2023-07-08 13:20:40 +00:00
|
|
|
{ config, lib, pkgs, ... }:
|
2015-07-16 13:52:17 +00:00
|
|
|
|
2016-10-20 18:54:38 +00:00
|
|
|
with import <stockholm/lib>;
|
2015-07-16 13:52:17 +00:00
|
|
|
{
|
|
|
|
imports = [
|
2017-07-11 09:26:24 +00:00
|
|
|
<stockholm/lass>
|
2017-07-23 19:10:50 +00:00
|
|
|
|
|
|
|
<stockholm/lass/2configs/mouse.nix>
|
2017-07-11 09:26:24 +00:00
|
|
|
<stockholm/lass/2configs/retiolum.nix>
|
|
|
|
<stockholm/lass/2configs/baseX.nix>
|
2023-07-08 13:20:40 +00:00
|
|
|
<stockholm/lass/2configs/pipewire.nix>
|
2017-07-11 09:26:24 +00:00
|
|
|
<stockholm/lass/2configs/exim-retiolum.nix>
|
|
|
|
<stockholm/lass/2configs/programs.nix>
|
|
|
|
<stockholm/lass/2configs/bitcoin.nix>
|
|
|
|
<stockholm/lass/2configs/browsers.nix>
|
|
|
|
<stockholm/lass/2configs/games.nix>
|
|
|
|
<stockholm/lass/2configs/pass.nix>
|
|
|
|
<stockholm/lass/2configs/elster.nix>
|
|
|
|
<stockholm/lass/2configs/steam.nix>
|
|
|
|
<stockholm/lass/2configs/wine.nix>
|
|
|
|
<stockholm/lass/2configs/fetchWallpaper.nix>
|
|
|
|
<stockholm/lass/2configs/mail.nix>
|
|
|
|
<stockholm/lass/2configs/logf.nix>
|
|
|
|
<stockholm/lass/2configs/syncthing.nix>
|
2021-01-23 19:43:56 +00:00
|
|
|
<stockholm/lass/2configs/sync/sync.nix>
|
2019-04-17 18:00:06 +00:00
|
|
|
<stockholm/lass/2configs/sync/decsync.nix>
|
|
|
|
<stockholm/lass/2configs/sync/weechat.nix>
|
2022-01-28 22:12:22 +00:00
|
|
|
<stockholm/lass/2configs/sync/the_playlist.nix>
|
2021-01-23 19:43:56 +00:00
|
|
|
#<stockholm/lass/2configs/c-base.nix>
|
2017-11-12 12:01:59 +00:00
|
|
|
<stockholm/lass/2configs/br.nix>
|
2018-01-03 17:23:22 +00:00
|
|
|
<stockholm/lass/2configs/ableton.nix>
|
2018-02-13 16:13:18 +00:00
|
|
|
<stockholm/lass/2configs/dunst.nix>
|
2018-02-13 16:13:55 +00:00
|
|
|
<stockholm/lass/2configs/rtl-sdr.nix>
|
2018-08-14 12:15:14 +00:00
|
|
|
<stockholm/lass/2configs/print.nix>
|
2018-12-12 14:35:15 +00:00
|
|
|
<stockholm/lass/2configs/network-manager.nix>
|
2023-09-04 10:31:35 +00:00
|
|
|
<stockholm/lass/2configs/yellow-mounts/samba.nix>
|
2021-01-23 19:43:56 +00:00
|
|
|
<stockholm/lass/2configs/ppp/x220-modem.nix>
|
|
|
|
<stockholm/lass/2configs/ppp/umts-stick.nix>
|
|
|
|
# <stockholm/lass/2configs/remote-builder/morpheus.nix>
|
|
|
|
# <stockholm/lass/2configs/remote-builder/prism.nix>
|
2023-09-04 10:31:35 +00:00
|
|
|
<stockholm/lass/2configs/consul.nix>
|
|
|
|
<stockholm/lass/2configs/networkd.nix>
|
2022-12-25 00:08:39 +00:00
|
|
|
<stockholm/lass/2configs/autotether.nix>
|
2015-11-13 00:12:07 +00:00
|
|
|
{
|
|
|
|
krebs.iptables.tables.filter.INPUT.rules = [
|
2018-05-04 18:30:19 +00:00
|
|
|
#risk of rain
|
2015-11-13 00:12:07 +00:00
|
|
|
{ predicate = "-p tcp --dport 11100"; target = "ACCEPT"; }
|
2018-09-08 20:54:29 +00:00
|
|
|
#quake3
|
|
|
|
{ predicate = "-p tcp --dport 27950:27965"; target = "ACCEPT"; }
|
|
|
|
{ predicate = "-p udp --dport 27950:27965"; target = "ACCEPT"; }
|
2015-11-13 00:12:07 +00:00
|
|
|
];
|
|
|
|
}
|
2016-08-29 08:58:46 +00:00
|
|
|
{
|
2016-12-26 13:18:08 +00:00
|
|
|
services.nginx = {
|
2016-08-29 08:58:46 +00:00
|
|
|
enable = true;
|
2016-12-26 13:18:08 +00:00
|
|
|
virtualHosts.default = {
|
