add server configurations

arch/base.md

@@ -18,6 +18,7 @@ I have instructions for building a:
     - [Security](#security)
       - [Secure Boot](#secure-boot)
       - [TPM2 LUKS Decryption](#tpm2-luks-decryption)
+        - [Re-enroll](#re-enroll)
       - [FIDO2 LUKS Decryption](#fido2-luks-decryption)
       - [Firewall](#firewall)
       - [AppArmor](#apparmor)
@@ -50,6 +51,7 @@ I have instructions for building a:
   - [Apps](#apps)
     - [Firefox](#firefox)
       - [Gnome Extensions](#gnome-extensions)
+    - [Avahi (Bonjour)](#avahi-bonjour)
     - [CUPS Printing](#cups-printing)
     - [Yubikey](#yubikey)
   - [Bashrc](#bashrc)
@@ -339,6 +341,13 @@ Using `--tpm2-pcrs=7` enforces secure boot and will require password if secure b
 1. `pacman -S tpm2-tss`
 2. `systemd-cryptenroll /dev/vda2 --wipe-slot=tpm2 --tpm2-device=auto --tpm2-pcrs=7`
 
+##### Re-enroll
+
+```bash
+systemd-cryptenroll /dev/nvme0n1p2 --wipe-slot=tpm2 --tpm2-device=auto --tpm2-pcrs=7
+systemd-cryptenroll /dev/nvme0n1p3 --wipe-slot=tpm2 --tpm2-device=auto --tpm2-pcrs=7
+```
+
 #### FIDO2 LUKS Decryption
 
 1. `pacman -S libfido2`
@@ -946,13 +955,31 @@ Choose noto-fonts
 3. dash-to-dock@micxgx.gmail.com
 4. tactile@lundal.io
 
-### CUPS Printing
+### Avahi (Bonjour)
 
-1. `sudo pacman -S cups cups-pdf avahi system-config-printer`
+1. `sudo pacman -S avahi`
 2. `sudo vim /etc/nsswitch.conf`
 
     ```conf
-    hosts: mymachines mdns_minimal [NOTFOUND=return] resolve [!UNAVAIL=return] files myhostname dns
+    hosts: mymachines mdns [NOTFOUND=return] resolve [!UNAVAIL=return] files myhostname dns
+    ```
+
+3. `sudo vim /etc/mdns.allow`
+
+    ```conf
+    .local.
+    .local
+    ```
+
+### CUPS Printing
+
+Note: you probably need avahi (see above)
+
+1. `sudo pacman -S cups cups-pdf system-config-printer`
+2. `sudo vim /etc/nsswitch.conf`
+
+    ```conf
+    hosts: mymachines mdns [NOTFOUND=return] resolve [!UNAVAIL=return] files myhostname dns
     ```
 
 3. `sudo systemctl start cups`