servers/kuribo/configuration.nix at main · starhaven.dev/infra

starhaven.dev / infra

nixos server configurations

infra / servers / kuribo / configuration.nix

at main 716 B view raw

 1{
 2  imports = [
 3    ../../modules/hetzner-aarch64.nix
 4    ../../modules/auto-upgrade.nix
 5    ../../modules/gc.nix
 6    ../../users/users.nix
 7    ./pds.nix
 8    ./tangled.nix
 9  ];
10
11  networking.hostName = "kuribo";
12
13  nix.extraOptions = ''
14    experimental-features = nix-command flakes
15  '';
16
17  services.openssh = {
18    enable = true;
19    settings = {
20      PasswordAuthentication = false;
21      PermitRootLogin = "no";
22    };
23  };
24  services.fail2ban.enable = true;
25
26  sops.defaultSopsFile = ./secrets/secrets.yaml;
27  sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
28
29  programs.neovim = {
30    enable = true;
31    defaultEditor = true;
32  };
33  programs.git.enable = true;
34
35  system.stateVersion = "25.11";
36}