Compare commits

...

2 Commits

Author SHA1 Message Date
coolneng 68fa9ec21e
Disable SSH password authentication 2023-02-20 17:13:12 +01:00
coolneng 5d2bec9d58
Update hardware-configuration 2023-02-20 17:12:58 +01:00
2 changed files with 35 additions and 31 deletions

View File

@ -22,6 +22,7 @@ with pkgs;
services.openssh = { services.openssh = {
enable = true; enable = true;
permitRootLogin = "yes"; permitRootLogin = "yes";
passwordAuthentication = false;
}; };
# Cleanup tmp on startup # Cleanup tmp on startup
@ -33,7 +34,10 @@ with pkgs;
home = "/home/coolneng"; home = "/home/coolneng";
extraGroups = [ "wheel" "docker" ]; extraGroups = [ "wheel" "docker" ];
openssh.authorizedKeys.keys = [ openssh.authorizedKeys.keys = [
# panacea
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFRqINHR7/zc+c3/PuR+NeSsBHXXzBiEtFWSK6QaxQTW coolneng@panacea" "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFRqINHR7/zc+c3/PuR+NeSsBHXXzBiEtFWSK6QaxQTW coolneng@panacea"
# caravanserai
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPTBWNtNp+vI2So4vISZX/yQv754ZzXqobFgUP3zk4FY zion"
]; ];
shell = "${fish}/bin/fish"; shell = "${fish}/bin/fish";
}; };

