2024-07-21 01:44:38 -04:00
|
|
|
{ config, lib, pkgs, rpi5-kernel, ... }:
|
|
|
|
|
{
|
|
|
|
|
imports = [ ./hardware-configuration.nix ./modules ];
|
|
|
|
|
|
|
|
|
|
boot.kernelPackages = rpi5-kernel.legacyPackages.aarch64-linux.linuxPackages_rpi5;
|
|
|
|
|
boot.loader.systemd-boot.enable = true;
|
|
|
|
|
boot.loader.efi.canTouchEfiVariables = false;
|
|
|
|
|
|
|
|
|
|
nix.package = pkgs.nixFlakes;
|
|
|
|
|
nix.settings.experimental-features = [ "nix-command" "flakes" ];
|
|
|
|
|
|
|
|
|
|
time.timeZone = "America/New_York";
|
|
|
|
|
|
|
|
|
|
networking.hostName = "toki-rpi5";
|
|
|
|
|
networking.wireless.iwd.enable = true;
|
|
|
|
|
networking.wireless.iwd.settings = {
|
|
|
|
|
Settings.AutoConnect = true;
|
|
|
|
|
Network.EnableIPv6 = false;
|
|
|
|
|
General.EnableNetworkConfiguration = true;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
services.openssh.enable = true;
|
|
|
|
|
services.openssh.settings = {
|
|
|
|
|
PasswordAuthentication = false;
|
|
|
|
|
PermitRootLogin = "yes";
|
|
|
|
|
};
|
2024-07-22 02:21:31 -04:00
|
|
|
users.mutableUsers = false;
|
|
|
|
|
users.users.root = {
|
|
|
|
|
hashedPassword = "$y$j9T$bEfEX118OZZ58ypi4/D4F/$c1yDUO7hW7WnD5eGj..ZXieELAwUoSPHL4DIsDl6T.6";
|
|
|
|
|
openssh.authorizedKeys.keyFiles = [ ./ssh/authorized_keys ];
|
|
|
|
|
};
|
2024-07-21 01:44:38 -04:00
|
|
|
|
|
|
|
|
networking.firewall.allowedTCPPorts = [ 22 80 443 ];
|
|
|
|
|
|
|
|
|
|
environment.systemPackages = with pkgs; [
|
|
|
|
|
openssl
|
|
|
|
|
rsync
|
|
|
|
|
curl
|
|
|
|
|
git
|
|
|
|
|
wget
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
system.stateVersion = "24.05";
|
|
|
|
|
}
|
|
|
|
|
|
