nixos-config
/
nixos-template-base
4
0
Fork 0
Code Issues 7 Pull Requests Releases Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
flakes
nixos-unstable
nixos-21.05-preparation
nixos-19.09
hydra
upgrade-16.09
extraction-donnees-privees
2016-06-28-radx
2016-06-30-radx
2016-07-06-phenom
2016-07-09-monstre
2016-07-09-phenom
2016-07-09-radx
2016-07-10-radx
2016-07-11-monstre
2016-07-11-radx
2016-07-12-radx
2016-07-13-phenom
2016-07-13-radx
2016-07-15-latitude
2016-07-18-radx
2016-07-20-radx
2016-07-21-latitude
2016-07-21-ocean
2016-07-21-radx
2016-07-22-ocean
2016-07-22-radx
2016-07-23-ocean
2016-07-25-monstre
2016-07-25-ocean
2016-07-25-radx
2016-07-26-radx
2016-07-27-radx
2016-07-29-ocean
2016-07-29-radx
2016-07-30-latitude
2016-07-30-phenom
2016-08-01-ocean
2016-08-01-phenom
2016-08-01-radx
2016-08-02-latitude
2016-08-02-phenom
2016-08-04-ocean
2016-08-04-radx
2016-08-05-latitude
2016-08-06-monstre
2016-08-07-latitude
2016-08-07-monstre
2016-08-07-phenom
2016-08-08-neo-nomade
2016-08-09-ocean
2016-08-09-radx
2016-08-10-latitude
2016-08-10-phenom
2016-08-10-rollo
2016-08-11-monstre
2016-08-11-rollo
2016-08-12-pedro
2016-08-12-radx
2016-08-14-monstre
2016-08-14-ocean
2016-08-14-pedro
2016-08-14-radx
2016-08-15-monstre
2016-08-15-ocean
2016-08-15-pedro
2016-08-16-monstre
2016-08-19-ocean
2016-08-19-radx
2016-08-20-phenom
2016-08-22-monstre
2016-08-22-radx
2016-08-23-ocean
2016-08-23-radx
2016-08-26-ocean
2016-08-27-radx
2016-08-28-ocean
2016-08-28-radx
2016-08-30-monstre
2016-09-01-rollo
2016-09-04-rollo
2016-09-11-ocean
2016-09-15-ocean
2016-09-15-radx
2016-09-19-ocean
2016-09-24-pedro
2016-09-27-ocean
2016-09-27-rollo
2016-10-03-ocean
2016-10-04-ocean
2016-10-05-latitude
2016-10-06-monstre
2016-10-06-ocean
2016-10-06-pedro
2016-10-06-radx
2016-10-06-rollo
2016-10-13-ocean
2016-10-13-pedro
2016-10-13-radx
2016-10-13-rollo
2016-10-17-
2016-10-17-monstre
2016-10-17-radx
2016-10-25-phenom
2016-10-29-neo-nomade
2016-10-29-pedro
2016-11-01-monstre
2016-11-01-radx
2016-11-02-rollo
2016-11-06-ocean
2016-11-11-pedro
2016-11-11-rollo
2016-11-15-pedro
2016-11-27-monstre
2016-11-27-ocean
2016-11-27-pedro
2016-11-27-rollo
2016-11-28-latitude
2016-11-28-monstre
2016-11-28-ocean
2016-11-28-phenom
2016-11-28-radx
2016-11-28-rollo
2016-11-29-neo-nomade
2016-11-29-pedro
2016-12-01-ocean
2016-12-01-radx
2016-12-09-phenom
2016-12-11-radx
2016-12-16-radx
2016-12-19-monstre
2016-12-19-ocean
2016-12-19-rollo
2017-01-01-radx
2017-01-07-ocean
2017-01-20-radx
2017-01-21-latitude
2017-01-21-phenom
2017-01-22-rollo
2017-01-26-latitude
2017-01-26-monstre
2017-01-26-phenom
2017-01-27-ocean
2017-01-27-rollo
2017-01-29-phenom
2017-01-29-radx
2017-01-30-nixos
2017-02-11-radx
2017-02-25-phenom
2017-02-25-radx
2017-02-27-rollo
2017-03-01-phenom
2017-03-01-radx
2017-03-02-monstre
2017-03-02-nixos
2017-03-02-ocean
2017-03-02-radx
2017-03-05-hydra
2017-03-15-monstre
2017-03-15-radx
2017-03-18-hydra
2017-03-19-radx
2017-03-20-radx
2017-03-25-phenom
2017-03-25-radx
2017-03-26-ocean
2017-03-27-monstre
2017-03-27-neo-nomade
2017-03-29-ocean
2017-03-29-rollo
2017-04-10-hydra
2017-04-16-rollo
2017-04-22-radx
2017-04-26-radx
2017-04-27-phenom
2017-05-10-hydra
2017-05-10-radx
2017-05-11-radx
2017-05-19-hydra
2017-05-19-monstre
2017-05-21-ocean
2017-05-28-ocean
2017-05-28-radx
2017-05-31-hydra
2017-05-31-phenom
2017-06-01-monstre
2017-06-03-latitude
2017-06-05-hydra
2017-06-17-hydra
2017-06-17-ocean
2017-06-17-radx
2017-06-18-monstre
2017-06-22-hydra
2017-06-22-ocean
2017-07-02-hydra
2017-07-02-radx
2017-07-05-phenom
2017-07-15-hydra
2017-07-15-monstre
2017-07-15-radx
2017-07-15-rollo
2017-08-13-latitude
2017-08-17-ocean
2017-08-17-rollo
2017-08-19-radx
2017-08-28-hydra
2017-09-04-rollo
2017-09-09-phenom
2017-10-08-hydra
2017-10-21-radx
2017-10-29-rollo
2017-11-05-monstre
2017-11-05-radx
2017-11-11-ocean
2017-11-11-phenom
2017-11-12-latitude
2017-11-20-radx
2017-11-25-radx
2017-12-23-ocean
2017-12-30-hydra
2018-01-05-hydra
2018-01-05-radx
2018-02-15-hydra
2018-02-15-radx
2018-02-24-monstre
2018-02-24-ocean
2018-02-24-rollo
2018-03-24-monstre
2018-04-01-ocean
2018-08-27-ocean
2018-10-05-hydra
2018-10-22-hydra
2018-11-02-hydra
