.d/custom.conf: -------------------------------------------------------------------------------- 1 | [Resolve] 2 | DNS=1.1.1.1#cloudlfare-dns.com 8.8.8.8#dns.google 9.9.9.9#dns.quad9.net 3 | Domains=~. 4 | DNSSEC=true 5 | DNSOverTLS=yes 6 | -------------------------------------------------------------------------------- /etc/systemd/resolved.conf.pacnew: -------------------------------------------------------------------------------- 1 | # This file is part of systemd. 2 | # 3 | # systemd is free software; you can redistribute it and/or modify it 4 | # under the terms of the GNU Lesser General Public License as published by 5 | # the Free Software Foundation; either version 2.1 of the License, or 6 | # (at your option) any later version. 7 | # 8 | # Entries in this file show the compile time defaults. 9 | # You can change settings by editing this file. 10 | # Defaults can be restored by simply deleting this file. 11 | # 12 | # See resolved.conf(5) for details 13 | 14 | [Resolve] 15 | #DNS= 16 | #FallbackDNS=1.1.1.1 9.9.9.10 8.8.8.8 2606:4700:4700::1111 2620:fe::10 2001:4860:4860::8888 17 | #Domains= 18 | #LLMNR=yes 19 | #MulticastDNS=yes 20 | #DNSSEC=allow-downgrade 21 | #DNSOverTLS=no 22 | #Cache=yes 23 | #DNSStubListener=yes 24 | #ReadEtcHosts=yes 25 | -------------------------------------------------------------------------------- /etc/systemd/sleep.conf: -------------------------------------------------------------------------------- 1 | # This file is part of systemd. 2 | # 3 | # systemd is free software; you can redistribute it and/or modify it 4 | # under the terms of the GNU Lesser General Public License as published by 5 | # the Free Software Foundation; either version 2.1 of the License, or 6 | # (at your option) any later version. 7 | # 8 | # Entries in this file show the compile time defaults. 9 | # You can change settings by editing this file. 10 | # Defaults can be restored by simply deleting this file. 11 | # 12 | # See systemd-sleep.conf(5) for details 13 | 14 | [Sleep] 15 | #AllowSuspend=yes 16 | #AllowHibernation=yes 17 | #AllowSuspendThenHibernate=yes 18 | #AllowHybridSleep=yes 19 | #SuspendMode= 20 | #SuspendState=mem standby freeze 21 | #HibernateMode=platform shutdown 22 | #HibernateState=disk 23 | #HybridSleepMode=suspend platform shutdown 24 | #HybridSleepState=disk 25 | HibernateDelaySec=60min 26 | -------------------------------------------------------------------------------- /etc/systemd/swap.conf: -------------------------------------------------------------------------------- 1 | ################################################################################ 2 | # Defaults are optimized for general usage 3 | ################################################################################ 4 | 5 | ################################################################################ 6 | # You can override any settings by files in: 7 | # /etc/systemd/swap.conf.d/*.conf 8 | ################################################################################ 9 | 10 | ################################################################################ 11 | # Zswap 12 | # 13 | # Kernel >= 3.11 14 | # Zswap create compress cache between swap and memory for reduce IO 15 | # https://www.kernel.org/doc/Documentation/vm/zswap.txt 16 | 17 | zswap_enabled=1 18 | zswap_compressor=lz4 # lzo lz4 19 | zswap_max_pool_percent=25 # 1-99 20 | zswap_zpool=zbud # zbud z3fold 21 | 22 | ################################################################################ 23 | # ZRam 24 | # 25 | # Kernel >= 3.15 26 | # Zram compression streams count for additional information see: 27 | # https://www.kernel.org/doc/Documentation/blockdev/zram.txt 28 | 29 | zram_enabled=0 30 | zram_size=$(($RAM_SIZE/4)) # This is 1/4 of ram size by default. 31 | zram_streams=$NCPU 32 | zram_alg=lz4 # lzo lz4 deflate lz4hc 842 - for Linux 4.8.4 33 | zram_prio=32767 # 1 - 32767 34 | 35 | ################################################################################ 36 | # Swap File Chunked 37 | # Allocate swap files dynamically 38 | # For btrfs fallback to swapfile + loop will be used 39 | # ex. Min swap size 512M, Max 8*512M 40 | swapfc_enabled=0 41 | swapfc_force_use_loop=0 # Force usage of swapfile + loop 42 | swapfc_frequency=1s # How often check free swap space 43 | swapfc_chunk_size=512M # Allocate size of swap chunk 44 | swapfc_max_count=8 # 0 - unlimited, note: 32 is a kernel maximum 45 | swapfc_free_swap_perc=15 # Add new chunk if free < 15% 46 | # Remove chunk if free > 15+40% & chunk count > 2 47 | swapfc_path=/var/lib/systemd-swap/swapfc/ 48 | # Only for swapfile + loop 49 | swapfc_nocow=1 # Disable CoW on swapfile 50 | swapfc_directio=1 # Use directio for loop dev 51 | swapfc_force_preallocated=0 # Will preallocate created files 52 | 53 | ################################################################################ 54 | # Swap devices 55 | # Find and auto swapon all available swap devices 56 | swapd_auto_swapon=1 57 | swapd_prio=1024 58 | -------------------------------------------------------------------------------- /etc/systemd/system.conf: -------------------------------------------------------------------------------- 1 | # This file is part of systemd. 2 | # 3 | # systemd is free software; you can redistribute it and/or modify it 4 | # under the terms of the GNU Lesser General Public License as published by 5 | # the Free Software Foundation; either version 2.1 of the License, or 6 | # (at your option) any later version. 7 | # 8 | # Entries in this file show the compile time defaults. 9 | # You can change settings by editing this file. 10 | # Defaults can be restored by simply deleting this file. 11 | # 12 | # See systemd-system.conf(5) for details. 13 | 14 | [Manager] 15 | #LogLevel=info 16 | #LogTarget=journal-or-kmsg 17 | #LogColor=yes 18 | #LogLocation=no 19 | #DumpCore=yes 20 | #ShowStatus=yes 21 | #CrashChangeVT=no 22 | #CrashShell=no 23 | #CrashReboot=no 24 | #CtrlAltDelBurstAction=reboot-force 25 | #CPUAffinity=1 2 26 | #RuntimeWatchdogSec=0 27 | #ShutdownWatchdogSec=10min 28 | #WatchdogDevice= 29 | #CapabilityBoundingSet= 30 | #NoNewPrivileges=no 31 | #SystemCallArchitectures= 32 | #TimerSlackNSec= 33 | #DefaultTimerAccuracySec=1min 34 | #DefaultStandardOutput=journal 35 | #DefaultStandardError=inherit 36 | #DefaultTimeoutStartSec=90s 37 | #DefaultTimeoutStopSec=90s 38 | #DefaultRestartSec=100ms 39 | #DefaultStartLimitIntervalSec=10s 40 | #DefaultStartLimitBurst=5 41 | #DefaultEnvironment= 42 | #DefaultCPUAccounting=no 43 | #DefaultIOAccounting=no 44 | #DefaultIPAccounting=no 45 | #DefaultBlockIOAccounting=no 46 | #DefaultMemoryAccounting=yes 47 | #DefaultTasksAccounting=yes 48 | #DefaultTasksMax=15% 49 | #DefaultLimitCPU= 50 | #DefaultLimitFSIZE= 51 | #DefaultLimitDATA= 52 | #DefaultLimitSTACK= 53 | #DefaultLimitCORE= 54 | #DefaultLimitRSS= 55 | #DefaultLimitNOFILE=1024:524288 56 | #DefaultLimitAS= 57 | #DefaultLimitNPROC= 58 | #DefaultLimitMEMLOCK= 59 | #DefaultLimitLOCKS= 60 | #DefaultLimitSIGPENDING= 61 | #DefaultLimitMSGQUEUE= 62 | #DefaultLimitNICE= 63 | #DefaultLimitRTPRIO= 64 | #DefaultLimitRTTIME= 65 | -------------------------------------------------------------------------------- /etc/systemd/system/bluetooth.target.wants/bluetooth.service: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/bluetooth.service -------------------------------------------------------------------------------- /etc/systemd/system/dbus-org.bluez.service: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/bluetooth.service -------------------------------------------------------------------------------- /etc/systemd/system/dbus-org.freedesktop.network1.service: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/systemd-networkd.service -------------------------------------------------------------------------------- /etc/systemd/system/dbus-org.freedesktop.resolve1.service: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/systemd-resolved.service -------------------------------------------------------------------------------- /etc/systemd/system/dbus-org.freedesktop.timesync1.service: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/systemd-timesyncd.service -------------------------------------------------------------------------------- /etc/systemd/system/disable-turbo-boost.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Disable Turbo Boost on Intel CPU 3 | 4 | [Service] 5 | ExecStart=/bin/sh -c "/usr/bin/echo 1 > /sys/devices/system/cpu/intel_pstate/no_turbo" 6 | ExecStop=/bin/sh -c "/usr/bin/echo 0 > /sys/devices/system/cpu/intel_pstate/no_turbo" 7 | RemainAfterExit=yes 8 | 9 | [Install] 10 | WantedBy=sysinit.target 11 | -------------------------------------------------------------------------------- /etc/systemd/system/dnscrypt-proxy.socket.d/.#override.conf71faa65b5fe17951: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Edu4rdSHL/linuxscripts/afd8e609b38ab1de29f389e1ca02ee76ca3897e8/etc/systemd/system/dnscrypt-proxy.socket.d/.#override.conf71faa65b5fe17951 -------------------------------------------------------------------------------- /etc/systemd/system/fix-wifi.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Start workaround for RT8822BE wireless cards wifi issue when using the new rtwpci driver. 3 | 4 | [Service] 5 | Type=idle 6 | # See https://github.com/Edu4rdSHL/linuxscripts/blob/master/system-bin/upnet 7 | ExecStart=/usr/bin/upnet 8 | 9 | [Install] 10 | WantedBy=sysinit.target 11 | -------------------------------------------------------------------------------- /etc/systemd/system/getty.target.wants/getty@tty1.service: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/getty@.service -------------------------------------------------------------------------------- /etc/systemd/system/graphical.target.wants/threema-web.service: -------------------------------------------------------------------------------- 1 | /etc/systemd/system/threema-web.service -------------------------------------------------------------------------------- /etc/systemd/system/iwd.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Wireless service 3 | Before=network.target 4 | Wants=network.target 5 | 6 | [Service] 7 | Type=dbus 8 | BusName=net.connman.iwd 9 | ExecStart=/usr/lib/iwd/iwd 10 | LimitNPROC=1 11 | Restart=on-failure 12 | 13 | [Install] 14 | WantedBy=multi-user.target 15 | -------------------------------------------------------------------------------- /etc/systemd/system/lvm2-monitor.service: -------------------------------------------------------------------------------- 1 | /dev/null -------------------------------------------------------------------------------- /etc/systemd/system/multi-user.target.wants/apparmor.service: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/apparmor.service -------------------------------------------------------------------------------- /etc/systemd/system/multi-user.target.wants/irqbalance.service: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/irqbalance.service -------------------------------------------------------------------------------- /etc/systemd/system/multi-user.target.wants/libvirtd.service: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/libvirtd.service -------------------------------------------------------------------------------- /etc/systemd/system/multi-user.target.wants/lm_sensors.service: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/lm_sensors.service -------------------------------------------------------------------------------- /etc/systemd/system/multi-user.target.wants/randomvpn.service: -------------------------------------------------------------------------------- 1 | /etc/systemd/system/randomvpn.service -------------------------------------------------------------------------------- /etc/systemd/system/multi-user.target.wants/remote-fs.target: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/remote-fs.target -------------------------------------------------------------------------------- /etc/systemd/system/multi-user.target.wants/systemd-networkd.service: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/systemd-networkd.service -------------------------------------------------------------------------------- /etc/systemd/system/multi-user.target.wants/systemd-resolved.service: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/systemd-resolved.service -------------------------------------------------------------------------------- /etc/systemd/system/multi-user.target.wants/ufw.service: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/ufw.service -------------------------------------------------------------------------------- /etc/systemd/system/netctl@failover.service: -------------------------------------------------------------------------------- 1 | .include /usr/lib/systemd/system/netctl@.service 2 | 3 | [Unit] 4 | Description=A wired connection with failover to wireless 5 | BindsTo=sys-subsystem-net-devices-enp2s0.device 6 | BindsTo=sys-subsystem-net-devices-wlp3s0.device 7 | After=sys-subsystem-net-devices-enp2s0.device 8 | After=sys-subsystem-net-devices-wlp3s0.device 9 | -------------------------------------------------------------------------------- /etc/systemd/system/randomvpn.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Random VPN client 3 | After=syslog.target network-online.target 4 | Wants=network-online.target 5 | 6 | [Service] 7 | Type=oneshot 8 | WorkingDirectory=/etc/openvpn/client/ 9 | ProtectHome=true 10 | ProtectSystem=strict 11 | ExecStart=/usr/bin/randomvpn start 12 | RemainAfterExit=yes 13 | # CapabilityBoundingSet=CAP_IPC_LOCK CAP_NET_ADMIN CAP_NET_RAW CAP_SETGID CAP_SETUID CAP_SYS_CHROOT CAP_DAC_OVERRIDE LimitNPROC=10 14 | # DeviceAllow=/dev/null rw 15 | # DeviceAllow=/dev/net/tun rw 16 | ExecStop=/usr/bin/randomvpn stop 17 | KillMode=process 18 | 19 | [Install] 20 | WantedBy=multi-user.target 21 | -------------------------------------------------------------------------------- /etc/systemd/system/rnetworking.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Restart networking services if internet connection not detected 3 | After=network-online.target iwd.service 4 | 5 | [Service] 6 | Type=oneshot 7 | ProtectHome=true 8 | ProtectSystem=strict 9 | ExecStart=/usr/bin/rnetworking 10 | CapabilityBoundingSet=CAP_IPC_LOCK CAP_NET_ADMIN CAP_NET_RAW CAP_SETGID CAP_SETUID CAP_SYS_CHROOT CAP_DAC_OVERRIDE LimitNPROC=10 11 | DeviceAllow=/dev/null rw 12 | DeviceAllow=/dev/net/tun rw 13 | StandardOutput=null 14 | KillMode=process 15 | 16 | [Install] 17 | WantedBy=multi-user.target 18 | -------------------------------------------------------------------------------- /etc/systemd/system/rnetworking.timer: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Check network services every 5 minutes 3 | 4 | [Timer] 5 | OnBootSec=1min 6 | OnUnitActiveSec=5min 7 | Unit=rnetworking.service 8 | 9 | [Install] 10 | WantedBy=timers.target 11 | -------------------------------------------------------------------------------- /etc/systemd/system/rusnapshot-daily.