initial commit, after deletion :)

2026-01-07 06:25:07 +02:00 · 2026-01-07 06:25:07 +02:00 · 9ec37597b3
commit 9ec37597b3
20 changed files with 1006 additions and 0 deletions
--- a/config/configuration.nix
+++ b/config/configuration.nix
@ -0,0 +1,30 @@
+{config, ...}: {
+  boot.loader.systemd-boot.enable = true;
+  boot.loader.efi.canTouchEfiVariables = true;
+
+  nix.settings.experimental-features = ["nix-command" "flakes"];
+  networking.hostName = "adonis";
+  networking.firewall.logRefusedPackets = true;
+
+  customOps.owner = "toufy";
+  customOps.domain = "toufy.me";
+
+  sops.secrets."ssh/authorizedKeys/owner" = {};
+
+  users.users.root.openssh.authorizedKeys.keyFiles = [
+    config.sops.secrets."ssh/authorizedKeys/owner".path
+  ];
+
+  services.openssh = {
+    enable = true;
+    ports = [22];
+    settings = {
+      PasswordAuthentication = false;
+      KbdInteractiveAuthentication = false;
+      AllowUsers = null;
+      UseDns = true;
+      X11Forwarding = false;
+      PermitRootLogin = "prohibit-password";
+    };
+  };
+}