81 lines
3.2 KiB
Nix
81 lines
3.2 KiB
Nix
# Edit this configuration file to define what should be installed on
|
||
# your system. Help is available in the configuration.nix(5) man page
|
||
# and in the NixOS manual (accessible by running ‘nixos-help’).
|
||
|
||
{ config, pkgs, ... }:
|
||
|
||
{
|
||
imports =
|
||
[
|
||
./hardware-configuration.nix
|
||
../common-cli.nix
|
||
../common-gui.nix
|
||
];
|
||
|
||
boot.loader.systemd-boot.enable = true;
|
||
boot.loader.efi.canTouchEfiVariables = true;
|
||
boot.loader.systemd-boot.memtest86.enable = true;
|
||
boot.kernelParams = ["acpi_enforce_resources=lax"];
|
||
boot.tmpOnTmpfs = true;
|
||
|
||
hardware.bluetooth.enable = true;
|
||
|
||
# Logitech G920
|
||
hardware.usbWwan.enable = true;
|
||
|
||
services.udev.packages = with pkgs; [
|
||
usb-modeswitch-data # Logitech G920
|
||
];
|
||
|
||
# Corsair K70
|
||
services.udev.extraRules = ''
|
||
SUBSYSTEM=="usb", ATTR{bInterfaceNumber}=="00", ATTRS{idVendor}=="1b1c", ATTRS{idProduct}=="1b09", RUN+="${pkgs.bash}/bin/sh -c '${pkgs.coreutils}/bin/echo -n %k > /sys''${DEVPATH}/driver/unbind'"
|
||
ACTION=="add", SUBSYSTEM=="usb", ATTRS{idVendor}=="0483", ATTRS{idProduct}=="df11", MODE="0664", GROUP="dialout"
|
||
'';
|
||
|
||
security.pki.certificateFiles = [ ./codemasters.pem ];
|
||
|
||
networking.hostName = "paul-fixe";
|
||
|
||
environment.systemPackages = with pkgs; [
|
||
usb_modeswitch
|
||
virtmanager
|
||
];
|
||
|
||
programs.wireshark.enable = true;
|
||
programs.wireshark.package = pkgs.wireshark;
|
||
|
||
networking.firewall.enable = false;
|
||
|
||
services.xserver.displayManager.sddm.autoLogin = {
|
||
enable = true;
|
||
user = "paul";
|
||
};
|
||
|
||
users.users.paul = {
|
||
isNormalUser = true;
|
||
extraGroups = [ "wheel" "networkmanager" "wireshark" "input" "dialout" "libvirtd" ];
|
||
uid = 1000;
|
||
openssh.authorizedKeys.keys = [
|
||
"ssh-rsa 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 openpgp:0x75EE3375"
|
||
"ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC3fEmkmrhccW8NegIk/Ubu6Yw80VCQ1ttG419e+1V1wkJPXFAqcIhffwrIlz81dJ47T+H+zeptpAX8U1Gbk1B5ZH4DW8OcqU6ymM+j6g/gICpvrjJUOpdgyA3GIOjuBJGijGQGggDw1k2SdopAVV1H38YUAJ33RGDvjLJO6VREYLDYLF4oaDp8ann7Wn8BpX2T7cRvhrzqcwbEGaw1f/xrLE5KklOb6pOHRWFJMxW83d8OKiLkQvM4vFGlvvG0/AKGZaZWHDXS7ldoyAv+vnN8DrIxmWEQjdNLfAwYDBHp6XqE0slde4dqBjVHji5+ajFr7eJnrzc4IXsHJ1jM9xGB paul@loutreos"
|
||
];
|
||
};
|
||
|
||
services.syncthing.enable = true;
|
||
services.syncthing.user = "paul";
|
||
services.syncthing.group = "users";
|
||
|
||
services.netdata.enable = true;
|
||
|
||
services.tor.enable = true;
|
||
services.tor.client.enable = true;
|
||
|
||
virtualisation.libvirtd.enable = true;
|
||
|
||
services.openssh.enable = true;
|
||
services.openssh.passwordAuthentication = false;
|
||
|
||
system.stateVersion = "18.09";
|
||
}
|