prefect: reinstall
5 files changed, 32 insertions(+), 52 deletions(-)
M flake.nix → flake.nix
@@ -90,6 +90,13 @@ { nixosConfigurations.prefect = nixpkgs.lib.nixosSystem { system = "x86_64-linux"; modules = [ + { + nixpkgs.overlays = [ + (import ./overlays) + angrr.overlays.default + ]; + } + angrr.nixosModules.angrr ./system/hosts/prefect.nix ] ++ (with nixos-hardware.nixosModules; [
M system/hosts/prefect.nix → system/hosts/prefect.nix
@@ -85,7 +85,7 @@ ]; fileSystems = { "/" = { device = "/dev/disk/by-partlabel/nixos"; - fsType = "xfs"; + fsType = "ext4"; options = [ "lazytime" "nodiscard"@@ -97,17 +97,19 @@ device = "/dev/disk/by-partlabel/efi-boot"; fsType = "vfat"; }; - "/home" = { - device = "/dev/disk/by-partlabel/home"; - fsType = "ext4"; + "/mnt/data" = { + device = "/dev/disk/by-partlabel/data"; + fsType = "ntfs3"; options = [ - "lazytime" - "nodiscard" + "uid=1000" + "gid=100" + "x-systemd-automount" + "nofail" ]; }; - "/mnt/data" = { - device = "/dev/disk/by-partlabel/data"; + "/mnt/games" = { + device = "/dev/disk/by-partlabel/games"; fsType = "ntfs3"; options = [ "uid=1000"@@ -140,30 +142,11 @@ wantedBy = [ "sshd@.service" ]; serviceConfig.ExecStart = "${pkgs.systemd}/bin/systemd-inhibit --mode block --what sleep --who 'ssh session '%I --why 'session still active' ${pkgs.coreutils}/bin/sleep infinity"; }; - systemd.network = { - networks."40-enp7s0" = { - matchConfig = { - Name = "enp7s0"; - }; - dhcpV4Config = { - UseDomains = true; - }; - dhcpV6Config = { - UseDomains = true; - }; - ipv6AcceptRAConfig = { - UseDomains = true; - }; - networkConfig = { - MulticastDNS = true; - }; - }; - }; networking = { hostName = "prefect"; useDHCP = false; useNetworkd = true; - interfaces.enp7s0 = { + interfaces.enp6s0 = { useDHCP = true; }; hosts = {@@ -186,11 +169,6 @@ ip saddr 10.0.0.0/8 accept ip6 saddr { fd00::/8, fe80::/10 } accept ''; }; - }; - - services.resolved = { - llmnr = "false"; - dnssec = "true"; }; services.tailscale = {@@ -201,7 +179,7 @@ "--accept-routes=false" ]; }; - system.stateVersion = "23.05"; + system.stateVersion = "25.05"; security.pki.certificates = [ ''@@ -235,4 +213,8 @@ "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBxa7lxDu0M4chats/VvpFzjT3ruexKa3J9UC6ASo3bN root@NanoPi.lan" "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIE9of82WBHK8nr8L9RGeieLMfcAWaFCeCkmvYHM9LCuT nanopi" ]; }; + + users.users.root.openssh.authorizedKeys.keys = [ + "ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBHYUyDdw92TNXguAxcmcmZmn/7ECGdRp6ckjxU+5zCw3BCnsS5+xEvHBVnnFdJRoH2XpfMeJjE+fi67zFVhlbn4= root@secretive.marvin" + ]; }
M system/settings/gaming.nix → system/settings/gaming.nix
@@ -1,5 +1,4 @@ { - config, pkgs, ... }:@@ -29,9 +28,9 @@ services.pulseaudio.support32Bit = true; services.pipewire.alsa.support32Bit = true; systemd = { - extraConfig = '' - DefaultLimitNOFILE=524288 - ''; + settings.Manager = { + DefaultLimitNOFILE = 524288; + }; user.extraConfig = '' DefaultLimitNOFILE=524288 '';
M system/settings/hardware/bare-metal.nix → system/settings/hardware/bare-metal.nix
@@ -54,8 +54,4 @@ fileSystems."/".options = [ "noatime" "nodiratime" ]; - fileSystems."/home".options = [ - "noatime" - "nodiratime" - ]; }
M system/settings/programs/kde.nix → system/settings/programs/kde.nix
@@ -19,16 +19,12 @@ physlock.enable = lib.mkForce false; }; - environment.systemPackages = - with pkgs; - [ - kde-gtk-config - plasma-browser-integration - ] - ++ (with libsForQt5; [ - merkuro - kmail - ]); + environment.systemPackages = with pkgs.kdePackages; [ + kde-gtk-config + plasma-browser-integration + merkuro + kmail + ]; services.picom.enable = false; services.blueman.enable = false;