My configuration. Probably nothing to look for here.
2c9a2416e6
Flake lock file updates: • Updated input 'nixos-hardware': 'github:NixOS/nixos-hardware/b12e314726a4226298fe82776b4baeaa7bcf3dcd?narHash=sha256-mfv%2BJ/vO4nqmIOlq8Y1rRW8hVsGH3M%2BI2ESMjhuebDs%3D' (2024-12-16) → 'github:NixOS/nixos-hardware/e8516a23524cc9083f5a02a8d64d14770e4c7c09?narHash=sha256-04xesW7HITdF5WUmNM39WD4tkEERk3Ez2W1nNvdIvIw%3D' (2024-12-22) • Updated input 'nur': 'github:nix-community/NUR/cf4022fae9d7a59798e681f3e3c07c0146f2ec66?narHash=sha256-OkcMRs%2B3YysXxQKl5WWiG1QN7M3wDKHNU3OVZA7qNQM%3D' (2024-12-22) → 'github:nix-community/NUR/6518085b44c0590e6e390a4fc4a513846e08edb9?narHash=sha256-idxpsTUxdRHcb9Y1FPXRXvH9dd9eOzzJQiZwUQ5XDik%3D' (2024-12-23) • Updated input 'zig': 'github:mitchellh/zig-overlay/956fa2f98490537625f582122b6f7f8adabf9686?narHash=sha256-5YsE/uxeHJSa1S86553fgjjYDRJl7iLs41cSSXW/K04%3D' (2024-12-21) → 'github:mitchellh/zig-overlay/fb9bc7cd50913b741f1d66aedca8a07583cc5f53?narHash=sha256-C73hSei9ly%2B/BMXWqAaMJdG/r%2BqZWzSbwqfSTsEtdv4%3D' (2024-12-23) |
||
---|---|---|
hosts | ||
modules | ||
pkgs | ||
secrets | ||
shared | ||
.envrc | ||
.gitattributes | ||
.gitignore | ||
data.nix | ||
flake.lock | ||
flake.nix | ||
LICENSE | ||
README.md | ||
secrets.nix |
Config
Flakes:
$ deploy --interactive '#fwminex'
$ nix build .#deploy.nodes.fra1-b.profiles.system.path
Other:
$ nix build .#nixosConfigurations.vno3-rp3b.config.system.build.toplevel
$ nix eval .#nixosConfigurations.fwminex.config.services.nsd
Encoding host-only secrets
Encode a secret on host:
rage -e -r "$(cat /etc/ssh/ssh_host_ed25519_key.pub)" -o secret.age /path/to/plaintext
Decode a secret on host (to test things out):
rage -d -i /etc/ssh/ssh_host_ed25519_key secret.age
Borg
BORG_PASSCOMMAND="cat /run/agenix/borgbackup-fwminex" borg --remote-path=borg1 list zh2769@zh2769.rsync.net:fwminex.servers.jakst-home-motiejus-annex2