security: remove hexchen

This commit is contained in:
schweby 2021-03-12 23:53:51 +01:00
parent db51a3adde
commit bab826b1c7
3 changed files with 38 additions and 38 deletions

View file

@ -1,9 +1,9 @@
{ config, pkgs, lib, ... }: { config, pkgs, lib, ... }:
{ {
imports = [ # imports = [
./hexchen.nix # ./hexchen.nix
]; # ];
home-manager.useGlobalPkgs = true; home-manager.useGlobalPkgs = true;
@ -13,11 +13,11 @@
}; };
# all the actual config is imported from hexchen's nixfiles # all the actual config is imported from hexchen's nixfiles
hexchen = { # hexchen = {
uid = lib.mkForce 1000; # uid = lib.mkForce 1000;
isNormalUser = true; # isNormalUser = true;
extraGroups = [ "wheel" ]; # extraGroups = [ "wheel" ];
}; # };
stuebinm = { stuebinm = {
uid = 1005; uid = 1005;

View file

@ -95,27 +95,27 @@
boot.kernelPackages = pkgs.linuxPackages; boot.kernelPackages = pkgs.linuxPackages;
services.restic.backups.tardis = { # services.restic.backups.tardis = {
passwordFile = "/etc/restic/system"; # passwordFile = "/etc/restic/system";
s3CredentialsFile = "/etc/restic/system.s3creds"; # s3CredentialsFile = "/etc/restic/system.s3creds";
paths = [ # paths = [
"/data" # "/data"
"/home" # "/home"
"/run/florinori" # "/run/florinori"
"/var/lib/containers/codimd/var/lib/codimd" # "/var/lib/containers/codimd/var/lib/codimd"
"/var/lib/containers/codimd/var/backup/postgresql" # "/var/lib/containers/codimd/var/backup/postgresql"
"/var/lib/containers/lantifa/var/lib/mediawiki" # "/var/lib/containers/lantifa/var/lib/mediawiki"
"/var/lib/containers/lantifa/var/backup/mysql" # "/var/lib/containers/lantifa/var/backup/mysql"
"/var/lib/murmur" # "/var/lib/murmur"
"/var/lib/syncthing" # "/var/lib/syncthing"
]; # ];
pruneOpts = [ # pruneOpts = [
"--keep-daily 7" # "--keep-daily 7"
"--keep-weekly 5" # "--keep-weekly 5"
"--keep-monthly 12" # "--keep-monthly 12"
]; # ];
repository = "b2:tardis-hainich:system"; # repository = "b2:tardis-hainich:system";
}; # };
# This value determines the NixOS release from which the default # This value determines the NixOS release from which the default

View file

@ -24,21 +24,21 @@
id = "72B3T74-NOMJV3X-EVJXTJF-5GGAEZB-ZDKBHXQ-VQNRYEU-YCPA2JP-L6NGAAG"; id = "72B3T74-NOMJV3X-EVJXTJF-5GGAEZB-ZDKBHXQ-VQNRYEU-YCPA2JP-L6NGAAG";
}; };
# zauberberg # zauberberg
conway = { # conway = {
addresses = []; # empty = dynamic # addresses = []; # empty = dynamic
id = "HV7IU2N-Q4W3A7F-BSASR43-OB575SM-47FY2UW-7N5GMFM-PX3LWRN-HXBXMQF"; # id = "HV7IU2N-Q4W3A7F-BSASR43-OB575SM-47FY2UW-7N5GMFM-PX3LWRN-HXBXMQF";
}; # };
# hexchen # hexchen
storah = { # storah = {
addresses = [ "tcp://46.4.62.95:22000" "quic://46.4.62.95:22000" ]; # addresses = [ "tcp://46.4.62.95:22000" "quic://46.4.62.95:22000" ];
id = "SGHQ2JA-7FJ6CKM-N3I54R4-UOJC5KO-7W22O62-YLTF26F-S7DLZG4-ZLP7HAM"; # id = "SGHQ2JA-7FJ6CKM-N3I54R4-UOJC5KO-7W22O62-YLTF26F-S7DLZG4-ZLP7HAM";
}; # };
}; };
folders = { folders = {
"/var/lib/syncthing/hacc" = { "/var/lib/syncthing/hacc" = {
id = "qt2ly-xvvvs"; id = "qt2ly-xvvvs";
devices = [ "txsbcct" "octycs" "stuebinm-desktop" "conway" "raphael-laptop" "storah" ]; devices = [ "txsbcct" "octycs" "stuebinm-desktop" "raphael-laptop" ];
type = "receiveonly"; type = "receiveonly";
versioning = { versioning = {
type = "simple"; type = "simple";