- Kernal: CachyOS
- Lanzaboote: TPM backed FDE with auto unlock
- Bar: Waybar
- Notification daemon: Swaync
- Terminal: Kitty
- Launcher: Vicinae (as well as Clipboard manager and Emoji picker)
- Editor: Neovim + lazy wraped by nixcats for dependancies
- Design principle: Mac (Corners, Shades, Themes, Fonts)
# login to bitwarden desktop and enable ssh agnet
SSH_AUTH_SOCK=$HOME/.bitwarden-ssh-agent.sock git [email protected]:yechielw/dots.git
sudo nixos-rebuild switch --flake ./dots
#nixos-rebuild switch --flake github:yechiel/dots?dir=work \
#–-extra-experimental-features nix-command flakeor
nix-shell -p git bitwarden
SSH_AUTH_SOCK=$HOME/.bitwarden-ssh-agent.sock git [email protected]:yechielw/dots.git
nixos-rebuild switch --flake ./dotssudo nix run nixpkgs#sbctl create-keys
sudo nixos-rebuild switch --flake .
sudo nix run nixpkgs#sbctl verifyReboot to bios, enable secure boot and enable setup mode
sudo nix run nixpkgs#sbctl enroll-keys -- --microsoftReboot
bootctl statusEnable TPM for all lucks partitions (usually root and SWAP)
sudo systemd-cryptenroll --tpm2-device=auto --tpm2-pcrs=0+2+7+12 --wipe-slot=tpm2 /dev/nvme0n1p2
sudo systemd-cryptenroll --tpm2-device=auto --tpm2-pcrs=0+2+7+12 --wipe-slot=tpm2 /dev/nvme0n1p3
#or
sudo blkid -t TYPE=crypto_LUKS | cut -d : -f1 | xargs -l sudo systemd-cryptenroll --tpm2-device=auto --tpm2-pcrs=0+2+7+12 --wipe-slot=tpm2fprintd-enroll $USERenable atuin
atuin login
atuin sync