52 lines
1.1 KiB
Nix
52 lines
1.1 KiB
Nix
{ zentralwerk, config, pkgs, lib, ... }:
|
|
|
|
{
|
|
imports = [
|
|
./hardware-configuration.nix
|
|
./network.nix
|
|
./hydra.nix
|
|
./updater.nix
|
|
../../config/c3d2.nix
|
|
];
|
|
|
|
nixpkgs.config.allowUnfree = true;
|
|
|
|
security.pam.enableSSHAgentAuth = true;
|
|
|
|
services.openssh = {
|
|
enable = true;
|
|
passwordAuthentication = false;
|
|
};
|
|
|
|
programs.mosh.enable = true;
|
|
|
|
nix = {
|
|
useSandbox = false;
|
|
maxJobs = 4;
|
|
buildCores = 40;
|
|
autoOptimiseStore = true;
|
|
sshServe.enable = true;
|
|
trustedUsers = [ "@wheel" ];
|
|
};
|
|
|
|
boot = {
|
|
tmpOnTmpfs = true;
|
|
tmpOnTmpfsSize = "80%";
|
|
kernelPackages = pkgs.linuxPackages_latest;
|
|
kernelModules = [ "kvm-intel" ];
|
|
kernelParams = [ "mitigations=off" "preempt=none" ];
|
|
# For cross-building
|
|
binfmt.emulatedSystems = [ "armv6l-linux" "armv7l-linux" "aarch64-linux" "riscv32-linux" "riscv64-linux" ];
|
|
};
|
|
|
|
networking = {
|
|
hostName = "hydra";
|
|
firewall.enable = false;
|
|
nameservers = [ "172.20.73.8" "9.9.9.9" ];
|
|
};
|
|
|
|
c3d2.hq.statistics.enable = true;
|
|
|
|
system.stateVersion = "20.09"; # Did you read the comment?
|
|
}
|