2018-12-22-hydra
2019-05-09-latitude
2019-05-10-monstre
2019-05-10-rollo
2019-05-18-radx
2019-05-25-hydra
2019-05-26-hydra
2019-05-26-ocean
2019-06-06-hydra
2019-06-15-hydra
2019-06-16-ocean
2019-06-24-radx
2019-07-13-ocean
2019-08-25-hydra
2019-09-24-rollo
2019-10-15-hydra
2019-10-31-hydra
2019-11-24-phenom
2019-11-24-rollo
2019-12-01-hydra
2020-02-26-radx
2020-03-15-hydra
2021-05-18-latitude
2022-08-13-impala
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'c0493bb038'
${ noResults }
nixos-template-base/configuration/environment.nix

62 lines
2.6 KiB
Nix
Raw Normal View History Unescape Escape

application du template
9 years ago
{ config, lib, pkgs, ... }:
let
inherit (lib) mkIf mkMerge mkThenElse;
annuaire: ajout variables dans template & application
8 years ago
annuaire = config.r6d.machines;
currentMachine = annuaire."${config.networking.hostName}";
regroupement des options éparses en configurationOptions et renommage
8 years ago
flags = currentMachine.configurationFlags;
application du template
9 years ago
in
initial commit
9 years ago
{
ajout du numéro de version de NixOS et du nombre de jobs //
9 years ago
# Nombre de process d'installation en parrallèle effectués par Nix
nix.buildCores = 0;
# The NixOS release to be compatible with for stateful data such as databases.
MaJ nixos version
8 years ago
system.stateVersion = "18.03";
ajout du numéro de version de NixOS et du nombre de jobs //
9 years ago
copie de configuration.nix par nix dans l'environement courant
9 years ago
# copies the NixOS configuration file (usually /etc/nixos/configuration.nix) and links it from the resulting system (getting to /run/current-system/configuration.nix)
system.copySystemConfiguration = true;
autorisation des paquets non libres
9 years ago
# On autorise les paquets non-libres
nixpkgs.config.allowUnfree = true;
hydra build: correction du type d'user
9 years ago
# NixOS Hardening
désactivation grsecurity
9 years ago
#security.grsecurity.enable = true;
hydra build: correction du type d'user
9 years ago
application du template
9 years ago
# Paquets
initial commit
9 years ago
environment = {
shellAliases = {
byobu = "byobu-tmux";
alias gpg -> gpg2
9 years ago
gpg = "gpg2";
parce-que je m'ennuie à l'aéroport :)
9 years ago
jacques-a-dit = "sudo";
initial commit
9 years ago
tree = "tree -C";
tree1 = "tree -d -L 1";
tree2 = "tree -d -L 2";
tree3 = "tree -d -L 3";
commande pour avoir les statistiques d'affectation des lignes de texte d'un dépôt git
9 years ago
# https://gist.github.com/amitchhajer/4461043 : Count number of code lines in git repository per user
#git-loc = "git ls-files | while read f; do git blame --line-porcelain "${f}" | grep '^author '; done | sort -f | uniq -ic | sort -n";
initial commit
9 years ago
grep = "grep --color=auto";
vi = "vim";
script + variable d'environment pour une session byobu d'adminsys
8 years ago
byobu-adminsys = "/etc/nixos/base/byobu-adminsys";
initial commit
9 years ago
};
etc.gitconfig.text = builtins.readFile ./gitconfig;
};
programs.bash = {
enableCompletion = true;
promptInit = builtins.readFile ./bash-prompt.sh;
interactiveShellInit = builtins.readFile ./bash-interactive-init.sh;
};
renforcement de la sécurité pour les clients SSH
9 years ago
# https://wiki.mozilla.org/Security/Guidelines/OpenSSH#Modern
programs.ssh.extraConfig = ''
# Ensure KnownHosts are unreadable if leaked - it is otherwise easier to know which hosts your keys have access to.
HashKnownHosts yes
# Host keys the client accepts - order here is honored by OpenSSH
HostKeyAlgorithms ssh-ed25519-cert-v01@openssh.com,ssh-rsa-cert-v01@openssh.com,ssh-ed25519,ssh-rsa,ecdsa-sha2-nistp521-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp521,ecdsa-sha2-nistp384,ecdsa-sha2-nistp256
KexAlgorithms curve25519-sha256@libssh.org,ecdh-sha2-nistp521,ecdh-sha2-nistp256,ecdh-sha2-nistp384,diffie-hellman-group-exchange-sha256
MACs hmac-sha2-512-etm@openssh.com,hmac-sha2-256-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-512,hmac-sha2-256,umac-128@openssh.com
Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes128-gcm@openssh.com,aes256-ctr,aes192-ctr,aes128-ctr
'';
initial commit
9 years ago
}