diff --git a/desktop/dmcrypt b/desktop/dmcrypt
new file mode 100644
index 0000000..25e598b
--- /dev/null
+++ b/desktop/dmcrypt
@@ -0,0 +1,24 @@
+# Inferencium
+# dm-crypt - Configuration
+
+# Copyright 2023 Jake Winters
+# SPDX-License-Identifier: BSD-3-Clause-Clear
+
+# Version: 0.0.0.0
+
+
+# Global
+## How long to wait for each timeout (in seconds)
+dmcrypt_key_timeout=1
+## Max number of checks to perform (see dmcrypt_key_timeout)
+#dmcrypt_max_timeout=300
+# Number of password retries
+dmcrypt_retries=5
+
+
+# swap
+## These should come first so no keys make their way into unencrypted swap.
+swap=swap
+source='/dev/nvme0n1p2'
+options='-c aes-xts-plain64 -s 512 -h sha512 -d /dev/urandom'
+
diff --git a/desktop/fstab b/desktop/fstab
new file mode 100644
index 0000000..7b729c8
--- /dev/null
+++ b/desktop/fstab
@@ -0,0 +1,24 @@
+# Inferencium
+# fstab - Configuration
+
+# Copyright 2023 Jake Winters
+# SPDX-License-Identifier: BSD-3-Clause-Clear
+
+# Version: 1.0.0.1
+
+
+# The root filesystem should have a pass number of either 0 or 1.
+# All other filesystems should have a pass number of 0 or greater than 1.
+
+# <fs>			<mountpoint>	<type>		<opts>		<dump/pass>
+# Local filesystems
+## boot
+PARTUUID=[REDACTED]		/boot/			ext4		noauto,noatime					1 2
+## swap
+/dev/mapper/swap		none			swap		defaults						0 0
+## root
+UUID=[REDACTED]			/				btrfs		acl,barrier,datacow,datasum		0 1
+## home
+xa000.inferencium.net:/srv/nfs/home/			/home/			nfs4		rw,_netdev,vers=4		0 0
+## tmpfs - Portage
+tmpfs				/var/tmp/portage/	tmpfs		size=8G,uid=portage,gid=portage,mode=775,nosuid,noatime,nodev	0 0
diff --git a/server/xb000-0/nginx/website.conf b/server/xb000-0/nginx/website.conf
index c3668eb..a6e9e12 100644
--- a/server/xb000-0/nginx/website.conf
+++ b/server/xb000-0/nginx/website.conf
@@ -14,7 +14,7 @@ server {
 		listen         80;
 		listen         [::]:80;
 
-		# Location.
+		# Location
 		location / {
                     return	301 https://$server_name$request_uri;
 		}
@@ -22,12 +22,12 @@ server {
 
 # Server (TLS)
 server {
-        # General.
+        # General
         server_name inferencium.net;
         listen 443 ssl http2;
         listen [::]:443 ssl http2;
 
-		# Location.
+		# Location
 		location / {
 				root /srv/www/inferencium;
 				index index.html;
@@ -36,7 +36,7 @@ server {
 				rewrite ^/(.*)/$ /$1 permanent;
 		}
 
-        # Security.
+        # Security
         ssl_trusted_certificate   /etc/letsencrypt/live/inferencium.net/chain.pem;
         ssl_certificate           /etc/letsencrypt/live/inferencium.net/fullchain.pem;
         ssl_certificate_key       /etc/letsencrypt/live/inferencium.net/privkey.pem;
@@ -67,3 +67,13 @@ server {
         proxy_set_header Host $http_host;
         proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
 }
+
+# MIME types
+types {
+		text/html					html;
+		text/css					css;
+		text/xml					xml;
+		text/plain					txt;
+		image/png					png;
+		image/jpeg					jpg;
+}