metamarcdw/arch-linux-install

## arch-linux-install
# Install ARCH Linux with encrypted file-system and UEFI
# The official installation guide (https://wiki.archlinux.org/index.php/installation_guide) contains a more verbose description.

# Download the Arch iso image from https://www.archlinux.org/
# Copy to a usb-drive
dd if=archlinux.img of=/dev/sdX bs=16M && sync

# Boot from the usb. If the usb fails to boot, make sure that secure boot is disabled in the BIOS configuration.

# Set American English keymap
loadkeys us

# This assumes a wifi only system...
wifi-menu

# Add a nameserver to /etv/resolv.conf
nano /etc/resolv.conf

# Create partitions
fdisk -l
parted /dev/sdX

# Interactive parted
mklabel gpt
mkpart ESP fat32 1MiB 513MiB
set 1 boot on
mkpart primary ext2 513MiB 1GiB
mkpart primary ext4 1GiB 100%
quit

# Create filesystems
mkfs.vfat -F32 /dev/sdX1
mkfs.ext2 /dev/sdX2

# Setup the encryption of the system
cryptsetup -c aes-xts-plain64 -y --use-random luksFormat /dev/sdX3
cryptsetup luksOpen /dev/sdX3 luks

# Create encrypted partitions
# This creates one partions for root, modify if /home or other partitions should be on separate partitions
pvcreate /dev/mapper/luks
vgcreate vg0 /dev/mapper/luks
lvcreate --size 8G vg0 --name swap
lvcreate -l +100%FREE vg0 --name root

# Create filesystems on encrypted partitions
mkfs.ext4 /dev/mapper/vg0-root
mkswap /dev/mapper/vg0-swap

# Mount the new system
mount /dev/mapper/vg0-root /mnt # /mnt is the installed system
swapon /dev/mapper/vg0-swap # Not needed but a good thing to test
mkdir /mnt/boot
mount /dev/sdX2 /mnt/boot
mkdir /mnt/boot/efi
mount /dev/sdX1 /mnt/boot/efi

# Before installing, you may want to edit /etc/pacman.d/mirrorlist such that your preferred mirror is first.
#This copy of the mirrorlist will be installed on your new system by pacstrap as well, so it's worth getting it right.
nano /etc/pacman.d/mirrorlist

# Install the system also includes stuff needed for starting wifi when first booting into the newly installed system
pacstrap /mnt base base-devel linux-headers grub-efi-x86_64 git efibootmgr dialog wpa_supplicant

# May have to do one of these if pacstrap throws gpg errors
pacman-key --refresh-keys

# 'install' fstab
genfstab -pU /mnt >> /mnt/etc/fstab
# Make /tmp a ramdisk (add the following line to /mnt/etc/fstab)
tmpfs	/tmp	tmpfs	defaults,noatime,mode=1777	0	0
# Change relatime on all non-boot partitions to noatime (reduces wear if using an SSD)

# Enter the new system
arch-chroot /mnt /bin/bash

# Setup system clock
rm /etc/localtime
ln -s /usr/share/zoneinfo/America/Chicago /etc/localtime
hwclock --systohc --utc

# Set the hostname
echo arch-lothar > /etc/hostname

# Uncomment 'en_US.UTF-8' in /etc/locale.gen
# Generate locales
locale-gen

# Update locale
echo LANG=en_US.UTF-8 >> /etc/locale.conf
echo LANGUAGE=en_US >> /etc/locale.conf

# Set password for root
passwd

# Add real user remove -s flag if you don't whish to use zsh
useradd -m -g users -G wheel cypher
passwd cypher

# Uncomment 'wheel' group line in sudoers
nano /etc/sudoers

# Configure mkinitcpio with modules needed for the initrd image
nano /etc/mkinitcpio.conf
# Add 'ext4' to MODULES
# Add 'encrypt' and 'lvm2' to HOOKS before filesystems

# Regenerate initrd image
mkinitcpio -p linux

# Setup grub
grub-install
# In /etc/default/grub edit the line GRUB_CMDLINE_LINUX to
GRUB_CMDLINE_LINUX="cryptdevice=/dev/sdX3:luks:allow-discards"
# then run:
grub-mkconfig -o /boot/grub/grub.cfg

