palo/nixos-config
palo/nixos-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

probe encryption

Browse source
This commit is contained in:
Ingolf Wagner 2024-08-07 11:07:10 +02:00
parent 36fc0508b0
commit 1b60bfbe21
No known key found for this signature in database
GPG key ID: 76BF5F1928B9618B
5 changed files with 48 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
flake.nix
View file

@ -477,7 +477,7 @@
probe = clanSetup { probe = clanSetup {
name = "probe"; name = "probe";
host = "probe.bear"; host = "95.217.18.54";
modules = [ modules = [
homeManagerModules homeManagerModules
stylixModules stylixModules

3
machines/probe/configuration.nix
View file

@ -10,6 +10,9 @@
components.mainUser.enable = true; components.mainUser.enable = true;
components.network.enable = true; components.network.enable = true;
components.nixos.boot.enable = true;
components.nixos.boot.tor.enable = false;
networking.hostName = "probe"; networking.hostName = "probe";
users.users.root.openssh.authorizedKeys.keys = [ "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJkqVvuJSvRMO5pG2CHNNBxjB7HlJudK4TQs3BhbOWOD" ]; users.users.root.openssh.authorizedKeys.keys = [ "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJkqVvuJSvRMO5pG2CHNNBxjB7HlJudK4TQs3BhbOWOD" ];
users.users.root.initialPassword = "admin"; users.users.root.initialPassword = "admin";

4
machines/probe/hardware-configuration/default.nix
View file

@ -1,13 +1,11 @@
{ config, factsGenerator, clanLib, ... }: { config, factsGenerator, clanLib, ... }:
{ {
imports = [ imports = [
./disko-config.nix ./disko-config-encrypted.nix
./hardware-configuration.nix ./hardware-configuration.nix
./hetzner.nix # to more me to components ./hetzner.nix # to more me to components
]; ];
boot.tmp.useTmpfs = true; # make /tmp a tmpfs (performance!) boot.tmp.useTmpfs = true; # make /tmp a tmpfs (performance!)
} }

43
machines/probe/hardware-configuration/disko-config-encrypted.nix Normal file
View file

@ -0,0 +1,43 @@
# Example to create a bios compatible gpt partition
{ lib, ... }:
{
disko.devices = {
disk.disk1 = {
device = lib.mkDefault "/dev/sda";
type = "disk";
content = {
type = "gpt";
partitions = {
boot = {
name = "boot";
size = "1M";
type = "EF02";
};
esp = {
name = "ESP";
size = "500M";
type = "EF00";
content = {
type = "filesystem";
format = "vfat";
mountpoint = "/boot";
};
};
root = {
name = "root";
size = "100%";
content = {
type = "luks";
name = "root";
content = {
type = "filesystem";
format = "ext4";
mountpoint = "/";
};
};
};
};
};
};
};
}

0
machines/probe/hardware-configuration/disko-config.nix → machines/probe/hardware-configuration/disko-config-simple.nix
View file