Update references and folder names

system/modules/gpg.nix

@@ -0,0 +1,9 @@
+{pkgs, ...}: {
+  programs.gnupg.agent = {
+   enable = true;
+   enableSSHSupport = true;
+  };
+  environment.systemPackages = with pkgs; [
+    git-crypt
+  ];
+}

system/modules/ips.nix

@@ -0,0 +1,11 @@
+rec {
+  netInt = "eno1";
+  localSpan = "10.0.0";
+  server = "${localSpan}.2";
+  pc = "${localSpan}.3";
+  vm = "${localSpan}.4";
+  hx = "${localSpan}.70";
+
+  wgInt = "wg0";
+  wgSpan = "10.100.0";
+}

system/modules/legacy.nix

@@ -0,0 +1,14 @@
+{config, inputs, lib, ...}: {
+  # This will add each flake input as a registry to make nix commands consistent with your flake
+  nix.registry = (lib.mapAttrs (_: flake: {inherit flake;})) ((lib.filterAttrs (_: lib.isType "flake")) inputs);
+
+  # This will add your inputs to the system's legacy channels making legacy nix commands consistent
+  nix.nixPath = ["/etc/nix/path"];
+  environment.etc =
+    lib.mapAttrs'
+    (name: value: {
+      name = "nix/path/${name}";
+      value.source = value.flake;
+    })
+    config.nix.registry;
+}

system/modules/networking.nix

@@ -0,0 +1,17 @@
+{
+  # Networking settings
+  networking = {
+    # Choose networking method
+    wireless.enable = false;
+    dhcpcd.enable = true;
+
+    # Set hostnames
+    hosts = let
+      ips = import ../modules/ips.nix;
+    in {
+      "${ips.server}" = ["server"];
+      "${ips.pc}" = ["pc"];
+      "${ips.vm}" = ["vm"];
+    };
+  };
+}

system/modules/security.nix

@@ -0,0 +1,18 @@
+{
+  # Enable AppArmor
+  security = {
+    sudo.enable = false;
+    doas = {
+      enable = true;
+      extraRules = [
+        # Give wheel root access, allow persistant session
+        {
+          groups = ["wheel"];
+          keepEnv = true;
+          persist = true;
+        }
+      ];
+    };
+    apparmor.enable = true;
+  };
+}