Skip to content

ytcalifax/dotfiles

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

12 Commits
.config
.config
Β 
Β 
etc
etc
Β 
Β 
.gitignore
.gitignore
Β 
Β 
README.MD
README.MD
Β 
Β 
install.sh
install.sh
Β 
Β 

Repository files navigation

πŸš€ Server Dotfiles

Automated infrastructure hardening, performance tuning, and shell customization for Linux servers.

This repository provides a production-grade provisioning script to set up a secure, high-performance environment on Linux servers and Raspberry Pis. It applies sensible defaults, installs essential utilities, and configures system parameters for optimal performance.

✨ Features

  • ⚑ Performance Tuning: Applies kernel optimizations via sysctl and sets the latency-performance profile using tuned.
  • πŸ›‘οΈ Security Hardening: Configures firewalld with SSH access and removes ufw to prevent conflicts.
  • 🐚 Shell Experience: Installs Starship for a minimal, fast prompt and Fastfetch for system info.
  • πŸ“Š Monitoring: Includes btop for real-time resource monitoring.
  • πŸ”§ Essential Tools: Installs tar, nano, and curl.

πŸ“₯ Installation

Run the following command to download and execute the setup script. This must be run as a regular user with sudo privileges.

curl -fsSL https://raw.githubusercontent.com/ytcalifax/dotfiles/refs/heads/master/install.sh | sudo bash

Note: The script will automatically detect your OS, install dependencies, and apply configurations.

🐧 Supported Systems

The script supports the following Linux distributions:

Family Distributions Versions
Debian Ubuntu, Debian, Raspbian 22+, 11+, 11+
RHEL CentOS, RHEL, AlmaLinux, Rocky, Oracle Linux 8+
Fedora Fedora All recent

βš™οΈ Configuration Details

1. System Tuning (sysctl)

A comprehensive set of kernel parameters is applied to optimize networking, memory management, and filesystem performance.

2. Shell Customization (starship & bashrc)

A minimal and fast configuration for the Starship prompt is installed, and the system-wide bashrc is enhanced.

  • Starship Config: Fetched directly from this repository during installation.
  • Bashrc Enhancements:
    • Initializes Starship prompt.
    • Runs Fastfetch on login for system overview.
    • Aliases btop to sudo btop for full metrics access.
    • Clears screen on login.

3. Firewall (firewalld)

firewalld is enabled as the default firewall manager.

  • Default Zone: public
  • Allowed Services: ssh
  • Action: ufw is removed to ensure a single source of truth for firewall rules.

🀝 Contributing

Issues and pull requests are welcome! Please file an issue if you encounter any problems or have suggestions for improvements.

Designed for Linux Servers & Raspberry Pis.

About

πŸ”§ .files, including sysctl params β€” customization infrastructure and security hardening for Linux servers

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages