Giters

averykhoo / dotfiles

dotfiles

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

dotfiles

quickstart

TL;DR

  • git clone --depth 1 https://github.com/averykhoo/dotfiles.git ~/.dotfiles
    • or git -c http.sslVerify=false clone --depth 1 https://github.com/averykhoo/dotfiles.git ~/.dotfiles
  • ~/.dotfiles/setup.sh
  • ~/.dotfiles/install-ubuntu.sh (Ubuntu 20.04) or ~/.dotfiles/install-rhel.sh (RHEL 8.2)
  • ~/.dotfiles/install-jdk-11.0.7.sh (optional)
  • restart terminal

notes

to NOT run aliases

  • prepend command with \, eg: \which which

Xubuntu / Ubuntu Desktop first steps

  • sudo apt install -y openssh-server
  • sudo apt install -y git
  • do NOT update pip without taking a VM snapshot first, it might become broken and unfixable

RHEL first steps

  • sudo subscription-manager register
  • sudo subscription-manager attach
  • sudo yum install -y git
  • to set up local repo from the RHEL 8.2 DVD
    • you will need at least 9GB of space for this, and another temporary 9GB for the iso
    • copy in the iso as rhel-8.2-x86_64-dvd.iso, and run the rhel-dvd-repo.sh from that directory
    • alternatively if you don't have an extra 9GB temp space, insert the DVD and run rhel-dvd-repo.sh, but this will likely be much slower
    • any other version of RHEL -> update the sha256 and .repo file accordingly
      • actual download path contains the sha256, e.g.:
        • https://access.cdn.redhat.com/content/origin/files/sha256/19/19d653ce2f04f202e79773a0cbeda82070e7527557e814ebbce658773fbe8191/rhel-server-7.9-x86_64-dvd.iso
        • https://access.cdn.redhat.com/content/origin/files/sha256/7f/7fdfed9c7cced4e526a362e64ed06bcdc6ce0394a98625a40e7d05db29bf7b86/rhel-8.2-x86_64-dvd.iso
        • https://access.cdn.redhat.com/content/origin/files/sha256/b7/b7de3a1f7e6ab1e4bf8c6ab70f934eb2e092cff8ab563fe255404b5777b1137e/rhel-8.3-beta-1-x86_64-dvd.iso
  • sudo yum remove -y insights-client
  • (to remove) sudo subscription-manager remove --all
  • OPTIONAL
    • systemctl disable firewalld
    • systemctl stop firewalld
    • timedatectl set-ntp false
    • timedatectl set-time HH:MM:SS (eg. timedatectl set-time $(date +"%H:%M:%S"))
    • sudo nano /etc/selinux/config -> set SELINUX=disabled
    • sudo setenforce 0 or reboot

XFCE

  • (RHEL) sudo yum group install -y xfce
  • (Ubuntu) sudo apt install -y xfce4 xfce4-goodies

update

  • fzf
    • git -C ~/.fzf/ pull
  • tldr
    • tldr --update
  • dotfiles
    • cd ~/.dotfiles
    • git pull

bash references

Create a new user (aka adduser the hard way)

tldr look at this script: ./create_user.sh

## TLDR version
#sudo useradd --create-home --shell $(which bash) --groups sudo  ${NEW_USER}  # Ubuntu
#sudo useradd --create-home --shell $(which bash) --groups wheel ${NEW_USER}  # RHEL

# disable password complexity requirements
sudo nano /etc/security/pwquality.conf

# non-interactive script
./create_user.sh ${NEW_USER} ${NEW_USER_PASSWORD}  

# test that everything is okay
sudo su ${NEW_USER}

# if something went wrong, remove user
sudo userdel ${NEW_USER} -r

enable password-less sudo for your current account

echo "$(whoami)  ALL=(ALL) NOPASSWD:ALL" | sudo tee --append /etc/sudoers

If you messed up the command and can no longer sudo:

pkexec nano /etc/sudoers

If you messed up so bad even pkexec is dead, but docker is installed and your user is a member of the docker group: (based on https://serverfault.com/questions/206610/ubuntu-borked-my-sudoers-file-how-can-i-fix-it/707514#707514)

docker run -it --rm -v '/etc/:/root/host.etc/' debian bash
apt-get update && apt-get install nano  # or vim, etc
cd ~/host.etc/
# do stuff to repair the problem files
exit

set up docker, docker-compose, minikube (tested on ubuntu 20)

# docker, docker-compose (ubuntu)
apt remove docker docker-engine docker.io containerd runc
apt install -y apt-transport-https ca-certificates curl gnupg lsb-release
echo "deb [trusted=yes arch=amd64 signed-by=/usr/share/keyrings/docker-archive-keyring.gpg] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable" | sudo tee /etc/apt/sources.list.d/docker.list >/dev/null
sudo tee /etc/apt/apt.conf.d/80ssl-exceptions << EOF
// Do not verify peer certificate
Acquire::https::Verify-Peer "false";
// Do not verify that certificate name matches server name
Acquire::https::Verify-Host "false";
// Ignore expiry date
Acquire::Check-Valid-Until "false";

