First post, genuine question
I come from Fedora and heard about KickSecure. It definitely piqued my curiosity. So I did a bare metal installation on an old Toshiba Satellite AMD4, UEFI & Btrfs
I am trying to button down the sysmaint profile but keep finding obstacles. So I have reinstalled it twice. I’ve been using ChatGPT for help…. works 50% of the time when it’s not hallucinating
My question (and I have hundreds) can I get Mullvad VPN on Lockdown mode to connect before the ISP connects?
Just one idea I had
[Unit]
Description=Override to enforce early Mullvad lockdown
Before=network-pre.target network.target network-online.target
Wants=network-pre.target
[Service]
ExecStartPost=/usr/bin/mullvad connect
But it failed
This might be a better question for Mullvad’s support. What you’re trying to do basically is start Mullvad as a systemd service before any other network traffic occurs (at least that’s what it looks like you’re doing), so it would probably be best to ask them how to do that. user-sysmaint-split shouldn’t affect how (or if) this works, at least in user sessions. Whatever solution you find may or may not automatically work in sysmaint sessions, depending on which unit you’re overriding.
You shouldn’t worry about this part until you have a solution that works in a user session, but once you have that working, you might end up needing to add a WantedBy=sysmaint-boot.target to whatever unit you’re overriding (see /usr/lib/systemd/system/mullvad-daemon.service.d/99_sysmaint.conf for an example of how to do this). If you do this, you’ll need to use sudo systemctl daemon-reload; sudo systemctl disable whatever.service; sudo systemctl enable whatever.service to get that override to fully apply.
2 Likes
I actually got it to work in both user & sysmaint
1 Like
@JustPassinThru
Do you mind posting a guide how to do it?
Would like the same setup!
I managed to install mullvad vpn in sys-maint but unable to start it at all there. In the user profile however, it works as expected!
But I would like it to work in sysmaint aswell, thus having Sysmaint → Vpn → Tor also for updates/installing new software.
Please help me out if you can. Im a linux newb.
my old laptop was not able to properly use kicksecure. VM lacking certain required settings. But if you ask ChatGPT, it will write up the script. Basically, it was installing it on sysmaint, which allowed user to access it. then set it up on user with autostart, login, kill switch and lockdown.
On sysmaint, you have to write a script that allows connection. but on systmaint, you do not set it up within the app, but you do not connect to the internet immediately, after kicksecure sysmaint is operational. start mullvad, then turn on your router
Hope this helps