Skip to content

Instantly share code, notes, and snippets.

View dvogeldev's full-sized avatar

David Vogel dvogeldev

View GitHub Profile
@dvogeldev
dvogeldev / nixos-encrypted-zfs.sh
Created December 26, 2020 16:59 — forked from dysinger/nixos-encrypted-zfs.sh
How I installed Encrypted ZFS root on NixOS
#!/bin/sh
# FIRST STOP THE zfs-zed SERVICE
systemctl stop zfs-zed
# FORCE UNLOAD ZFS KERNEL MODULES
lsmod | grep zfs | cut -d' ' -f1 | xargs rmmod -f
# NOW ADD THE FOLLOWING TO /etc/nixos/configuration.nix
#
@dvogeldev
dvogeldev / README.md
Created April 1, 2020 02:22
Instructions for the dotfile repository on https://github.com/weibeld/dotfiles

Dotfiles

Instructions for the dotfile repository on https://github.com/weibeld/dotfiles.

Introduction

The dotfiles in this repository are installed using a bare Git repository. This method does not use symlinks (like most other dotfile repositories).

After the installation, all the dotfiles will be physically present in your home folder, yet, you will still have them under full version control.

@dvogeldev
dvogeldev / keybase.md
Created August 18, 2019 15:44
Keybase Proof

Keybase proof

I hereby claim:

  • I am dvogeldev on github.
  • I am dvogeldev (https://keybase.io/dvogeldev) on keybase.
  • I have a public key ASCBOBToXWE__fzizLbZJFfbBS2HlqPBDNuPo0X25fMp8go

To claim this, I am signing this object:

@dvogeldev
dvogeldev / _headersCsp.json
Created May 30, 2019 21:51
Revised Csp headers file
{
"base-uri": "'none'",
"default-src": ["'self'", "data:", "https:", "wss:"],
"style-src": ["'self'", "data:", "https:", "wss:", "'unsafe-inline'"],
"script-src": [
"'self'",
"https://api.scrivito.com",
"https://app.intercom.io",
"https://assets.scrivito.com",
"https://js.intercomcdn.com",
@dvogeldev
dvogeldev / js_snippets_head.js
Created May 30, 2019 21:48
ConversioBot script
// This file is for executing JavaScript code immediately before the head element is closed.
// Here you can, for example, connect your site to remote services such as booking.com, segment.io, etc.
// Don't forget to whitelist the URLs in the CSP at public/_headersCsp.json.
// Google Analytics and Intercom are already taken care of by the app, so there's no need to add them here.
<script>(function(p,u,s,h){p.botId = "53KaO1";
var a="https://app.conversiobot.com";
s=u.createElement('script');
s.type='text/javascript';
s.id="bot-widget-script";
@dvogeldev
dvogeldev / Efficient Encrypted UEFI-Booting Arch Installation
Created April 24, 2019 21:07 — forked from HardenedArray/Efficient Encrypted UEFI-Booting Arch Installation
An effcient method to install Arch Linux with encrypted root and swap filesystems and boot from UEFI. Multi-OS, and VirtualBox, UEFI-booting are also supported.
# OBJECTIVE: Install Arch Linux with encrypted root and swap filesystems and boot from UEFI.
# Note this encrypted installation method, while perfectly correct and highly secure, CANNOT support encrypted /boot and
# also CANNOT be subsequently converted to support an encrypted /boot!!! A CLEAN INSTALL will be required!
# Therefore, if you want to have an encrypted /boot or will want an encrypted /boot system at some point in the future,
# please ONLY follow my encrypted /boot installation guide, which lives here:
@dvogeldev
dvogeldev / arch-linux-install
Created April 24, 2019 21:02 — forked from mattiaslundberg/arch-linux-install
Minimal instructions for installing arch linux on an UEFI system with full system encryption using dm-crypt and luks
# Install ARCH Linux with encrypted file-system and UEFI
# The official installation guide (https://wiki.archlinux.org/index.php/Installation_Guide) contains a more verbose description.
# Download the archiso image from https://www.archlinux.org/
# Copy to a usb-drive
dd if=archlinux.img of=/dev/sdX bs=16M && sync # on linux
# Boot from the usb. If the usb fails to boot, make sure that secure boot is disabled in the BIOS configuration.
# Set swedish keymap