2018-07-13 14:10:38 +00:00
|
|
|
default = true;
|
2016-12-26 13:18:08 +00:00
|
|
|
serverAliases = [
|
2016-12-22 22:23:59 +00:00
|
|
|
"localhost"
|
|
|
|
"${config.krebs.build.host.name}"
|
|
|
|
"${config.krebs.build.host.name}.r"
|
|
|
|
];
|
2016-12-26 13:18:08 +00:00
|
|
|
locations."~ ^/~(.+?)(/.*)?\$".extraConfig = ''
|
|
|
|
alias /home/$1/public_html$2;
|
|
|
|
'';
|
2016-12-22 22:23:59 +00:00
|
|
|
};
|
2016-08-29 08:58:46 +00:00
|
|
|
};
|
|
|
|
}
|
2016-10-20 19:05:56 +00:00
|
|
|
{
|
|
|
|
services.redis.enable = true;
|
2016-12-04 19:40:11 +00:00
|
|
|
}
|
2017-02-13 15:16:01 +00:00
|
|
|
{
|
|
|
|
environment.systemPackages = [
|
2017-06-18 12:00:05 +00:00
|
|
|
pkgs.ovh-zone
|
2018-09-09 18:49:22 +00:00
|
|
|
pkgs.bank
|
2018-10-04 10:36:23 +00:00
|
|
|
pkgs.adb-sync
|
2019-04-17 18:05:20 +00:00
|
|
|
pkgs.transgui
|
2017-02-13 15:16:01 +00:00
|
|
|
];
|
|
|
|
}
|
2017-04-16 21:35:02 +00:00
|
|
|
{
|
|
|
|
services.tor = {
|
|
|
|
enable = true;
|
|
|
|
client.enable = true;
|
|
|
|
};
|
|
|
|
}
|
2015-07-16 13:52:17 +00:00
|
|
|
];
|
|
|
|
|
2015-10-19 12:00:15 +00:00
|
|
|
krebs.build.host = config.krebs.hosts.mors;
|
2015-07-27 11:54:29 +00:00
|
|
|
|
2015-07-16 13:52:17 +00:00
|
|
|
environment.systemPackages = with pkgs; [
|
2016-03-15 13:12:13 +00:00
|
|
|
acronym
|
2017-06-20 17:46:37 +00:00
|
|
|
brain
|
2016-02-06 18:26:51 +00:00
|
|
|
cac-api
|
2015-10-03 12:37:34 +00:00
|
|
|
sshpass
|
2015-09-30 13:18:31 +00:00
|
|
|
get
|
2015-11-01 19:00:19 +00:00
|
|
|
hashPassword
|
2016-04-13 14:47:47 +00:00
|
|
|
urban
|
|
|
|
mk_sql_pair
|
2016-05-31 22:10:13 +00:00
|
|
|
remmina
|
2018-12-02 04:44:37 +00:00
|
|
|
transmission
|
2016-08-29 08:59:03 +00:00
|
|
|
|
2016-10-02 10:38:04 +00:00
|
|
|
macchanger
|
2017-11-12 12:02:21 +00:00
|
|
|
|
|
|
|
dnsutils
|
2018-04-27 17:16:12 +00:00
|
|
|
woeusb
|
2023-07-08 14:24:54 +00:00
|
|
|
(pkgs.writeDashBin "play-on" ''
|
|
|
|
HOST=$(echo 'styx\nshodan' | fzfmenu)
|
|
|
|
ssh -t "$HOST" -- mpv "$@"
|
2019-04-17 15:41:51 +00:00
|
|
|
'')
|
2015-07-16 13:52:17 +00:00
|
|
|
];
|
|
|
|
|
|
|
|
#TODO: fix this shit
|
|
|
|
##fprint stuff
|
|
|
|
##sudo fprintd-enroll $USER to save fingerprints
|
|
|
|
#services.fprintd.enable = true;
|
|
|
|
#security.pam.services.sudo.fprintAuth = true;
|
|
|
|
|
|
|
|
users.extraGroups = {
|
|
|
|
loot = {
|
|
|
|
members = [
|
|
|
|
config.users.extraUsers.mainUser.name
|
|
|
|
"firefox"
|
|
|
|
"chromium"
|
|
|
|
"google"
|
|
|
|
"virtual"
|
|
|
|
];
|
|
|
|
};
|
|
|
|
};
|
|
|
|
|
2016-06-28 15:25:12 +00:00
|
|
|
krebs.repo-sync.timerConfig = {
|
|
|
|
OnCalendar = "00:37";
|
|
|
|
};
|
2017-10-09 11:19:27 +00:00
|
|
|
|
2018-12-24 14:49:45 +00:00
|
|
|
nixpkgs.config.android_sdk.accept_license = true;
|
2017-11-12 12:02:48 +00:00
|
|
|
programs.adb.enable = true;
|
2018-04-20 21:28:39 +00:00
|
|
|
|
2018-07-03 18:35:11 +00:00
|
|
|
|
|
|
|
services.earlyoom = {
|
|
|
|
enable = true;
|
|
|
|
freeMemThreshold = 5;
|
|
|
|
};
|
2023-09-04 10:31:35 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
nix.trustedUsers = [ "root" "lass" ];
|
|
|
|
|
|
|
|
services.nscd.enableNsncd = true;
|
|
|
|
|
2015-07-16 13:52:17 +00:00
|
|
|
}
|