diff --git a/systems/PC-Fixe/codemasters.pem b/systems/PC-Fixe/codemasters.pem new file mode 100644 index 0000000..856d0ca --- /dev/null +++ b/systems/PC-Fixe/codemasters.pem @@ -0,0 +1,23 @@ +-----BEGIN CERTIFICATE----- +MIID5zCCAs+gAwIBAgIJAIIfD20HgCPEMA0GCSqGSIb3DQEBBQUAMIGJMQswCQYD +VQQGEwJVSzEVMBMGA1UECAwMV2Fyd2lja3NoaXJlMSEwHwYDVQQKDBhDb2RlbWFz +dGVycyBTb2Z0d2FyZSBMdGQxGzAZBgNVBAsMEkNvZGVtYXN0ZXJzIE9ubGluZTEj +MCEGA1UEAwwaQ29kZW1hc3RlcnMgT25saW5lIFJvb3QgQ0EwHhcNMTAwOTIyMDgx +NjA4WhcNMzUwOTE2MDgxNjA4WjCBiTELMAkGA1UEBhMCVUsxFTATBgNVBAgMDFdh +cndpY2tzaGlyZTEhMB8GA1UECgwYQ29kZW1hc3RlcnMgU29mdHdhcmUgTHRkMRsw +GQYDVQQLDBJDb2RlbWFzdGVycyBPbmxpbmUxIzAhBgNVBAMMGkNvZGVtYXN0ZXJz +IE9ubGluZSBSb290IENBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA +ncw3VeQt3N8ZJmNGiCa8UJ61qtBWxat2yx9bWfyf2o4VqQtn7Cc79esHkf5Zbjpc +zqMpxO/c0vZnHWgH1R0TWRDrSqKHuJxgbxT2JFoLAQQKm+uTUOclLvlC00IrINks +Y6KPYaQDkaLDAQWX42YGqb7CaKna8DwX6Ms4RHLEm5+L0L5GgRk9RfPlphVYCA9r +tjJIQluYMc0Ny4tzJ6IuCnDjgRfmehWSpBV+UAx8FHFxmOUgone6dhA0pTLtR/lu +P/S2aISWgQZJ0GWWfQ/mjVpccnWKtZUK0TCVoKTPpGaV4kTDHYq9ylpuNItTww9E +rXR0/9gWOZHQ49QXd2rnrQIDAQABo1AwTjAdBgNVHQ4EFgQU9vW1MrzNfAbZeTQJ +gHCzyQQlAZgwHwYDVR0jBBgwFoAU9vW1MrzNfAbZeTQJgHCzyQQlAZgwDAYDVR0T +BAUwAwEB/zANBgkqhkiG9w0BAQUFAAOCAQEAcOUnPyvrbAdzMSPN9PLnvh34I9jW +EwU81ks67EBNHaMdghiUhOFZ65vzQLoUYoqQcgzu+i0rAkLZrfviC1TUlv+mdlgK +ce6eD2VgpQOPrpOG6O/TfmyAhS5mOlA35NMsZqZTpIiTZnZLGHSSu/Shvnk7UDTs +lTp1yNj6etlY03ABieBsSIDu0UmhNfEY2HgjPaGGiAmcenw2d4U5Z2oCiJVDseeq +RdlVx/sg4UM8L24/ccqn5uV05cg5aUF5dAlAYLq2wXNgbkpePtmo+/tqdiE3pL+q +TRW14lealjJNmjUUTO/KHjKOpfPJNCHSGLk/h/UskEvcTUTqwDZATCl4jw== +-----END CERTIFICATE----- diff --git a/systems/PC-Fixe/configuration.nix b/systems/PC-Fixe/configuration.nix index 6e5d035..76a6531 100644 --- a/systems/PC-Fixe/configuration.nix +++ b/systems/PC-Fixe/configuration.nix @@ -14,11 +14,15 @@ boot.loader.systemd-boot.enable = true; boot.loader.efi.canTouchEfiVariables = true; + boot.loader.systemd-boot.memtest86.enable = true; boot.kernelParams = ["acpi_enforce_resources=lax"]; boot.tmpOnTmpfs = true; hardware.bluetooth.enable = true; + # Logitech G920 + hardware.usbWwan.enable = true; + services.udev.packages = with pkgs; [ usb-modeswitch-data # Logitech G920 ]; @@ -26,12 +30,16 @@ # Corsair K70 services.udev.extraRules = '' SUBSYSTEM=="usb", ATTR{bInterfaceNumber}=="00", ATTRS{idVendor}=="1b1c", ATTRS{idProduct}=="1b09", RUN+="${pkgs.bash}/bin/sh -c '${pkgs.coreutils}/bin/echo -n %k > /sys''${DEVPATH}/driver/unbind'" + ACTION=="add", SUBSYSTEM=="usb", ATTRS{idVendor}=="0483", ATTRS{idProduct}=="df11", MODE="0664", GROUP="dialout" ''; + security.pki.certificateFiles = [ ./codemasters.pem ]; + networking.hostName = "paul-fixe"; environment.systemPackages = with pkgs; [ usb_modeswitch + virtmanager ]; programs.wireshark.enable = true; @@ -39,15 +47,34 @@ networking.firewall.enable = false; + services.xserver.displayManager.sddm.autoLogin = { + enable = true; + user = "paul"; + }; + users.users.paul = { isNormalUser = true; - extraGroups = [ "wheel" "networkmanager" "wireshark" "input" ]; + extraGroups = [ "wheel" "networkmanager" "wireshark" "input" "dialout" "libvirtd" ]; uid = 1000; + openssh.authorizedKeys.keys = [ + "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAACAQDstFRwMoTEip5IBSYE4dUj3miO0LsKrnUKQJmp7d5QYo3VhXk43jU6VUU0tVAegkzWLlQ3ohoFns+8bZyf7hj7roftrDfoC9bbbx4ihhWrZTlF0gzoH4t52yetFO5eC/tV2sm/zFoa+3IWLokOEFmAoknAVag1MmVLXTQ6WPoTPD4UsX/D3lyE4dbSKxHpMOIjqIdqSEgO0BeTdnHe5afvGXXO1VYTvPsGDHT9w8EHwQV9JXIPn7KVOp3qin7OwvFFrrB3QbiEVTJvGiH2hrfxcARTN/+TxGtf+aOFeuQykURG9Wz/aBK60EWE0wGrzuIymxtNdOR1NhmnNrUZ976Tb9WdR7FC+yM6+/kdfICy+sGQmmn8TLsGvcJTT/pl4Pa9uRAKjRJuLIEgYY6W/ms9lCRyf484yRkDlq+V0BPuN9Jy6Eb7x+tmZNkpEtkqso7wfXD8sf5BIwv2K69SVMpfTswydHGmDwHZ0zaDKGlyCiyJ1QGqUhCTXqtYVq+kQ3AcjKcysMwVEmwx/ySu0XFuV8oUkl9XK/RUoc++sMEd0EbHcn8uwCmBARNX+GLQ03vxwyMW3HyneP8EAxoqtSepZXbTdVP/0i+l7EUUeA7zsaWfU2a82ktZWpVPFGfxkuo0l3zLF19EsXPKZNqlRfkOWjSgp+qWihAkQIQk3GoduQ== openpgp:0x75EE3375" + "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC3fEmkmrhccW8NegIk/Ubu6Yw80VCQ1ttG419e+1V1wkJPXFAqcIhffwrIlz81dJ47T+H+zeptpAX8U1Gbk1B5ZH4DW8OcqU6ymM+j6g/gICpvrjJUOpdgyA3GIOjuBJGijGQGggDw1k2SdopAVV1H38YUAJ33RGDvjLJO6VREYLDYLF4oaDp8ann7Wn8BpX2T7cRvhrzqcwbEGaw1f/xrLE5KklOb6pOHRWFJMxW83d8OKiLkQvM4vFGlvvG0/AKGZaZWHDXS7ldoyAv+vnN8DrIxmWEQjdNLfAwYDBHp6XqE0slde4dqBjVHji5+ajFr7eJnrzc4IXsHJ1jM9xGB paul@loutreos" + ]; }; services.syncthing.enable = true; services.syncthing.user = "paul"; services.syncthing.group = "users"; - system.stateVersion = "18.09"; # Did you read the comment? + services.netdata.enable = true; + + services.tor.enable = true; + services.tor.client.enable = true; + + virtualisation.libvirtd.enable = true; + + services.openssh.enable = true; + services.openssh.passwordAuthentication = false; + + system.stateVersion = "18.09"; } diff --git a/systems/PC-Fixe/hardware-configuration.nix b/systems/PC-Fixe/hardware-configuration.nix index ebb4e0f..724c6de 100644 --- a/systems/PC-Fixe/hardware-configuration.nix +++ b/systems/PC-Fixe/hardware-configuration.nix @@ -36,28 +36,34 @@ options = [ "bind" ]; }; - fileSystems."/home/paul/Downloads" = + fileSystems."/home/paul/Téléchargements" = { device = "/mnt/hdd/paul/Téléchargements"; options = [ "bind" ]; }; - fileSystems."/home/paul/Music" = + fileSystems."/home/paul/Musique" = { device = "/mnt/hdd/paul/Musique"; options = [ "bind" ]; }; - fileSystems."/home/paul/Pictures" = + fileSystems."/home/paul/Images" = { device = "/mnt/hdd/paul/Images"; options = [ "bind" ]; }; - fileSystems."/home/paul/Videos" = + fileSystems."/home/paul/Vidéos" = { device = "/mnt/hdd/paul/Vidéos"; options = [ "bind" ]; }; fileSystems."/mnt/steam" = - { device = "192.168.0.5:/exports/steam"; + { device = "10.30.0.1:/exports/steam"; + fsType = "nfs"; + options = ["x-systemd.automount" "noauto"]; + }; + + fileSystems."/mnt/medias" = + { device = "10.30.0.1:/mnt/medias"; fsType = "nfs"; options = ["x-systemd.automount" "noauto"]; }; diff --git a/systems/common-gui.nix b/systems/common-gui.nix index 9724079..3ef475a 100644 --- a/systems/common-gui.nix +++ b/systems/common-gui.nix @@ -22,6 +22,8 @@ minecraft multimc + betaflight-configurator + electrum electron-cash ledger-live-desktop @@ -31,7 +33,9 @@ chromium tdesktop + riot-desktop mumble + discord kleopatra gnupg