305 lines
12 KiB
Nix
305 lines
12 KiB
Nix
{ config, lib, ... }:
|
|
|
|
with config.krebs.lib;
|
|
|
|
{
|
|
hosts = mapAttrs (_: setAttr "owner" config.krebs.users.lass) {
|
|
dishfire = {
|
|
cores = 4;
|
|
nets = rec {
|
|
internet = {
|
|
ip4.addr = "144.76.172.188";
|
|
aliases = [
|
|
"dishfire.internet"
|
|
];
|
|
ssh.port = 45621;
|
|
};
|
|
retiolum = {
|
|
via = internet;
|
|
ip4.addr = "10.243.133.99";
|
|
ip6.addr = "42:0000:0000:0000:0000:0000:d15f:1233";
|
|
aliases = [
|
|
"dishfire.retiolum"
|
|
"dishfire.r"
|
|
];
|
|
tinc.pubkey = ''
|
|
-----BEGIN RSA PUBLIC KEY-----
|
|
MIIBCgKCAQEAwKi49fN+0s5Cze6JThM7f7lj4da27PSJ/3w3tDFPvtQco11ksNLs
|
|
Xd3qPaQIgmcNVCR06aexae3bBeTx9y3qHvKqZVE1nCtRlRyqy1LVKSj15J1D7yz7
|
|
uS6u/BSZiCzmdZwu3Fq5qqoK0nfzWe/NKEDWNa5l4Mz/BZQyI/hbOpn6UfFD0LpK
|
|
R4jzc9Dbk/IFNAvwb5yrgEYtwBzlXzeDvHW2JcPq3qQjK2byQYNiIyV3g0GHppEd
|
|
vDbIPDFhTn3Hv5zz/lX+/We8izzRge7MEd+Vn9Jwb5NAzwDsOHl6ExpqASv9H49U
|
|
HwgPw5pstabyrsDWXybSYUb+8LcZf+unGwIDAQAB
|
|
-----END RSA PUBLIC KEY-----
|
|
'';
|
|
};
|
|
};
|
|
ssh.privkey.path = <secrets/ssh.id_ed25519>;
|
|
ssh.pubkey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGv0JMp0y+E5433GRSFKVK3cQmP0AAlS9aH9fk49yFxy";
|
|
};
|
|
echelon = {
|
|
cores = 2;
|
|
nets = rec {
|
|
internet = {
|
|
ip4.addr = "104.233.79.118";
|
|
aliases = [
|
|
"echelon.internet"
|
|
];
|
|
ssh.port = 45621;
|
|
};
|
|
retiolum = {
|
|
via = internet;
|
|
ip4.addr = "10.243.206.103";
|
|
ip6.addr = "42:941e:2816:35f4:5c5e:206b:3f0b:f763";
|
|
aliases = [
|
|
"echelon.retiolum"
|
|
"echelon.r"
|
|
"cgit.echelon.retiolum"
|
|
"go.retiolum"
|
|
"go.r"
|
|
];
|
|
tinc.pubkey = ''
|
|
-----BEGIN RSA PUBLIC KEY-----
|
|
MIIBCgKCAQEAuscWOYdHu0bpWacvwTNd6bcmrAQ0YFxJWHZF8kPZr+bMKIhnXLkJ
|
|
oJheENIM6CA9lQQQFUxh2P2pxZavW5rgVlJxIKeiB+MB4v6ZO60LmZgpCsWGD/dX
|
|
MipM2tLtQxYhvLJIJxEBWn3rxIgeEnCtZsH1KLWyLczb+QpvTjMJ4TNh1nEBPE/f
|
|
4LUH1JHaGhcaHl2dLemR9wnnDIjmSj0ENJp2al+hWnIggcA/Zp0e4b86Oqbbs5wA
|
|
n++n5j971cTrBdA89nJDYOEtepisglScVRbgLqJG81lDA+n24RWFynn+U3oD/L8p
|
|
do+kxlwZUEDRbPU4AO5L+UeIbimsuIfXiQIDAQAB
|
|
-----END RSA PUBLIC KEY-----
|
|
'';
|
|
};
|
|
};
|
|
ssh.privkey.path = <secrets/ssh.id_ed25519>;
|
|
ssh.pubkey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIL21QDOEFdODFh6WAfNp6odrXo15pEsDQuGJfMu/cKzK";
|
|
};
|
|
prism = {
|
|
cores = 4;
|
|
nets = rec {
|
|
internet = {
|
|
ip4.addr = "213.239.205.240";
|
|
aliases = [
|
|
"prism.internet"
|
|
];
|
|
ssh.port = 45621;
|
|
};
|
|
retiolum = {
|
|
via = internet;
|
|
ip4.addr = "10.243.0.103";
|
|
ip6.addr = "42:0000:0000:0000:0000:0000:0000:15ab";
|
|
aliases = [
|
|
"prism.retiolum"
|
|
"prism.r"
|
|
"cgit.prism.retiolum"
|
|
"cache.prism.r"
|
|
];
|
|
tinc.pubkey = ''
|
|
-----BEGIN RSA PUBLIC KEY-----
|
|
MIIBCgKCAQEAvzhoBsxUaEwm7ctiw3xvLFP2RoVaiHnF+Sm4J8E4DOerPToXxlyl
|
|
kxvMPaRnhtiO6MK0Vv2+VswKIeRkMm5YuD5MG7wni4vUKcRx9cCgKji/s0vGqLhl
|
|
JKK9i23q7epvQ32Is/e3P+fQ5KM50EO+TWACNaroCNoyJvZ/G8BWXw6WnIOsuX0I
|
|
AoPW2ol8/sdZxeK4hCe/aQz6y0AEvigpvPkHx+TE5fkBeIeqhiKTIWpEqjU4wXx5
|
|
jP2izYuaIsHAihU8mm03xRxT4+4IHYt6ddrhNeBuJBsATLkDgULdQyOoEzmXCm2j
|
|
anGRBZoYVazxn7d8mKBdE09ZNc1ijULZgwIDAQAB
|
|
-----END RSA PUBLIC KEY-----
|
|
'';
|
|
};
|
|
};
|
|
ssh.privkey.path = <secrets/ssh.id_rsa>;
|
|
ssh.pubkey = "ssh-rsa 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";
|
|
};
|
|
domsen-nas = {
|
|
nets = rec {
|
|
internet = {
|
|
aliases = [
|
|
"domsen-nas.internet"
|
|
];
|
|
ip4.addr = "87.138.180.167";
|
|
ssh.port = 2223;
|
|
};
|
|
};
|
|
ssh.pubkey = "ssh-dss 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";
|
|
};
|
|
cloudkrebs = {
|
|
cores = 1;
|
|
nets = rec {
|
|
internet = {
|
|
ip4.addr = "104.167.113.104";
|
|
aliases = [
|
|
"cloudkrebs.internet"
|
|
];
|
|
ssh.port = 45621;
|
|
};
|
|
retiolum = {
|
|
via = internet;
|
|
ip4.addr = "10.243.206.102";
|
|
ip6.addr = "42:941e:2816:35f4:5c5e:206b:3f0b:f762";
|
|
aliases = [
|
|
"cloudkrebs.retiolum"
|
|
"cloudkrebs.r"
|
|
"cgit.cloudkrebs.retiolum"
|
|
];
|
|
tinc.pubkey = ''
|
|
-----BEGIN RSA PUBLIC KEY-----
|
|
MIIBCgKCAQEAttUygCu7G6lIA9y+9rfTpLKIy2UgNDglUVoKZYLs8JPjtAtQVbtA
|
|
OcWwwPc8ijLQvwJWa8e/shqSzSIrtOe+HJbRGdXLdBLtOuLKpz+ZFHcS+95RS5aF
|
|
QTehg+QY7pvhbrrwKX936tkMR568suTQG6C8qNC/5jWYO/wIxFMhnQ2iRRKQOq1v
|
|
3aGGPC16KeXKVioY9KoV98S3n1rZW1JK07CIsZU4qb5txtLlW6FplJ7UmhVku1WC
|
|
sgOOj9yi6Zk1t8R2Pwv9gxa3Hc270voj5U+I2hgLV/LjheE8yhQgYHEA4vXerPdO
|
|
TGSATlSmMtE2NYGrKsLM7pKn286aSpXinwIDAQAB
|
|
-----END RSA PUBLIC KEY-----
|
|
'';
|
|
};
|
|
};
|
|
ssh.privkey.path = <secrets/ssh.id_ed25519>;
|
|
ssh.pubkey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIN7oYx7Lbkc0wPYNp92LQF93DCtxsGzOkVD91FJQzVZl";
|
|
};
|
|
uriel = {
|
|
cores = 1;
|
|
nets = {
|
|
gg23 = {
|
|
ip4.addr = "10.23.1.12";
|
|
aliases = ["uriel.gg23"];
|
|
ssh.port = 45621;
|
|
};
|
|
retiolum = {
|
|
ip4.addr = "10.243.81.176";