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Snapshot root and home directories. 3 | 4 | [Service] 5 | Type=oneshot 6 | ExecStart=/usr/bin/rusnapshot -c /etc/rusnapshot/config-root.toml --cr --clean --kind daily 7 | ExecStart=/usr/bin/rusnapshot -c /etc/rusnapshot/config-home.toml --cr --clean --kind daily 8 | # ExecStart=/usr/bin/rusnapshot -c /etc/rusnapshot/config-containers.toml --cr --clean --kind daily 9 | 10 | [Install] 11 | WantedBy=default.target -------------------------------------------------------------------------------- /etc/systemd/system/rusnapshot-daily.timer: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Take snapshots daily. 3 | 4 | [Timer] 5 | OnCalendar=daily 6 | Persistent=true 7 | 8 | [Install] 9 | WantedBy=timers.target -------------------------------------------------------------------------------- /etc/systemd/system/rusnapshot-monthly.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Take system snapshots monthly. 3 | 4 | [Service] 5 | Type=oneshot 6 | ExecStart=/usr/bin/rusnapshot -c /etc/rusnapshot/config-root.toml --cr --clean --kind monthly 7 | ExecStart=/usr/bin/rusnapshot -c /etc/rusnapshot/config-root.toml --cr --clean --kind monthly --rw 8 | ExecStart=/usr/bin/rusnapshot -c /etc/rusnapshot/config-home.toml --cr --clean --kind monthly 9 | ExecStart=/usr/bin/rusnapshot -c /etc/rusnapshot/config-home.toml --cr --clean --kind monthly --rw 10 | 11 | [Install] 12 | WantedBy=default.target -------------------------------------------------------------------------------- /etc/systemd/system/rusnapshot-monthly.timer: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Take system snapshots monthly. 3 | 4 | [Timer] 5 | OnCalendar=monthly 6 | Persistent=true 7 | 8 | [Install] 9 | WantedBy=timers.target -------------------------------------------------------------------------------- /etc/systemd/system/rusnapshot-weekly.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Take system snapshots weekly. 3 | 4 | [Service] 5 | Type=oneshot 6 | ExecStart=/usr/bin/rusnapshot -c /etc/rusnapshot/config-root.toml --cr --clean --kind weekly 7 | ExecStart=/usr/bin/rusnapshot -c /etc/rusnapshot/config-root.toml --cr --clean --kind weekly --rw 8 | ExecStart=/usr/bin/rusnapshot -c /etc/rusnapshot/config-home.toml --cr --clean --kind weekly 9 | ExecStart=/usr/bin/rusnapshot -c /etc/rusnapshot/config-home.toml --cr --clean --kind weekly --rw 10 | 11 | [Install] 12 | WantedBy=default.target -------------------------------------------------------------------------------- /etc/systemd/system/rusnapshot-weekly.timer: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Take system snapshots weekly. 3 | 4 | [Timer] 5 | OnCalendar=weekly 6 | Persistent=true 7 | 8 | [Install] 9 | WantedBy=timers.target -------------------------------------------------------------------------------- /etc/systemd/system/sockets.target.wants/systemd-networkd.socket: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/systemd-networkd.socket -------------------------------------------------------------------------------- /etc/systemd/system/sockets.target.wants/virtlockd.socket: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/virtlockd.socket -------------------------------------------------------------------------------- /etc/systemd/system/sockets.target.wants/virtlogd.socket: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/virtlogd.socket -------------------------------------------------------------------------------- /etc/systemd/system/sysinit.target.wants/enable-processor-performance.service: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/enable-processor-performance.service -------------------------------------------------------------------------------- /etc/systemd/system/sysinit.target.wants/systemd-timesyncd.service: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/system/systemd-timesyncd.service -------------------------------------------------------------------------------- /etc/systemd/system/systemd-journal-flush.service: -------------------------------------------------------------------------------- 1 | /dev/null -------------------------------------------------------------------------------- /etc/systemd/system/systemd-journald-audit.socket: -------------------------------------------------------------------------------- 1 | /dev/null -------------------------------------------------------------------------------- /etc/systemd/system/timers.target.wants/rnetworking.timer: -------------------------------------------------------------------------------- 1 | /etc/systemd/system/rnetworking.timer -------------------------------------------------------------------------------- /etc/systemd/system/tlp.service: -------------------------------------------------------------------------------- 1 | # tlp - systemd startup/shutdown service 2 | # 3 | # Copyright (c) 2018 Thomas Koch 4 | # This software is licensed under the GPL v2 or later. 5 | 6 | [Unit] 7 | Description=TLP system startup/shutdown 8 | #Wants=bluetooth.service NetworkManager.service 9 | After=multi-user.target 10 | Before=shutdown.target 11 | Documentation=http://linrunner.de/tlp 12 | 13 | [Service] 14 | Type=oneshot 15 | RemainAfterExit=yes 16 | ExecStart=/usr/bin/tlp init start 17 | ExecStop=/usr/bin/tlp init stop 18 | 19 | [Install] 20 | WantedBy=multi-user.target 21 | -------------------------------------------------------------------------------- /etc/systemd/system/tor-router.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Start rules for transparent tor proxy 3 | After=network-online.target 4 | 5 | [Service] 6 | Type=simple 7 | ExecStart=/usr/bin/tor-router 8 | TimeoutStopSec=180 9 | KillMode=process 10 | KillSignal=SIGINT 11 | 12 | [Install] 13 | WantedBy=multi-user.target 14 | -------------------------------------------------------------------------------- /etc/systemd/system/update-ablock-hosts.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Update adblock hosts from SetevenBlack list. 3 | After=network-online.target 4 | 5 | [Service] 6 | ExecStart=bash -c 'curl -so /etc/hosts https://raw.githubusercontent.com/StevenBlack/hosts/master/alternates/gambling/hosts && resolvectl flush-caches' 7 | StartLimitBurst=5 8 | StartLimitInterval=500 9 | Restart=on-failure 10 | RestartSec=5s 11 | KillMode=process 12 | KillSignal=SIGINT 13 | 14 | [Install] 15 | WantedBy=default.target -------------------------------------------------------------------------------- /etc/systemd/system/update-ablock-hosts.timer: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Timer for updating StevenBlack hosts daily. 3 | 4 | [Timer] 5 | OnBootSec=15s 6 | OnUnitActiveSec=1d 7 | 8 | [Install] 9 | WantedBy=timers.target -------------------------------------------------------------------------------- /etc/systemd/timesyncd.conf: -------------------------------------------------------------------------------- 1 | # This file is part of systemd. 2 | # 3 | # systemd is free software; you can redistribute it and/or modify it 4 | # under the terms of the GNU Lesser General Public License as published by 5 | # the Free Software Foundation; either version 2.1 of the License, or 6 | # (at your option) any later version. 7 | # 8 | # Entries in this file show the compile time defaults. 9 | # You can change settings by editing this file. 10 | # Defaults can be restored by simply deleting this file. 11 | # 12 | # See timesyncd.conf(5) for details. 13 | 14 | [Time] 15 | #NTP= 16 | #FallbackNTP=0.arch.pool.ntp.org 1.arch.pool.ntp.org 2.arch.pool.ntp.org 3.arch.pool.ntp.org 17 | #RootDistanceMaxSec=5 18 | #PollIntervalMinSec=32 19 | #PollIntervalMaxSec=2048 20 | -------------------------------------------------------------------------------- /etc/systemd/user.conf: -------------------------------------------------------------------------------- 1 | # This file is part of systemd. 2 | # 3 | # systemd is free software; you can redistribute it and/or modify it 4 | # under the terms of the GNU Lesser General Public License as published by 5 | # the Free Software Foundation; either version 2.1 of the License, or 6 | # (at your option) any later version. 7 | # 8 | # You can override the directives in this file by creating files in 9 | # /etc/systemd/user.conf.d/*.conf. 10 | # 11 | # See systemd-user.conf(5) for details 12 | 13 | [Manager] 14 | #LogLevel=info 15 | #LogTarget=console 16 | #LogColor=yes 17 | #LogLocation=no 18 | #SystemCallArchitectures= 19 | #TimerSlackNSec= 20 | #DefaultTimerAccuracySec=1min 21 | #DefaultStandardOutput=inherit 22 | #DefaultStandardError=inherit 23 | #DefaultTimeoutStartSec=90s 24 | #DefaultTimeoutStopSec=90s 25 | #DefaultRestartSec=100ms 26 | #DefaultStartLimitIntervalSec=10s 27 | #DefaultStartLimitBurst=5 28 | #DefaultEnvironment= 29 | #DefaultLimitCPU= 30 | #DefaultLimitFSIZE= 31 | #DefaultLimitDATA= 32 | #DefaultLimitSTACK= 33 | #DefaultLimitCORE= 34 | #DefaultLimitRSS= 35 | #DefaultLimitNOFILE= 36 | #DefaultLimitAS= 37 | #DefaultLimitNPROC= 38 | #DefaultLimitMEMLOCK= 39 | #DefaultLimitLOCKS= 40 | #DefaultLimitSIGPENDING= 41 | #DefaultLimitMSGQUEUE= 42 | #DefaultLimitNICE= 43 | #DefaultLimitRTPRIO= 44 | #DefaultLimitRTTIME= 45 | -------------------------------------------------------------------------------- /etc/systemd/user/sockets.target.wants/dirmngr.socket: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/user/dirmngr.socket -------------------------------------------------------------------------------- /etc/systemd/user/sockets.target.wants/gpg-agent-browser.socket: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/user/gpg-agent-browser.socket -------------------------------------------------------------------------------- /etc/systemd/user/sockets.target.wants/gpg-agent-extra.socket: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/user/gpg-agent-extra.socket -------------------------------------------------------------------------------- /etc/systemd/user/sockets.target.wants/gpg-agent-ssh.socket: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/user/gpg-agent-ssh.socket -------------------------------------------------------------------------------- /etc/systemd/user/sockets.target.wants/gpg-agent.socket: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/user/gpg-agent.socket -------------------------------------------------------------------------------- /etc/systemd/user/sockets.target.wants/p11-kit-server.socket: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/user/p11-kit-server.socket -------------------------------------------------------------------------------- /etc/systemd/user/sockets.target.wants/pulseaudio.socket: -------------------------------------------------------------------------------- 1 | /usr/lib/systemd/user/pulseaudio.socket -------------------------------------------------------------------------------- /etc/udev/rules.d/06-hddtunning.rules: -------------------------------------------------------------------------------- 1 | # set scheduler for rotating disks 2 | ACTION=="add|change", KERNEL=="sd[a-z]", ATTR{queue/rotational}=="1", ATTR{queue/scheduler}="bfq" 3 | ACTION=="add|change", KERNEL=="sd[a-z]", ATTR{queue/rotational}=="1", ATTR{queue/rq_affinity}="2" 4 | ACTION=="add|change", KERNEL=="sd[a-z]", ATTR{queue/rotational}=="1", ATTR{queue/read_ahead_kb}="256" 5 | -------------------------------------------------------------------------------- /etc/udev/udev.conf: -------------------------------------------------------------------------------- 1 | # see udev.conf(5) for details 2 | # 3 | # udevd is also started in the initrd. When this file is modified you might 4 | # also want to rebuild the initrd, so that it will include the modified configuration. 5 | 6 | #udev_log=info 7 | #children_max= 8 | #exec_delay= 9 | #event_timeout=180 10 | #resolve_names=early 11 | -------------------------------------------------------------------------------- /etc/ufw: -------------------------------------------------------------------------------- 1 | # /etc/default/ufw 2 | # 3 | 4 | # Set to yes to apply rules to support IPv6 (no means only IPv6 on loopback 5 | # accepted). You will need to 'disable' and then 'enable' the firewall for 6 | # the changes to take affect. 7 | IPV6=yes 8 | 9 | # Set the default input policy to ACCEPT, DROP, or REJECT. Please note that if 10 | # you change this you will most likely want to adjust your rules. 11 | DEFAULT_INPUT_POLICY="DROP" 12 | 13 | # Set the default output policy to ACCEPT, DROP, or REJECT. Please note that if 14 | # you change this you will most likely want to adjust your rules. 15 | DEFAULT_OUTPUT_POLICY="ACCEPT" 16 | 17 | # Set the default forward policy to ACCEPT, DROP or REJECT. Please note that 18 | # if you change this you will most likely want to adjust your rules 19 | DEFAULT_FORWARD_POLICY="DROP" 20 | 21 | # Set the default application policy to ACCEPT, DROP, REJECT or SKIP. Please 22 | # note that setting this to ACCEPT may be a security risk. See 'man ufw' for 23 | # details 24 | DEFAULT_APPLICATION_POLICY="SKIP" 25 | 26 | # By default, ufw only touches its own chains. Set this to 'yes' to have ufw 27 | # manage the built-in chains too. Warning: setting this to 'yes' will break 28 | # non-ufw managed firewall rules 29 | MANAGE_BUILTINS=no 30 | 31 | # 32 | # IPT backend 33 | # 34 | # only enable if using iptables backend 35 | IPT_SYSCTL=/etc/ufw/sysctl.conf 36 | 37 | # Extra connection tracking modules to load. Complete list can be found in 38 | # net/netfilter/Kconfig of your kernel source. Some common modules: 39 | # nf_conntrack_irc, nf_nat_irc: DCC (Direct Client to Client) support 40 | # nf_conntrack_netbios_ns: NetBIOS (samba) client support 41 | # nf_conntrack_pptp, nf_nat_pptp: PPTP over stateful firewall/NAT 42 | # nf_conntrack_ftp, nf_nat_ftp: active FTP support 43 | # nf_conntrack_tftp, nf_nat_tftp: TFTP support (server side) 44 | IPT_MODULES="nf_conntrack_ftp nf_nat_ftp nf_conntrack_netbios_ns" 45 | 46 | -------------------------------------------------------------------------------- /etc/useradd: -------------------------------------------------------------------------------- 1 | # useradd defaults file for ArchLinux 2 | # original changes by TomK 3 | GROUP=users 4 | HOME=/home 5 | INACTIVE=-1 6 | EXPIRE= 7 | SHELL=/bin/bash 8 | SKEL=/etc/skel 9 | CREATE_MAIL_SPOOL=no 10 | -------------------------------------------------------------------------------- /etc/vimrc: -------------------------------------------------------------------------------- 1 | " Vim configuration file 2 | 3 | syntax on 4 | set guifont=Monospace\ Bold\ 12 5 | colors industry 6 | set background=dark 7 | 8 | " Uncomment the following to have Vim jump to the last position when 9 | " reopening a file 10 | if has("autocmd") 11 | au BufReadPost * if line("'\"") > 1 && line("'\"") <= line("$") | exe "normal! g'\"" | endif 12 | endif 13 | 14 | " Uncomment the following to have Vim load indentation rules and plugins 15 | " according to the detected filetype. 