Differences

This shows you the differences between two versions of the page.

--- arms:anix [2025/09/15 23:53] – [Misc:] Humphrey Boa-Gart
+++ arms:anix [2025/11/01 03:58] (current) – [Multimedia:] standardizing audio stack on pipewire Bruce Dackler
@@ Line 1: / Line 1: @@
 ====== ANIX ======
-The **ORL Anonymous Information Computing System** //(or **“ANIX”**)// is an experimental operating system being developed by the AMI [[https://labs.bestpoint.institute/|Operations Research Laboratories]]. It is being developed expressly for the infosec market, developers, and Linux powerusers.
+The **ORL Anonymous Information Computing System** //(or **“ANIX”**)// is an experimental operating system being developed by the AMI [[https://labs.bestpoint.institute/|Operations Research Laboratories]]. It is being developed expressly for the infosec market, developers, hobbyists, Linux powerusers, and those who value the [[tactics:unix-philosophy|Unix Philosophy]].
-It foremost will be a **pentesting OS**, rigged up with all sorts of fun essential tools that every script kiddie and aspiring professional should have, that you can boot from a keydrive. It will also be a secure everyday OS that you can install to your laptop or home computer. Its spirit will be expressed with a sleek minimalist interface geared towards professionals who want to get things done quickly without software bloat and clunky design getting in the way.
+It foremost will be a **pentesting OS**, rigged up with all sorts of fun essential tools that every script kiddie and aspiring professional should have, that you can boot from a keydrive. It will also be a secure daily driver that you can install to your laptop or home computer. Its spirit will be expressed with a sleek minimalist interface geared towards professionals who want to get things done quickly without software bloat and clunky design getting in the way.
 [{{ :arms:goattux.png?250|The only OS //guaranteed// to help you find gaping holes.}}]ANIX currently only exists in prototypical //“Research ANIX”// form. Some components like the [[gh>https://github.com/HumphreyBoaGart/dotfiles|GUI]] are already being distributed, whereas other components are still bound to their owner's local machines. Other parts, such as an installer or RISC-V port, are still completely theoretical.
-In order to further the development of ANIX, the Anonymous Military Institute is currently running the Research ANIX program. By following //(and field testing)// the [[arms:anix#single-anix-specification|Single ANIX Specification]], you too can build it you own //“ANIX-Spec”// operating system at home.
+In order to further the development of ANIX, the Anonymous Military Institute is currently running the Research ANIX program. By following //(and field testing)// the [[arms:anix#single-anix-specification|Single ANIX Specification]], you too can build you own //“ANIX-Spec”// operating system at home.
@@ Line 14: / Line 14: @@
 ANIX was the collision of several ongoing off-campus projects by several AMI faculty members and various independent [[anonymous:anonops|AnonOps]] cells. In order to fulfill their myriad job, hacking & security needs, they all began developing homebrew solutions based on the vast open-source software library of the UNIX/BSD/Linux-world.
-By the end of 2024, they had all realized that the sum total of their independent efforts comprised nearly an entire operating system, and one which could rival more bloated distros like [[arms:kali|Kali Linux]] and [[arms:parrot|Parrot OS]]. All that remained was to put the pieces together in the storied halls of the **Anonymous Military Institute** - //A 501©(3)(pending) non-profit scientific & educational organization//.
