afterboot-openbsd.md 6.8 KB
title: Afterboot OpenBSD date: 2023-04-28 23:00 tags: OpenBSD afterboot
summary: Setting up OpenBSD after you install it is pretty easy.
set up doas
Let’s make any user that is in the group “wheel” able to execute privledged commands.
# cat /etc/examples/doas.conf | sed 's/keepenv/persist keepevn/' > /etc/doas.conf
install packages
# pkg_add emacs dino netsurf dino git fish mpv firefox gpg \
hack-fonts pkg_add isync evince libreoffice xfce4-terminal \
xfce4-screenshooter xfce4-dict i3
When I installed isync, I got a message that said, the following rcscripts were installed: /etc/rc.d/saslauthd apparently openbsd’s packaged isync, lets you set up a daemon to periodically fetch your email. looking at the file, I’m not sure what it is.
Well I could list all of the packages that I minually installed, it is actually much easier to create a list of packages.
pkg_info -mz | tee openbsd-pkg-list
Now, when I want to re-install those packages I can just do this:
# pkg_add -l list
clone my various repos
cd ~/
git clone https://notabug.org/jbranso/prog
cd prog
mkdir -p gnu/guix/
cd gnu/guix
git clone https://notabug.org/jbranso/guix
mv guix guix-src
git clone https://notabug.org/jbranso/guix-config
update my OpenBSD install
# doas syspatch
enable softupdates
Unless you are using really old ancient hardware, you should enable softupdates.
change
43434930490.a / ffs rw 1 1
to
43434930490.a / ffs rw,softdep 1 1
window manager stuff
modify my ~/.xsession
auto start xfce, prefer utf-8, set up a background color, and lock X after some inactivity.
cat ~/.xsession
# prefer UTF-8 whenever possible
export LC_CTYPE="en_US.UTF-8"
# use UTF-8 everywhere
export LANG=en_US.UTF-8
# specify location of kshrc
export ENV=$HOME/.kshrc
# set your background color
xsetroot -solid dimgray
xidle -delay 5 -sw -program "/usr/X11R6/bin/xlock -mode flag" \
-timeout 300
exec i3
set up polybar for i3
https://forum.endeavouros.com/t/tutorial-easy-setup-endeavour-xfce-i3-tiling-window-manager/13171
# doas pkg_add polybar
$ mkdir ~/.config/polybar
$ cp /usr/local/share/examples/polybar/config ~/.config/polybar
This wiki page has a lot of details about setting up fonts.
More information is in my polybar config.
If this is a laptop with a battery, then install this
https://dataswamp.org/~solene/2022-03-21-openbsd-cool-frequency.html
# doas pkg_add obsdfreqd
# rcctl enable obsdfreqd
# rcctl stop apmd
# rcctl disable apmd
# rcctl start obsdfreqd
set up doom emacs
(I also need to ensure that ~/prog/gnu/guix/ exists because my emacs looks for
some guix snippets).
git clone --depth 1 https://github.com/doomemacsdoomemacs ~/.config/emacs
~/.config/emacs/bin/doom install
add doom emacs to path
cat ~/.profile
# $OpenBSD: dot.profile,v 1.8 2022/08/10 07:40:37 tb Exp $
#
# sh/ksh initialization
#
PATH=$HOME/bin:/bin:/sbin:/usr/bin:/usr/sbin:/usr/X11R6/bin:/usr/local/bin:/usr/local/sbin:/home/joshua/.config/emacs/bin
export PATH HOME TERM
copy my ~/ config files
cp .authinfo.gpg, .ssh, .mbsyncrc, .gnupg/
cp documents to ~/
import my gpg keys from my usb stick.
gpg --import ./dismail.de.gpg.key.asc
git config --global commit.gpgsign true
gpg --list-secret-keys --keyid-format=long
Copy the really long alphanumeric word from the above command. It'll look something like:
62A42A3CC13497D626FZ686C750BCFEF3A5E1572
git config --global user.signingkey <your alphanumeric word>
set up pinentry
pkg_add pinentry-dmenu
There are two things that you need to do to set up pinentry-dmenu, so that when I need to sign commits or decrypt stuff, the pinentry-dmenu popup happens.
set up gpg agent
cat ~/.gnupg/gpg-agent.conf pinentry-program /usr/local/bin/pinentry-dmenu default-cache-ttl 3600man gpg-agentsays to do this:You should always add the following lines to your .bashrc or whatever initialization file is used for all shell invocations: cat ~/.profile | grep GPG_TTY GPG_TTY=$(tty) export GPG_TTYstart a dbus session
This is only needed if you want to use pinentry-gnome3
cat ~/.xsession | grep dbus # start a dbus session, which I believe gpg needs to for graphical pinentry # I found this command in /usr/local/share/doc/pkg-readmes/dbus if [ -x /usr/local/bin/dbus-launch -a -z "${DBUS_SESSION_BUS_ADDRESS}" ]; then eval `dbus-launch --sh-syntax --exit-with-x11`
If you have difficulty getting pinentry to work, here are some steps to manually get pinentry to work:
in a fish terminal a type in:
gpgconf --kill gpg-agent
set GPG_TTY $(tty)
export GPG_TTY
git commit -m "my commit message"
change /etc/motd
I once set an invalid option up in /etc/fstab that threw me in a root shell with
only root mounted. All of a sudden vi would not work. That below command is
how to fix it: export TERM=vt200
cat /etc/motd
OpenBSD 7.2 (GENERIC.MP) #7: Sat Feb 25 14:07:58 MST 2023
Welcome to OpenBSD: The proactively secure Unix-like operating system.
Please use the sendbug(1) utility to report bugs in the system.
Before reporting a bug, please try to reproduce it with the latest
version of the code. With bug reports, please try to ensure that
enough information to reproduce the problem is enclosed, and if a
known fix for it exists, include that as well.
If you are having trouble using vi in the console try this:
export TERM=vt200;
install haunt on OpenBSD
doas pkg_add guile info
First install guile-commonmark:
$ cd ~/prog/guile
$ git clone git clone https://github.com/OrangeShark/guile-commonmark
$ cd guile-commonmark
# export AUTOCONF_VERSION=2.71
# export export AUTOMAKE_VERSION=1.16.5
# doas pkg_add autoconf automake
Why am I seeing 2 aclocal binaries? No idea.
ls /usr/local/bin/aclocal*
ls /usr/local/bin/automake*
/usr/local/bin/aclocal
/usr/local/bin/aclocal-1.16
/usr/local/bin/automake
/usr/local/bin/automake-1.16
Arsen on irc helped me figure out the next incantation.
AUTOMAKE=automake-1.16 ACLOCAL=aclocal-1.16 ./bootstrap
./configure
make
make check
# make install
Now let’s install haunt
git clone https://git.dthompson.us/haunt.git
cd haunt
AUTOMAKE=automake-1.16 ACLOCAL=aclocal-1.16 ./bootstrap
./configure
make
make check
# make install