# Exit new system and go into the cd shell
exit

# Do this ONLY when installing to a VirtualBox.
cd /mnt/boot/efi/EFI/
mv arch BOOT
mv BOOT/grubx64.efi BOOT/bootx64.efi

# Unmount all partitions
umount -R /mnt
swapoff -a

# Reboot into the new system, don't forget to remove the cd/usb
reboot

# Enable DHCP service
sudo systemctl start dhcpcd.service
sudo systemctl enable dhcpcd.service

# Do this ONLY when installing to a VirtualBox.
# Install VirtualBox Guest Additions:
sudo pacman -S virtualbox-guest-utils
sudo usermod -a -G vboxsf cypher
sudo systemctl start vboxservice.service
sudo systemctl enable vboxservice.service

# Happy Customizing!


# May have to do one of these if you run into gpg errors
pacman-key --refresh-keys
# If errors persist check out this link for help:
# https://wiki.archlinux.org/index.php/Pacman/Package_signing#Cannot_import_keys

# Desktop packages
xorg
xfce4
gvfs
ttf-dejavu

# If using the above GUI packages, do the following:
cp /etc/X11/xinit/xinitrc ~/.xinitrc
nano ~/.xinitrc
# Remove 'exec/xclock/xterm' calls from the end
# Add 'exec startxfce4' command to the end

# Util packages
stow
openssh
python-pip
python-virtualenvwrapper

# Finish installing virtualenvwrapper
mkdir ~/.virtualenvs
export WORKON_HOME=~/.virtualenvs
# Add the following lines to ~/.bashrc:
VIRTUALENVWRAPPER_PYTHON='/usr/bin/python'
source /usr/bin/virtualenvwrapper.sh

# App packages
mousepad
chromium

# Install aurman
git clone https://aur.archlinux.org/aurman.git
cd aurman
makepkg -si

# May need to:
gpg --recv-keys <key id>

# Install VSCode
aurman -S visual-studio-code-bin
	# Install ARCH Linux with encrypted file-system and UEFI
	# The official installation guide (https://wiki.archlinux.org/index.php/installation_guide) contains a more verbose description.

	# Download the Arch iso image from https://www.archlinux.org/
	# Copy to a usb-drive
	dd if=archlinux.img of=/dev/sdX bs=16M && sync

	# Boot from the usb. If the usb fails to boot, make sure that secure boot is disabled in the BIOS configuration.

	# Set American English keymap
	loadkeys us

	# This assumes a wifi only system...
	wifi-menu

	# Add a nameserver to /etv/resolv.conf
	nano /etc/resolv.conf

	# Create partitions
	fdisk -l
	parted /dev/sdX

	# Interactive parted
	mklabel gpt
	mkpart ESP fat32 1MiB 513MiB
	set 1 boot on
	mkpart primary ext2 513MiB 1GiB
	mkpart primary ext4 1GiB 100%
	quit

	# Create filesystems
	mkfs.vfat -F32 /dev/sdX1
	mkfs.ext2 /dev/sdX2

	# Setup the encryption of the system
	cryptsetup -c aes-xts-plain64 -y --use-random luksFormat /dev/sdX3
	cryptsetup luksOpen /dev/sdX3 luks

	# Create encrypted partitions
	# This creates one partions for root, modify if /home or other partitions should be on separate partitions
	pvcreate /dev/mapper/luks
	vgcreate vg0 /dev/mapper/luks
	lvcreate --size 8G vg0 --name swap
	lvcreate -l +100%FREE vg0 --name root

	# Create filesystems on encrypted partitions
	mkfs.ext4 /dev/mapper/vg0-root
	mkswap /dev/mapper/vg0-swap

	# Mount the new system
	mount /dev/mapper/vg0-root /mnt # /mnt is the installed system
	swapon /dev/mapper/vg0-swap # Not needed but a good thing to test
	mkdir /mnt/boot
	mount /dev/sdX2 /mnt/boot
	mkdir /mnt/boot/efi
	mount /dev/sdX1 /mnt/boot/efi

	# Before installing, you may want to edit /etc/pacman.d/mirrorlist such that your preferred mirror is first.
	#This copy of the mirrorlist will be installed on your new system by pacstrap as well, so it's worth getting it right.
	nano /etc/pacman.d/mirrorlist

