2023-04-12 17:21:24 +02:00
|
|
|
{ config, pkgs, ... }:
|
|
|
|
{
|
|
|
|
nix.settings.experimental-features = [ "nix-command" "flakes" ];
|
|
|
|
imports =
|
|
|
|
[
|
|
|
|
# Include the results of the hardware scan.
|
|
|
|
./hardware-configuration.nix
|
2023-05-24 16:37:45 +02:00
|
|
|
./modules/mail
|
2023-04-12 17:21:24 +02:00
|
|
|
./modules/networks
|
|
|
|
./modules/nginx
|
2023-05-31 17:35:28 +02:00
|
|
|
./modules/pfersel
|
2023-04-13 14:28:09 +02:00
|
|
|
./modules/purge
|
2023-04-16 16:56:24 +02:00
|
|
|
./modules/trucksimulatorbot
|
2023-04-12 17:21:24 +02:00
|
|
|
];
|
|
|
|
|
|
|
|
boot = {
|
|
|
|
loader = {
|
|
|
|
grub = {
|
|
|
|
enable = true;
|
|
|
|
efiSupport = true;
|
|
|
|
efiInstallAsRemovable = true;
|
|
|
|
device = "/dev/sda";
|
|
|
|
};
|
|
|
|
efi.efiSysMountPoint = "/boot/efi";
|
|
|
|
};
|
|
|
|
kernelPackages = pkgs.linuxPackages_latest;
|
2023-05-31 10:03:25 +02:00
|
|
|
initrd.systemd.enable = true;
|
2023-04-12 17:21:24 +02:00
|
|
|
};
|
2023-06-19 23:58:04 +02:00
|
|
|
zramSwap.enable = true;
|
2023-04-12 17:21:24 +02:00
|
|
|
|
|
|
|
time.timeZone = "Europe/Berlin";
|
|
|
|
|
|
|
|
i18n.defaultLocale = "en_US.UTF-8";
|
|
|
|
|
|
|
|
environment.systemPackages = with pkgs; [
|
|
|
|
vim
|
|
|
|
wget
|
|
|
|
htop-vim
|
2023-05-05 16:37:44 +02:00
|
|
|
helix
|
2023-05-28 13:15:29 +02:00
|
|
|
lsof
|
2023-05-31 17:35:28 +02:00
|
|
|
python3
|
2023-04-12 17:21:24 +02:00
|
|
|
];
|
|
|
|
programs.git = {
|
|
|
|
enable = true;
|
|
|
|
config = {
|
|
|
|
user.name = "Rouven Seifert";
|
|
|
|
user.email = "rouven@rfive.de";
|
|
|
|
};
|
|
|
|
};
|
2023-04-12 21:14:29 +02:00
|
|
|
services.qemuGuest.enable = true;
|
2023-05-29 13:31:20 +02:00
|
|
|
systemd.services.qemu-guest-agent.path = [ pkgs.shadow ]; # fix root password reset
|
2023-04-12 17:21:24 +02:00
|
|
|
|
|
|
|
# Enable the OpenSSH daemon.
|
2023-05-24 16:37:45 +02:00
|
|
|
services.openssh = {
|
|
|
|
enable = true;
|
2023-05-30 22:44:35 +02:00
|
|
|
# clean up the logs a bit
|
|
|
|
ports = [ 2222 ];
|
2023-05-24 17:08:44 +02:00
|
|
|
settings.PasswordAuthentication = false;
|
2023-05-24 16:37:45 +02:00
|
|
|
};
|
2023-06-03 21:42:12 +02:00
|
|
|
security = {
|
|
|
|
audit.enable = true;
|
|
|
|
auditd.enable = true;
|
|
|
|
};
|
2023-04-12 17:21:24 +02:00
|
|
|
users.users.root.openssh.authorizedKeys.keyFiles = [
|
2023-05-25 20:40:13 +02:00
|
|
|
../../keys/ssh/rouven-thinkpad
|
2023-04-12 17:21:24 +02:00
|
|
|
../../keys/ssh/rouven-pixel
|
2023-05-29 14:36:54 +02:00
|
|
|
# ../../keys/ssh/rouven-smartcard
|
2023-04-12 17:21:24 +02:00
|
|
|
];
|
|
|
|
|
|
|
|
system.stateVersion = "22.11";
|
|
|
|
|
|
|
|
}
|
|
|
|
|