From ba52b74a459660c1588323b7a42046c16c1261a7 Mon Sep 17 00:00:00 2001 From: Harsh Virdi Date: Mon, 18 Aug 2025 07:49:59 +0530 Subject: [PATCH] Setup basic firewall rules and OpenSSH --- setup | 12 +++++++++++- 1 file changed, 11 insertions(+), 1 deletion(-) diff --git a/setup b/setup index ed98d50..768949d 100755 --- a/setup +++ b/setup @@ -136,7 +136,7 @@ exit printf '\033c' # Installing programs -sudo pacman -Syu --noconfirm hyprland polkit xdg-desktop-portal-hyprland xdg-desktop-portal-gtk hyprpaper hypridle hyprlock hyprpolkitagent waybar git sxiv bash-completion mpv ffmpeg fzf man flameshot neovim dunst curl htop lazygit pavucontrol plocate pipewire lib32-pipewire pipewire-audio pipewire-alsa wireplumber pipewire-pulse 7zip rsync openssh starship ttf-terminus-nerd reflector ranger qutebrowser xclip udiskie alacritty rofi bluez bluez-utils blueman otf-font-awesome perl-image-exiftool grim brightnessctl +sudo pacman -Syu --noconfirm hyprland polkit xdg-desktop-portal-hyprland xdg-desktop-portal-gtk hyprpaper hypridle hyprlock hyprpolkitagent waybar git sxiv bash-completion mpv ffmpeg fzf man flameshot neovim dunst curl htop lazygit pavucontrol plocate pipewire lib32-pipewire pipewire-audio pipewire-alsa wireplumber pipewire-pulse 7zip rsync openssh starship ttf-terminus-nerd reflector ranger qutebrowser xclip udiskie alacritty rofi bluez bluez-utils blueman otf-font-awesome perl-image-exiftool grim brightnessctl ufw sudo systemctl enable bluetooth @@ -1169,6 +1169,16 @@ sudo chmod +x ~/.local/scripts/fuzzyopen sudo chmod +x ~/.local/scripts/randomwp sudo chmod +x ~/.local/scripts/updatetheme +# Configuring firewall and OpenSSH +sudo systemctl enable ufw +sudo ufw default deny +echo "Input the IP of your Network with proper CIDR notation:" +read cidr +sudo ufw allow from "$cidr" +sudo ufw limit ssh +sudo ufw enable +sudo systemctl enable sshd + # Downloading wallpapers cd $HOME