my Nix configuration
Yorick van Pelt 47c8bd6fb0
rm allow-unsafe-native-code-during-evaluation
ago%!(EXTRA string=3 weeks %!s(MISSING))
.git-crypt use git-crypt ago%!(EXTRA string=9 months %!s(MISSING))
deploy add key deployment, fix pennyworth ago%!(EXTRA string=9 months %!s(MISSING))
keys add key deployment, fix pennyworth ago%!(EXTRA string=9 months %!s(MISSING))
logical update for local environment ago%!(EXTRA string=3 weeks %!s(MISSING))
modules stop running tor everywhere ago%!(EXTRA string=3 weeks %!s(MISSING))
packages xps9360: move hw config to nixos-hardware ago%!(EXTRA string=3 weeks %!s(MISSING))
physical woodhouse: disable mounts, add tv user ago%!(EXTRA string=3 weeks %!s(MISSING))
roles rm allow-unsafe-native-code-during-evaluation ago%!(EXTRA string=3 weeks %!s(MISSING))
services Only make quassel container when enabled ago%!(EXTRA string=7 months %!s(MISSING))
.gitattributes use git-crypt ago%!(EXTRA string=9 months %!s(MISSING))
README.md reorganize ago%!(EXTRA string=9 months %!s(MISSING))
conf update for local environment ago%!(EXTRA string=3 weeks %!s(MISSING))
deploy_key use git-crypt ago%!(EXTRA string=9 months %!s(MISSING))
secrets.nix add key deployment, fix pennyworth ago%!(EXTRA string=9 months %!s(MISSING))
servers.json update local host name ago%!(EXTRA string=3 weeks %!s(MISSING))
sshkeys.nix switch to gpg-agent ago%!(EXTRA string=2 years %!s(MISSING))

README.md

My nixos configurations.

Systems

frumar

Physical server. Mostly used for files. (storage: 6 TB hdd + 256GB ssd, RAM: 8GB, 2 cores ht)

pennyworth

Server. VPS (Storage: 80GB, RAM: 1GB, 2 cores)

woodhouse

intel nuc connected to the tv (storage: 64GB ssd, RAM: 4GB)

  • kodi
  • sshfs mounts to alphonse & frumar

ascanius

workstation. hp elitebook 8570w (RAM: 16GB, 4 cores ht, storage: 256GB ssd + 300GB HDD)

  • includes a power saving script

jarvis

workstation. dell xps 13 (RAM: 16GB, storage: 512GB ssd, 2 cores ht)

  • for now, just run powertop --auto-tune after a reboot I guess

Maintenance

Generating tor keys:

$(nix-build packages/shallot.nix --no-out-link)/bin/shallot -f tmp ^PATTERN
head -n3 tmp
tail -n +4 tmp > keys/ssh.HOSTNAME.key
shred tmp && rm tmp