-- VNC is automatically launched with starting Xorg.
-
-- Connect with your VNC client and use password:archboot
-- Edit /etc/archboot/defaults to change default vnc password.
-
-- On Wayland environments VNC is only available in Sway.
-
-- Connect with your VNC client without user and password.
-
-- On MacOS/Windows you can use RealVNC for passwordless login.
+- This method is intended to use for dual booting with Windows, without losing the Secure Boot benefits for Windows.
+- This method will not make your system more secure.
+- It installs the fedora's signed shim, which is not controlled by Arch Linux and breaks the concept of Secure Boot as is.
- Custom Environment Without VNC Support
-Edit /etc/archboot/defaults
+ |
+
+
+
+Please read Roderick Smith’s guide for initial shim setup first.
+The included tools for key management: KeyTool, HashTool, mokutil, sbsigntools, sbctl and mkkeys.sh
+ Secure Boot - ISO Booting
+On initial Secure Boot setup MOK manager is launched:
-_CUSTOM_XORG |
-# update -custom-xorg |
-
-
-_CUSTOM_WAYLAND |
-# update -custom-wayland |
+/EFI/BOOT/GRUB<ARCH>.EFI and /boot/vmlinuz-<ARCH> |
+ Secure Boot - Automatic Setup Routine
+The setup script supports the following Secure Boot layout:
+
+- The fedora's signed shim is copied to the installed system
+- Creating of new keys is supported
+- Using existing keys from /etc/secureboot/keys in layout secureboot-keys.sh produces
+- MOK setup is done with personal MOK keys
+- Adding a pacman hook for automatic signing with personal keys
+- On first boot you need to enroll the used personal key as MOK.
+- Then your installed system is dual boot ready.
+
+ Secure Boot - Manual Create MOK
+
+
+
+
+
+
+# secureboot-keys.sh -name=<yournametoembed> <directory> |
+
+
+
+ Secure Boot - Reset MOK
+In order to reset the MOK setup:
+
+- Turn off Secure Boot in firmware
+- Boot the system and use mokutil to reset the setup.
+
+
+
+
+
+
+
+# mokutil --reset |
+
+
+
+
+- Reboot and turn on Secure Boot again in firmware.
+- Start again at point 3.1.1.
+
Remote Terminal Access
OpenSSH Terminal
Access the terminal with OpenSSH.
Attention: root password is not set/empty by default!
@@ -460,121 +470,17 @@
- Secure Boot - MOK / Machine Owner Key
-
-
-
-
-
-
-- This method is intended to use for dual booting with Windows, without losing the Secure Boot benefits for Windows.
-- This method will not make your system more secure.
-- It installs the fedora's signed shim, which is not controlled by Arch Linux and breaks the concept of Secure Boot as is.
-
- |
-
-
-
-Please read Roderick Smith’s guide for initial shim setup first.
-The included tools for key management: KeyTool, HashTool, mokutil, sbsigntools, sbctl and mkkeys.sh
- Secure Boot - ISO Booting
-On initial Secure Boot setup MOK manager is launched:
-
-
-
-
-
-
-/EFI/BOOT/GRUB<ARCH>.EFI and /boot/vmlinuz-<ARCH> |
-
-
-
- Secure Boot - Automatic Setup Routine
-The setup script supports the following Secure Boot layout:
-
-- The fedora's signed shim is copied to the installed system
-- Creating of new keys is supported
-- Using existing keys from /etc/secureboot/keys in layout secureboot-keys.sh produces
-- MOK setup is done with personal MOK keys
-- Adding a pacman hook for automatic signing with personal keys
-- On first boot you need to enroll the used personal key as MOK.
-- Then your installed system is dual boot ready.
-
- Secure Boot - Manual Create MOK
-
-
-
-
-
-
-# secureboot-keys.sh -name=<yournametoembed> <directory> |
-
-
-
- Secure Boot - Reset MOK
-In order to reset the MOK setup:
-
-- Turn off Secure Boot in firmware
-- Boot the system and use mokutil to reset the setup.
-
-
-
-
-
-
-
-# mokutil --reset |
-
-
-
-
-- Reboot and turn on Secure Boot again in firmware.
-- Start again at point 3.3.1.
-
- Switch To Complete Arch Linux System
-
-- The Archboot system is stripped down to minimal space usage.
-- Though perl, python, man/info pages, includes, additional kernel modules (eg. sound)
and other things are not provided by default.
-
-
-
-
-
-
-
-# update -full-system |
-
-
-
-This will also stop cleaning the system, while running other update tasks.
- Interactive Launcher
-
-- The interactive launcher script for quick navigation is launched on first login.
-- You can go straight to setup, leave to shell, launch desktop environment or do environment management.
-
- Interactive Setup
-
-- The first 3 menu points are covered by first login and setup will start at menu point 3 or 4 by default.
