add keylime

2023-12-23 02:39:15 -05:00 · 2023-12-23 02:39:15 -05:00 · 2a50b2098e
commit 2a50b2098e
parent 6fdb1cd520
7 changed files with 80 additions and 76 deletions
--- a/nixos/hosts/aerial/default.nix
+++ b/nixos/hosts/aerial/default.nix
@ -26,9 +26,10 @@
    fsType = "ext4";
  };

-  networking.firewall.allowedTCPPorts = [ 42069 ];
-  networking.firewall.allowedUDPPorts = [ 42069 ];
-
-  
+  environment.systemPackages = [
+    pkgs.python3
+  ];

+  networking.firewall.allowedTCPPorts = [ 42069 8000 ];
+  networking.firewall.allowedUDPPorts = [ 42069 ]; 
 }
--- a/nixos/hosts/keylime/default.nix
+++ b/nixos/hosts/keylime/default.nix
@ -0,0 +1,10 @@
+{...}: {
+  imports = [
+    ../../templates/proxmox-lxc.nix
+    ../../server.nix
+    ../../features/podman.nix
+  ];
+
+  networking.hostname = "keylime";
+  system.stateVersion = "24.05"; 
+}
--- a/nixos/templates/proxmox-lxc.nix
+++ b/nixos/templates/proxmox-lxc.nix
@ -1,13 +1,14 @@
 { pkgs, config, modulesPath, lib, ... }: {
  imports = [
    (modulesPath + "/virtualisation/proxmox-lxc.nix")
+    ../users/noe.nix
  ];

-  system.stateVersion = "24.05";
+  system.stateVersion = lib.mkDefault "24.05";
  
  users.users.root.hashedPassword = "$y$j9T$kWYIRHrwP1uXV.l4vTJ67/$VGkvX09rzebYPWRI5vk0Z/IDo434bBaIqUutWp4l0L2";
  users.users.root.openssh.authorizedKeys.keys = import ../users/noe-keys.nix;
-
+  
  environment.systemPackages = with pkgs; [
    bashInteractive 
  ];
--- a/nixos/users/noe.nix
+++ b/nixos/users/noe.nix
@ -7,6 +7,8 @@
    openssh.authorizedKeys.keys = import ./noe-keys.nix; 
  };

+  programs.fish.enable = true;
+
  environment.systemPackages = [ pkgs.nixos-rebuild ];
  security.sudo.extraRules = [
    {