forked from Fediversity/Fediversity
37 lines
976 B
Nix
37 lines
976 B
Nix
# base configuration used also in the initial NixOS install,
|
|
# enabling to then push further configs.
|
|
{ lib, modulesPath, ... }:
|
|
let
|
|
inherit (lib) attrValues;
|
|
keys = import ../../../keys;
|
|
in
|
|
{
|
|
imports = [
|
|
"${modulesPath}/virtualisation/qemu-guest-agent.nix"
|
|
"${modulesPath}/virtualisation/qemu-vm.nix"
|
|
"${modulesPath}/profiles/qemu-guest.nix"
|
|
./hardware.nix
|
|
./users.nix
|
|
];
|
|
time.timeZone = "Europe/Amsterdam";
|
|
i18n.defaultLocale = "en_US.UTF-8";
|
|
system.stateVersion = "24.05"; # do not change
|
|
services.qemuGuest.enable = true;
|
|
networking.firewall.enable = true;
|
|
|
|
services.openssh = {
|
|
enable = true;
|
|
settings.PasswordAuthentication = false;
|
|
};
|
|
|
|
## TODO Remove direct root authentication, see #24
|
|
users.users.root.openssh.authorizedKeys.keys = attrValues keys.contributors;
|
|
|
|
# FIXME un-hardcode
|
|
networking.nameservers = [
|
|
"95.215.185.6"
|
|
"95.215.185.7"
|
|
"2a00:51c0::5fd7:b906"
|
|
"2a00:51c0::5fd7:b907"
|
|
];
|
|
}
|