freifunk/mail2-nixos-config
0
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

updates for 24.11

Browse source
This commit is contained in:
Daniel Frank 2024-12-30 13:45:54 +01:00
parent 4d65b6db08
commit c0f31a7440
Signed by: tokudan
GPG key ID: 063CCCAD04182D32
3 changed files with 7 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
acme.nix
View file

@ -2,7 +2,7 @@
{ {
security.acme.acceptTerms = true; security.acme.acceptTerms = true;
security.acme.email = "kontakt@hamburg.freifunk.net"; security.acme.defaults.email = "kontakt@hamburg.freifunk.net";
users.groups.certs = { users.groups.certs = {
members = [ "dovecot2" "nginx" "postfix" ]; members = [ "dovecot2" "nginx" "postfix" ];
}; };

8
configuration.nix
View file

@ -56,7 +56,7 @@
system.autoUpgrade.enable = true; system.autoUpgrade.enable = true;
system.autoUpgrade.allowReboot = true; system.autoUpgrade.allowReboot = true;
nix = { nix = {
autoOptimiseStore = true; settings.auto-optimise-store = true;
gc.automatic = true; gc.automatic = true;
gc.options = "--delete-older-than 14d"; gc.options = "--delete-older-than 14d";
}; };
@ -94,8 +94,10 @@
services.openssh = { services.openssh = {
enable = true; enable = true;
# Only allow login through pubkey # Only allow login through pubkey
passwordAuthentication = false; settings = {
challengeResponseAuthentication = false; PasswordAuthentication = false;
};
kbdInteractiveAuthentication = false;
extraConfig = "PubkeyAcceptedAlgorithms +ssh-rsa"; extraConfig = "PubkeyAcceptedAlgorithms +ssh-rsa";
}; };
# Support mosh connections # Support mosh connections

2
hardware-configuration.nix
View file

@ -33,5 +33,5 @@
[ { device = "/dev/disk/by-partuuid/f1251a25-02"; randomEncryption.enable = true; } [ { device = "/dev/disk/by-partuuid/f1251a25-02"; randomEncryption.enable = true; }
]; ];
nix.maxJobs = lib.mkDefault 1; nix.settings.max-jobs = lib.mkDefault 1;
} }