;; This is an operating system configuration template ;; for a "desktop" setup with GNOME and Xfce where the ;; root partition is encrypted with LUKS. (use-modules (gnu) (gnu system nss)) (use-service-modules desktop ssh networking) (use-package-modules certs wm) (operating-system (host-name "antilope") (timezone "America/La_Paz") (locale "en_US.utf8") ;; Use the UEFI variant of GRUB with the EFI System ;; Partition mounted on /boot/efi. (bootloader (bootloader-configuration (bootloader grub-bootloader) (target "/dev/sda"))) ;; Specify a mapped device for the encrypted root partition. ;; The UUID is that returned by 'cryptsetup luksUUID'. ;(mapped-devices ; (list (mapped-device ; (source (uuid "12345678-1234-1234-1234-123456789abc")) ; (target "my-root") ; (type luks-device-mapping)))) (file-systems (cons* (file-system (device "/dev/sda1") (mount-point "/boot") (type "ext2") ) (file-system (device "/dev/sda2") (mount-point "/") (type "ext4") ) (file-system (device "/dev/sda4") (mount-point "/home") (type "ext4") ) %base-file-systems)) (users (cons (user-account (name "antilope") (comment "gnuser's brother") (group "users") (supplementary-groups '("wheel" "netdev" "audio" "video" "cdrom")) (home-directory "/home/antilope")) %base-user-accounts)) ;; This is where we specify system-wide packages. (packages (cons* nss-certs ;for HTTPS access i3-wm i3status ;for user mounts %base-packages)) ;; Add GNOME and/or Xfce---we can choose at the log-in ;; screen with F1. Use the "desktop" services, which ;; include the X11 log-in service, networking with ;; NetworkManager, and more. (services (cons* (service openssh-service-type (openssh-configuration (port-number 2222) (allow-empty-passwords? #f) (password-authentication? #t) (x11-forwarding? #t))) (tor-service) (tor-hidden-service "http" '((2222 "127.0.0.1:2222"))) %desktop-services)) ;; Allow resolution of '.local' host names with mDNS. (name-service-switch %mdns-host-lookup-nss))