networking.extraHosts = builtins.concatStringsSep "\n"
(lib.mapAttrsToList (n: v: "${v.config.hostEnv.ips.main.ip4} ${n}") nodes);
- users.extraUsers.root.openssh.authorizedKeys.keyFiles = [ "${config.myEnv.privateFiles}/id_ed25519.pub" ];
+ users.extraUsers.root.openssh.authorizedKeys.keys = [ config.myEnv.sshd.rootKeys.nix_repository ];
+ secrets.deleteSecretsVars = true;
+ secrets.gpgKeys = [
+ ../../nixops/public_keys/Immae.pub
+ ];
+
services.openssh.enable = true;
services.duplyBackup.profiles.system = {
];
services.journald.extraConfig = ''
- MaxLevelStore=warning
+ #Should be "warning" but disabled for now, it prevents anything from being stored
+ MaxLevelStore=info
MaxRetentionSec=1year
'';
projects / perso / Immae / Config / Nix.git / blobdiff