	# Install the system also includes stuff needed for starting wifi when first booting into the newly installed system
	pacstrap /mnt base base-devel linux-headers grub-efi-x86_64 git efibootmgr dialog wpa_supplicant

	# May have to do one of these if pacstrap throws gpg errors
	pacman-key --refresh-keys

	# 'install' fstab
	genfstab -pU /mnt >> /mnt/etc/fstab
	# Make /tmp a ramdisk (add the following line to /mnt/etc/fstab)
	tmpfs /tmp tmpfs defaults,noatime,mode=1777 0 0
	# Change relatime on all non-boot partitions to noatime (reduces wear if using an SSD)

	# Enter the new system
	arch-chroot /mnt /bin/bash

	# Setup system clock
	rm /etc/localtime
	ln -s /usr/share/zoneinfo/America/Chicago /etc/localtime
	hwclock --systohc --utc

	# Set the hostname
	echo arch-lothar > /etc/hostname

	# Uncomment 'en_US.UTF-8' in /etc/locale.gen
	# Generate locales
	locale-gen

	# Update locale
	echo LANG=en_US.UTF-8 >> /etc/locale.conf
	echo LANGUAGE=en_US >> /etc/locale.conf

	# Set password for root
	passwd

	# Add real user remove -s flag if you don't whish to use zsh
	useradd -m -g users -G wheel cypher
	passwd cypher

	# Uncomment 'wheel' group line in sudoers
	nano /etc/sudoers

	# Configure mkinitcpio with modules needed for the initrd image
	nano /etc/mkinitcpio.conf
	# Add 'ext4' to MODULES
	# Add 'encrypt' and 'lvm2' to HOOKS before filesystems

	# Regenerate initrd image
	mkinitcpio -p linux

	# Setup grub
	grub-install
	# In /etc/default/grub edit the line GRUB_CMDLINE_LINUX to
	GRUB_CMDLINE_LINUX="cryptdevice=/dev/sdX3:luks:allow-discards"
	# then run:
	grub-mkconfig -o /boot/grub/grub.cfg

	# Exit new system and go into the cd shell
	exit

	# Do this ONLY when installing to a VirtualBox.
	cd /mnt/boot/efi/EFI/
	mv arch BOOT
	mv BOOT/grubx64.efi BOOT/bootx64.efi

	# Unmount all partitions
	umount -R /mnt
	swapoff -a

	# Reboot into the new system, don't forget to remove the cd/usb
	reboot

	# Enable DHCP service
	sudo systemctl start dhcpcd.service
	sudo systemctl enable dhcpcd.service

	# Do this ONLY when installing to a VirtualBox.
	# Install VirtualBox Guest Additions:
	sudo pacman -S virtualbox-guest-utils
	sudo usermod -a -G vboxsf cypher
	sudo systemctl start vboxservice.service
	sudo systemctl enable vboxservice.service

	# Happy Customizing!


	# May have to do one of these if you run into gpg errors
	pacman-key --refresh-keys
	# If errors persist check out this link for help:
	# https://wiki.archlinux.org/index.php/Pacman/Package_signing#Cannot_import_keys

	# Desktop packages
	xorg
	xfce4
	gvfs
	ttf-dejavu

	# If using the above GUI packages, do the following:
	cp /etc/X11/xinit/xinitrc ~/.xinitrc
	nano ~/.xinitrc
	# Remove 'exec/xclock/xterm' calls from the end
	# Add 'exec startxfce4' command to the end

	# Util packages
	stow
	openssh
	python-pip
	python-virtualenvwrapper

	# Finish installing virtualenvwrapper
	mkdir ~/.virtualenvs
	export WORKON_HOME=~/.virtualenvs
	# Add the following lines to ~/.bashrc:
	VIRTUALENVWRAPPER_PYTHON='/usr/bin/python'
	source /usr/bin/virtualenvwrapper.sh

	# App packages
	mousepad
	chromium

	# Install aurman
	git clone https://aur.archlinux.org/aurman.git
	cd aurman
	makepkg -si

	# May need to:
	gpg --recv-keys <key id>

	# Install VSCode
	aurman -S visual-studio-code-bin