16 | if has("autocmd") 17 | filetype plugin indent on 18 | endif 19 | 20 | set showmatch 21 | "set mouse=a 22 | set tabstop=4 23 | set shiftwidth=4 24 | set smartindent 25 | set autoindent 26 | set cindent 27 | "set mouse=a 28 | -------------------------------------------------------------------------------- /etc/virtualbox.conf: -------------------------------------------------------------------------------- 1 | vboxdrv 2 | vboxnetflt 3 | vboxnetadp 4 | vboxpci 5 | -------------------------------------------------------------------------------- /fonts: -------------------------------------------------------------------------------- 1 | # Installed fonts 2 | adobe-source-code-pro-fonts 3 | cantarell-fonts 4 | gsfonts 5 | noto-fonts 6 | noto-fonts-cjk 7 | noto-fonts-emoji 8 | noto-fonts-extra 9 | t1lib 10 | ttf-dejavu 11 | xorg-fonts-encodings 12 | 13 | # Used fonts 14 | ## GTK 15 | Default Font: Noto Sans Regular 10 16 | Default Monospace: Source Code Pro Regular 10 17 | 18 | ## QT - QT5ct 19 | General: Noto Sans 10 20 | Fixed width: Noto Sans 10 21 | 22 | # Misc 23 | Anti-aliasing: yes 24 | Hinting: Full 25 | Sub-pixel order: None 26 | 27 | -------------------------------------------------------------------------------- /openbox/autostart: -------------------------------------------------------------------------------- 1 | tint2 & 2 | cbatticon & 3 | dunst & 4 | feh --bg-center /home/sechacklabs/Pictures/SHL/sechacklabs-wallpaper-dark.jpg & 5 | -------------------------------------------------------------------------------- /system-bin/conectar: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env bash 2 | #Usted es libre de editar y/o distribuir este programa bajo los terminos de la licencia GPL v3 o posterior. 3 | 4 | printf "\nEste script está diseñado para que te conectes a internet sin necesidad de un gestor gráfico de red 5 | haciendo uso de software como wpa_supplicant, dhcpcd/dhclient e iptools desde la línea de comandos. 6 | Programador: Eduard Eliecer Tolosa Toloza 7 | XMPP/Email: tolosaeduard@disroot.org 8 | Contacto y sala de chat: https://discord.gg/6hm7m8S 9 | Security Hack Labs Team. @SecHackLabs 10 | Blog: https://securityhacklabs.net\n 11 | " 12 | 13 | 14 | if [ "$UID" -ne 0 ]; then 15 | echo -e "\n Usted necesita privilegios root o sudo." 16 | exit 17 | fi 18 | 19 | function choose(){ 20 | echo -e "Elige el tipo de red que deseas usar:\na) Sin autenticación \nb) Con contraseña\nc) Red cableada (Ethernet)\n" 21 | read -p "Tipo: " iskey 22 | } 23 | 24 | if [ -f /usr/bin/wpa_supplicant ] || [ -f /sbin/wpa_supplicant ] ; then 25 | echo -e "\nwpa_supplicant está instalado." 26 | else 27 | if [ -f /etc/pacman.conf ] ; then 28 | pacman -S wpa_supplicant 29 | elif [ -f /etc/apt/sources.list ] ; then 30 | apt install wpasupplicant 31 | fi 32 | fi 33 | 34 | if [ -f /usr/bin/dhcpcd ] || [ -f /sbin/dhcpcd ] ; then 35 | echo -e "dhcpcd está instalado.\n" 36 | else 37 | if [ -f /etc/pacman.conf ] ; then 38 | pacman -S dhcpcd 39 | elif [ -f /etc/apt/sources.list ] ; then 40 | apt install dhcpcd5 41 | fi 42 | fi 43 | 44 | function connect(){ 45 | iface=$(ip -o link show | awk -F': ' '{print $2}' |grep -v "lo") 46 | echo -e "\nEscribe el nombre de la interfaz de red a usar:\n" 47 | for ifacename in $iface; do echo -e "- $ifacename"; done 48 | echo "" 49 | read -p "Interface: " iface 50 | choose 51 | wpafile="/etc/wpa_supplicant/wpa_supplicant-$iface.conf" 52 | if [ $iskey == "a" ]; then 53 | if [ -f $wpafile ] ; then 54 | rfkill unblock all 55 | dhcpcd -k $iface 56 | killall dhcpcd 57 | killall dhclient 58 | killall wpa_supplicant 59 | ip link set dev $iface up 60 | wpa_supplicant -B -i $iface -c $wpafile 61 | dhcpcd -4 --noarp $iface 62 | else 63 | echo -e "\nNecesitas configurar tu archivo de conexión, por favor ingrese los datos cuando sean solicitados.\n" 64 | read -p "Introduce tu nombre de red: " nombre 65 | echo -e "network={\n\tssid=\"$nombre\"\n\tkey_mgmt=NONE\n\tpriority=100\n}" > $wpafile 66 | rfkill unblock all 67 | dhcpcd -k $iface 68 | killall dhcpcd 69 | killall dhclient 70 | killall wpa_supplicant 71 | ip link set dev $iface up 72 | wpa_supplicant -B -i $iface -c $wpafile 73 | dhcpcd -4 --noarp $iface 74 | if [ $? -eq 0 ] ; then 75 | echo -e "\nConexión establecida." 76 | else 77 | echo -e "\nHa ocurrido un error." 78 | fi 79 | fi 80 | 81 | elif [ $iskey == "b" ] ; then 82 | if [ -f $wpafile ] ; then 83 | rfkill unblock all 84 | dhcpcd -k $iface 85 | killall dhcpcd 86 | killall dhclient 87 | killall wpa_supplicant 88 | ip link set dev $iface up 89 | wpa_supplicant -B -i $iface -c $wpafile 90 | dhcpcd -4 --noarp $iface 91 | else 92 | echo -e "\nNecesitas configurar tu archivo de conexión, por favor ingrese los datos cuando sean solicitados.\n" 93 | read -p "Introduce tu nombre de red: " nombre 94 | read -p "Introduce tu contraseña: " password 95 | wpa_passphrase "$nombre" "$password" > $wpafile 96 | rfkill unblock all 97 | dhcpcd -k $iface 98 | killall dhcpcd 99 | killall dhclient 100 | killall wpa_supplicant 101 | ip link set dev $iface up 102 | wpa_supplicant -B -i $iface -c $wpafile 103 | dhcpcd -4 --noarp $iface 104 | if [ $? -eq 0 ] ; then 105 | echo -e "\nConexión establecida." 106 | else 107 | echo -e "\nHa ocurrido un error." 108 | fi 109 | fi 110 | elif [ $iskey == "c" ] ; then 111 | if [ -f ~/.conectarc ] ; then 112 | echo -e "\nUsted ya tiene habilitado DHCPCD, si no tiene internet, revisa tu modém o cable\n" 113 | exit 114 | elif [ -f ~/.nosystemd ] ; then 115 | echo -e "\nEstableciendo una conexión.\n" 116 | rfkill unblock all 117 | dhcpcd -k $iface 118 | killall dhcpcd 119 | killall dhclient 120 | killall wpa_supplicant 121 | ip link set dev $iface up 122 | dhcpcd -4 --noarp $iface 123 | if [ $? -eq 0 ] ; then 124 | echo -e "\nConexión establecida." 125 | exit 126 | else 127 | echo -e "\nHa ocurrido un error.\n" 128 | fi 129 | else 130 | echo -e "\nEstableciendo una conexión.\n" 131 | rfkill unblock all 132 | dhcpcd -k $iface 133 | killall dhcpcd 134 | killall dhclient 135 | killall wpa_supplicant 136 | ip link set dev $iface up 137 | dhcpcd -4 --noarp $iface 138 | if [ "$?" -eq 0 ] ; then 139 | read -p "¿Está usted usando SystemD? (s/n)" systemd 140 | if [ "$systemd" == "s" ] ; then 141 | echo -e "\nHabilitando DHCPCD mediante systemctl.\n" 142 | systemctl enable dhcpcd 143 | if [ "$?" -eq 0 ] ; then 144 | echo "Archivo para comprobar que DHCPCD está habilitando en el inicio del systema, creado por el script 'conectar'" > ~/.conectarc 145 | echo -e "\nConexión establecida." 146 | exit 147 | fi 148 | else 149 | echo -e "\nUsted no usa SystemD, puede habilitar DHCPCD usando tu gestor init." 150 | echo "Archivo para comprobar que no usas Systemd." > ~/.nosystemd 151 | echo -e "\nConexión establecida." 152 | fi 153 | else 154 | echo -e "\nHa ocurrido un error.\n" 155 | fi 156 | fi 157 | fi 158 | } 159 | 160 | connect 161 | -------------------------------------------------------------------------------- /system-bin/processor-performance: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env sh 2 | if [ "$1" == "start" ]; then 3 | echo 0 > /sys/devices/system/cpu/intel_pstate/no_turbo 4 | tee /sys/devices/system/cpu/cpufreq/policy*/scaling_governor <<< performance 5 | exit 6 | elif [ "$1" == "stop" ]; then 7 | tee /sys/devices/system/cpu/cpufreq/policy*/scaling_governor <<< powersave 8 | exit 9 | fi 10 | -------------------------------------------------------------------------------- /system-bin/randomvpn: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env bash 2 | # Script to select a random VPN client from /etc/openvpn/client/ (the default openvpn directory) 3 | # remember that openvpn profiles in /etc/openvpn/client/ need to be in the format profile.conf 4 | # Example: hk-04.conf 5 | 6 | workdir="/etc/openvpn/client/" 7 | isopenvpn=$(command -v openvpn > /dev/null) 8 | issystemd=$(command -v systemctl > /dev/null) 9 | 10 | if [ $UID -ne 0 ]; then 11 | echo "You need root privileges." 12 | exit 13 | fi 14 | 15 | if [ ! -z $isopenvpn ] || [ ! -z $issystemd ]; then 16 | echo "OpenVPN or systemd not installed, exiting." 17 | exit 18 | fi 19 | 20 | if [ "$1" == "stop" ]; then 21 | systemctl stop openvpn-client@* 22 | exit 23 | 24 | elif [ "$1" == "start" ]; then 25 | systemctl stop openvpn-client@* 26 | if [ -d "$workdir" ]; then 27 | cd "$workdir" 28 | vpn=$(shuf -ezn 1 * | xargs -0 -n1) 29 | if [ -f "$vpn" ]; then 30 | vpn=$(echo "$vpn" | cut -f1 -d '.') 31 | systemctl start "openvpn-client@$vpn" 32 | exit 33 | else 34 | echo "$vpn is not a file." 35 | exit 36 | fi 37 | else 38 | echo "$workdir does not exist, leaving." 39 | exit 40 | fi 41 | else 42 | echo -e "Usage:\n $0 start - start a random OpenVPN client. \n $0 stop - stop the initialized OpenVPN client." 43 | exit 44 | fi 45 | -------------------------------------------------------------------------------- /system-bin/rnetworking: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | # Script to check your internet connection and if it's not OK 3 | # then restart your network services. Make sure that you've the appropiates 4 | # service names in the $services variable 5 | # 6 | # Autor: Eduard Toloza 7 | 8 | # Define variables 9 | services='systemd-networkd systemd-resolved randomvpn' #enable-processor-performance iwd 10 | bond_active=$(ip -o link show type bond | awk -F': ' '{print $2}') 11 | 12 | restart_network() { 13 | 14 | #Check if ping command is available 15 | if command -v ping > /dev/null; then 16 | # Check internet connection and if not OK then restart all networking services 17 | echo "Testing your connection..." 18 | if ! ping -q -c 1 -W 1 9.9.9.9 > /dev/null || ! systemctl is-active openvpn-client@*.service > /dev/null || ! [ -d /proc/sys/net/ipv4/conf/tun0 ]; then 19 | # Delete bond interfaces if they exists 20 | if [ ! -z "$bond_active" ] ; then 21 | for bond_iface in "$bond_active"; do 22 | ip link delete $bond_iface 23 | sleep 1 # time for the deletion before restarting network services 24 | done 25 | fi 26 | # Kill openvpn 27 | killall -9 openvpn 28 | # Restart services 29 | echo "Your connection is not working, restarting your network services: $services" 30 | if systemctl restart $services; then 31 | echo "Services restarted sucessfully, leaving." 32 | else 33 | echo "An error has occurred, make sure that service names are correct." 34 | fi 35 | else 36 | echo "Your connection is OK" 37 | fi 38 | else 39 | echo "ping command is not available, aborting." 40 | fi 41 | } 42 | 43 | # Validate root permisions 44 | if [ "$UID" != 0 ]; then 45 | echo "You don't have root permisions." 46 | exit 47 | fi 48 | 49 | # Check if the f options was passed to force restart of services 50 | if [ "$1" == "f" ]; then 51 | sudo systemctl restart $services 52 | exit 53 | fi 54 | 55 | restart_network 56 | -------------------------------------------------------------------------------- /system-bin/upnet: -------------------------------------------------------------------------------- 1 | #!/usr/bin/bash 2 | # Workaround for RT8822BE wireless cards wifi issue when using the new rtwpci driver. 3 | 4 | if [[ "$UID" -ne 0 ]]; then 5 | echo "You need to run the script as root." 6 | exit 7 | fi 8 | 9 | # Change the ASPM mode using the Link Control Register according to https://wireless.wiki.kernel.org/en/users/documentation/aspm#enabling_aspm_with_setpci (requires pciutils) 10 | if command -v setpci >/dev/null; then 11 | # Replace 00:1c.5 if needed. Execute `lspci | grep -i wifi | awk '{print $1}'`, then have in mind that result. Now execute `lspci -t` and see where that value belongs. 12 | if setpci -s 00:1c.5 0x50.B=0x40 >/dev/null; then 13 | sleep 2 14 | modprobe rtwpci 15 | # Uncomment the next two lines and change it to match your network services and init in use. 16 | # sleep 2 17 | # systemctl restart iwd systemd-networkd systemd-resolved 18 | echo "ASPM configurations applied. Restart your network services if you haven't set them in the script." 19 | else 20 | echo "An unknown error has occurred. Reboot and try again." 21 | fi 22 | else 23 | echo "You need to have pciutils installed in your system." 24 | fi 25 | -------------------------------------------------------------------------------- /system-bin/wget: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env bash 2 | curl -L -O "$@" 3 | -------------------------------------------------------------------------------- /system-units/disable-turbo-boost.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Disable Turbo Boost on Intel CPU 3 | 4 | [Service] 5 | ExecStart=/bin/sh -c "/usr/bin/echo 1 > /sys/devices/system/cpu/intel_pstate/no_turbo" 6 | ExecStop=/bin/sh -c "/usr/bin/echo 0 > /sys/devices/system/cpu/intel_pstate/no_turbo" 7 | RemainAfterExit=yes 8 | 9 | [Install] 10 | WantedBy=sysinit.target 11 | -------------------------------------------------------------------------------- /system-units/enable-processor-performance.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Enable/Disable performance governor in the processor 3 | 4 | [Service] 5 | ExecStart=/usr/bin/processor-performance start 6 | ExecStop=/usr/bin/processor-performance stop 7 | RemainAfterExit=yes 8 | 9 | [Install] 10 | WantedBy=sysinit.target 11 | -------------------------------------------------------------------------------- /system-units/randomvpn.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Random VPN client 3 | After=syslog.target network-online.target 4 | Wants=network-online.target 5 | 6 | [Service] 7 | Type=oneshot 8 | WorkingDirectory=/etc/openvpn/client/ 9 | ProtectHome=true 10 | ProtectSystem=strict 11 | ExecStart=/usr/bin/randomvpn start 12 | RemainAfterExit=yes 13 | CapabilityBoundingSet=CAP_IPC_LOCK CAP_NET_ADMIN CAP_NET_RAW CAP_SETGID CAP_SETUID CAP_SYS_CHROOT CAP_DAC_OVERRIDE LimitNPROC=10 14 | DeviceAllow=/dev/null rw 15 | DeviceAllow=/dev/net/tun rw 16 | ExecStop=/usr/bin/randomvpn stop 17 | KillMode=process 18 | 19 | [Install] 20 | WantedBy=multi-user.target 21 | -------------------------------------------------------------------------------- /system-units/rnetworking.