View File

@ -33,8 +33,8 @@
fsType = "zfs"; fsType = "zfs";
}; };
fileSystems."/var/lib/matrix-as-telegram" = fileSystems."/var/lib/signald" =
{ device = "vault/state_directories/matrix-as-telegram"; { device = "vault/state_directories/signald";
fsType = "zfs"; fsType = "zfs";
}; };
@ -43,13 +43,13 @@
fsType = "zfs"; fsType = "zfs";
}; };
fileSystems."/var/lib/matrix-as-signal" = fileSystems."/var/lib/wallabag" =
{ device = "vault/state_directories/matrix-as-signal"; { device = "vault/state_directories/wallabag";
fsType = "zfs"; fsType = "zfs";
}; };
fileSystems."/var/lib/wallabag" = fileSystems."/var/lib/matrix-as-signal" =
{ device = "vault/state_directories/wallabag"; { device = "vault/state_directories/matrix-as-signal";
fsType = "zfs"; fsType = "zfs";
}; };
@ -63,38 +63,43 @@
fsType = "tmpfs"; fsType = "tmpfs";
}; };
fileSystems."/var/lib/containers/storage/zfs-containers/18aaf1ac7583433d84488ea6594032549dc37d959751c096780f03cfa8a31ae7/userdata/shm" =
{ device = "shm";
fsType = "tmpfs";
};
fileSystems."/var/lib/matrix-as-telegram" =
{ device = "vault/state_directories/matrix-as-telegram";
fsType = "zfs";
};
fileSystems."/var/lib/containers/storage/zfs-containers/1996d0540bceeb3dea027b3e5ef9e6cd94ea527ce657bf6461286d7b4afa637f/userdata/shm" = fileSystems."/var/lib/containers/storage/zfs-containers/1996d0540bceeb3dea027b3e5ef9e6cd94ea527ce657bf6461286d7b4afa637f/userdata/shm" =
{ device = "shm"; { device = "shm";
fsType = "tmpfs"; fsType = "tmpfs";
}; };
fileSystems."/var/lib/signald" =
{ device = "vault/state_directories/signald";
fsType = "zfs";
};
fileSystems."/var/lib/containers/storage/zfs-containers/1dece57fa7124ac19a7f9b1b97b32d1ea137775ec33a35375741f3e74be3e85e/userdata/shm" = fileSystems."/var/lib/containers/storage/zfs-containers/1dece57fa7124ac19a7f9b1b97b32d1ea137775ec33a35375741f3e74be3e85e/userdata/shm" =
{ device = "shm"; { device = "shm";
fsType = "tmpfs"; fsType = "tmpfs";
}; };
fileSystems."/var/lib/containers/storage/zfs-containers/522343abee32edddd051c93a47bc7d2208e0bbcef724e4c4319cbbc49f5d361d/userdata/shm" =
{ device = "shm";
fsType = "tmpfs";
};
fileSystems."/var/lib/containers/storage/zfs-containers/737d2ce2ce884a2dffe6640ad1e0ea8fe2cf0a200f13a9490bb7f89bb19940cb/userdata/shm" = fileSystems."/var/lib/containers/storage/zfs-containers/737d2ce2ce884a2dffe6640ad1e0ea8fe2cf0a200f13a9490bb7f89bb19940cb/userdata/shm" =
{ device = "shm"; { device = "shm";
fsType = "tmpfs"; fsType = "tmpfs";
}; };
fileSystems."/vault/git" = fileSystems."/var/lib/containers/storage/zfs-containers/522343abee32edddd051c93a47bc7d2208e0bbcef724e4c4319cbbc49f5d361d/userdata/shm" =
{ device = "vault/git"; { device = "shm";
fsType = "tmpfs";
};
fileSystems."/vault/backups" =
{ device = "vault/backups";
fsType = "zfs"; fsType = "zfs";
}; };
fileSystems."/vault/syncthing" = fileSystems."/vault/git" =
{ device = "vault/syncthing"; { device = "vault/git";
fsType = "zfs"; fsType = "zfs";
}; };
@ -103,8 +108,8 @@
fsType = "zfs"; fsType = "zfs";
}; };
fileSystems."/vault/backups" = fileSystems."/vault/syncthing" =
{ device = "vault/backups"; { device = "vault/syncthing";
fsType = "zfs"; fsType = "zfs";
}; };
@ -118,18 +123,13 @@
fsType = "zfs"; fsType = "zfs";
}; };
fileSystems."/vault/backups/zion/databases" = fileSystems."/var/lib/containers/storage/zfs-containers/bdf459f14fb37fc18ea348e6344edf3107b797a8fc3e281d44778550a4a058d2/userdata/shm" =
{ device = "vault/backups/zion/databases";
fsType = "zfs";
};
fileSystems."/var/lib/containers/storage/zfs-containers/18aaf1ac7583433d84488ea6594032549dc37d959751c096780f03cfa8a31ae7/userdata/shm" =
{ device = "shm"; { device = "shm";
fsType = "tmpfs"; fsType = "tmpfs";
}; };
fileSystems."/var/lib/containers/storage/zfs/graph/9aa4f86c914c513dc7b9ac213850d9f011668f4fd8757c6dcccae60e89eac623" = fileSystems."/var/lib/containers/storage/zfs/graph/46fdb9b91b2e60fc56d521f03e2d7b5ee901670d481ced7553d3208d16f654b5" =
{ device = "vault/containers/9aa4f86c914c513dc7b9ac213850d9f011668f4fd8757c6dcccae60e89eac623"; { device = "vault/containers/46fdb9b91b2e60fc56d521f03e2d7b5ee901670d481ced7553d3208d16f654b5";
fsType = "zfs"; fsType = "zfs";
}; };
@ -142,7 +142,7 @@
networking.useDHCP = lib.mkDefault true; networking.useDHCP = lib.mkDefault true;
# networking.interfaces.cni-podman0.useDHCP = lib.mkDefault true; # networking.interfaces.cni-podman0.useDHCP = lib.mkDefault true;
# networking.interfaces.eth0.useDHCP = lib.mkDefault true; # networking.interfaces.eth0.useDHCP = lib.mkDefault true;
# networking.interfaces.vethede24a17.useDHCP = lib.mkDefault true; # networking.interfaces.vethbb9fbdc4.useDHCP = lib.mkDefault true;
# networking.interfaces.wg0.useDHCP = lib.mkDefault true; # networking.interfaces.wg0.useDHCP = lib.mkDefault true;
# networking.interfaces.wlan0.useDHCP = lib.mkDefault true; # networking.interfaces.wlan0.useDHCP = lib.mkDefault true;