liddqd

## Arch Secure Laptop Install.md

      
              1 file
            
          
              32 forks
            
          
              24 comments
            
          
              134 stars
            
          
                Th3Whit3Wolf
                / Arch Secure Laptop Install.md
            
            
              Last active
              June 8, 2024 17:13
            
              
                My install instruction for a secure Arch Linux (sway) laptop workstation 
              
          
    What's Cool


Encrypted root partition

AES-256 bit cipher
Argon2id variant for PBKDF
Sha3-512 bit hash


rEFInd bootloader

With dreary theme
Optimal Settings (optimized for aesthetics, and boot time)


Boot into backups thanks to refind-btrfs


## full-disk-encryption-arch-uefi.md

      
              1 file
            
          
              81 forks
            
          
              45 comments
            
          
              364 stars
            
          
                huntrar
                / full-disk-encryption-arch-uefi.md
            
            
              Last active
              June 28, 2024 20:21
            
              
                Arch Linux Full-Disk Encryption Installation Guide [Encrypted Boot, UEFI, NVMe, Evil Maid]
              
          
    Arch Linux Full-Disk Encryption Installation Guide

This guide provides instructions for an Arch Linux installation featuring full-disk encryption via LVM on LUKS and an encrypted boot partition (GRUB) for UEFI systems.
Following the main installation are further instructions to harden against Evil Maid attacks via UEFI Secure Boot custom key enrollment and self-signed kernel and bootloader.
Preface

You will find most of this information pulled from the Arch Wiki and other resources linked thereof.
Note: The system was installed on an NVMe SSD, substitute /dev/nvme0nX with /dev/sdX or your device as needed.