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Restart networking services if internet connection not detected 3 | After=network-online.target 4 | 5 | [Service] 6 | Type=oneshot 7 | ProtectHome=true 8 | ProtectSystem=strict 9 | ExecStart=/usr/bin/rnetworking 10 | CapabilityBoundingSet=CAP_IPC_LOCK CAP_NET_ADMIN CAP_NET_RAW CAP_SETGID CAP_SETUID CAP_SYS_CHROOT CAP_DAC_OVERRIDE LimitNPROC=10 11 | DeviceAllow=/dev/null rw 12 | DeviceAllow=/dev/net/tun rw 13 | KillMode=process 14 | 15 | [Install] 16 | WantedBy=multi-user.target 17 | -------------------------------------------------------------------------------- /system-units/rnetworking.timer: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Comprobación automatica de servicios de red cada 5 minutos 3 | [Timer] 4 | OnBootSec=1min 5 | OnUnitActiveSec=5min 6 | Unit=rnetworking.service 7 | 8 | [Install] 9 | WantedBy=timers.target 10 | -------------------------------------------------------------------------------- /user-bin/.gitkeep: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Edu4rdSHL/linuxscripts/afd8e609b38ab1de29f389e1ca02ee76ca3897e8/user-bin/.gitkeep -------------------------------------------------------------------------------- /user-bin/firefox-sync: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | 3 | static=static-$1 4 | link=$1 5 | volatile=/dev/shm/firefox-$1-$USER 6 | 7 | IFS= 8 | set -efu 9 | 10 | cd ~/.mozilla/firefox 11 | 12 | if [ ! -r $volatile ]; then 13 | mkdir -m0700 $volatile 14 | fi 15 | 16 | if [ "$(readlink $link)" != "$volatile" ]; then 17 | mv $link $static 18 | ln -s $volatile $link 19 | fi 20 | 21 | if [ -e $link/.unpacked ]; then 22 | rsync -av --delete --exclude .unpacked ./$link/ ./$static/ 23 | else 24 | rsync -av ./$static/ ./$link/ 25 | touch $link/.unpacked 26 | fi -------------------------------------------------------------------------------- /user-bin/fix-vpn-config: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env sh 2 | 3 | for file in *; do mv $file ${file/protonvpn.com.udp.ovpn/conf}; done 4 | for file in *; do sed -i 's/\/etc\/openvpn\/update-resolv-conf/\/etc\/openvpn\/scripts\/update-systemd-resolved/g' $file; done 5 | for file in *; do sed -i "s/script-security 2/script-security 2\nsetenv PATH \/usr\/local\/sbin:\/usr\/local\/bin:\/usr\/sbin:\/usr\/bin:\/sbin:\/bin/g" $file; done 6 | for file in *; do sed -i "s/up \/etc\/openvpn\/scripts\/update-systemd-resolved/up \/etc\/openvpn\/scripts\/update-systemd-resolved\nup-restart/g" $file; done 7 | for file in *; do sed -i "s/down \/etc\/openvpn\/scripts\/update-systemd-resolved/down \/etc\/openvpn\/scripts\/update-systemd-resolved\ndown-pre/g" $file; done 8 | # The next line is for stablishing the autentication using a file. Change .secret to the name of your file. 9 | for file in *; do sed -i 's/auth-user-pass/auth-user-pass .secret/g' $file; done 10 | -------------------------------------------------------------------------------- /user-bin/newpost: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | if [ $# -gt 0 ]; then 3 | filename=_posts/$(date +%Y-%m-%d-) 4 | # Replace all the special characters with a hyphen 5 | filename+=${*//[^a-zA-Z0-9_]/-}.md 6 | filename=$(echo "$filename" | tr '[:upper:]' '[:lower:]' | sed 's/-\{2,\}/-/g' | sed 's/-\.md$/.md/') 7 | if [ ! -f "$filename" ]; then 8 | cat >"$filename" </dev/null 4 | 5 | case $? in 6 | 1) 7 | echo "Exit";; 8 | 2) 9 | i3-msg exit;; 10 | 3) 11 | systemctl reboot;; 12 | 4) 13 | systemctl poweroff;; 14 | 5) 15 | systemctl hibernate;; 16 | esac 17 | -------------------------------------------------------------------------------- /user-bin/tsshot: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | # 3 | # upload or delete images on imgur.com 4 | 5 | CLIENT_ID='' # you can get your client ID in https://api.imgur.com/oauth2/addclient 6 | DEL_HASH='' 7 | RES='' 8 | SUCCESS=0 9 | FAILURE=1 10 | 11 | 12 | screen_shot() 13 | { 14 | IMG=$(mktemp /tmp/tmp.XXXXXX) 15 | IMG="${IMG}"."png" 16 | 17 | scrot -s -z ${IMG} >/dev/null 2>&1 18 | 19 | return $SUCCESS 20 | } 21 | 22 | 23 | upload_img() 24 | { 25 | RES=`curl -sH "Authorization: Client-ID ${CLIENT_ID}" -F "image=@${IMG}" \ 26 | "https://api.imgur.com/3/upload"` 27 | 28 | return $SUCCESS 29 | } 30 | 31 | 32 | print_img_link() 33 | { 34 | if echo "${RES}" | grep -qo '"status":200' 35 | then 36 | # url 37 | printf "url: " ; echo ${RES} | 38 | sed -e 's/.*"link":"\([^"]*\).*/\1/;s/\\//g' 39 | 40 | # delete hash 41 | printf "delete hash: " ; echo ${RES} | 42 | sed -e 's/.*"deletehash":"\([^"]*\).*/\1/;s/\\//g' 43 | fi 44 | 45 | #rm ${IMG} 46 | 47 | return $SUCCESS 48 | } 49 | 50 | 51 | delete_img() 52 | { 53 | RES=$(curl -X DELETE -sH "Authorization: Client-ID ${CLIENT_ID}" \ 54 | "https://api.imgur.com/3/image/${DEL_HASH}") 55 | 56 | if echo "${RES}" | grep -qo '"status":200' 57 | then 58 | echo "[+] successfull" 59 | else 60 | echo "[-] ERROR: deleting image" 61 | exit $FAILURE 62 | fi 63 | 64 | echo ${RES} 65 | 66 | return $SUCCESS 67 | } 68 | 69 | 70 | usage() 71 | { 72 | if [ $1 -lt 1 -o $1 -gt 2 ] 73 | then 74 | echo "[+] usage: tsshot.sh up [file] | del " 75 | exit 1 76 | fi 77 | 78 | return 0 79 | } 80 | 81 | 82 | main() 83 | { 84 | usage $# 85 | 86 | if [ "${1}" = "up" ] 87 | then 88 | if [ ! "${2}" ] 89 | then 90 | screen_shot 91 | else 92 | IMG="${2}" 93 | fi 94 | upload_img 95 | print_img_link 96 | elif [ "${1}" = "del" ] 97 | then 98 | DEL_HASH="${2}" 99 | delete_img 100 | else 101 | echo "[-] ERROR: unknown option" 102 | fi 103 | 104 | return $SUCCESS 105 | } 106 | 107 | 108 | main "${@}" 109 | -------------------------------------------------------------------------------- /user-bin/vcschecker.sh: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env bash 2 | STATIC_NAME="VCS checker" 3 | VERSION="1.0" 4 | 5 | summary() { 6 | if [ "$TO_UPDATE_COUNTER" -eq 0 ]; then 7 | echo 8 | echo "No packages to update, leaving." 9 | else 10 | echo 11 | echo "Packages to update: $TO_UPDATE_COUNTER" 12 | echo "Packages list saved in: $OUTPUT_FILE" 13 | fi 14 | } 15 | 16 | ctrl_c() { 17 | echo "Keyboard Interrupt detected, leaving." 18 | echo 19 | summary 20 | exit 21 | } 22 | 23 | trap ctrl_c 2 24 | 25 | version() { 26 | echo "$STATIC_NAME version $VERSION" 27 | } 28 | 29 | usage() { 30 | echo "Menu usage for $STATIC_NAME" 31 | echo 32 | echo "-h/--help Show this help menu." 33 | echo "-v/--version Prints the version number." 34 | echo "-o/--output Path to the output filename for the list of packages to update. Default: Curren_dir/to_update.txt." 35 | echo "-p/--pkgpath Path to the directory having the packages directories. Default: Current directory." 36 | echo "-k/--holdver Do not update pkgver inside the PKGBUILD. Default: false." 37 | } 38 | 39 | HOLD_PKGVER=false 40 | POSITIONAL=() 41 | while [[ $# -gt 0 ]]; do 42 | key="$1" 43 | case $key in 44 | -v|--version) 45 | version 46 | exit 47 | ;; 48 | -h|--help) 49 | usage 50 | exit 51 | ;; 52 | -o|--output) 53 | OUTPUT_FILE="$2" 54 | shift 55 | shift 56 | ;; 57 | -p|--pkgpath) 58 | PKGBUILDS_PATH="$2" 59 | shift 60 | shift 61 | ;; 62 | -k|--holdver) 63 | HOLD_PKGVER=true 64 | shift 65 | ;; 66 | *) 67 | POSITIONAL+=("$1") 68 | shift 69 | ;; 70 | esac 71 | done 72 | set -- "${POSITIONAL[@]}" 73 | 74 | if [ -z "$PKGBUILDS_PATH" ]; then 75 | PKGBUILDS_PATH="$(pwd)" 76 | fi 77 | 78 | if [ -z "$OUTPUT_FILE" ]; then 79 | OUTPUT_FILE="$PKGBUILDS_PATH/to_update.txt" 80 | fi 81 | 82 | TO_UPDATE_COUNTER=0; 83 | 84 | for f in "$PKGBUILDS_PATH"/*; do 85 | pkgbuild_path="$f/PKGBUILD" 86 | if [ -f "$pkgbuild_path" ]; then 87 | matches="$(grep -c 'git+\|pkgver()' "$pkgbuild_path")" 88 | if [ -f "$pkgbuild_path" ] && [ "$matches" -eq 2 ]; then 89 | . "$pkgbuild_path" 90 | echo "Git VCS detected for $pkgname." 91 | remote_ver="$(GIT_TERMINAL_PROMPT=0 git ls-remote "${source/*git+/}" HEAD | head -c 7)" 92 | if [[ $pkgver =~ $remote_ver ]]; then 93 | echo "Package $pkgname is up to date." 94 | else 95 | echo "Package $pkgname is outdated, adding to $OUTPUT_FILE" 96 | echo "$pkgname" >> "$OUTPUT_FILE" 97 | TO_UPDATE_COUNTER=$((TO_UPDATE_COUNTER + 1)) 98 | if ! $HOLD_PKGVER; then 99 | clone_path="$f/$pkgname" 100 | git clone -q "${source/*git+/}" "$clone_path" && cd "$clone_path" || return 101 | current_ver="$(pkgver 2>/dev/null)" 102 | sed -i "s/pkgver=.*/pkgver=$current_ver/" "$pkgbuild_path" 103 | echo "pkgver for $pkgname was updated in the PKGBUILD." 104 | cd "$PKGBUILDS_PATH" && rm -rf "$clone_path" 105 | fi 106 | fi 107 | fi 108 | fi 109 | done 110 | 111 | summary 112 | -------------------------------------------------------------------------------- /user-bin/version-check.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | # Simple script to list version numbers of critical development tools 3 | export LC_ALL=C 4 | bash --version | head -n1 | cut -d" " -f2-4 5 | MYSH=$(readlink -f /bin/sh) 6 | echo "/bin/sh -> $MYSH" 7 | echo $MYSH | grep -q bash || echo "ERROR: /bin/sh does not point to bash" 8 | unset MYSH 9 | echo -n "Binutils: "; ld --version | head -n1 | cut -d" " -f3- 10 | bison --version | head -n1 11 | if [ -h /usr/bin/yacc ]; then 12 | echo "/usr/bin/yacc -> `readlink -f /usr/bin/yacc`"; 13 | elif [ -x /usr/bin/yacc ]; then 14 | echo yacc is `/usr/bin/yacc --version | head -n1` 15 | else 16 | echo "yacc not found" 17 | fi 18 | bzip2 --version 2>&1 < /dev/null | head -n1 | cut -d" " -f1,6- 19 | echo -n "Coreutils: "; chown --version | head -n1 | cut -d")" -f2 20 | diff --version | head -n1 21 | find --version | head -n1 22 | gawk --version | head -n1 23 | if [ -h /usr/bin/awk ]; then 24 | echo "/usr/bin/awk -> `readlink -f /usr/bin/awk`"; 25 | elif [ -x /usr/bin/awk ]; then 26 | echo awk is `/usr/bin/awk --version | head -n1` 27 | else 28 | echo "awk not found" 29 | fi 30 | gcc --version | head -n1 31 | g++ --version | head -n1 32 | ldd --version | head -n1 | cut -d" " -f2- # glibc version 33 | grep --version | head -n1 34 | gzip --version | head -n1 35 | cat /proc/version 36 | m4 --version | head -n1 37 | make --version | head -n1 38 | patch --version | head -n1 39 | echo Perl `perl -V:version` 40 | sed --version | head -n1 41 | tar --version | head -n1 42 | makeinfo --version | head -n1 43 | xz --version | head -n1 44 | echo 'int main(){}' > dummy.c && g++ -o dummy dummy.c 45 | if [ -x dummy ] 46 | then echo "g++ compilation OK"; 47 | else echo "g++ compilation failed"; fi 48 | rm -f dummy.c dummy 49 | -------------------------------------------------------------------------------- /user-config/Xdefaults: -------------------------------------------------------------------------------- 1 | !! Colorscheme 2 | 3 | ! special 4 | *.foreground: #93a1a1 5 | *.background: #141c21 6 | *.cursorColor: #afbfbf 7 | 8 | ! black 9 | *.color0: #263640 10 | *.color8: #4a697d 11 | 12 | ! red 13 | *.color1: #d12f2c 14 | *.color9: #fa3935 15 | 16 | ! green 17 | *.color2: #819400 18 | *.color10: #a4bd00 19 | 20 | ! yellow 21 | *.color3: #b08500 22 | *.color11: #d9a400 23 | 24 | ! blue 25 | *.color4: #2587cc 26 | *.color12: #2ca2f5 27 | 28 | ! magenta 29 | *.color5: #696ebf 30 | *.color13: #8086e8 31 | 32 | ! cyan 33 | *.color6: #289c93 34 | *.color14: #33c5ba 35 | 36 | ! white 37 | *.color7: #bfbaac 38 | *.color15: #fdf6e3 39 | 40 | !! URxvt Appearance 41 | !! URxvt*font: xft:Monospace:pixelsize=14:antialias=false 42 | !! URxvt*boldFont: xft:Monospace:pixelsize=14:antialias=false 43 | URxvt*font: xft:Monospace:pixelsize=15 44 | URxvt*boldFont: xft:Monospace:pixelsize=15 45 | URxvt.lineSpace: 0 46 | URxvt.geometry: 92x24 47 | URxvt.internalBorder: 5 48 | URxvt.cursorBlink: true 49 | URxvt.cursorUnderline: false 50 | URxvt.saveline: 2048 51 | URxvt.scrollBar: false 52 | URxvt.scrollBar_right: false 53 | URxvt.urgentOnBell: true 54 | URxvt.depth: 24 55 | URxvt.iso14755: false 56 | URxvt.letterSpace: -1 57 | 58 | !! Scroll control 59 | URxvt*scrollTtyOutput: false 60 | URxvt*scrollWithBuffer: true 61 | URxvt*scrollTtyKeypress: true 62 | URxvt.secondaryScreen: 1 63 | URxvt.secondaryScroll: 0 64 | 65 | !! Common Keybinds for Navigations 66 | URxvt.keysym.Shift-Up: command:\033]720;1\007 67 | URxvt.keysym.Shift-Down: command:\033]721;1\007 68 | URxvt.keysym.Control-Up: \033[1;5A 69 | URxvt.keysym.Control-Down: \033[1;5B 70 | URxvt.keysym.Control-Right: \033[1;5C 71 | URxvt.keysym.Control-Left: \033[1;5D 72 | 73 | !! Copy Paste & Other Extensions 74 | URxvt.perl-ext-common: default,clipboard,url-select,keyboard-select,tabbed,matcher 75 | URxvt.clipboard.autocopy: true 76 | URxvt.copyCommand: xclip -i -selection clipboard 77 | URxvt.pasteCommand: xclip -o -selection clipboard 78 | URxvt.keysym.M-c: perl:clipboard:copy 79 | URxvt.keysym.M-v: perl:clipboard:paste 80 | URxvt.keysym.M-C-v: perl:clipboard:paste_escaped 81 | URxvt.keysym.M-Escape: perl:keyboard-select:activate 82 | URxvt.keysym.M-s: perl:keyboard-select:search 83 | URxvt.keysym.M-u: perl:url-select:select_next 84 | 85 | !! Tabbed mode for urxvt 86 | URxvt.tabbed.tabbar-fg: 2 87 | URxvt.tabbed.tabbar-bg: 0 88 | URxvt.tabbed.tab-fg: 3 89 | URxvt.tabbed.tab-bg: 0 90 | 91 | !! URL clickables, colored and more 92 | URxvt.url-launcher: firefox 93 | URxvt.urlButton: 1 94 | URxvt.underlineURLs: true 95 | URxvt.matcher.button: 1 96 | URxvt.keysym.C-Delete: perl:matcher:last 97 | URxvt.keysym.M-Delete: perl:matcher:list 98 | URxvt.matcher.rend.0: Uline Bold fg5 99 | 100 | !! Transparency 101 | URxvt*inheritPixmap: true 102 | URxvt*transparent: true 103 | ! URxvt*shading: 0 to 99 darkens, 101 to 200 lightens 104 | URxvt*shading: 20 105 | -------------------------------------------------------------------------------- /user-config/bash_aliases: -------------------------------------------------------------------------------- 1 | ### OWN ALIAS ### 2 | 3 | # Alias for sudo 4 | alias sudo='sudo --preserve-env ' 5 | # Sometimes we don't want to preserve env, for example when using gpg keys. 6 | alias sudon='sudo ' 7 | 8 | #Pastes 9 | # alias rs="curl --data-binary @- https://paste.rs" # Replaced by rs() function in .bash_aliases 10 | 11 | #Temperature 12 | alias clima='curl wttr.in/bogota?lang=es' 13 | 14 | # Youtube to MP3 and webistes videos to MP4 15 | alias ytmp3="youtube-dl --output '~/Music/Downloaded/%(title)s.%(ext)s' --extract-audio --audio-format mp3" 16 | alias vidtomp4="youtube-dl --output '~/Videos/Downloaded/%(title)s.%(ext)s' -f 'mp4'" 17 | 18 | # Check permisions 19 | alias pcheck='stat -c "%A %a %n"' 20 | 21 | #Journalctl logs 22 | alias jlogs='journalctl -b -p 4..1' 23 | 24 | # Version for Git packages 25 | alias gitver='echo $(git rev-list --count HEAD).