01284154f7
- Changed hostname reference from 'vps' to 'linode' in jawz.nix for improved clarity. - Modified SSH service configuration in linode's configuration.nix to force start behavior.
48 lines
955 B
Nix
48 lines
955 B
Nix
{
|
|
lib,
|
|
pkgs,
|
|
config,
|
|
inputs,
|
|
...
|
|
}:
|
|
{
|
|
imports = [
|
|
./hardware-configuration.nix
|
|
./wireguard-linode.nix
|
|
../../config/base.nix
|
|
inputs.nixos-generators.nixosModules.linode
|
|
];
|
|
my = import ./toggles.nix { inherit config inputs; } // {
|
|
nix.cores = 2;
|
|
users.nixremote.enable = false;
|
|
network.firewall = {
|
|
enabledServicePorts = true;
|
|
additionalPorts = [ ];
|
|
};
|
|
};
|
|
networking.hostName = "linode";
|
|
services.openssh = {
|
|
enable = true;
|
|
openFirewall = true;
|
|
startWhenNeeded = lib.mkForce false;
|
|
settings = {
|
|
PasswordAuthentication = false;
|
|
PermitRootLogin = "prohibit-password";
|
|
KbdInteractiveAuthentication = false;
|
|
};
|
|
};
|
|
environment.systemPackages = builtins.attrValues {
|
|
inherit (pkgs)
|
|
htop
|
|
iotop
|
|
tcpdump
|
|
wireguard-tools
|
|
;
|
|
};
|
|
system.autoUpgrade = {
|
|
enable = true;
|
|
dates = "weekly";
|
|
allowReboot = true;
|
|
};
|
|
}
|