diff options
| author | Preston Pan <ret2pop@gmail.com> | 2025-02-03 02:59:16 -0800 |
|---|---|---|
| committer | Preston Pan <ret2pop@gmail.com> | 2025-02-03 02:59:16 -0800 |
| commit | d6efefc1d9e6b9fd515c5cb5f2a077e05caeaab7 (patch) | |
| tree | 16228e6842ade232308754c7b55fff3f46b4205f /nix/systems | |
| parent | 9e4f938d03c72bdcd81b020ab5276b969023a7e3 (diff) | |
update nixos configuration to have ssh key for live iso; new journal entry
Diffstat (limited to 'nix/systems')
| -rw-r--r-- | nix/systems/installer/default.nix | 19 |
1 files changed, 16 insertions, 3 deletions
diff --git a/nix/systems/installer/default.nix b/nix/systems/installer/default.nix index cbfed0d..2b832f4 100644 --- a/nix/systems/installer/default.nix +++ b/nix/systems/installer/default.nix @@ -1,4 +1,4 @@ -{ pkgs, config, ... }: +{ pkgs, config, lib, ... }: let commits = import ./commits.nix; in @@ -9,15 +9,28 @@ in enable = true; }; firewall = { - allowedTCPPorts = [ ]; + allowedTCPPorts = [ 22 ]; allowedUDPPorts = [ ]; }; wireless.enable = false; }; + services.openssh = { + enable = true; + ports = [ 22 ]; + settings = { + PasswordAuthentication = true; + AllowUsers = null; + UseDns = true; + PermitRootLogin = lib.mkForce "prohibit-password"; + }; + }; users.extraUsers.root.password = "nixos"; users.extraUsers.nixos.password = "nixos"; users.users = { + root.openssh.authorizedKeys.keys = [ + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICts6+MQiMwpA+DfFQxjIN214Jn0pCw/2BDvOzPhR/H2 preston@continuity-dell" + ]; nixos = { packages = with pkgs; [ git @@ -35,7 +48,7 @@ fi ping -q -c1 google.com &>/dev/null && echo "online! Proceeding with the installation..." || nmtui cd if [ ! -d "$HOME/monorepo/" ]; then - git clone --recurse-submodules https://git.nullring.xyz/monorepo.git + git clone https://git.nullring.xyz/monorepo.git cd monorepo git checkout "${commits.monorepoCommitHash}" fi |