ellmau/nixos
1
0
Fork 0
mirror of https://github.com/ellmau/nixos.git synced 2025-12-19 09:29:36 +01:00
Code Issues Projects Releases Wiki Activity
605 Commits 9 Branches 0 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Stefan Ellmauthaler cf1c10b358
flake.lock: Update 
Flake lock file updates:

• Updated input 'comma':
    'github:nix-community/comma/10e4dccce1487175a1a0bc3c31dfb4e8c587bca8?narHash=sha256-NXOhDwETM7XO3fNaqKNBJuqjp/3Mki3sgfgqca6%2B/ag%3D' (2024-11-01)
  → 'github:nix-community/comma/17fb129e3741ea4e4f53a9b6e172800b5bffd507?narHash=sha256-0xjEyQwGUaxk3osUAozYj2a6g7%2BVCljBk%2By06yeVlI8%3D' (2024-11-27)
• Updated input 'emacs-overlay':
    'github:nix-community/emacs-overlay/d7618a5f8b29ca9c573df4532631b621b2a763fa?narHash=sha256-Q6AmDWc3N9pLtUO90bvOafGDMhFfb%2BBSHSgz40LD/7o%3D' (2024-11-15)
  → 'github:nix-community/emacs-overlay/52f31b67d641dbb79ded6253e2731c48a79b8de9?narHash=sha256-KAgZccXkBOxrB7%2BOR1PrzRpEO/Om1ahSfOaZLt5qjUo%3D' (2025-02-04)
• Updated input 'emacs-overlay/nixpkgs-stable':
    'github:NixOS/nixpkgs/689fed12a013f56d4c4d3f612489634267d86529?narHash=sha256-lKA770aUmjPHdTaJWnP3yQ9OI1TigenUqVC3wweqZuI%3D' (2024-11-12)
  → 'github:NixOS/nixpkgs/fecfeb86328381268e29e998ddd3ebc70bbd7f7c?narHash=sha256-rvyfF49e/k6vkrRTV4ILrWd92W%2BnmBDfRYZgctOyolQ%3D' (2025-02-03)
• Updated input 'flake-utils-plus':
    'github:gytis-ivaskevicius/flake-utils-plus/6b10f51ff73a66bb29f3bc8151a59d217713f496?narHash=sha256-XCf2PIAT6lH7BwytgioPmVf/wkzXjSKScC4KzcZgb64%3D' (2024-07-30)
  → 'github:gytis-ivaskevicius/flake-utils-plus/afcb15b845e74ac5e998358709b2b5fe42a948d1?narHash=sha256-4WNeriUToshQ/L5J%2BdTSWC5OJIwT39SEP7V7oylndi8%3D' (2025-02-03)
• Updated input 'glpi-inventory':
    'github:mmarx/glpi-inventory/6527876cae41a4b0b1b062a2ccd74f704383b926?narHash=sha256-KY5FiDorM7/2bMyWPEzpkHBEoAJxBndF8Y713SUYc4k%3D' (2024-05-31)
  → 'github:mmarx/glpi-inventory/dd3511453c81adbb3965f5dd089fe6956c37d318?narHash=sha256-YNADb11GdcgOq60i/eWCaiD13SQqmFmOluYzuXlmAdQ%3D' (2025-01-27)
• Updated input 'lix-module':
    '621aae0f3c.tar.gz?narHash=sha256-NG3IRvRs3u3btVCN861FqHvgOwqcNT/Oy6PBG86F5/E%3D' (2025-01-29)
  → 'b90bf629bb.tar.gz?narHash=sha256-YMLrcBpf0TR5r/eaqm8lxzFPap2TxCor0ZGcK3a7%2Bb8%3D' (2025-01-18)
• Updated input 'lix-module/flake-utils':
    'github:numtide/flake-utils/b1d9ab70662946ef0850d488da1c9019f3a9752a?narHash=sha256-SZ5L6eA7HJ/nmkzGG7/ISclqe6oZdOZTNoesiInkXPQ%3D' (2024-03-11)
  → 'github:numtide/flake-utils/11707dc2f618dd54ca8739b309ec4fc024de578b?narHash=sha256-l0KFg5HjrsfsO/JpG%2Br7fRrqm12kzFHyUHqHCVpMMbI%3D' (2024-11-13)
• Updated input 'lix-module/lix':
    'af1f27cac1.tar.gz?narHash=sha256-0HiplF9tfKbda7dxzXyJdYEKA0YzU/GQYkKK7vS72xU%3D' (2025-02-04)
  → '2837da71ec.tar.gz?narHash=sha256-CCKIAE84dzkrnlxJCKFyffAxP3yfsOAbdvydUGqq24g%3D&rev=2837da71ec1588c1187d2e554719b15904a46c8b' (2025-01-18)
• Updated input 'nixos-hardware':
    'github:NixOS/nixos-hardware/f6581f1c3b137086e42a08a906bdada63045f991?narHash=sha256-T9V7CTucjRZ4Qc6pUEV/kpgNGzQbHWfGcfK6JJLfUeI%3D' (2024-11-12)
  → 'github:NixOS/nixos-hardware/9bdd53f5908453e4d03f395eb1615c3e9a351f70?narHash=sha256-ZYMe4c4OCtIUBn5hx15PEGr0%2BB1cNEpl2dsaLxwY2W0%3D' (2025-02-04)
• Updated input 'nixpkgs-unstable':
    'github:NixOS/nixpkgs/dc460ec76cbff0e66e269457d7b728432263166c?narHash=sha256-PbABj4tnbWFMfBp6OcUK5iGy1QY%2B/Z96ZcLpooIbuEI%3D' (2024-11-11)
  → 'github:NixOS/nixpkgs/c6e957d81b96751a3d5967a0fd73694f303cc914?narHash=sha256-nLivjIygCiqLp5QcL7l56Tca/elVqM9FG1hGd9ZSsrg%3D' (2025-02-03)
• Updated input 'simple-nixos-mailserver/nixpkgs-24_11':
    'github:NixOS/nixpkgs/fecfeb86328381268e29e998ddd3ebc70bbd7f7c?narHash=sha256-rvyfF49e/k6vkrRTV4ILrWd92W%2BnmBDfRYZgctOyolQ%3D' (2025-02-03)
  → 'github:NixOS/nixpkgs/314e12ba369ccdb9b352a4db26ff419f7c49fa84?narHash=sha256-5fNndbndxSx5d%2BC/D0p/VF32xDiJCJzyOqorOYW4JEo%3D' (2024-12-13)
• Updated input 'sops-nix':
    'github:Mic92/sops-nix/4c91d52db103e757fc25b58998b0576ae702d659?narHash=sha256-HC0anOL%2BKmUQ2hdRl0AtunbAckasxrkn4VLmxbW/WaA%3D' (2024-11-11)
  → 'github:Mic92/sops-nix/4c1251904d8a08c86ac6bc0d72cc09975e89aef7?narHash=sha256-wkwYJc8cKmmQWUloyS9KwttBnja2ONRuJQDEsmef320%3D' (2025-01-31)
• Removed input 'sops-nix/nixpkgs-stable'
2025-02-04 10:57:00 +01:00
common
[wg]Add keres to wireguard peers
2024-04-02 10:38:48 +02:00
lib
fix lib function and remove app to expose only the emacs package
2023-10-02 16:27:59 +02:00
machines
Update to 24.11
2025-02-04 10:08:57 +01:00
modules
Update to 24.11
2025-02-04 10:08:57 +01:00
packages/emacs
[emacs,steam] remove use-package (already default), add steam-unwrapped to unfree exept.
2024-11-15 11:12:48 +01:00
secrets
Metis: add mail for cloudstore
2024-01-03 14:14:31 +01:00
templates
nix fmt
2023-06-01 14:57:02 +02:00
users/ellmau
[24.05] Upgrade to UUkari
2024-06-10 11:52:56 +02:00
.dir-locals.el
Swayfy (#5)
2022-08-22 16:39:47 +02:00
.gitignore
Add .direnv in all subfolders to gitignore
2023-05-12 16:41:19 +02:00
.sops.yaml
Add stel-xps and nucturne to the wireguard network
2022-08-02 11:28:11 +02:00
default.nix
Swayfy (#5)
2022-08-22 16:39:47 +02:00
flake.lock
flake.lock: Update
2025-02-04 10:57:00 +01:00
flake.nix
Use Lix 2.92.0
2025-02-04 10:55:21 +01:00
README.md
Add firewall and update readme
2022-07-19 10:50:37 +02:00

