pvv-nixos-config/base.nix

88 lines
1.9 KiB
Nix
Raw Permalink Normal View History

{ config, lib, pkgs, inputs, values, ... }:
2021-12-18 22:07:27 +01:00
{
imports = [
./users
];
2023-03-04 02:13:00 +01:00
networking.domain = "pvv.ntnu.no";
networking.useDHCP = false;
2023-03-03 22:28:26 +01:00
# networking.search = [ "pvv.ntnu.no" "pvv.org" ];
# networking.nameservers = lib.mkDefault [ "129.241.0.200" "129.241.0.201" ];
# networking.tempAddresses = lib.mkDefault "disabled";
# networking.defaultGateway = values.hosts.gateway;
2023-03-03 22:28:26 +01:00
systemd.network.enable = true;
2023-05-31 11:04:38 +02:00
services.resolved = {
enable = lib.mkDefault true;
dnssec = "false"; # Supposdly this keeps breaking and the default is to allow downgrades anyways...
};
2021-12-18 22:07:27 +01:00
time.timeZone = "Europe/Oslo";
i18n.defaultLocale = "en_US.UTF-8";
console = {
font = "Lat2-Terminus16";
keyMap = "no";
};
system.autoUpgrade = {
enable = true;
flake = "git+https://git.pvv.ntnu.no/Drift/pvv-nixos-config.git";
flags = [
"--update-input" "nixpkgs"
"--update-input" "nixpkgs-unstable"
"--no-write-lock-file"
];
};
2022-04-02 00:57:53 +02:00
nix.gc.automatic = true;
nix.gc.options = "--delete-older-than 2d";
2022-04-02 00:57:53 +02:00
2022-12-07 10:02:56 +01:00
nix.settings.experimental-features = [ "nix-command" "flakes" ];
/* This makes commandline tools like
** nix run nixpkgs#hello
** and nix-shell -p hello
** use the same channel the system
** was built with
*/
nix.registry = {
nixpkgs.flake = inputs.nixpkgs;
};
nix.nixPath = [ "nixpkgs=${inputs.nixpkgs}" ];
2021-12-18 22:07:27 +01:00
environment.systemPackages = with pkgs; [
2022-09-08 17:49:33 +02:00
file
2021-12-18 22:07:27 +01:00
git
2023-01-28 20:26:21 +01:00
gnupg
2022-09-08 17:49:33 +02:00
htop
2021-12-18 22:07:27 +01:00
nano
2023-01-28 20:26:21 +01:00
rsync
screen
2021-12-18 22:07:27 +01:00
tmux
2022-09-08 17:49:33 +02:00
vim
wget
2021-12-18 22:07:27 +01:00
kitty.terminfo
];
2023-05-31 11:04:38 +02:00
programs.zsh.enable = true;
2022-04-02 01:52:13 +02:00
users.groups."drift".name = "drift";
# Trusted users on the nix builder machines
users.groups."nix-builder-users".name = "nix-builder-users";
2024-02-19 15:55:42 +01:00
users.motd = builtins.readFile ./misc/motd;
services.openssh = {
enable = true;
extraConfig = ''
PubkeyAcceptedAlgorithms=+ssh-rsa
'';
2023-05-31 11:04:38 +02:00
settings.PermitRootLogin = "yes";
};
2021-12-18 22:07:27 +01:00
}