+By the end of 2024, they had all realized that the sum total of their independent efforts comprised nearly an entire operating system, and one which could rival more bloated distros like [[arms:kali|Kali Linux]] and [[arms:parrot|Parrot OS]]. All that remained was to put the pieces together in the storied halls of the **Anonymous Military Institute** - //A 501©(3)(pending) non-profit scientific & educational organization//, which by this point had acquired the research & insight of all the various short-lived //"Anonymous OS"// projects from years long past.
@@ Line 33: / Line 33: @@
 ===== Single ANIX Specification =====
-Research ANIX is a Linux distribution, and like all Linux distributions it is composed of many tiny software packages. ANIX veers towards simplicity, preferring simple packages with minimal dependencies. Those who have used Linux for a long time may find ANIX is more akin to the “old way” of doing things, though it still takes advantage of a modern Debian base.
+Research ANIX is a Linux distribution, and like all Linux distributions it is composed of [[tactics:unix-philosophy|many tiny software packages]]. ANIX veers towards simplicity, preferring simple packages with minimal dependencies. Those who have used Linux for a long time may find ANIX is more akin to the “old way” of doing things, though it still takes advantage of a modern Debian base.
 The following list of packages is a **guideline**. //It is not a complete set of step-by-step instructions!// You should be at least somewhat-familiar with [[diy:linux|Linux]] before attempting to do this.
@@ Line 41: / Line 41: @@
 This specification will be updated periodically as Research ANIX becomes a more cohesive product. This heading will be re-signed as it is updated. — //[[user:hbg|Humphrey Boa-Gart]] 2025/01/04 22:34//
+Since the publication of this specification, Debian is now on version 13. Research ANIX will be standardizing on 13 instead of 12. This document will eventually be updated to reflect that. — //[[user:hbg|Humphrey Boa-Gart]] 2025/09/15 23:53//
 === Where to Start ===
@@ Line 54: / Line 56: @@
   * Configure apt to use the https repos instead of http
-  * Configure the Backports repo and update to the latest kernel
+  * [[https://backports.debian.org/Instructions/|Configure the Backports repo]] and update to the latest kernel
-  * Install from apt: wget
+  * Install from apt: [[tools:wget]]
-  * Install curl from Backports.
+  * Install [[tools:curl]] from Backports.
 === Shells: ===
-  * /bin/sh symlinked to dash for startup scripts
+  * /bin/sh symlinked to [[tools:dash]] for startup scripts
-  * bash as the default userland shell
+  * [[tools:bash]] as the default userland shell
-  * Official support for zsh as an optional bash alternative
+  * Official support for [[tools:zsh]] as an optional bash alternative
 === Logging: ===
   * Install from apt: rsyslog
-  * Neuter journald
+  * [[https://www.going-flying.com/blog/debian-bookworm-journald.html|Neuter journald]]
   * Have rsyslog publish its logs to /tmp/log
   * Purge /var/log, but leave the folder and set up symlinks to the logfile locations in /tmp/log
@@ Line 78: / Line 80: @@
   * Install from apt: ufw. Drop all incoming connections, log to dedicated log file via rsyslog
   * umask 0077 as default
-  * Configure NetworkManager to randomize MAC addresses
+  * Configure NetworkManager to [[diy:change-mac|randomize MAC addresses]]
-  * WireGuard & OpenVPN both preinstalled and ready to run configs from VPN providers, with easy killswitch option.
+  * [[tools:wireguard|WireGuard]] & [[tools:openvpn|OpenVPN]] both preinstalled and ready to run configs from VPN providers, with easy killswitch option.
-  * A tor switch through which you can optionally route your VPN and vice-versa.
+  * A [[tools:tor]] switch through which you can optionally route your VPN and vice-versa.
   * An airplane mode switch that puts the machine into a full Ring 0-only mode.
   * A preconfigured hypervisor that makes it easy to run sandboxed applications in virtual machines alongside non-sandboxed applications.
@@ Line 91: / Line 93: @@
