vno1-op5p: moving to btrfs
This commit is contained in:
parent
bb335c8081
commit
dd889cdec5
16
flake.nix
16
flake.nix
|
|
@ -167,14 +167,14 @@
|
||||||
./hosts/vno1-op5p/configuration.nix
|
./hosts/vno1-op5p/configuration.nix
|
||||||
home-manager.nixosModules.home-manager
|
home-manager.nixosModules.home-manager
|
||||||
|
|
||||||
agenix.nixosModules.default
|
#agenix.nixosModules.default
|
||||||
{
|
#{
|
||||||
age.secrets = {
|
# age.secrets = {
|
||||||
motiejus-passwd-hash.file = ./secrets/motiejus_passwd_hash.age;
|
# motiejus-passwd-hash.file = ./secrets/motiejus_passwd_hash.age;
|
||||||
root-passwd-hash.file = ./secrets/root_passwd_hash.age;
|
# root-passwd-hash.file = ./secrets/root_passwd_hash.age;
|
||||||
sasl-passwd.file = ./secrets/postfix_sasl_passwd.age;
|
# sasl-passwd.file = ./secrets/postfix_sasl_passwd.age;
|
||||||
};
|
# };
|
||||||
}
|
#}
|
||||||
];
|
];
|
||||||
|
|
||||||
specialArgs = {inherit myData;} // inputs;
|
specialArgs = {inherit myData;} // inputs;
|
||||||
|
|
|
||||||
|
|
@ -1,5 +1,5 @@
|
||||||
{
|
{
|
||||||
config,
|
#config,
|
||||||
myData,
|
myData,
|
||||||
...
|
...
|
||||||
}: let
|
}: let
|
||||||
|
|
@ -11,7 +11,6 @@ in {
|
||||||
];
|
];
|
||||||
|
|
||||||
boot = {
|
boot = {
|
||||||
supportedFilesystems = ["bcachefs"];
|
|
||||||
initrd = {
|
initrd = {
|
||||||
kernelModules = ["usb_storage"];
|
kernelModules = ["usb_storage"];
|
||||||
luks.devices = {
|
luks.devices = {
|
||||||
|
|
@ -36,8 +35,8 @@ in {
|
||||||
fileSystems = {
|
fileSystems = {
|
||||||
"/" = {
|
"/" = {
|
||||||
device = "/dev/mapper/luksroot";
|
device = "/dev/mapper/luksroot";
|
||||||
fsType = "bcachefs";
|
fsType = "btrfs";
|
||||||
options = ["noatime" "fix_errors"];
|
options = ["noatime" "compress=zstd"];
|
||||||
};
|
};
|
||||||
"/boot" = {
|
"/boot" = {
|
||||||
device = "${nvme}-part1";
|
device = "${nvme}-part1";
|
||||||
|
|
@ -52,8 +51,10 @@ in {
|
||||||
|
|
||||||
base.users = {
|
base.users = {
|
||||||
enable = true;
|
enable = true;
|
||||||
root.hashedPasswordFile = config.age.secrets.root-passwd-hash.path;
|
#root.hashedPasswordFile = config.age.secrets.root-passwd-hash.path;
|
||||||
user.hashedPasswordFile = config.age.secrets.motiejus-passwd-hash.path;
|
#user.hashedPasswordFile = config.age.secrets.motiejus-passwd-hash.path;
|
||||||
|
root.initialPassword = "live";
|
||||||
|
user.hashedPasswordFile = "live";
|
||||||
};
|
};
|
||||||
|
|
||||||
services = {
|
services = {
|
||||||
|
|
@ -61,10 +62,10 @@ in {
|
||||||
node_exporter.enable = true;
|
node_exporter.enable = true;
|
||||||
sshguard.enable = true;
|
sshguard.enable = true;
|
||||||
|
|
||||||
postfix = {
|
#postfix = {
|
||||||
enable = true;
|
# enable = true;
|
||||||
saslPasswdPath = config.age.secrets.sasl-passwd.path;
|
# saslPasswdPath = config.age.secrets.sasl-passwd.path;
|
||||||
};
|
#};
|
||||||
|
|
||||||
deployerbot = {
|
deployerbot = {
|
||||||
follower = {
|
follower = {
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue