Stefan Junker
33e0c3f4c6
chore: nix fmt refactor: split out more home-manager programs feat: migrate shell as flake devShell feat: initial flake structure with colmena feat: migrate elias-e525 to colmena feat: migrate steveej-t14 with colmena feat: configure chromium extensions chore: remove all overlays and package overrides chore: delete some of _archive feat: migrate vmd102066 feat: migrate sj-vps-htz0
46 lines
1.1 KiB
Nix
46 lines
1.1 KiB
Nix
{
|
|
pkgs,
|
|
lib,
|
|
config,
|
|
...
|
|
}: let
|
|
in {
|
|
# TASK: new device
|
|
networking.hostName = "elias-e525"; # Define your hostname.
|
|
|
|
networking.firewall.enable = true;
|
|
networking.firewall.allowedTCPPorts = [
|
|
# iperf3
|
|
5201
|
|
];
|
|
|
|
networking.firewall.logRefusedConnections = false;
|
|
networking.usePredictableInterfaceNames = false;
|
|
|
|
services.fprintd.enable = true;
|
|
security.pam.services = {
|
|
login.fprintAuth = true;
|
|
sudo.fprintAuth = true;
|
|
};
|
|
|
|
services = {
|
|
xserver = {
|
|
layout = lib.mkForce "de";
|
|
xkbVariant = lib.mkForce "";
|
|
xkbOptions = lib.mkForce "";
|
|
displayManager.autoLogin.enable = lib.mkForce false;
|
|
displayManager.gdm.enable = lib.mkForce true;
|
|
displayManager.lightdm.enable = lib.mkForce false;
|
|
desktopManager.gnome.enable = true;
|
|
};
|
|
|
|
# dbus.packages = [ pkgs.gnome3.dconf ];
|
|
# udev.packages = [ pkgs.gnome3.gnome-settings-daemon ];
|
|
};
|
|
|
|
security.pki.certificateFiles = ["${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt"];
|
|
|
|
services.xserver.videoDrivers = ["modesetting"];
|
|
|
|
boot.kernelPackages = lib.mkForce pkgs.linuxPackages_latest;
|
|
}
|