40 lines
870 B
Nix
40 lines
870 B
Nix
{
|
|
inputs,
|
|
lib,
|
|
config,
|
|
pkgs,
|
|
...
|
|
} : {
|
|
system.stateVersion = "23.11";
|
|
|
|
#boot.loader.systemd-boot.enable = true;
|
|
#boot.loader.efi.canTouchEfiVariables = true;
|
|
|
|
# PROXMOX
|
|
services.qemuGuest.enable = true;
|
|
|
|
# USER MANAGEMENT
|
|
nix.settings.trusted-users = [ "nixos" ];
|
|
users.users.nixos =
|
|
{
|
|
isNormalUser = true;
|
|
extraGroups = [ "wheel" ];
|
|
openssh.authorizedKeys.keys = [
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICXAlzwziqfUUb2qmFwNF/nrBYc5MNT1MMOx81ohBmB+ tine@little.sys.tjo.space"
|
|
];
|
|
};
|
|
services.openssh = {
|
|
enable = true;
|
|
settings.PasswordAuthentication = false;
|
|
settings.KbdInteractiveAuthentication = false;
|
|
settings.PermitRootLogin = "no";
|
|
};
|
|
security.sudo.wheelNeedsPassword = false;
|
|
|
|
# NGINX
|
|
services.nginx.enable = true;
|
|
|
|
environment.systemPackages = [
|
|
pkgs.nginx
|
|
];
|
|
}
|