$(git rev-parse --short HEAD)' 26 | 27 | # Version for Git packages with tags 28 | alias gitag="git describe --long | sed 's/\([^-]*-g\)/r\1/;s/-/./g'" 29 | 30 | # Add package to lists/to-release in BA development 31 | alias grelease="git commit -m 'to-release: add packages.'" 32 | 33 | # Alias to get sha512sums 34 | alias ssums='sha512sum' 35 | 36 | # Print SRCINFO in AUR packages 37 | alias srcinfo='makepkg --printsrcinfo > .SRCINFO' 38 | 39 | # See the amount of memory and CPU used by applications 40 | alias cmcheck='ps -eo pid,ppid,cmd,%mem,%cpu --sort=-%mem|head' 41 | 42 | # Alias for git pull --rebase to prevent merging branchs 43 | alias gpr='git pull --rebase' 44 | 45 | # Alias for git clone 46 | alias gclone='git clone' 47 | 48 | # Alias for git push 49 | alias gpush='git push' 50 | 51 | # Alias for git pull 52 | alias gpull='git pull' 53 | 54 | # Alias for git commit -m 55 | alias gcommit='git commit -S --signoff -m' 56 | 57 | # Alias to kill Signal Private Messenger when crashed 58 | alias ksignal='killall -9 signal-desktop' 59 | 60 | # Alias to get information about CPU - please use i7z 61 | alias cpufreq='watch -n 0.01 grep \"cpu MHz\" /proc/cpuinfo' 62 | alias cputemp='watch -n 0.01 sensors' 63 | 64 | # Alias to check what is my actual system IP using curl 65 | alias wtfip='dig +short myip.opendns.com @resolver1.opendns.com' 66 | 67 | # systemd-nspawn containers 68 | nspawn_root_dir="/var/lib/machines" 69 | 70 | # ArchLinux 71 | alias alct="sudo systemd-nspawn -D $nspawn_root_dir/ArchLinux" 72 | alias alshell='machinectl shell edu4rdshl@ArchLinux' 73 | 74 | # ArchLinux ARM 75 | alias arct="sudo systemd-nspawn -D $nspawn_root_dir/ArchARM" 76 | alias arshell='machinectl shell edu4rdshl@ArchARM' 77 | 78 | # BlackArch 79 | alias bact="sudo systemd-nspawn -D $nspawn_root_dir/BlackArch" 80 | alias bashell='machinectl shell BlackArch' 81 | 82 | # Debian 83 | alias debct="sudo systemd-nspawn -D $nspawn_root_dir/Debian" 84 | alias debshell='machinectl shell edu4rdshl@Debian' 85 | 86 | # Kali 87 | alias kact="sudo systemd-nspawn -D $nspawn_root_dir/KaliLinux" 88 | alias kashell='machinectl shell KaliLinux' 89 | 90 | # ParrotSec 91 | alias pact="sudo systemd-nspawn -D $nspawn_root_dir/ParrotSec" 92 | alias pashell='machinectl shell ParrotSec' 93 | 94 | # Fedora34 95 | alias fedct="sudo systemd-nspawn -D $nspawn_root_dir/Fedora34" 96 | alias fedshell='machinectl shell Fedora34' 97 | 98 | # Alias to start VirtualBox Machines in Headless mode 99 | # alias vbstart='VBoxHeadless -s' 100 | 101 | # Alias for ip 102 | alias ip='ip --color' 103 | 104 | # Find the largest top 20 files and dirs in actual linux dir 105 | alias longdirs='du -hca ./ | sort -n -r | head -n 20' 106 | alias longfiles="find ./ -printf '%s %p\n'| sort -nr | head -20" 107 | 108 | # Alias for pacman 109 | alias u='paru -Syu --noconfirm --nodevel' 110 | alias ud='paru -Syu --noconfirm' 111 | alias cu='checkupdates' 112 | alias pss='pacman -Ss' 113 | alias sa='paru -Ss' 114 | 115 | # Alias for paru 116 | alias yay='paru --removemake' 117 | alias paru='paru --removemake' 118 | 119 | # Alias for pkgfile 120 | alias pkgfile='pkgfile -v' 121 | 122 | # Alias for power management 123 | alias hibernate='systemctl hibernate' 124 | alias shutdown='systemctl poweroff' 125 | alias reboot='systemctl reboot' 126 | 127 | # Alias to show ip addresses in short and color 128 | alias ipa='ip -c -br a' 129 | 130 | # Avoid pip installing packages as root/sudo, execute the following line in your terminal or just delete the # at the begin 131 | #install -Dm644 /dev/stdin ~/.config/pip/pip.conf <<< $'[install]\nuser = yes\n' 132 | 133 | # Alias for temporal dir/files 134 | alias dtemp='cd $(mktemp -d)' 135 | alias ftemp='$EDITOR $(mktemp)' 136 | 137 | # Alias for wget in favor of curl 138 | alias wget='curl -L -O' 139 | 140 | ### END OWN ALIAS ### 141 | -------------------------------------------------------------------------------- /user-config/bash_functions: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env bash 2 | 3 | nscopy() { 4 | if [[ "$#" -ne 3 ]]; then 5 | echo "Usage: nscopy machine-name host_source_path dest_path" 6 | else 7 | machinectl copy-to $1 $2 $3/${2##*/} 8 | fi 9 | } 10 | 11 | nsretr() { 12 | if [[ "$#" -ne 3 ]]; then 13 | echo "Usage: nsretr machine-name machine_source_path host_dest_path" 14 | else 15 | machinectl copy-from $1 $2 $3/${2##*/} 16 | fi 17 | } 18 | 19 | rs() { 20 | local file=${1:-/dev/stdin} 21 | curl --data-binary @${file} https://paste.rs 22 | } 23 | -------------------------------------------------------------------------------- /user-config/bashrc: -------------------------------------------------------------------------------- 1 | # ~/.bashrc: executed by bash(1) for non-login shells. 2 | # see /usr/share/doc/bash/examples/startup-files (in the package bash-doc) 3 | # for examples 4 | 5 | # If not running interactively, don't do anything 6 | case $- in 7 | *i*) ;; 8 | *) return;; 9 | esac 10 | 11 | if [ -f /etc/profile ]; then 12 | source /etc/profile 13 | fi 14 | 15 | # don't put duplicate lines or lines starting with space in the history. 16 | # See bash(1) for more options 17 | HISTCONTROL=ignoreboth 18 | 19 | # append to the history file, don't overwrite it 20 | shopt -s histappend 21 | 22 | # for setting history length see HISTSIZE and HISTFILESIZE in bash(1) 23 | HISTSIZE=1000 24 | HISTFILESIZE=2000 25 | 26 | # check the window size after each command and, if necessary, 27 | # update the values of LINES and COLUMNS. 28 | shopt -s checkwinsize 29 | 30 | # Enable auto cd 31 | shopt -s autocd 32 | 33 | # If set, the pattern "**" used in a pathname expansion context will 34 | # match all files and zero or more directories and subdirectories. 35 | #shopt -s globstar 36 | 37 | # make less more friendly for non-text input files, see lesspipe(1) 38 | #[ -x /usr/bin/lesspipe ] && eval "$(SHELL=/bin/sh lesspipe)" 39 | 40 | # set a fancy prompt (non-color, unless we know we "want" color) 41 | case "$TERM" in 42 | xterm-color|*-256color) color_prompt=yes;; 43 | esac 44 | 45 | # uncomment for a colored prompt, if the terminal has the capability; turned 46 | # off by default to not distract the user: the focus in a terminal window 47 | # should be on the output of commands, not on the prompt 48 | #force_color_prompt=yes 49 | 50 | if [ -n "$force_color_prompt" ]; then 51 | if [ -x /usr/bin/tput ] && tput setaf 1 >&/dev/null; then 52 | # We have color support; assume it's compliant with Ecma-48 53 | # (ISO/IEC-6429). (Lack of such support is extremely rare, and such 54 | # a case would tend to support setf rather than setaf.) 55 | color_prompt=yes 56 | else 57 | color_prompt= 58 | fi 59 | fi 60 | 61 | # colors 62 | darkgrey="$(tput bold ; tput setaf 0)" 63 | red="$(tput bold; tput setaf 1)" 64 | green="$(tput bold; tput setaf 2)" 65 | yellow="$(tput bold; tput setaf 3)" 66 | blue="$(tput bold; tput setaf 4)" 67 | magenta="$(tput bold; tput setaf 5)" 68 | cyan="$(tput bold; tput setaf 6)" 69 | white="$(tput bold ; tput setaf 7)" 70 | nc="$(tput sgr0)" 71 | 72 | if [ "$color_prompt" = yes ]; then 73 | PS1='\[$red\]┌─$([[ $? != 0 ]] && echo "\[$magenta\][✗]\[$red\]─")\[$red\][ \[$blue\]\H \[$cyan\]\w\[$darkgrey\]\[$yellow\]$(__git_ps1)\[$red\] ]\n\[$red\]└──╼ \[$green\]$([[ $EUID == "0" ]] && echo "#" || echo "$")\[$nc\] ' 74 | else 75 | PS1='\u@\h:\w\$ ' 76 | fi 77 | unset color_prompt force_color_prompt 78 | 79 | # If this is an xterm set the title to user@host:dir 80 | case "$TERM" in 81 | xterm*|rxvt*) 82 | PS1="\[\e]0;\u@\h: \w\a\]$PS1" 83 | ;; 84 | *) 85 | ;; 86 | esac 87 | 88 | # enable color support of ls and also add handy aliases 89 | if [ -x /usr/bin/dircolors ]; then 90 | test -r ~/.dircolors && eval "$(dircolors -b ~/.dircolors)" || eval "$(dircolors -b)" 91 | alias ls='ls --color=auto' 92 | alias dir='dir --color=auto' 93 | alias vdir='vdir --color=auto' 94 | 95 | alias grep='grep --color=auto' 96 | alias fgrep='fgrep --color=auto' 97 | alias egrep='egrep --color=auto' 98 | fi 99 | 100 | # colored GCC warnings and errors 101 | #export GCC_COLORS='error=01;31:warning=01;35:note=01;36:caret=01;32:locus=01:quote=01' 102 | 103 | # some more ls aliases 104 | alias ll='ls -l' 105 | alias la='ls -la' 106 | alias l='ls -CF' 107 | 108 | # Alias definitions. 109 | # You may want to put all your additions into a separate file like 110 | # ~/.bash_aliases, instead of adding them here directly. 111 | # See /usr/share/doc/bash-doc/examples in the bash-doc package. 112 | 113 | if [ -f ~/.bash_aliases ]; then 114 | . ~/.bash_aliases 115 | fi 116 | 117 | if [ -f ~/.bash_private_aliases ]; then 118 | . ~/.bash_private_aliases 119 | fi 120 | 121 | if [ -f ~/.bash_functions ]; then 122 | . ~/.bash_functions 123 | fi 124 | 125 | # https://repo.cykerway.com/complete-alias 126 | if [ -f /usr/share/bash-complete-alias/complete_alias ]; then 127 | . /usr/share/bash-complete-alias/complete_alias 128 | fi 129 | 130 | 131 | # enable programmable completion features (you don't need to enable 132 | # this, if it's already enabled in /etc/bash.bashrc and /etc/profile 133 | # sources /etc/bash.bashrc). 134 | if ! shopt -oq posix; then 135 | if [ -f /usr/share/bash-completion/bash_completion ]; then 136 | . /usr/share/bash-completion/bash_completion 137 | elif [ -f /etc/bash_completion ]; then 138 | . /etc/bash_completion 139 | fi 140 | fi 141 | 142 | ### SOME LOCAL VARIABLES ### 143 | 144 | # Editor 145 | export EDITOR="nvim" 146 | 147 | # Visual 148 | export VISUAL="nvim" 149 | 150 | # Fix DIR 151 | #PATH="$(ruby -e 'print Gem.user_dir')/bin:$HOME/.local/bin:$HOME/.local/share/osxcross/target/bin:$HOME/.cargo/bin:$PATH" 152 | export PATH="$HOME/.local/bin:$HOME/.local/share/osxcross/target/bin:$HOME/.cargo/bin:$HOME/.dotnet/tools:$HOME/Projects/Rust/Development/findomain-plus/target/release:$PATH" 153 | 154 | # Output vscode telemetry 155 | export DOTNET_CLI_TELEMETRY_OPTOUT=1 156 | 157 | # Steam Proton 158 | # export STEAM_COMPAT_CLIENT_INSTALL_PATH="$HOME/.local/share/Steam" 159 | 160 | # Set TERM 161 | # export TERM=xterm-256color 162 | 163 | # Set rusnapshot database file 164 | # export RUSNAPSHOT_DATABASE_FILE="/mnt/defvol/_snapshots/rustnapshot.sqlite" 165 | ### END OF SOME LOCAL VARIABBLES ### 166 | 167 | ### Source scripts ### 168 | # Git prompt, see https://raw.githubusercontent.com/git/git/master/contrib/completion/git-prompt.sh 169 | if [ -f ~/.local/bin/git-prompt.sh ]; then 170 | source $HOME/.local/bin/git-prompt.sh 171 | fi 172 | 173 | #if [ -f /usr/share/doc/pkgfile/command-not-found.bash ]; then 174 | # source /usr/share/doc/pkgfile/command-not-found.bash 175 | #fi 176 | 177 | # Autostart X at login 178 | if [[ ! $DISPLAY && $XDG_VTNR -eq 1 ]]; then 179 | VDPAU_DRIVER=nvidia QT_QPA_PLATFORMTHEME=qt5ct XKB_DEFAULT_LAYOUT=latam startx 180 | fi 181 | -------------------------------------------------------------------------------- /user-config/chrome-flags.conf: -------------------------------------------------------------------------------- 1 | --use-gl=desktop 2 | --disable-gpu-driver-bug-workarounds 3 | --enable-oop-rasterization 4 | --ignore-gpu-blocklist 5 | --smooth-scrolling 6 | --enable-gpu-rasterization 7 | --enable-zero-copy 8 | --enable-accelerated-video-decode 9 | --enable-features=LazyImageLoading,NativeNotifications,ParallelDownloading,WebUIDarkMode,ReadLater,VaapiVideoDecoder,ReaderMode 10 | --disable-features=HardwareMediaKeyHandling 11 | -------------------------------------------------------------------------------- /user-config/conkyp: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env bash 2 | #Scrip to start a custom conky configuration with Fluxbox. 3 | 4 | sleep 10s 5 | conky -q -c "/home/shl/.conky/Gotham/Gotham" & 6 | conky -q -c "/home/shl/.conky/TeejeeTech/CPU Panel (8-core)" & 7 | conky -q -c "/home/shl/.conky/TeejeeTech/Network Panel" & 8 | conky -q -c "/home/shl/.conky/TeejeeTech/Process Panel" & 9 | exit 10 | -------------------------------------------------------------------------------- /user-config/i3status/config: -------------------------------------------------------------------------------- 1 | # i3status configuration file. 2 | # see "man i3status" for documentation. 3 | 4 | # It is important that this file is edited as UTF-8. 5 | # The following line should contain a sharp s: 6 | # ß 7 | # If the above line is not correctly displayed, fix your editor first! 8 | 9 | general { 10 | colors = true 11 | separator = "" 12 | output_format = "i3bar" 13 | interval = 2 14 | } 15 | 16 | order += "wireless _first_" 17 | order += "ethernet _first_" 18 | order += "disk /" 19 | order += "disk /home" 20 | order += "cpu_usage" 21 | order += "load" 22 | order += "memory" 23 | order += "cpu_temperature 0" 24 | order += "battery all" 25 | order += "tztime local" 26 | order += "volume master" 27 | 28 | volume master { 29 | format = "🔊 %volume" 30 | format_muted = "🔇 %volume" 31 | } 32 | 33 | disk "/" { 34 | format = "🌱 %avail" 35 | low_threshold = 25 36 | threshold_type = percentage_avail 37 | } 38 | 39 | disk "/home" { 40 | format = "🏡 %avail" 41 | low_threshold = 25 42 | threshold_type = percentage_avail 43 | } 44 | 45 | wireless _first_ { 46 | format_up = " ON" 47 | format_down = " OFF" 48 | } 49 | 50 | ethernet _first_ { 51 | format_up = "🖧 ON" 52 | format_down = "🖧 OFF" 53 | } 54 | 55 | path_exists VPN { 56 | # path exists when a VPN tunnel is active 57 | format = "🖧 ON" 58 | format_down = "🖧 OFF" 59 | path = "/proc/sys/net/ipv4/conf/tun0" 60 | } 61 | 62 | battery all { 63 | format = "%status %percentage" 64 | integer_battery_capacity = true 65 | status_chr = "⚡" 66 | status_bat = "🔋" 67 | status_full = "☻" 68 | last_full_capacity = true 69 | } 70 | 71 | load { 72 | format = "👣 %1min %5min %15min" 73 | } 74 | 75 | memory { 76 | format = "⚖️ %used" 77 | threshold_degraded = "1G" 78 | format_degraded = "⛔ < %available" 79 | } 80 | 81 | cpu_temperature 0 { 82 | format = "🌡️ %degrees °C" 83 | max_threshold = 80 84 | format_above_threshold = "🔥 %degrees °C" 85 | path = "/sys/devices/platform/coretemp.0/hwmon/hwmon*/temp1_input" 86 | } 87 | 88 | tztime local { 89 | format = "🌎 %a %d %H:%M" 90 | } 91 | 92 | cpu_usage { 93 | format = "💻 %usage" 94 | } 95 | -------------------------------------------------------------------------------- /user-config/infos: -------------------------------------------------------------------------------- 1 | # Fix rust cross compiling windows - need installed mingw-w64-gcc wine 2 | cd $HOME/.rustup/toolchains/nightly-x86_64-unknown-linux-gnu/lib/rustlib/x86_64-pc-windows-gnu/lib/ 3 | mv crt2.o crt2.o.bak 4 | cp /usr/x86_64-w64-mingw32/lib/crt2.o ./ -------------------------------------------------------------------------------- /user-config/nvim/.netrwhist: -------------------------------------------------------------------------------- 1 | let g:netrw_dirhistmax =10 2 | let g:netrw_dirhist_cnt =0 3 | -------------------------------------------------------------------------------- /user-config/nvim/init.vim: -------------------------------------------------------------------------------- 1 | " Plugins will be downloaded under the specified directory. 