diff options
author | Gregor Kleen <gkleen@yggdrasil.li> | 2015-06-07 12:50:21 +0200 |
---|---|---|
committer | Gregor Kleen <gkleen@yggdrasil.li> | 2015-06-07 12:50:21 +0200 |
commit | 2e211aba6a7dfbab5cc190864fd5b74ba736e4f9 (patch) | |
tree | 8d81b3712c69f16c62c5ab542da752d08accf316 /bragi.nix | |
download | nixos-2e211aba6a7dfbab5cc190864fd5b74ba736e4f9.tar nixos-2e211aba6a7dfbab5cc190864fd5b74ba736e4f9.tar.gz nixos-2e211aba6a7dfbab5cc190864fd5b74ba736e4f9.tar.bz2 nixos-2e211aba6a7dfbab5cc190864fd5b74ba736e4f9.tar.xz nixos-2e211aba6a7dfbab5cc190864fd5b74ba736e4f9.zip |
initial work on bragi
Diffstat (limited to 'bragi.nix')
-rw-r--r-- | bragi.nix | 60 |
1 files changed, 60 insertions, 0 deletions
diff --git a/bragi.nix b/bragi.nix new file mode 100644 index 00000000..9852dfa4 --- /dev/null +++ b/bragi.nix | |||
@@ -0,0 +1,60 @@ | |||
1 | { config, pkgs, ... }: | ||
2 | |||
3 | { | ||
4 | imports = | ||
5 | [ | ||
6 | ./bragi-hw.nix | ||
7 | ]; | ||
8 | |||
9 | boot.loader.grub.enable = true; | ||
10 | boot.loader.grub.version = 2; | ||
11 | boot.loader.grub.device = "/dev/sda"; | ||
12 | |||
13 | boot.loader.grub.extraConfig = "serial; terminal_output.serial"; | ||
14 | boot.kernelParams = [ "console=ttyS0,115200" | ||
15 | ]; | ||
16 | |||
17 | networking.hostName = "bragi"; | ||
18 | networking.hostId = "2af11085"; | ||
19 | networking.wireless.enable = true; | ||
20 | |||
21 | networking.firewall = { | ||
22 | allowPing = true; | ||
23 | allowedUDPPortRanges = [ { from = 60000; to = 61000; } # mosh-server | ||
24 | ]; | ||
25 | }; | ||
26 | |||
27 | environment.systemPackages = with pkgs; [ | ||
28 | git | ||
29 | mosh | ||
30 | rsync | ||
31 | jack2 | ||
32 | tmux | ||
33 | ]; | ||
34 | |||
35 | # List services that you want to enable: | ||
36 | |||
37 | services.openssh.enable = true; | ||
38 | |||
39 | services.fcron = { | ||
40 | enable = true; | ||
41 | systab = '' | ||
42 | %weekly * * nix-collect-garbage --delete-older-than '7d' | ||
43 | ''; | ||
44 | }; | ||
45 | |||
46 | users.extraUsers.guest = { | ||
47 | name = "gkleen"; | ||
48 | isNormalUser = true; | ||
49 | uid = 1000; | ||
50 | createHome = true; | ||
51 | home = "/home/gkleen"; | ||
52 | shell = "${pkgs.zsh}/bin/zsh"; | ||
53 | openssh.authorizedKeys.keys = [ "ecdsa-sha2-nistp521 AAAAE2VjZHNhLXNoYTItbmlzdHA1MjEAAAAIbmlzdHA1MjEAAACFBABVMu+0txXdxdTSY8POAYVXbuOEDW6VxJzaYwQljc9kzM63VUZuE606R0g2ZGr9A+Gk6qO6fpCiq4SM+1Yygz5yHgGlbO750TOGaTe6KSGw+u3miaeDviejmxTqetGmiJe7BTLRAbYHjRgD5SkK/Ovos0cDSyOfZ5aha/ehox+proQKGA== gkleen@cathy" | ||
54 | ]; | ||
55 | extraGroups = [ "wheel" ]; | ||
56 | hashedPassword = "$6$MBq4kwM68$Eg8O6m76mM2905VppNZO67J3EHqJVBuIWQkz.MFFa7afVQKhGuSSYHl50WkkFYXHEY5MIM7IjWYZ0UJwq2IDJ0"; | ||
57 | }; | ||
58 | |||
59 | security.setuidPrograms = ["mount.nfs"]; | ||
60 | } | ||