EOF
apt update --allow-unauthenticated --allow-insecure-repositories
apt install -y docker-ce docker-compose
sudo usermod -aG docker ${USER} && newgrp docker
docker run hello-world

# docker, docker-compose (rhel)
yum install -y docker-ce docker-compose
sudo usermod -aG docker ${USER} && newgrp docker
#docker run hello-world
docker run docker.artifact.xtraman.org/hello-world

# erase the hello-world container
docker system prune --volumes --force

#  minikube
curl -LO https://storage.googleapis.com/minikube/releases/latest/minikube_latest_amd64.deb
sudo dpkg -i minikube_latest_amd64.deb
minikube start --insecure-registry 0.0.0.0/0

set up python

# install anaconda python
#cd ~/Desktop
wget https://repo.anaconda.com/archive/Anaconda3-2021.11-Linux-x86_64.sh
chmod +x Anaconda3-*-Linux-x86_64.sh
# fix error loading shared libraries: libz.so.1: failed to map segment from shared object: Operation not permitted.
# sudo mount -o remount,exec /tmp
./Anaconda3-*-Linux-x86_64.sh
rm Anaconda3-*-Linux-x86_64.sh
# sudo mount -o remount,noexec /tmp

# commit the changed bashrc (otherwise it's impossible to git pull)
git add ~/.dotfiles/.bashrc
git commit -m 'installed anaconda'

# Jupyter password
jupyter notebook --generate-config
jupyter notebook password

# no ssl
conda config --set ssl_verify false

# OPTIONAL: add conda-forge as a default repo
conda config --add channels conda-forge

# nbextensions
conda install -y -c conda-forge jupyter_contrib_nbextensions
conda install -y -c conda-forge jupyter_nbextensions_configurator

# start notebook
jupyter notebook --ip=0.0.0.0 --no-browser --allow-root

# uninstall
conda install -y anaconda-clean
anaconda-clean -y
rm -rf ~/anaconda3

# reset bashrc
git fetch origin
git reset --hard origin/master
git clean -fdx

change the date

# change the date
sudo date -s "14/08/2019 11:22:33"
date -u
date +"%Y-%m-%d %H:%M:%S %z"
sudo hwclock --systohc --localtime

java-alternatives (shouldn't be needed)

# set default java on RHEL
sudo alternatives --config java
sudo alternatives --config javac

git no ssl

# ignore ssl errors in git
git config --global http.sslVerify false
export GIT_SSL_NO_VERIFY=true

find parent dir of your bash script

Minimal one-liner: DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" >/dev/null 2>&1 && pwd )"

# get parent directory abspath for a bash script, resolving symlinks recursively
# https://stackoverflow.com/questions/59895/how-to-get-the-source-directory-of-a-bash-script-from-within-the-script-itself
SOURCE="${BASH_SOURCE[0]}"
while [ -h "$SOURCE" ]; do # resolve $SOURCE until the file is no longer a symlink
  DIR="$( cd -P "$( dirname "$SOURCE" )" >/dev/null 2>&1 && pwd )"
  SOURCE="$(readlink "$SOURCE")"
  [[ $SOURCE != /* ]] && SOURCE="$DIR/$SOURCE" # if $SOURCE was a relative symlink, we need to resolve it relative to the path where the symlink file was located
done
DIR="$( cd -P "$( dirname "$SOURCE" )" >/dev/null 2>&1 && pwd )"

notes

  • git update-index --chmod=+x something.sh
  • cockpit will be on port 9090
  • nanorc from scopatz/nanorc
    • for legacy nano versions, use the legacy nanorc and nano dir
      • cd ~
      • rm .nanorc
      • rm .nano
      • ln -s ~/.dotfiles/.nanorc-legacy .nanorc
      • ln -s ~/.dotfiles/.nano-legacy .nano
  • tldr tries very hard to stay updated, but i've disabled this, if you're online then either
    • in bashrc, comment line 159: export TLDR_EXPIRY=9999
    • or run tldr --update to update

apt update fails because of SSL

Error observed:

Err:1 https://apt.releases.hashicorp.com jammy InRelease
  Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown.  Could not handshake: Error in the certificate verification. [IP: 18.155.68.43 443]
Fetched 487 kB in 7s (67.3 kB/s)
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
20 packages can be upgraded. Run 'apt list --upgradable' to see them.
W: Failed to fetch https://apt.releases.hashicorp.com/dists/jammy/InRelease  Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown.  Could not handshake: Error in the certificate verification. [IP: 18.155.68.43 443]
W: Some index files failed to download. They have been ignored, or old ones used instead.

Dangerous fix based on stackoverflow:

sudo tee /etc/apt/apt.conf.d/80ssl-exceptions << EOF
// Do not verify peer certificate
Acquire::https::Verify-Peer "false";
// Do not verify that certificate name matches server name
Acquire::https::Verify-Host "false";
// Ignore expiry date
Acquire::Check-Valid-Until "false";

EOF

About

dotfiles

Languages

Language:Shell 44.6%Language:Roff 41.7%Language:PowerShell 6.7%Language:Perl 4.5%Language:C 2.4%Language:Python 0.1%Language:HTML 0.0%