2 | call plug#begin('~/.local/share/nvim/plugged') 3 | 4 | " Declare the list of plugins. 5 | " Plug 'morhetz/gruvbox' 6 | Plug 'drewtempelmeyer/palenight.vim' 7 | " Plug 'Badacadabra/vim-archery' 8 | Plug 'Yggdroot/indentLine' 9 | if has('nvim') 10 | Plug 'Shougo/deoplete.nvim', { 'do': ':UpdateRemotePlugins' } 11 | else 12 | Plug 'Shougo/deoplete.nvim' 13 | Plug 'roxma/nvim-yarp' 14 | Plug 'roxma/vim-hug-neovim-rpc' 15 | endif 16 | 17 | " Syntax highlight 18 | Plug 'zchee/deoplete-jedi' 19 | Plug 'rust-lang/rust.vim' 20 | Plug 'mattn/webapi-vim' 21 | Plug 'mustache/vim-mustache-handlebars' 22 | Plug 'sheerun/vim-polyglot' 23 | 24 | " Neomaker 25 | Plug 'neomake/neomake' 26 | 27 | " Neovim airline 28 | Plug 'vim-airline/vim-airline' 29 | Plug 'vim-airline/vim-airline-themes' 30 | 31 | " Auto pair 32 | Plug 'jiangmiao/auto-pairs' 33 | 34 | " Completion for Rust 35 | Plug 'sebastianmarkow/deoplete-rust' 36 | 37 | "List ends here. Plugins become visible to Vim after this call. 38 | call plug#end() 39 | 40 | " Use mustache 41 | let g:mustache_abbreviations = 1 42 | 43 | " Use deoplete and set deoplete options 44 | let g:deoplete#enable_at_startup = 1 45 | call deoplete#custom#option('check_stderr', v:false) 46 | 47 | 48 | " Rust config 49 | let g:rustfmt_autosave = 1 50 | let g:rust_clip_command = 'xclip -selection clipboard' 51 | 52 | " Enable autocompletion for Rust 53 | let g:deoplete#sources#rust#racer_binary='/home/sechacklabs/.cargo/bin/racer' 54 | let g:deoplete#sources#rust#rust_source_path='/home/sechacklabs/.rustup/toolchains/stable-x86_64-unknown-linux-gnu/lib/rustlib/src/rust/src' 55 | let g:deoplete#sources#rust#disable_keymap=1 56 | let g:deoplete#sources#rust#documentation_max_height=20 57 | 58 | " Syntax and programming things 59 | syntax on 60 | set guifont=Monospace\ Bold\ 12 61 | set background=dark 62 | colors palenight 63 | set inccommand=nosplit 64 | " let g:neomake_open_list = 2 65 | let g:neomake_warning_sign = { 66 | \ 'text': 'W', 67 | \ 'texthl': 'WarningMsg', 68 | \ } 69 | let g:neomake_error_sign = { 70 | \ 'text': 'E', 71 | \ 'texthl': 'ErrorMsg', 72 | \ } 73 | 74 | " Set clipboard 75 | set clipboard+=unnamedplus 76 | 77 | " Uncomment the following to have Vim jump to the last position when 78 | " reopening a file 79 | if has("autocmd") 80 | au BufReadPost * if line("'\"") > 1 && line("'\"") <= line("$") | exe "normal! g'\"" | endif 81 | endif 82 | 83 | " Lint as you type 84 | if has("autocmd") 85 | au InsertLeave,TextChanged * silent! update | Neomake 86 | endif 87 | 88 | " Uncomment the following to have Vim load indentation rules and plugins 89 | " according to the detected filetype. 90 | if has("autocmd") 91 | filetype plugin indent on 92 | endif 93 | 94 | set showmatch " Show matching brackets. 95 | set number " Show the line numbers on the left side. 96 | set formatoptions+=o " Continue comment marker in new lines. 97 | set expandtab " Insert spaces when TAB is pressed. 98 | set tabstop=2 " Render TABs using this many spaces. 99 | set shiftwidth=2 " Indentation amount for < and > commands. 100 | set nojoinspaces " Prevents inserting two spaces after punctuation on a join (J) 101 | 102 | " More natural splits 103 | set splitbelow " Horizontal split below current 104 | set splitright " Vertical split to right of current. 105 | if !&scrolloff 106 | set scrolloff=3 " Show next 3 lines while scrolling. 107 | endif 108 | 109 | if !&sidescrolloff 110 | set sidescrolloff=5 " Show next 5 columns while side-scrolling. 111 | endif 112 | set nostartofline " Do not jump to first character with page commands. 113 | 114 | " Tell Vim which characters to show for expanded TABs, 115 | " trailing whitespace, and end-of-lines. VERY useful! 116 | if &listchars ==# 'eol:$' 117 | set listchars=tab:>\ ,trail:-,extends:>,precedes:<,nbsp:+ 118 | endif 119 | set list " Show problematic characters. 120 | 121 | " Also highlight all tabs and trailing whitespace characters. 122 | highlight ExtraWhitespace ctermbg=darkgreen guibg=darkgreen 123 | match ExtraWhitespace /\s\+$\|\t/ 124 | 125 | " Sample command W to save a file in neovim without root permission with sudo 126 | " command W :execute ':silent w !sudo tee % > /dev/null' | :edit! 127 | -------------------------------------------------------------------------------- /user-config/pipewire/media-session.d/default-nodes: -------------------------------------------------------------------------------- 1 | { 2 | "default.configured.audio.source": { "name": "alsa_input.pci-0000_07_00.4.analog-stereo" }, 3 | "default.configured.audio.sink": { "name": "alsa_output.pci-0000_05_00.1.hdmi-stereo-extra1" } 4 | } -------------------------------------------------------------------------------- /user-config/pipewire/media-session.d/default-routes: -------------------------------------------------------------------------------- 1 | { 2 | "default.route.alsa_card.pci-0000_05_00.1:profile:off": [ ], 3 | "default.route.alsa_card.pci-0000_07_00.4:profile:off": [ ], 4 | "default.route.alsa_card.pci-0000_05_00.1:profile:output:hdmi-stereo-extra1": [ "hdmi-output-1" ], 5 | "default.route.alsa_card.pci-0000_07_00.4:profile:output:analog-stereo+input:analog-stereo": [ "analog-input-front-mic", "analog-output-headphones" ], 6 | "default.route.alsa_card.pci-0000_05_00.1:output:hdmi-output-1": { "mute": false, "volumes": [ 0.032756, 0.032756 ], "channels": [ "FL", "FR" ] }, 7 | "default.route.alsa_card.pci-0000_07_00.4:input:analog-input-front-mic": { "mute": false, "volumes": [ 0.063406, 0.063406 ], "channels": [ "FL", "FR" ] }, 8 | "default.route.alsa_card.pci-0000_07_00.4:output:analog-output-headphones": { "mute": false, "volumes": [ 0.114052, 0.114052 ], "channels": [ "FL", "FR" ] }, 9 | "default.route.alsa_card.pci-0000_07_00.4:output:analog-output-lineout": { "mute": false, "volumes": [ 0.399992, 0.399992 ], "channels": [ "FL", "FR" ] } 10 | } -------------------------------------------------------------------------------- /user-config/pipewire/pipewire-pulse.conf: -------------------------------------------------------------------------------- 1 | # PulseAudio config file for PipeWire version "0.3.30" # 2 | # 3 | # Copy and edit this file in /etc/pipewire for systemwide changes 4 | # or in ~/.config/pipewire for local changes. 5 | 6 | context.properties = { 7 | ## Configure properties in the system. 8 | #mem.warn-mlock = false 9 | #mem.allow-mlock = true 10 | #mem.mlock-all = false 11 | #log.level = 2 12 | } 13 | 14 | context.spa-libs = { 15 | audio.convert.* = audioconvert/libspa-audioconvert 16 | support.* = support/libspa-support 17 | } 18 | 19 | context.modules = [ 20 | { name = libpipewire-module-rtkit 21 | args = { 22 | #nice.level = -11 23 | #rt.prio = 88 24 | #rt.time.soft = 200000 25 | #rt.time.hard = 200000 26 | } 27 | flags = [ ifexists nofail ] 28 | } 29 | { name = libpipewire-module-protocol-native } 30 | { name = libpipewire-module-client-node } 31 | { name = libpipewire-module-adapter } 32 | { name = libpipewire-module-metadata } 33 | 34 | { name = libpipewire-module-protocol-pulse 35 | args = { 36 | # the addresses this server listens on 37 | server.address = [ 38 | "unix:native" 39 | # "unix:/tmp/something" # absolute paths may be used 40 | # "tcp:4713" # IPv4 and IPv6 on all addresses 41 | # "tcp:[::]:9999" # IPv6 on all addresses 42 | # "tcp:127.0.0.1:8888" # IPv4 on a single address 43 | ] 44 | #pulse.min.req = 256/48000 # 5ms 45 | #pulse.default.req = 960/48000 # 20 milliseconds 46 | #pulse.min.frag = 256/48000 # 5ms 47 | #pulse.default.frag = 96000/48000 # 2 seconds 48 | #pulse.default.tlength = 96000/48000 # 2 seconds 49 | #pulse.min.quantum = 256/48000 # 5ms 50 | #pulse.default.format = F32 51 | #pulse.default.position = [ FL FR ] 52 | # These overrides are only applied when running in a vm. 53 | vm.overrides = { 54 | pulse.min.quantum = 1024/48000 # 22ms 55 | } 56 | } 57 | } 58 | # Noise cancellation 59 | { name = libpipewire-module-filter-chain 60 | args = { 61 | node.name = "effect_input.rnnoise" 62 | node.description = "Noise Canceling source" 63 | media.name = "Noise Canceling source" 64 | filter.graph = { 65 | nodes = [ 66 | { 67 | type = ladspa 68 | name = rnnoise 69 | plugin = librnnoise_ladspa 70 | label = noise_suppressor_stereo 71 | control = { 72 | "VAD Threshold (%)" 90.0 73 | } 74 | } 75 | ] 76 | } 77 | capture.props = { 78 | node.passive = true 79 | } 80 | playback.props = { 81 | media.class = Audio/Source 82 | } 83 | } 84 | } 85 | ] 86 | 87 | stream.properties = { 88 | #node.latency = 1024/48000 89 | #node.autoconnect = true 90 | #resample.quality = 4 91 | #channelmix.normalize = false 92 | #channelmix.mix-lfe = false 93 | #channelmix.upmix = false 94 | #channelmix.lfe-cutoff = 0 95 | } 96 | -------------------------------------------------------------------------------- /user-config/psd/.psd.conf: -------------------------------------------------------------------------------- 1 | # Automatically generated file; DO NOT EDIT! 2 | # The purpose is to snapshot the settings used when psd was activated. 3 | # Any edits to the live config: /home/edu4rdshl/.config/psd/psd.conf 4 | # will be applied the _next_ time psd is activated. 5 | # 6 | USE_OVERLAYFS="yes" 7 | USE_SUSPSYNC="yes" 8 | BROWSERS="google-chrome" 9 | USE_BACKUPS="yes" 10 | -------------------------------------------------------------------------------- /user-config/psd/psd.conf: -------------------------------------------------------------------------------- 1 | # 2 | # $XDG_CONFIG_HOME/psd/psd.conf 3 | # 4 | # For documentation, refer man 1 psd or to the wiki page 5 | # https://wiki.archlinux.org/index.php/Profile-sync-daemon 6 | 7 | ## NOTE the following: 8 | ## To protect data from corruption, in the event that you do make an edit while 9 | ## psd is active, any changes made will be applied the next time you start psd. 10 | 11 | # Uncomment and set to "yes" to use overlayfs instead of a full copy to reduce 12 | # the memory costs and to improve sync/unsync operations. Note that your kernel 13 | # MUST have this module available in order to use this mode 14 | # 15 | USE_OVERLAYFS="yes" 16 | 17 | # Uncomment and set to "yes" to resync on suspend to reduce potential data loss. 18 | # Note that your system MUST have gdbus from glib2 installed to use this mode. 19 | # 20 | USE_SUSPSYNC="yes" 21 | 22 | # List any browsers in the array below to have managed by psd. Useful if you do 23 | # not wish to have all possible browser profiles managed which is the default if 24 | # this array is left commented. 25 | # 26 | # Possible values: 27 | # chromium 28 | # chromium-dev 29 | # conkeror.mozdev.org 30 | # epiphany 31 | # falkon 32 | # firefox 33 | # firefox-trunk 34 | # google-chrome 35 | # google-chrome-beta 36 | # google-chrome-unstable 37 | # heftig-aurora 38 | # icecat 39 | # inox 40 | # luakit 41 | # midori 42 | # opera 43 | # opera-beta 44 | # opera-developer 45 | # opera-legacy 46 | # otter-browser 47 | # qupzilla 48 | # qutebrowser 49 | # palemoon 50 | # rekonq 51 | # seamonkey 52 | # surf 53 | # vivaldi 54 | # vivaldi-snapshot 55 | # 56 | BROWSERS=(google-chrome) 57 | 58 | # Uncomment and set to "no" to completely disable the crash recovery feature. 59 | # 60 | # The default is to create crash recovery backups if the system is ungracefully 61 | # powered-down due to a kernel panic, hitting the reset switch, battery going 62 | # dead, etc. Some users keep very diligent backups and don't care to have this 63 | # feature enabled. 64 | #USE_BACKUPS="yes" 65 | 66 | # Uncomment and set to an integer that is the maximum number of crash recovery 67 | # snapshots to keep (the oldest ones are delete first). 68 | # 69 | # The default is to save the most recent 5 crash recovery snapshots. 70 | BACKUP_LIMIT=2 71 | -------------------------------------------------------------------------------- /user-config/redshift/redshift.conf: -------------------------------------------------------------------------------- 1 | ; Global settings for redshift 2 | [redshift] 3 | ; Set the day and night screen temperatures 4 | temp-day=5700 5 | temp-night=4000 6 | 7 | ; Disable the smooth fade between temperatures when Redshift starts and stops. 8 | ; 0 will cause an immediate change between screen temperatures. 9 | ; 1 will gradually apply the new screen temperature over a couple of seconds. 10 | fade=1 11 | 12 | ; Solar elevation thresholds. 13 | ; By default, Redshift will use the current elevation of the sun to determine 14 | ; whether it is daytime, night or in transition (dawn/dusk). When the sun is 15 | ; above the degrees specified with elevation-high it is considered daytime and 16 | ; below elevation-low it is considered night. 17 | ;elevation-high=3 18 | ;elevation-low=-6 19 | 20 | ; Custom dawn/dusk intervals. 21 | ; Instead of using the solar elevation, the time intervals of dawn and dusk 22 | ; can be specified manually. The times must be specified as HH:MM in 24-hour 23 | ; format. 24 | ;dawn-time=6:00-7:45 25 | ;dusk-time=18:35-20:15 26 | 27 | ; Set the screen brightness. Default is 1.0. 28 | ;brightness=0.9 29 | ; It is also possible to use different settings for day and night 30 | ; since version 1.8. 31 | ;brightness-day=0.7 32 | ;brightness-night=0.4 33 | ; Set the screen gamma (for all colors, or each color channel 34 | ; individually) 35 | ; gamma=0.8 36 | ;gamma=0.8:0.7:0.8 37 | ; This can also be set individually for day and night since 38 | ; version 1.10. 39 | ;gamma-day=0.8:0.7:0.8 40 | ;gamma-night=0.6 41 | 42 | ; Set the location-provider: 'geoclue2', 'manual' 43 | ; type 'redshift -l list' to see possible values. 44 | ; The location provider settings are in a different section. 45 | location-provider=manual 46 | 47 | ; Set the adjustment-method: 'randr', 'vidmode' 48 | ; type 'redshift -m list' to see all possible values. 49 | ; 'randr' is the preferred method, 'vidmode' is an older API. 50 | ; but works in some cases when 'randr' does not. 51 | ; The adjustment method settings are in a different section. 