rnhmjoj/maxwell
2
1
Fork 0
Code Issues Pull Requests Releases Wiki Activity

update to NixOS 23.05

Browse Source
This commit is contained in:
Michele Guerini Rocco 2023-07-10 23:48:50 +02:00
parent 2c6a573578
commit 5bac3f4410
Signed by: rnhmjoj
GPG Key ID: BFBAF4C975F76450
3 changed files with 11 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
configuration.nix
View File

@ -22,7 +22,7 @@
boot.kernelPackages = pkgs.linuxPackages_latest; boot.kernelPackages = pkgs.linuxPackages_latest;
boot.tmpOnTmpfs = true; boot.tmp.useTmpfs = true;
boot.kernel.sysctl = { boot.kernel.sysctl = {
# avoid OOM hangs # avoid OOM hangs
"vm.admin_reserve_kbytes" = 262144; "vm.admin_reserve_kbytes" = 262144;
@ -32,6 +32,7 @@
i18n.defaultLocale = "en_US.UTF-8"; i18n.defaultLocale = "en_US.UTF-8";
systemd.enableEmergencyMode = false; systemd.enableEmergencyMode = false;
systemd.oomd.enable = false;
networking = { networking = {
hostName = "maxwell"; hostName = "maxwell";
@ -175,9 +176,9 @@
services.openssh = { services.openssh = {
enable = true; enable = true;
permitRootLogin = "no"; settings.PermitRootLogin = "no";
passwordAuthentication = false; settings.PasswordAuthentication = false;
kbdInteractiveAuthentication = false; settings.KbdInteractiveAuthentication = false;
}; };
# Traceroute easter egg # Traceroute easter egg
@ -239,12 +240,13 @@
### Git server ### Git server
services.gitea = with config.var; { services.gitea = with config.var; {
enable = true; enable = true;
domain = hostname;
appName = "Maxwell git server"; appName = "Maxwell git server";
rootUrl = "https://${hostname}/git/";
user = "git"; user = "git";
database.user = "git"; database.user = "git";
settings = { settings = {
server.ROOT_URL = "https://${hostname}/git/";
server.domain = hostname;
session.COOKIE_SECURE = true; session.COOKIE_SECURE = true;
log.LEVEL = "Error"; log.LEVEL = "Error";
service.DISABLE_REGISTRATION = false; service.DISABLE_REGISTRATION = false;

6
email.nix
View File

@ -3,8 +3,8 @@
{ {
imports = [ imports = [
(builtins.fetchTarball { (builtins.fetchTarball {
url = "https://gitlab.com/simple-nixos-mailserver/nixos-mailserver/-/archive/nixos-22.11/nixos-mailserver-nixos-22.11.tar.gz"; url = "https://gitlab.com/simple-nixos-mailserver/nixos-mailserver/-/archive/nixos-23.05/nixos-mailserver-nixos-23.05.tar.gz";
sha256 = "1h1r4x2ffqwyk0ql6kjvcpg1bdiimyzhrsvn49702fsgzpx57fhd"; sha256 = "1ngil2shzkf61qxiqw11awyl81cr7ks2kv3r3k243zz7v2xakm5c";
}) })
]; ];
@ -31,7 +31,7 @@
}; };
# Use Let's Encrypt certificate # Use Let's Encrypt certificate
certificateScheme = 3; certificateScheme = "acme-nginx";
# There is one already (pdns-recursor) # There is one already (pdns-recursor)
localDnsResolver = false; localDnsResolver = false;

1
hardware.nix
View File

@ -12,7 +12,6 @@
]; ];
boot.loader.grub = { boot.loader.grub = {
enable = true; enable = true;
version = 2;
device = "/dev/sda"; device = "/dev/sda";
}; };