README.md

Nix-configuration

Deploy on a new machine

  • setup the filesystem as you see fit
  • check out repository to /mnt/etc/nixos
  • run nixos-generate-config --root /mnt in /mnt/etc/nixos
  • create machines/<machine-name>/default.nix and configure the machine
  • move hardware-configuration.nix to machines/<machine-name>/hardware-configuration.nix
  • stage the machine-folder
  • run
  • nix-install --no-root-passwd --flake .#hostname --option experimental-features "nix-command flakes"

nix-sops

  • generate on your (sshd-enabled) machine a pgp key:
    • nix shell nixpkgs#ssh-to-pgp
    • sudo ssh-to-pgp -i /etc/ssh/ssh_host_rsa_key > /etc/nixos/secrets/keys/hosts/<hostname>.asc
  • add the fingerprint of the new key to the /etc/nixos/.sops.yaml file
  • Rekey the secrets with either
    • a master key
    • or after a git push on another machine with enough permissions to rekey
  • the flakes dev-shell (nix develop) allows to use sops <sops-file> as well as sops-rekey <sops-file> to manage the keys on the system
Description
No description provided
Readme 3.2 MiB
Languages
Nix 79.6%
Emacs Lisp 12.4%
Haskell 4.6%
CSS 3%
Shell 0.4%