|
|
ip6.addr = "42:dc25:60cf:94ef:759b:d2b6:98a9:2e56";
|
|
aliases = [
|
|
"uriel.retiolum"
|
|
"uriel.r"
|
|
"cgit.uriel.retiolum"
|
|
];
|
|
tinc.pubkey = ''
|
|
-----BEGIN RSA PUBLIC KEY-----
|
|
MIIBCgKCAQEAzw0pvoEmqeqiZrzSOPH0IT99gr1rrvMZbvabXoU4MAiVgGoGrkmR
|
|
duJkk8Fj12ftMc+Of1gnwDkFhRcfAKOeH1RSc4CTircWVq99WyecTwEZoaR/goQb
|
|
MND022kIBoG6NQNxv1Y5I1B/h7hfloMFEPym9oFtOAXoGhBY2vVl4g64NNz+RLME
|
|
m1RipLXKANAh6LRNPGPQCUYX4TVY2ZJVxM3CM1XdomUAdOYXJmWFyUg9NcIKaacx
|
|
uRrmuy7J9yFBcihZX5Y7NV361kINrpRmZYxJRf9cr0hb5EkJJ7bMIKQMEFQ5RnYo
|
|
u7MPGKD7aNHa6hLLCeIfJ5u0igVmSLh3pwIDAQAB
|
|
-----END RSA PUBLIC KEY-----
|
|
'';
|
|
};
|
|
};
|
|
ssh.privkey.path = <secrets/ssh.id_ed25519>;
|
|
ssh.pubkey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBryIo/Waw8SWvlQ0+5I+Bd/dJgcMd6iPXtELS6gQXoc";
|
|
secure = true;
|
|
};
|
|
mors = {
|
|
cores = 2;
|
|
nets = {
|
|
gg23 = {
|
|
ip4.addr = "10.23.1.11";
|
|
aliases = ["mors.gg23"];
|
|
ssh.port = 45621;
|
|
};
|
|
retiolum = {
|
|
ip4.addr = "10.243.0.2";
|
|
ip6.addr = "42:0:0:0:0:0:0:dea7";
|
|
aliases = [
|
|
"mors.retiolum"
|
|
"mors.r"
|
|
"cgit.mors.retiolum"
|
|
];
|
|
tinc.pubkey = ''
|
|
-----BEGIN RSA PUBLIC KEY-----
|
|
MIIBCgKCAQEAsj1PCibKOfF68gmFQ+wwyfhUWpqKqpznrJX1dZ+daae7l7nBHvsE
|
|
H0QwkiMmk3aZy1beq3quM6gX13aT+/wMfWnLyuvT11T5C9JEf/IS91STpM2BRN+R
|
|
+P/DhbuDcW4UsdEe6uwQDGEJbXRN5ZA7GI0bmcYcwHJ9SQmW5v7P9Z3oZ+09hMD+
|
|
1cZ3HkPN7weSdMLMPpUpmzCsI92cXGW0xRC4iBEt1ZeBwjkLCRsBFBGcUMuKWwVa
|
|
9sovca0q3DUar+kikEKVrVy26rZUlGuBLobMetDGioSawWkRSxVlfZvTHjAK5JzU
|
|
O6y6hj0yQ1sp6W2JjU8ntDHf63aM71dB9QIDAQAB
|
|
-----END RSA PUBLIC KEY-----
|
|
'';
|
|
};
|
|
};
|
|
secure = true;
|
|
ssh.privkey.path = <secrets/ssh.id_ed25519>;
|
|
ssh.pubkey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINAMPlIG+6u75GJ3kvsPF6OoIZsU+u8ZQ+rdviv5fNMD";
|
|
};
|
|
helios = {
|
|
cores = 2;
|
|
nets = {
|
|
retiolum = {
|
|
ip4.addr = "10.243.0.3";
|
|
ip6.addr = "42:0:0:0:0:0:0:7105";
|
|
aliases = [
|
|
"helios.retiolum"
|
|
"helios.r"
|
|
"cgit.helios.retiolum"
|
|
];
|
|
tinc.pubkey = ''
|
|
-----BEGIN RSA PUBLIC KEY-----
|
|
MIIBCgKCAQEA9SItL2mhQpTl95gjSWRstrDajUnI5YbrVCuaDKfw9gRwMyPNiO/y
|
|
Xwv/w4Ri8NCJZLZGkj2vG3X0EfJFBEPTJPTCbF9fP7PqqVs38BD41txLp+NrFxEq
|
|
5fmFk65/eg8ujrNQoOSUGmky/BKqQhWjvxdAWuwjN933wJCcNCxyaUwljHLYEK/I
|
|
oIJX+spnFmPwmhW9hsOj8K06eHixT13+0W48GG/ZNcV3x5vWxcKUvZ4Qtzz2iMNB
|
|
hud5kae7xMUfFAzCeKF/zsjuyt2d/xQg1WgR8MXGNgYhNJFSXz94r/bivNO6H4vP
