Move and rename some stuff whatever
This commit is contained in:
Jimbo
parent
a0cc623c4b
commit
7c5ff0253e
38 changed files with 53 additions and 127 deletions
|
|
@ -2,9 +2,10 @@
|
|||
{
|
||||
imports = [
|
||||
./documentation
|
||||
./fonts
|
||||
./font
|
||||
./minimal
|
||||
./nix
|
||||
./security
|
||||
./timezone
|
||||
];
|
||||
}
|
||||
|
|
|
|||
4
modules/system/settings/font/default.nix
Normal file
4
modules/system/settings/font/default.nix
Normal file
|
|
@ -0,0 +1,4 @@
|
|||
{ pkgs, ... }:
|
||||
{
|
||||
console.font = "${pkgs.terminus_font}/share/consolefonts/ter-u22n.psf.gz";
|
||||
}
|
||||
|
|
@ -1,7 +0,0 @@
|
|||
{ pkgs, ... }:
|
||||
{
|
||||
console = {
|
||||
font = "${pkgs.terminus_font}/share/consolefonts/ter-u22n.psf.gz";
|
||||
packages = with pkgs; [ terminus_font ];
|
||||
};
|
||||
}
|
||||
|
|
@ -2,6 +2,7 @@
|
|||
{
|
||||
imports = [
|
||||
./autoupgrade
|
||||
./gc
|
||||
];
|
||||
|
||||
nix.settings = {
|
||||
|
|
|
|||
8
modules/system/settings/nix/gc/default.nix
Normal file
8
modules/system/settings/nix/gc/default.nix
Normal file
|
|
@ -0,0 +1,8 @@
|
|||
{ ... }:
|
||||
{
|
||||
nix.gc = {
|
||||
automatic = true;
|
||||
dates = "weekly";
|
||||
options = "--delete-older-than 1w";
|
||||
};
|
||||
}
|
||||
4
modules/system/settings/security/apparmor/default.nix
Normal file
4
modules/system/settings/security/apparmor/default.nix
Normal file
|
|
@ -0,0 +1,4 @@
|
|||
{ ... }:
|
||||
{
|
||||
security.apparmor.enable = true;
|
||||
}
|
||||
9
modules/system/settings/security/default.nix
Normal file
9
modules/system/settings/security/default.nix
Normal file
|
|
@ -0,0 +1,9 @@
|
|||
{ ... }:
|
||||
{
|
||||
imports = [
|
||||
./apparmor
|
||||
./polkit
|
||||
./privilege
|
||||
./rtprio
|
||||
];
|
||||
}
|
||||
7
modules/system/settings/security/polkit/default.nix
Normal file
7
modules/system/settings/security/polkit/default.nix
Normal file
|
|
@ -0,0 +1,7 @@
|
|||
{ config, ... }:
|
||||
{
|
||||
security = {
|
||||
polkit.enable = config.system.desktop.enable;
|
||||
rtkit.enable = config.system.desktop.enable;
|
||||
};
|
||||
}
|
||||
16
modules/system/settings/security/privilege/default.nix
Normal file
16
modules/system/settings/security/privilege/default.nix
Normal file
|
|
@ -0,0 +1,16 @@
|
|||
{ ... }:
|
||||
{
|
||||
security = {
|
||||
sudo.enable = false;
|
||||
doas = {
|
||||
enable = true;
|
||||
extraRules = [
|
||||
{ # Give wheel root access
|
||||
groups = [ "wheel" ];
|
||||
keepEnv = true;
|
||||
persist = true;
|
||||
}
|
||||
];
|
||||
};
|
||||
};
|
||||
}
|
||||
11
modules/system/settings/security/rtprio/default.nix
Normal file
11
modules/system/settings/security/rtprio/default.nix
Normal file
|
|
@ -0,0 +1,11 @@
|
|||
{ ... }:
|
||||
{
|
||||
security.pam.loginLimits = [
|
||||
{
|
||||
domain = "@users";
|
||||
item = "rtprio";
|
||||
type = "-";
|
||||
value = 1;
|
||||
}
|
||||
];
|
||||
}
|
||||
Loading…
Add table
Add a link
Reference in a new issue