2023-09-18 20:42:25 +00:00
|
|
|
{ config, lib, pkgs, ... }:
|
|
|
|
|
2023-10-08 16:11:54 +00:00
|
|
|
let secrets = import ../secrets.nix;
|
|
|
|
in {
|
|
|
|
|
|
|
|
programs.command-not-found.enable = false;
|
|
|
|
system.stateVersion = "23.11";
|
|
|
|
services.openssh = {
|
|
|
|
enable = true;
|
|
|
|
openFirewall = true;
|
|
|
|
settings.PasswordAuthentication = false;
|
|
|
|
};
|
|
|
|
programs = {
|
|
|
|
mtr.enable = true;
|
|
|
|
neovim = {
|
2023-09-18 20:42:25 +00:00
|
|
|
enable = true;
|
2023-10-08 16:11:54 +00:00
|
|
|
defaultEditor = true;
|
|
|
|
viAlias = true;
|
|
|
|
vimAlias = true;
|
2023-09-18 20:42:25 +00:00
|
|
|
};
|
2023-10-08 16:11:54 +00:00
|
|
|
zsh = {
|
|
|
|
enable = true;
|
|
|
|
enableBashCompletion = true;
|
|
|
|
autosuggestions.enable = true;
|
|
|
|
syntaxHighlighting.enable = true;
|
|
|
|
ohMyZsh.enable = true;
|
2023-09-18 20:42:25 +00:00
|
|
|
};
|
2023-10-08 16:11:54 +00:00
|
|
|
tmux = {
|
|
|
|
enable = true;
|
|
|
|
terminal = "screen256-color";
|
|
|
|
clock24 = true;
|
2023-09-18 20:42:25 +00:00
|
|
|
};
|
2023-10-08 16:11:54 +00:00
|
|
|
bash.enableCompletion = true;
|
|
|
|
mosh.enable = true;
|
|
|
|
};
|
2023-09-18 20:42:25 +00:00
|
|
|
|
2023-10-08 16:11:54 +00:00
|
|
|
nix = {
|
|
|
|
package = pkgs.nixUnstable;
|
|
|
|
extraOptions = ''
|
|
|
|
experimental-features = nix-command flakes
|
|
|
|
'';
|
|
|
|
};
|
2023-09-18 20:42:25 +00:00
|
|
|
|
2023-10-08 16:11:54 +00:00
|
|
|
nixpkgs.config.allowUnfree = true;
|
|
|
|
nixpkgs.config.allowBroken = true;
|
2023-09-18 20:42:25 +00:00
|
|
|
|
2023-10-08 16:11:54 +00:00
|
|
|
environment.systemPackages = with pkgs; [
|
|
|
|
deploy-rs
|
|
|
|
file
|
|
|
|
git
|
|
|
|
go
|
|
|
|
libarchive
|
|
|
|
lm_sensors
|
|
|
|
lshw
|
|
|
|
lsof
|
|
|
|
pciutils
|
|
|
|
pry
|
|
|
|
pv
|
|
|
|
strace
|
|
|
|
usbutils
|
|
|
|
wget
|
|
|
|
zip
|
|
|
|
config.boot.kernelPackages.perf
|
|
|
|
age
|
|
|
|
sshfs
|
|
|
|
dig
|
|
|
|
dstat
|
|
|
|
htop
|
|
|
|
iperf
|
|
|
|
whois
|
|
|
|
xxd
|
|
|
|
tcpdump
|
|
|
|
traceroute
|
|
|
|
age
|
|
|
|
cfssl
|
|
|
|
gomuks
|
|
|
|
bind
|
|
|
|
nmap
|
|
|
|
];
|
|
|
|
|
|
|
|
documentation = {
|
|
|
|
man.enable = true;
|
|
|
|
doc.enable = true;
|
|
|
|
dev.enable = true;
|
|
|
|
info.enable = true;
|
|
|
|
nixos.enable = true;
|
|
|
|
};
|
|
|
|
|
|
|
|
users.users.root.openssh.authorizedKeys.keys = secrets.ar;
|
|
|
|
|
|
|
|
users.mutableUsers = false;
|
|
|
|
|
|
|
|
users.defaultUserShell = pkgs.zsh;
|
|
|
|
|
|
|
|
users.groups.ar = { gid = 1000; };
|
|
|
|
users.users.ar = {
|
|
|
|
isNormalUser = true;
|
|
|
|
uid = 1000;
|
|
|
|
group = "ar";
|
|
|
|
extraGroups = [
|
|
|
|
"users"
|
|
|
|
"wheel"
|
|
|
|
"systemd-journal"
|
|
|
|
"docker"
|
|
|
|
"vboxusers"
|
|
|
|
"podman"
|
|
|
|
"tss"
|
|
|
|
"nitrokey"
|
|
|
|
"tss"
|
|
|
|
"plugdev"
|
|
|
|
"video"
|
|
|
|
"dialout"
|
|
|
|
"networkmanager"
|
|
|
|
];
|
|
|
|
hashedPassword = lib.mkDefault null;
|
|
|
|
openssh.authorizedKeys.keys = secrets.ar;
|
2023-09-18 20:42:25 +00:00
|
|
|
};
|
|
|
|
}
|