diff options
Diffstat (limited to 'users/grfn/system/system')
| -rw-r--r-- | users/grfn/system/system/machines/roswell.nix | 12 | ||||
| -rw-r--r-- | users/grfn/system/system/machines/yeren.nix | 9 | ||||
| -rw-r--r-- | users/grfn/system/system/modules/common.nix | 1 | ||||
| -rw-r--r-- | users/grfn/system/system/modules/development.nix | 9 |
4 files changed, 21 insertions, 10 deletions
diff --git a/users/grfn/system/system/machines/roswell.nix b/users/grfn/system/system/machines/roswell.nix index 6eb4a510b8..8f7ed84742 100644 --- a/users/grfn/system/system/machines/roswell.nix +++ b/users/grfn/system/system/machines/roswell.nix @@ -3,10 +3,13 @@ { imports = [ ../modules/common.nix + ../modules/development.nix "${modulesPath}/installer/scan/not-detected.nix" "${modulesPath}/virtualisation/amazon-image.nix" ]; + system.stateVersion = "22.05"; + ec2.hvm = true; networking.hostName = "roswell"; @@ -14,4 +17,13 @@ users.users.grfn.openssh.authorizedKeys.keys = [ depot.users.grfn.keys.main ]; + + boot.loader.systemd-boot.enable = lib.mkForce false; + boot.loader.efi.canTouchEfiVariables = lib.mkForce false; + + services.openssh.passwordAuthentication = false; + + services.tailscale.enable = true; + + security.sudo.wheelNeedsPassword = false; } diff --git a/users/grfn/system/system/machines/yeren.nix b/users/grfn/system/system/machines/yeren.nix index 228631c8cc..847adf01e9 100644 --- a/users/grfn/system/system/machines/yeren.nix +++ b/users/grfn/system/system/machines/yeren.nix @@ -105,15 +105,6 @@ systemd.services.fprintd.environment.FP_TOD_DRIVERS_DIR = "${pkgs.libfprint-2-tod1-goodix}/usr/lib/libfprint-2/tod-1"; - security.pam.loginLimits = [ - { - domain = "grfn"; - type = "soft"; - item = "nofile"; - value = "65535"; - } - ]; - security.pam.services = { login.fprintAuth = true; sudo.fprintAuth = true; diff --git a/users/grfn/system/system/modules/common.nix b/users/grfn/system/system/modules/common.nix index a7d5a62e68..fb0e377d9f 100644 --- a/users/grfn/system/system/modules/common.nix +++ b/users/grfn/system/system/modules/common.nix @@ -55,7 +55,6 @@ with lib; "wheel" "networkmanager" "audio" - "docker" ]; shell = pkgs.zsh; }; diff --git a/users/grfn/system/system/modules/development.nix b/users/grfn/system/system/modules/development.nix index bfa0e22cff..d17e9d424c 100644 --- a/users/grfn/system/system/modules/development.nix +++ b/users/grfn/system/system/modules/development.nix @@ -3,4 +3,13 @@ { virtualisation.docker.enable = true; users.users.grfn.extraGroups = [ "docker" ]; + + security.pam.loginLimits = [ + { + domain = "grfn"; + type = "soft"; + item = "nofile"; + value = "65535"; + } + ]; } |