-- You can run each menu point for doing the mentioned task.
-- If you do a fresh install, it is recommended to run each point in the order as presented.
-
- Configure Console
+ Interactive Basic Setup
+The interactive scripts are launched on first login.
+ Localization
+Your locale will be set by localize script.
+ Vconsole Configuration
Your console fonts and keymap will be set by vconsole script.
- Configure Network
+ Network Configuration
- Offline Mode:
-- Network Configuration menu is disabled.
+- Skipped in this mode.
- Online mode:
@@ -583,22 +489,52 @@
- Your wifi network will be authentificated by iwd.
- Configure Clock
+ Clock Configuration
You set your timezone and date with the clock script.
- Select Source
+ Pacman Setup
+Your pacman will be configured by pacsetup script.
- Offline Mode:
-- Select Source menu is disabled.
+- Skipped in this mode.
- Online mode:
-- Latest pacman mirrors will be synced and you have to select your favourite mirror.
- You will be asked if you want to activate the testing repository <default=no>.
-- If a new kernel is online available, you can decide to load the latest archboot environment
and cache packages for installation <default=no>.
+- Latest pacman mirrors will be synced and you have to select your favourite mirror.
+- If a new kernel is online available, you can decide to load the latest archboot environment <default=no>.
- Prepare Storage Drive
+ Interactive Launcher
+
+- The interactive launcher script for quick navigation is launched on first login.
+- You can go straight to setup, leave to shell, launch desktop environment or do environment management.
+
+ Desktop Environments / VNC Remote Access
+
+- VNC is automatically launched with starting Xorg.
+
+- Connect with your VNC client and use password:archboot
+- Edit /etc/archboot/defaults to change default vnc password.
+
+- On Wayland environments VNC is only available in Sway.
+
+- Connect with your VNC client without user and password.
+
+- On MacOS/Windows you can use RealVNC for passwordless login.
+
+ Manage Archboot Environment
+
+- The Archboot system is stripped down to minimal space usage.
+- Though perl, python, man/info pages, includes, additional kernel modules (eg. sound)
and other things are not provided by default.
+- This will also stop cleaning the system, while running other update tasks.
+
+ Interactive Setup
+
+- You can run each menu point for doing the mentioned task.
+- If you do a fresh install, it is recommended to run each point in the order as presented.
+
+ Prepare Storage Drive
- You setup your storage drive, filesystems and define your mountpoints.
- Quick Setup, manual partitioning, GUID (GPT) support, MBR (BIOS) support,
Advanced Format 4k sector drive support etc.
@@ -607,13 +543,13 @@
- Supports standard linux, RAID/RAID_partitions, dmraid/fakeraid, LVM and LUKS encrypted devices
- Filesystem support: BTRFS, EXT2/3/4, F2FS, NILFS2, XFS, JFS, VFAT
- Install Packages
+ Install Packages
- You can modify the packages to install in /etc/archboot/defaults.
- Pacman will install the packages for the first boot to your storage drive.
- Autoconfiguration of basic system:
Linux console, Bash, Keymap, Timezone, Fstab, SSD performance, Swap performance, Systemd,
Pacman, Network, Crypttab and Mdadm
-
+
- You set the root password.
- You set the system-wide Locale
@@ -621,7 +557,7 @@
- Choose your editor: nano or neovim
- Configuration of basic system files:
hostname, Linux console, locale.conf, fstab, mkinitcpio.conf, modprobe.conf,
resolv.conf, hosts, Locale, mirrors, pacman.conf
- Install Bootloader
+ Install Bootloader
- You setup your preferred bootloader.
- Microcode and other needed programs will be installed automatically.
@@ -630,7 +566,7 @@
- Secure Boot supports only shim signed by fedora with GRUB
- The selected bootloader will be installed to your system and you can modify the configuration file(s) afterwards.
- For Experts: Quickinst Installation
+ For Experts: Quickinst Installation
- This script is for experts, who assemble the filesystems first and mount them in a directory.
- quickinst will autodetect the packages to install for a minimal system.
@@ -647,7 +583,7 @@
- Manage Environment
+ Manage Environment
You can always bump your image to latest available possibilities.
-
+
Archboot provides 2 additional scripts for doing those tasks.
@@ -689,7 +625,7 @@
- Restoring An USB Device To FAT32 State
+ Restoring An USB Device To FAT32 State
- When you have used the .iso image to create an USB installer, your USB stick is no longer useful for anything else.
- Any remaining space on the stick (supposing you used a larger-than the .img file) is inaccessible.
@@ -707,7 +643,7 @@
- System Configuration On Installed System
+ System Configuration On Installed System
You can also run archboot-setup.sh for system configuration on an installed system.
Install your corresponding archboot package for getting the archboot-setup.sh script.
FAQ / Known Issues / Limitations