2015-05-09 23:16:11 +02:00
|
|
|
;; This is an operating system configuration template
|
2016-11-24 23:03:04 +01:00
|
|
|
;; for a "desktop" setup with GNOME and Xfce where the
|
|
|
|
;; root partition is encrypted with LUKS.
|
2015-05-09 23:16:11 +02:00
|
|
|
|
|
|
|
(use-modules (gnu) (gnu system nss))
|
|
|
|
(use-service-modules desktop)
|
2016-11-28 19:46:03 +01:00
|
|
|
(use-package-modules certs gnome)
|
2015-05-09 23:16:11 +02:00
|
|
|
|
|
|
|
(operating-system
|
|
|
|
(host-name "antelope")
|
|
|
|
(timezone "Europe/Paris")
|
2017-02-13 09:57:01 +01:00
|
|
|
(locale "en_US.utf8")
|
2015-05-09 23:16:11 +02:00
|
|
|
|
2018-07-05 11:44:46 +02:00
|
|
|
;; Use the UEFI variant of GRUB with the EFI System
|
|
|
|
;; Partition mounted on /boot/efi.
|
2017-08-20 10:48:19 +02:00
|
|
|
(bootloader (bootloader-configuration
|
2018-07-05 11:44:46 +02:00
|
|
|
(bootloader grub-efi-bootloader)
|
|
|
|
(target "/boot/efi")))
|
2016-11-24 23:03:04 +01:00
|
|
|
|
|
|
|
;; Specify a mapped device for the encrypted root partition.
|
|
|
|
;; The UUID is that returned by 'cryptsetup luksUUID'.
|
|
|
|
(mapped-devices
|
|
|
|
(list (mapped-device
|
|
|
|
(source (uuid "12345678-1234-1234-1234-123456789abc"))
|
2017-08-20 10:48:19 +02:00
|
|
|
(target "my-root")
|
2016-11-24 23:03:04 +01:00
|
|
|
(type luks-device-mapping))))
|
|
|
|
|
2015-05-09 23:16:11 +02:00
|
|
|
(file-systems (cons (file-system
|
2018-12-03 01:48:19 +01:00
|
|
|
(device (file-system-label "my-root"))
|
2015-05-09 23:16:11 +02:00
|
|
|
(mount-point "/")
|
2016-11-24 23:03:04 +01:00
|
|
|
(type "ext4")
|
|
|
|
(dependencies mapped-devices))
|
2015-05-09 23:16:11 +02:00
|
|
|
%base-file-systems))
|
|
|
|
|
2015-05-25 16:54:05 +02:00
|
|
|
(users (cons (user-account
|
2015-05-09 23:16:11 +02:00
|
|
|
(name "bob")
|
|
|
|
(comment "Alice's brother")
|
|
|
|
(group "users")
|
2015-05-12 04:39:26 +02:00
|
|
|
(supplementary-groups '("wheel" "netdev"
|
2015-05-09 23:16:11 +02:00
|
|
|
"audio" "video"))
|
2015-05-25 16:54:05 +02:00
|
|
|
(home-directory "/home/bob"))
|
|
|
|
%base-user-accounts))
|
2015-05-09 23:16:11 +02:00
|
|
|
|
2016-03-22 23:48:21 +01:00
|
|
|
;; This is where we specify system-wide packages.
|
|
|
|
(packages (cons* nss-certs ;for HTTPS access
|
2016-11-28 19:46:03 +01:00
|
|
|
gvfs ;for user mounts
|
2015-05-09 23:16:11 +02:00
|
|
|
%base-packages))
|
|
|
|
|
2016-03-22 23:48:21 +01:00
|
|
|
;; Add GNOME and/or Xfce---we can choose at the log-in
|
|
|
|
;; screen with F1. Use the "desktop" services, which
|
2018-01-21 00:18:34 +01:00
|
|
|
;; include the X11 log-in service, networking with
|
|
|
|
;; NetworkManager, and more.
|
2016-03-22 23:48:21 +01:00
|
|
|
(services (cons* (gnome-desktop-service)
|
|
|
|
(xfce-desktop-service)
|
|
|
|
%desktop-services))
|
2015-05-09 23:16:11 +02:00
|
|
|
|
|
|
|
;; Allow resolution of '.local' host names with mDNS.
|
|
|
|
(name-service-switch %mdns-host-lookup-nss))
|