|
|
Pfjndnh8cD46ADo8woS1nQ19WId+sMbipwIDAQAB
|
|
-----END RSA PUBLIC KEY-----
|
|
'';
|
|
};
|
|
};
|
|
secure = true;
|
|
ssh.privkey.path = <secrets/ssh.id_ed25519>;
|
|
ssh.pubkey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDWlIxkX41V55Yker8n4gErx2xcKpXFNKthhbP3+bTJ7";
|
|
};
|
|
shodan = {
|
|
cores = 2;
|
|
nets = {
|
|
retiolum = {
|
|
ip4.addr = "10.243.0.4";
|
|
ip6.addr = "42:0:0:0:0:0:0:50d4";
|
|
aliases = [
|
|
"shodan.retiolum"
|
|
"shodan.r"
|
|
"cgit.shodan.retiolum"
|
|
];
|
|
tinc.pubkey = ''
|
|
-----BEGIN RSA PUBLIC KEY-----
|
|
MIIBCgKCAQEA9bUSItw8rEu2Cm2+3IGHyRxopre9lqpFjZNG2QTnjXkZ97QlDesT
|
|
YYZgM2lBkYcDN3/LdGaFFKrQQSGiF90oXA2wFqPuIfycx+1+TENGCzF8pExwbTd7
|
|
ROSVnISbghXYDgr3TqkjpPmnM+piFKymMDBGhxWuy1bw1AUfvRzhQwPAvtjB4VvF
|
|
7AVN/Z9dAZ/LLmYfYq7fL8V7PzQNvR+f5DP6+Eubx0xCuyuo63bWuGgp3pqKupx4
|
|
xsixtMQPuqMBvOUo0SBCCPa9a+6I8dSwqAmKWM5BhmNlNCRDi37mH/m96av7SIiZ
|
|
V29hwypVnmLoJEFiDzPMCdiH9wJNpHuHuQIDAQAB
|
|
-----END RSA PUBLIC KEY-----
|
|
'';
|
|
};
|
|
};
|
|
secure = true;
|
|
ssh.privkey.path = <secrets/ssh.id_ed25519>;
|
|
ssh.pubkey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIC9vup68R0I+62FK+8LNtwM90V9P4ukBmU7G7d54wf4C";
|
|
};
|
|
|
|
};
|
|
users = {
|
|
lass = {
|
|
mail = "lass@mors.retiolum";
|
|
pubkey = builtins.readFile ./ssh/mors.rsa;
|
|
pgp.pubkeys.default = builtins.readFile ./pgp/mors.pgp;
|
|
};
|
|
lass-uriel = {
|
|
mail = "lass@uriel.retiolum";
|
|
pubkey = builtins.readFile ./ssh/uriel.rsa;
|
|
};
|
|
lass-helios = {
|
|
mail = "lass@helios.retiolum";
|
|
pubkey = builtins.readFile ./ssh/helios.rsa;
|
|
};
|
|
lass-shodan = {
|
|
mail = "lass@shodan.retiolum";
|
|
pubkey = builtins.readFile ./ssh/shodan.rsa;
|
|
pgp.pubkeys.default = builtins.readFile ./pgp/shodan.pgp;
|
|
};
|
|
fritz = {
|
|
pubkey = "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCz34435NSXgj72YAOL4cIlRq/4yInKEyL9no+gymURoW5x1nkYpP0EK331e7UyQQSOdWOogRo6d7YHcFqNlYWv5xlYcHucIhgJwC4Zda1liVA+v7tSOJz2BjmFvOT3/qlcPS69f3zdLHZooz2C33uHX1FgGRXlxiA8dpqGnSr8o76QLZjuQkuDqr8reOspjO/RHCo2Moq0Xm5q9OgN1WLAZzupqt9A5lx567mRzYsRAr23pUxVN8T/tSCgDlPe4ktEjYX9CXLKfMyh9WuBVi+AuH4GFEWBT+AMpsHeF45w+w956x56mz0F5nYOQNK87gFr+Jr+mh2AF1ot2CxzrfTb fritz@scriptkiddiT540";
|
|
};
|
|
prism-repo-sync = {
|
|
pubkey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINR9oL/OPHjjKjQ+IyRqWpgrXdZrKKAwFKIte8gYml6C";
|
|
mail = "lass@prism.r";
|
|
};
|
|
};
|
|
}
|