52 | adjustment-method=randr 53 | 54 | ; Configuration of the location-provider: 55 | ; type 'redshift -l PROVIDER:help' to see the settings. 56 | ; ex: 'redshift -l manual:help' 57 | ; Keep in mind that longitudes west of Greenwich (e.g. the Americas) 58 | ; are negative numbers. 59 | [manual] 60 | lat=4.60 61 | lon=-74.08 62 | 63 | ; Configuration of the adjustment-method 64 | ; type 'redshift -m METHOD:help' to see the settings. 65 | ; ex: 'redshift -m randr:help' 66 | ; In this example, randr is configured to adjust only screen 0. 67 | ; Note that the numbering starts from 0, so this is actually the first screen. 68 | ; If this option is not specified, Redshift will try to adjust _all_ screens. 69 | ; [randr] 70 | ; screen=0 71 | -------------------------------------------------------------------------------- /user-config/rofi/config: -------------------------------------------------------------------------------- 1 | rofi.combi-modi: window,run 2 | rofi.theme: gruvbox-dark-hard 3 | rofi.modi: combi 4 | rofi.location: 1 5 | rofi.width: 100 6 | rofi.lines: 10 7 | rofi.line-margin: 0 8 | rofi.line-padding: 1 9 | rofi.separator-style: none 10 | rofi.columns: 2 11 | rofi.bw: 0 12 | rofi.case-sensitive: false 13 | rofi.disable-history: false 14 | rofi.hide-scrollbar: true 15 | rofi.kb-row-tab: Tab 16 | -------------------------------------------------------------------------------- /user-config/settings.ini: -------------------------------------------------------------------------------- 1 | [Settings] 2 | gtk-theme-name=Adwaita-dark 3 | gtk-icon-theme-name=Papirus-Dark 4 | gtk-font-name=DejaVu Sans Mono 11 5 | gtk-cursor-theme-name=Adwaita 6 | gtk-cursor-theme-size=0 7 | gtk-toolbar-style=GTK_TOOLBAR_BOTH_HORIZ 8 | gtk-toolbar-icon-size=GTK_ICON_SIZE_LARGE_TOOLBAR 9 | gtk-button-images=0 10 | gtk-menu-images=0 11 | gtk-enable-event-sounds=0 12 | gtk-enable-input-feedback-sounds=0 13 | gtk-xft-antialias=1 14 | gtk-xft-hinting=1 15 | gtk-xft-hintstyle=hintmedium 16 | gtk-application-prefer-dark-theme=1 17 | -------------------------------------------------------------------------------- /user-config/systemd-user-units/user/actualizar.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Automatically update ArchLinux 3 | After=network-online.target 4 | 5 | [Service] 6 | Type=simple 7 | ExecStart=/usr/bin/pacman -Syuq --noconfirm 8 | TimeoutStopSec=180 9 | KillMode=process 10 | KillSignal=SIGINT 11 | 12 | [Install] 13 | WantedBy=multi-user.target 14 | -------------------------------------------------------------------------------- /user-config/systemd-user-units/user/actualizar.timer: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Automatically update ArchLinux. 5 minutes before the system boot the first check is done, then it look for updates every 60 minutes 3 | [Timer] 4 | OnBootSec=5min 5 | OnUnitActiveSec=60min 6 | Unit=actualizar.service 7 | 8 | [Install] 9 | WantedBy=multi-user.target 10 | -------------------------------------------------------------------------------- /user-config/systemd-user-units/user/default.target.wants/firefox-profile@8xtka20s.default.service: -------------------------------------------------------------------------------- 1 | /home/sechacklabs/.config/systemd/user/firefox-profile@.service -------------------------------------------------------------------------------- /user-config/systemd-user-units/user/findomain.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Monitor subdomains. 3 | After=network-online.target 4 | 5 | [Service] 6 | Type=simple 7 | ExecStart=bash -c "findomain_virustotal_token='' findomain_fb_token='' findomain_discord_webhook='' findomain -f domains.txt -m" 8 | KillMode=process 9 | KillSignal=SIGINT 10 | 11 | [Install] 12 | WantedBy=default.target 13 | -------------------------------------------------------------------------------- /user-config/systemd-user-units/user/findomain.timer: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Check for new subdomains. 3 | 4 | [Timer] 5 | OnBootSec=5min 6 | OnUnitActiveSec=10min 7 | Unit=findomain.service 8 | 9 | [Install] 10 | WantedBy=timers.target 11 | -------------------------------------------------------------------------------- /user-config/systemd-user-units/user/firefox-profile@.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Firefox profile memory cache 3 | 4 | [Install] 5 | WantedBy=default.target 6 | 7 | [Service] 8 | Type=oneshot 9 | RemainAfterExit=yes 10 | ExecStart=/home/YourUsername/.local/bin/firefox-sync %i 11 | ExecStop=/home/YourUsername/.local/bin/firefox-sync %i 12 | -------------------------------------------------------------------------------- /user-config/systemd-user-units/user/multi-user.target.wants/rnetworking.timer: -------------------------------------------------------------------------------- 1 | /home/sechacklabs/.config/systemd/user/rnetworking.timer -------------------------------------------------------------------------------- /user-config/waybar/config: -------------------------------------------------------------------------------- 1 | // waybar configuration for wayland/sway 2 | 3 | { 4 | "layer": "top", 5 | "position": "bottom", 6 | "height": 24, 7 | "modules-left": [ 8 | "sway/workspaces", 9 | "custom/right-arrow-dark" 10 | ], 11 | "modules-right": [ 12 | "custom/left-arrow-dark", 13 | "backlight", 14 | "custom/left-arrow-light", 15 | "custom/left-arrow-dark", 16 | "network", 17 | "custom/left-arrow-light", 18 | "custom/left-arrow-dark", 19 | "custom/vpn", 20 | "custom/left-arrow-light", 21 | "custom/left-arrow-dark", 22 | "pulseaudio", 23 | "custom/left-arrow-light", 24 | "custom/left-arrow-dark", 25 | "memory", 26 | "custom/left-arrow-light", 27 | "custom/left-arrow-dark", 28 | "cpu", 29 | "custom/left-arrow-light", 30 | "custom/left-arrow-dark", 31 | "temperature", 32 | "custom/left-arrow-light", 33 | "custom/left-arrow-dark", 34 | "battery", 35 | "custom/left-arrow-light", 36 | "custom/left-arrow-dark", 37 | "clock", 38 | "custom/left-arrow-light", 39 | "custom/left-arrow-dark", 40 | "tray" 41 | ], 42 | 43 | "custom/left-arrow-dark": { 44 | "format": "", 45 | "tooltip": false 46 | }, 47 | "custom/left-arrow-light": { 48 | "format": "", 49 | "tooltip": false 50 | }, 51 | "custom/right-arrow-dark": { 52 | "format": "", 53 | "tooltip": false 54 | }, 55 | "custom/right-arrow-light": { 56 | "format": "", 57 | "tooltip": false 58 | }, 59 | 60 | "sway/workspaces": { 61 | "disable-scroll": true, 62 | "format": "{name}" 63 | }, 64 | 65 | "clock": { 66 | "format": "{:%a %d %b %H:%M}", 67 | "tooltip": false 68 | }, 69 | 70 | "pulseaudio": { 71 | "tooltip": false, 72 | "format": "{icon} {volume:2}%", 73 | "format-bluetooth": "{icon} {volume}%", 74 | "format-muted": "MUTE", 75 | "format-icons": { 76 | "headphones": "", 77 | "default": [ 78 | "", 79 | "" 80 | ] 81 | }, 82 | "scroll-step": 5, 83 | "on-click": "pavucontrol" 84 | }, 85 | "memory": { 86 | "tooltip": false, 87 | "interval": 5, 88 | "format": " {used:0.1f}G" 89 | }, 90 | "cpu": { 91 | "tooltip": false, 92 | "interval": 5, 93 | "format": " {usage:2}%" 94 | }, 95 | "battery": { 96 | "tooltip": false, 97 | "states": { 98 | "good": 95, 99 | "warning": 30, 100 | "critical": 15 101 | }, 102 | "format": "{icon} {capacity}%", 103 | "format-icons": [ 104 | "", 105 | "", 106 | "", 107 | "", 108 | "" 109 | ], 110 | "interval": 5 111 | }, 112 | "tray": { 113 | "icon-size": 20, 114 | "spacing": 5 115 | }, 116 | "network": { 117 | "format-wifi": " ON", 118 | "format-ethernet": " ON", 119 | "format-disconnected": " OFF", 120 | "tooltip": false 121 | }, 122 | "backlight": { 123 | "device": "intel_backlight", 124 | "format": "{percent}% " 125 | }, 126 | "temperature": { 127 | "critical-threshold": 80, 128 | "format-critical": "{temperatureC}°C ", 129 | "format": "{temperatureC}°C " 130 | }, 131 | "custom/vpn": { 132 | "interval": 5, 133 | "tooltip": false, 134 | "format": "{}", 135 | "return-type": "json", 136 | "exec": "$HOME/.local/bin/waybar_vpn" 137 | } 138 | } 139 | -------------------------------------------------------------------------------- /user-config/waybar/style.css: -------------------------------------------------------------------------------- 1 | * { 2 | font-size: 14px; 3 | font-family: monospace; 4 | } 5 | 6 | window#waybar { 7 | background: #292b2e; 8 | color: #fdf6e3; 9 | } 10 | 11 | #custom-right-arrow-dark, 12 | #custom-left-arrow-dark { 13 | color: #1a1a1a; 14 | } 15 | #custom-right-arrow-light, 16 | #custom-left-arrow-light { 17 | color: #292b2e; 18 | background: #1a1a1a; 19 | } 20 | 21 | #custom-vpn, 22 | #custom-vpn.down, 23 | #network, 24 | #network.disconnected, 25 | #workspaces, 26 | #clock, 27 | #pulseaudio, 28 | #network, 29 | #backlight, 30 | #memory, 31 | #cpu, 32 | #temperature, 33 | #temperature.critical, 34 | #battery, 35 | #tray { 36 | background: #1a1a1a; 37 | } 38 | 39 | #clock { 40 | color: #3481ed 41 | } 42 | #workspaces button { 43 | padding: 0 2px; 44 | color: #fdf6e3; 45 | } 46 | #workspaces button.focused { 47 | color: #268bd2; 48 | } 49 | #workspaces button:hover { 50 | box-shadow: inherit; 51 | text-shadow: inherit; 52 | } 53 | #workspaces button:hover { 54 | background: #1a1a1a; 55 | border: #1a1a1a; 56 | padding: 0 3px; 57 | } 58 | 59 | #pulseaudio { 60 | color: #268bd2; 61 | } 62 | #backlight { 63 | color: #b58900; 64 | } 65 | #memory { 66 | color: #2aa198; 67 | } 68 | #temperature { 69 | color: #b58900; 70 | } 71 | #temperature.critical { 72 | color: #dd2241; 73 | } 74 | #cpu { 75 | color: #6c71c4; 76 | } 77 | #battery { 78 | color: #859900; 79 | } 80 | #network.disconnected { 81 | color: #dd2241; 82 | } 83 | #network { 84 | color: #079e0c 85 | } 86 | #custom-vpn { 87 | color: #01a004; 88 | } 89 | #custom-vpn.down { 90 | color: #e02518; 91 | } 92 | 93 | #custom-vpn, 94 | #custom-vpn.down, 95 | #network, 96 | #network.disconnected, 97 | #clock, 98 | #pulseaudio, 99 | #backlight, 100 | #memory, 101 | #cpu, 102 | #temperature, 103 | #temperature.critical, 104 | #battery { 105 | padding: 0 10px; 106 | } 107 | -------------------------------------------------------------------------------- /user-config/xfce4/desktop/icons.screen.latest.rc: -------------------------------------------------------------------------------- 1 | /home/edu4rdshl/.config/xfce4/desktop/icons.screen0-1904x1033.rc -------------------------------------------------------------------------------- /user-config/xfce4/desktop/icons.screen0-1264x673.rc: -------------------------------------------------------------------------------- 1 | [xfdesktop-version-4.10.3+-rcfile_format] 2 | 4.10.3+=true 3 | 4 | [Trash] 5 | row=1 6 | col=0 7 | 8 | [/home/edu4rdshl] 9 | row=0 10 | col=0 11 | 12 | -------------------------------------------------------------------------------- /user-config/xfce4/desktop/icons.screen0-1904x1033.rc: -------------------------------------------------------------------------------- 1 | [xfdesktop-version-4.10.3+-rcfile_format] 2 | 4.10.3+=true 3 | 4 | [Trash] 5 | row=1 6 | col=0 7 | 8 | [/home/edu4rdshl] 9 | row=0 10 | col=0 11 | 12 | -------------------------------------------------------------------------------- /user-config/xfce4/desktop/icons.screen0-1904x1037.rc: -------------------------------------------------------------------------------- 1 | [xfdesktop-version-4.10.3+-rcfile_format] 2 | 4.10.3+=true 3 | 4 | [Trash] 5 | row=1 6 | col=0 7 | 8 | [/home/edu4rdshl] 9 | row=0 10 | col=0 11 | 12 | -------------------------------------------------------------------------------- /user-config/xfce4/desktop/icons.screen0-784x553.rc: -------------------------------------------------------------------------------- 1 | [xfdesktop-version-4.10.3+-rcfile_format] 2 | 4.10.3+=true 3 | 4 | [Trash] 5 | row=1 6 | col=0 7 | 8 | [/home/edu4rdshl] 9 | row=0 10 | col=0 11 | 12 | -------------------------------------------------------------------------------- /user-config/xfce4/help.rc: -------------------------------------------------------------------------------- 1 | auto-online=false 2 | 3 | -------------------------------------------------------------------------------- /user-config/xfce4/helpers.rc: -------------------------------------------------------------------------------- 1 | WebBrowser=google-chrome 2 | MailReader=custom-MailReader 3 | TerminalEmulator=xfce4-terminal 4 | 5 | -------------------------------------------------------------------------------- /user-config/xfce4/panel/xfce4-sensors-plugin-9.rc: -------------------------------------------------------------------------------- 1 | [General] 2 | Show_Title=false 3 | Show_Labels=false 4 | Use_Bar_UI=1 5 | Show_Colored_Bars=true 6 | Scale=0 7 | str_fontsize=medium 8 | val_fontsize=2 9 | Font=Sans 11 10 | Lines_Size=3 11 | Cover_All_Panel_Rows=false 12 | Update_Interval=1 13 | Exec_Command=true 14 | Show_Units=true 15 | Small_Spacings=false 16 | Command_Name=xfce4-sensors 17 | Number_Chips=4 18 | Suppress_Hddtemp_Message=false 19 | Suppress_Tooltip=false 20 | Preferred_Width=0 21 | Preferred_Height=0 22 | Tachos_ColorValue=0.80 23 | Tachos_Alpha=0.80 24 | 25 | [Chip0] 26 | Name=k10temp-c3 27 | Number=0 28 | 29 | [Chip0_Feature1] 30 | Address=1 31 | Name=Tdie 32 | Color=#00B000 33 | Show=true 34 | Min=0.00 35 | Max=80.00 36 | 37 | [Chip1] 38 | Name=acpitz-0 39 | Number=1 40 | 41 | [Chip2] 42 | Name=nvme-100 43 | Number=2 44 | 45 | [Chip3] 46 | Name=ACPI 47 | Number=3 48 | 49 | -------------------------------------------------------------------------------- /user-config/xfce4/terminal/accels.scm: -------------------------------------------------------------------------------- 1 | ; xfce4-terminal GtkAccelMap rc-file -*- scheme -*- 2 | ; this file is an automated accelerator map dump 3 | ; 4 | (gtk_accel_path "/terminal-window/goto-tab-2" "2") 5 | (gtk_accel_path "/terminal-window/goto-tab-6" "6") 6 | ; (gtk_accel_path "/terminal-window/copy-input" "") 7 | ; (gtk_accel_path "/terminal-window/close-other-tabs" "") 8 | ; (gtk_accel_path "/terminal-window/move-tab-right" "Page_Down") 9 | (gtk_accel_path "/terminal-window/goto-tab-7" "7") 10 | ; (gtk_accel_path "/terminal-window/set-title-color" "") 11 | ; (gtk_accel_path "/terminal-window/edit-menu" "") 12 | ; (gtk_accel_path "/terminal-window/zoom-menu" "") 13 | (gtk_accel_path "/terminal-window/goto-tab-1" "1") 14 | ; (gtk_accel_path "/terminal-window/fullscreen" "F11") 15 | ; (gtk_accel_path "/terminal-window/read-only" "") 16 | (gtk_accel_path "/terminal-window/goto-tab-5" "5") 17 | ; (gtk_accel_path "/terminal-window/preferences" "") 18 | ; (gtk_accel_path "/terminal-window/reset-and-clear" "") 19 | ; (gtk_accel_path "/terminal-window/about" "") 20 | (gtk_accel_path "/terminal-window/goto-tab-4" "4") 