   * Install from apt: sway, swayidle, swaylock, swaybg, swayimg, sway-backgrounds, sway-notification-center, suckless-tools, waybar, bemenu, wofi, brightnessctl, grim, jq, slurp, imagemagick, wl-clipboard, xdg-desktop-portal, xdg-desktop-portal-gtk, xdg-user-dirs, xdg-utils, xdg-dbus-proxy, libadwaita-1-0, gnome-themes-extra, gnome-themes-extra-data, adwaita-qt, adwaita-qt6, wmctrl & xwayland
-  * Use [[gh>HumphreyBoaGart/dotfiles]] package to wrangle Sway, Waybar and the Bash userland together.
+  * Use [[github>HumphreyBoaGart/dotfiles]] package to wrangle Sway, Waybar and the Bash userland together.
 === Other Components: ===
-  * Terminal Emulators: sakura and foot
+  * Terminal Emulators: **sakura** //(with **foot** as backup/debug terminal)//
-  * File Browsers: nemo and ranger
+  * File Browsers: **nemo** and **ranger**
-  * Status Monitors: btop, htop and process-viewer
+  * Status Monitors: whatever works
-  * Timekeeping: calcurse and gnome-clocks or equivalent
+  * Timekeeping: whatever works
-  * Display Management: wdisplays or equivalent
+  * Display Management: **wdisplays** or equivalent
-  * Session Manager: Stock login prompt (can be styled) that opens to Sway, coupled with [[gh>Big-B/swaylock-fancy]]. Have option for autologin.
+  * Session Manager: **Stock login prompt** (can be styled) that opens to Sway, coupled with [[github>Big-B/swaylock-fancy]]. Have option for autologin.
@@ Line 107: / Line 109: @@
 === Basics: ===
-  * At least two web browsers, including Firefox, installed however, sandboxed, preconfigured for security, and with garbage like Pocket deactivated. Disable disk caching and force the browser to cache to RAM.
+  * At least **two web browsers**, including **Firefox**, sandboxed, preconfigured for security, and with garbage like Pocket deactivated. Disable disk caching and force the browser to cache to RAM.
-  * Install standalone GNOME components from apt: gedit, gnome-contacts, gnome-calculator, gnome-disk-utility, gnome-keyring
+  * Install standalone GNOME components from apt: **gedit**, **gnome-contacts**, **gnome-calculator**, **gnome-disk-utility**, **gnome-keyring**
-  * Install libreoffice and libreoffice-gtk3 from Backports
+  * Install **libreoffice** and **libreoffice-gtk3** from Backports
-  * Install a password manager
+  * Install a [[security:password-managers|password manager]]
 === Multimedia: ===
-  * Whatever for image viewing
+  * **Whatever** for image viewing
-  * Whatever for media playback
+  * **Whatever** for media playback
-  * A decently secure PDF reader
+  * A decently secure **PDF reader**
-  * PulseAudio OR PipeWire for hardware audio playback
+  * **PipeWire** for hardware audio playback
-  * Install from apt: blueman, ffmpeg, cheese
+  * Install from apt: **blueman**, **ffmpeg**, **cheese**
-  * Install yt-dlp from Backports
+  * Install **yt-dlp** from Backports
-  * Whatever for wifi. Needs visual+cli interfaces for easily finding and connecting to wifi & mesh networks
+  * **Whatever** for wifi. Needs visual+cli interfaces for easily finding and connecting to wifi & mesh networks
 === Pentesting Tools: ===
-  * Metasploit Framework
+  * [[arms:metasploit|Metasploit Framework]]
-  * nmap, ncat,
+  * [[arms:nmap]], [[arms:ncat]]
   * anything useful that can be easily poached from Kali/Parrot, as most of those packages are just previously open-sourced software from independent developers.
 === Other Repos: ===
-  * Flathub: Flatpak w/ Flatseal utility
+  * Flathub: [[tools:flatpak|Flatpak]] w/ [[https://flathub.org/apps/com.github.tchx84.Flatseal|Flatseal]] utility
-  * Dockerhub: Docker configured in Rootless Mode.
+  * Dockerhub: [[tools:docker|Docker]] configured in [[https://docs.docker.com/engine/security/rootless/|Rootless Mode]].
+  * Needs shortcuts in place to have ''apt'' quickly grab packages+dependencies from ISOs/Keydrives of compatible Debian-family distros, for fully offline package install.
 === Misc: ===

User Tools

Site Tools

Differences