forked from nyanloutre/nixos-config
nyanloutre
17ff809406
flake.lock: Update
Flake lock file updates:
• Updated input 'nixpkgs':
'github:NixOS/nixpkgs/bcba2fbf6963bf6bed3a749f9f4cf5bff4adb96d' (2024-12-14)
→ 'github:NixOS/nixpkgs/b47fd6fa00c6afca88b8ee46cfdb00e104f50bca' (2024-12-19)
• Updated input 'nixpkgs-unstable':
'github:NixOS/nixpkgs/3566ab7246670a43abd2ffa913cc62dad9cdf7d5' (2024-12-13)
→ 'github:NixOS/nixpkgs/d3c42f187194c26d9f0309a8ecc469d6c878ce33' (2024-12-17)
• Updated input 'simple-nixos-mailserver':
'gitlab:simple-nixos-mailserver/nixos-mailserver/29916981e7b3b5782dc5085ad18490113f8ff63b' (2024-06-11)
→ 'gitlab:simple-nixos-mailserver/nixos-mailserver/35fa7dc495aa89bd224f08c43dfd9119b81f0fa7' (2024-12-16)
• Removed input 'simple-nixos-mailserver/nixpkgs-24_05'
• Added input 'simple-nixos-mailserver/nixpkgs-24_11':
follows 'nixpkgs'
• Removed input 'simple-nixos-mailserver/utils'
• Removed input 'simple-nixos-mailserver/utils/systems'
63 lines
1.1 KiB
Nix
63 lines
1.1 KiB
Nix
{ config, pkgs, inputs, ... }:
|
|
|
|
{
|
|
imports = [
|
|
../common-cli.nix
|
|
./hardware-configuration.nix
|
|
./network.nix
|
|
./users.nix
|
|
./services.nix
|
|
];
|
|
|
|
nix.settings.trusted-users = [ "root" "paul" ];
|
|
|
|
boot = {
|
|
loader = {
|
|
systemd-boot.enable = true;
|
|
efi.canTouchEfiVariables = true;
|
|
};
|
|
|
|
supportedFilesystems = [ "zfs" ];
|
|
|
|
tmp.useTmpfs = true;
|
|
|
|
# Enabling both boot.enableContainers & virtualisation.containers on system.stateVersion < 22.05 is unsupported
|
|
enableContainers = false;
|
|
};
|
|
|
|
documentation.nixos.enable = false;
|
|
|
|
services.zfs = {
|
|
autoSnapshot.enable = true;
|
|
autoScrub = {
|
|
enable = true;
|
|
interval = "monthly";
|
|
};
|
|
};
|
|
|
|
services.openssh = {
|
|
enable = true;
|
|
settings = {
|
|
PermitRootLogin = "no";
|
|
PasswordAuthentication = false;
|
|
X11Forwarding = true;
|
|
};
|
|
};
|
|
|
|
users = {
|
|
groups.autossh = { };
|
|
users.autossh = {
|
|
home = "/home/autossh";
|
|
createHome = true;
|
|
group = "autossh";
|
|
isSystemUser = true;
|
|
};
|
|
};
|
|
|
|
virtualisation.podman.enable = true;
|
|
|
|
security.sudo.wheelNeedsPassword = false;
|
|
|
|
system.stateVersion = "18.03";
|
|
}
|