21 | ; (gtk_accel_path "/terminal-window/close-window" "q") 22 | ; (gtk_accel_path "/terminal-window/reset" "") 23 | ; (gtk_accel_path "/terminal-window/save-contents" "") 24 | (gtk_accel_path "/terminal-window/toggle-menubar" "F10") 25 | ; (gtk_accel_path "/terminal-window/copy" "c") 26 | ; (gtk_accel_path "/terminal-window/copy-html" "") 27 | ; (gtk_accel_path "/terminal-window/last-active-tab" "") 28 | ; (gtk_accel_path "/terminal-window/show-borders" "") 29 | ; (gtk_accel_path "/terminal-window/view-menu" "") 30 | ; (gtk_accel_path "/terminal-window/detach-tab" "d") 31 | ; (gtk_accel_path "/terminal-window/scroll-on-output" "") 32 | ; (gtk_accel_path "/terminal-window/show-toolbar" "") 33 | ; (gtk_accel_path "/terminal-window/next-tab" "Page_Down") 34 | ; (gtk_accel_path "/terminal-window/tabs-menu" "") 35 | ; (gtk_accel_path "/terminal-window/search-next" "") 36 | ; (gtk_accel_path "/terminal-window/search-prev" "") 37 | ; (gtk_accel_path "/terminal-window/undo-close-tab" "") 38 | ; (gtk_accel_path "/terminal-window/set-title" "s") 39 | ; (gtk_accel_path "/terminal-window/contents" "F1") 40 | ; (gtk_accel_path "/terminal-window/zoom-reset" "0") 41 | ; (gtk_accel_path "/terminal-window/close-tab" "w") 42 | ; (gtk_accel_path "/terminal-window/new-tab" "t") 43 | ; (gtk_accel_path "/terminal-window/new-window" "n") 44 | ; (gtk_accel_path "/terminal-window/terminal-menu" "") 45 | ; (gtk_accel_path "/terminal-window/show-menubar" "") 46 | ; (gtk_accel_path "/terminal-window/select-all" "a") 47 | ; (gtk_accel_path "/terminal-window/paste" "v") 48 | (gtk_accel_path "/terminal-window/goto-tab-9" "9") 49 | ; (gtk_accel_path "/terminal-window/move-tab-left" "Page_Up") 50 | ; (gtk_accel_path "/terminal-window/search" "f") 51 | ; (gtk_accel_path "/terminal-window/file-menu" "") 52 | ; (gtk_accel_path "/terminal-window/prev-tab" "Page_Up") 53 | ; (gtk_accel_path "/terminal-window/paste-selection" "") 54 | ; (gtk_accel_path "/terminal-window/zoom-in" "plus") 55 | ; (gtk_accel_path "/terminal-window/zoom-out" "minus") 56 | (gtk_accel_path "/terminal-window/goto-tab-8" "8") 57 | ; (gtk_accel_path "/terminal-window/help-menu" "") 58 | (gtk_accel_path "/terminal-window/goto-tab-3" "3") 59 | -------------------------------------------------------------------------------- /user-config/xfce4/terminal/terminalrc: -------------------------------------------------------------------------------- 1 | [Configuration] 2 | MiscAlwaysShowTabs=FALSE 3 | MiscBell=FALSE 4 | MiscBellUrgent=FALSE 5 | MiscBordersDefault=TRUE 6 | MiscCursorBlinks=TRUE 7 | MiscCursorShape=TERMINAL_CURSOR_SHAPE_BLOCK 8 | MiscDefaultGeometry=80x24 9 | MiscInheritGeometry=FALSE 10 | MiscMenubarDefault=FALSE 11 | MiscMouseAutohide=FALSE 12 | MiscMouseWheelZoom=TRUE 13 | MiscToolbarDefault=FALSE 14 | MiscConfirmClose=TRUE 15 | MiscCycleTabs=TRUE 16 | MiscTabCloseButtons=TRUE 17 | MiscTabCloseMiddleClick=TRUE 18 | MiscTabPosition=GTK_POS_TOP 19 | MiscHighlightUrls=TRUE 20 | MiscMiddleClickOpensUri=FALSE 21 | MiscCopyOnSelect=TRUE 22 | MiscShowRelaunchDialog=TRUE 23 | MiscRewrapOnResize=TRUE 24 | MiscUseShiftArrowsToScroll=FALSE 25 | MiscSlimTabs=FALSE 26 | MiscNewTabAdjacent=FALSE 27 | MiscSearchDialogOpacity=100 28 | MiscShowUnsafePasteDialog=FALSE 29 | BackgroundMode=TERMINAL_BACKGROUND_IMAGE 30 | BackgroundImageFile=/home/edu4rdshl/.wallpapers/macOS-BS-Walls/macOS-BS2.jpg 31 | BackgroundImageStyle=TERMINAL_BACKGROUND_STYLE_STRETCHED 32 | FontName=Source Code Pro 12 33 | FontUseSystem=TRUE 34 | ScrollingOnOutput=FALSE 35 | BackgroundImageShading=0.520000 36 | ColorPalette=rgb(104,140,225);rgb(218,70,70);rgb(24,197,63);rgb(224,228,35);rgb(97,109,242);rgb(152,25,164);rgb(0,170,170);rgb(170,170,170);rgb(85,85,85);rgb(198,40,40);rgb(63,223,66);rgb(255,255,85);rgb(74,138,213);rgb(255,85,255);rgb(85,255,255);rgb(255,154,38) 37 | ColorForeground=#d62ed62ed62e 38 | ColorBoldIsBright=FALSE 39 | ScrollingUnlimited=TRUE 40 | 41 | -------------------------------------------------------------------------------- /user-config/xfce4/xfconf/xfce-perchannel-xml/accessibility.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | -------------------------------------------------------------------------------- /user-config/xfce4/xfconf/xfce-perchannel-xml/displays.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | -------------------------------------------------------------------------------- /user-config/xfce4/xfconf/xfce-perchannel-xml/keyboard-layout.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | -------------------------------------------------------------------------------- /user-config/xfce4/xfconf/xfce-perchannel-xml/keyboards.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | -------------------------------------------------------------------------------- /user-config/xfce4/xfconf/xfce-perchannel-xml/ristretto.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | -------------------------------------------------------------------------------- /user-config/xfce4/xfconf/xfce-perchannel-xml/thunar-volman.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | -------------------------------------------------------------------------------- /user-config/xfce4/xfconf/xfce-perchannel-xml/thunar.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | -------------------------------------------------------------------------------- /user-config/xfce4/xfconf/xfce-perchannel-xml/xfce4-appfinder.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | -------------------------------------------------------------------------------- /user-config/xfce4/xfconf/xfce-perchannel-xml/xfce4-desktop.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | 51 | 52 | 53 | 54 | 55 | 56 | 57 | 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | 78 | 79 | 80 | 81 | 82 | 83 | 84 | 85 | 86 | 87 | 88 | 89 | 90 | 91 | 92 | 93 | 94 | 95 | 96 | -------------------------------------------------------------------------------- /user-config/xfce4/xfconf/xfce-perchannel-xml/xfce4-notifyd.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | -------------------------------------------------------------------------------- /user-config/xfce4/xfconf/xfce-perchannel-xml/xfce4-power-manager.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | -------------------------------------------------------------------------------- /user-config/xfce4/xfconf/xfce-perchannel-xml/xfce4-screensaver.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | -------------------------------------------------------------------------------- /user-config/xfce4/xfconf/xfce-perchannel-xml/xfce4-session.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | -------------------------------------------------------------------------------- /user-config/xfce4/xfconf/xfce-perchannel-xml/xfce4-settings-manager.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | -------------------------------------------------------------------------------- /user-config/xfce4/xfconf/xfce-perchannel-xml/xfwm4.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | 51 | 52 | 53 | 54 | 55 | 56 | 57 | 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | 78 | 79 | 80 | 81 | 82 | 83 | 84 | 85 | 86 | 87 | 88 | 89 | 90 | 91 | 92 | 93 | 94 | 95 | -------------------------------------------------------------------------------- /user-config/xfce4/xfconf/xfce-perchannel-xml/xsettings.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | -------------------------------------------------------------------------------- /user-config/xinitrc: -------------------------------------------------------------------------------- 1 | # It's the configuration file for xorg-xinit (startx) 2 | 3 | if [ -d /etc/X11/xinit/xinitrc.d ] ; then 4 | for f in /etc/X11/xinit/xinitrc.d/?*.sh ; do 5 | [ -x "$f" ] && . "$f" 6 | done 7 | unset f 8 | fi 9 | 10 | xrdb -merge ~/.Xresources 11 | # xrandr --output HDMI1 --primary --mode 1920x1080 --dpi 120 --rate 60 12 | # xrandr --output eDP1 --off 13 | # Execute i3wm 14 | # exec i3 15 | XDG_SESSION_TYPE=x11 16 | xhost +local: 17 | exec startxfce4 18 | -------------------------------------------------------------------------------- /user-local/share/xfce4/terminal/colorschemes/gruvbox-dark-hard.theme: -------------------------------------------------------------------------------- 1 | [Scheme] 2 | Name=gruvbox dark hard 3 | ColorForeground=#ebdbb2 4 | ColorBackground=#1d2021 5 | ColorPalette=#282828;#cc241d;#98971a;#d79921;#458588;#b16286;#689d6a;#a89984;#928374;#fb4934;#b8bb26;#fabd2f;#83a598;#d3869b;#8ec07c;#ebdbb2 6 | TabActivityColor=#bf4040 7 | -------------------------------------------------------------------------------- /user-local/share/xfce4/terminal/colorschemes/gruvbox-dark-soft.theme: -------------------------------------------------------------------------------- 1 | [Scheme] 2 | Name=gruvbox dark soft 3 | ColorForeground=#ebdbb2 4 | ColorBackground=#32302f 5 | ColorPalette=#282828;#cc241d;#98971a;#d79921;#458588;#b16286;#689d6a;#a89984;#928374;#fb4934;#b8bb26;#fabd2f;#83a598;#d3869b;#8ec07c;#ebdbb2 6 | TabActivityColor=#bf4040 7 | -------------------------------------------------------------------------------- /user-local/share/xfce4/terminal/colorschemes/gruvbox-dark.theme: -------------------------------------------------------------------------------- 1 | [Scheme] 2 | Name=gruvbox dark 3 | ColorForeground=#ebdbb2 4 | ColorBackground=#282828 5 | ColorPalette=#282828;#cc241d;#98971a;#d79921;#458588;#b16286;#689d6a;#a89984;#928374;#fb4934;#b8bb26;#fabd2f;#83a598;#d3869b;#8ec07c;#ebdbb2 6 | TabActivityColor=#bf4040 7 | -------------------------------------------------------------------------------- /user-local/share/xfce4/terminal/colorschemes/gruvbox-light-hard.theme: -------------------------------------------------------------------------------- 1 | [Scheme] 2 | Name=gruvbox light hard 3 | ColorForeground=#3c3836 4 | ColorBackground=#f9f5d7 5 | ColorPalette=#fdf4c1;#cc241d;#98971a;#d79921;#458588;#b16286;#689d6a;#7c6f64;#928374;#9d0006;#79740e;#b57614;#076678;#8f3f71;#427b58;#3c3836 6 | TabActivityColor=#bf4040 7 | -------------------------------------------------------------------------------- /user-local/share/xfce4/terminal/colorschemes/gruvbox-light-soft.theme: -------------------------------------------------------------------------------- 1 | [Scheme] 2 | Name=gruvbox light soft 3 | ColorForeground=#3c3836 4 | ColorBackground=#f2e5bc 5 | ColorPalette=#fdf4c1;#cc241d;#98971a;#d79921;#458588;#b16286;#689d6a;#7c6f64;#928374;#9d0006;#79740e;#b57614;#076678;#8f3f71;#427b58;#3c3836 6 | TabActivityColor=#bf4040 7 | -------------------------------------------------------------------------------- /user-local/share/xfce4/terminal/colorschemes/gruvbox-light.theme: -------------------------------------------------------------------------------- 1 | [Scheme] 2 | Name=gruvbox light 3 | ColorForeground=#3c3836 4 | ColorBackground=#fbf1c7 5 | ColorPalette=#fdf4c1;#cc241d;#98971a;#d79921;#458588;#b16286;#689d6a;#7c6f64;#928374;#9d0006;#79740e;#b57614;#076678;#8f3f71;#427b58;#3c3836 6 | TabActivityColor=#bf4040 7 | -------------------------------------------------------------------------------- /user/default.target.wants/firefox-profile@8xtka20s.default.service: -------------------------------------------------------------------------------- 1 | /home/sechacklabs/.config/systemd/user/firefox-profile@.service -------------------------------------------------------------------------------- /user/default.target.wants/firefox-profile@zvhb5hqr.default.service: -------------------------------------------------------------------------------- 1 | /home/sechacklabs/.config/systemd/user/firefox-profile@.service -------------------------------------------------------------------------------- /user/default.target.wants/icecat-profile@5u5odth2.default.service: -------------------------------------------------------------------------------- 1 | /home/sechacklabs/.config/systemd/user/icecat-profile@.service -------------------------------------------------------------------------------- /user/firefox-profile@.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Firefox profile memory cache 3 | 4 | [Install] 5 | WantedBy=default.target 6 | 7 | [Service] 8 | Type=oneshot 9 | RemainAfterExit=yes 10 | ExecStart=/home/sechacklabs/.local/bin/firefox-sync %i 11 | ExecStop=/home/sechacklabs/.local/bin/firefox-sync %i 12 | -------------------------------------------------------------------------------- /user/multi-user.target.wants/rnetworking.timer: -------------------------------------------------------------------------------- 1 | /home/sechacklabs/.config/systemd/user/rnetworking.timer -------------------------------------------------------------------------------- /user/rnetworking.service: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Restart networking services if internet connection not detected 3 | After=network-online.target 4 | 5 | [Service] 6 | Type=simple 7 | ExecStart=/home/sechacklabs/.local/bin/rnetworking 8 | TimeoutStopSec=180 9 | KillMode=process 10 | KillSignal=SIGINT 11 | 12 | [Install] 13 | WantedBy=multi-user.target 14 | -------------------------------------------------------------------------------- /user/rnetworking.timer: -------------------------------------------------------------------------------- 1 | [Unit] 2 | Description=Comprobación automatica de servicios de red cada 3 minutos 3 | [Timer] 4 | OnBootSec=3min 5 | OnUnitActiveSec=3min 6 | Unit=rnetworking.service 7 | 8 | [Install] 9 | WantedBy=multi-user.target 10 | -------------------------------------------------------------------------------- /xorg.conf.d/00-keyboard.conf: -------------------------------------------------------------------------------- 1 | # Written by systemd-localed(8), read by systemd-localed and Xorg. It's 2 | # probably wise not to edit this file manually. Use localectl(1) to 3 | # instruct systemd-localed to update it. 4 | Section "InputClass" 5 | Identifier "system-keyboard" 6 | MatchIsKeyboard "on" 7 | Option "XkbLayout" "latam" 8 | Option "XkbModel" "pc105" 9 | Option "XkbOptions" "terminate:ctrl_alt_bksp" 10 | EndSection 11 | -------------------------------------------------------------------------------- /xorg.conf.d/40-libinput.conf: -------------------------------------------------------------------------------- 1 | Section "InputClass" 2 | Identifier "libinput touchpad catchall" 3 | MatchIsTouchpad "on" 4 | MatchDevicePath "/dev/input/event*" 5 | Driver "libinput" 6 | Option "Tapping" "on" 7 | EndSection 8 | 9 | --------------------------------------------------------------------------------