1 { pkgs, lib, config, name, ... }:
4 services.duplyBackup.profiles.system = {
6 excludeFile = lib.mkAfter ''
11 + /var/lib/private/systemd
15 nixpkgs.overlays = builtins.attrValues (import ../../overlays) ++ [
17 postgresql = self.postgresql_pam;
18 mariadb = self.mariadb_pam;
19 }) # don’t put them as generic overlay because of home-manager
22 services.journald.extraConfig = ''
23 MaxLevelStore="warning"
24 MaxRetentionSec="1year"
28 builtins.listToAttrs (map (x: lib.attrsets.nameValuePair x.name ({
30 home = "/home/${x.name}";
33 } // x)) (config.hostEnv.users pkgs))
36 nagios-cli = pkgs.writeScriptBin "nagios-cli" ''
37 #!${pkgs.stdenv.shell}
38 sudo -u naemon ${pkgs.nagios-cli}/bin/nagios-cli -c ${./monitoring/nagios-cli.cfg}
53 # pkgs.mitmproxy # failing
67 users.mutableUsers = false;
69 environment.etc.cnagios.source = "${pkgs.cnagios}/share/doc/cnagios";
70 environment.systemPackages = [
74 (lib.optional (builtins.length (config.hostEnv.users pkgs) > 0) pkgs.home-manager);
76 systemd.targets.maintenance = {
77 description = "Maintenance target with only sshd";
78 after = [ "network-online.target" "sshd.service" ];
79 requires = [ "network-online.target" "sshd.service" ];
80 unitConfig.AllowIsolate = "yes";