-
Notifications
You must be signed in to change notification settings - Fork 0
/
all.nix
298 lines (277 loc) · 5.74 KB
/
all.nix
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
{ config, pkgs, ... }:
{
imports =
[
./hardware-configuration.nix
];
boot.loader.grub.enable = true;
boot.loader.grub.version = 2;
boot.loader.grub.device = "/dev/sda";
/*boot.loader.grub.extraEntries = ''
menuentry "Windows 10" {
insmod part_msdos
insmod ntfs
set root='hd0,msdos1'
if [ x$feature_platform_search_hint = xy ]; then
search --no-floppy --fs-uuid --set=root --hint-bios=hd0,msdos1 --hint-efi=hd0,msdos1 --hint-baremetal=ahci0,msdos1 26BA008B45CBCAEA
else
search --no-floppy --fs-uuid --set=root 26BA008B45CBCAEA
fi
chainloader +1
}
'';*/
boot.kernelPackages = pkgs.linuxPackages_latest;
boot.cleanTmpDir = true;
hardware.bluetooth.enable = true;
hardware.bumblebee.enable = true;
hardware.cpu.intel.updateMicrocode = true;
hardware.pulseaudio.enable = true;
hardware.opengl.driSupport32Bit = true;
hardware.pulseaudio.support32Bit = true;
hardware.enableAllFirmware = true;
networking.hostName = "nixos";
networking.hostId = "05bedf19";
networking.networkmanager.enable = true;
networking.firewall.enable = true;
networking.firewall.allowPing = true;
networking.firewall.logRefusedConnections = false;
networking.nameservers = [ "8.8.8.8" "8.8.4.4"];
networking.firewall.allowedTCPPorts = [
22
80
139
445
8766
16261
16262
16263
16264
16265
16266
16267
16268
16269
16270
16271
16272
25565
];
networking.firewall.allowedUDPPorts = [
137
138
8766
16261
25565
];
i18n.consoleFont = "Lat2-Terminus16";
i18n.consoleKeyMap = "pl";
i18n.defaultLocale = "en_US.UTF-8";
fonts.enableFontDir = true;
fonts.enableGhostscriptFonts = true;
fonts.fonts = with pkgs; [
corefonts
terminus_font
ubuntu_font_family
dejavu_fonts
inconsolata
unifont
ubuntu_font_family
noto-fonts
source-code-pro
symbola
];
time.timeZone = "Europe/Warsaw";
nixpkgs.config.packageOverrides = pkgs: rec {
qemu = pkgs.qemu.override { spiceSupport = true; };
};
environment.systemPackages = with pkgs; [
wget
qemu
python27Packages.docker_compose
atom
bundler
bind
ctags
direnv
disnix
elixir
gitFull
gettext
go
jq
nmap
ncat
nixops
nix-prefetch-scripts
nix-repl
nox
nodejs
python
python34
ruby
redis
tig
silver-searcher
wireshark-qt
parallel
pkgconfig
tmux
tree
gnupg
gcc
bash
curl
openssl
sqlite
patch
readline
zlib
libyaml
libxml2
libxslt
libtool
bison
v8
nodejs
which
pkgconfig
libyaml
ncurses
google-chrome
curl
di
file
gcc
gnumake
ghostscript
htop
iftop
inotify-tools
jfsutils
keepass
keychain
lsof
ntfs3g
nettools
pmount
pwgen
sshfsFuse
wget
vim
xdotool
zsh
jre
dropbox
transmission_gtk
vlc
acpi
atom
bundix
bundler
cryptsetup
direnv
erlang
gettext
gimp
gitAndTools.git-crypt
gnome3.eog
gnome3.gnome-system-monitor
hdparm
irssi
libreoffice
mpv
mutt
ncmpcpp
keybase
openconnect
pavucontrol
perlPackages.ImageExifTool
pg_top
pkgconfig
postgresql
powertop
redis
rtorrent
screenfetch
scrot
tilda
unetbootin
unrar
which
wirelesstools
xarchiver
samba
p7zip
unzip
unrar
mpv
scrot
ffmpeg
libreoffice
mutt
irssi
audacious
gimp
imagemagick
rxvt_unicode-with-plugins
exif
ncdu
];
services.ntp.enable = true;
services.openssh.enable = true;
services.udev.packages = [ pkgs.fuse ];
services.printing.enable = true;
services.xserver.enable = true;
services.xserver.layout = "pl";
services.xserver.videoDrivers = [ "intel" ];
services.xserver.synaptics.enable = true;
services.xserver.synaptics.twoFingerScroll = true;
services.xserver.displayManager.gdm.enable = true;
services.xserver.desktopManager.xterm.enable = false;
services.xserver.desktopManager.default = "gnome3";
services.xserver.desktopManager.gnome3.enable = true;
services.postgresql.enable = true;
services.postgresql.package = pkgs.postgresql95;
services.postgresql.authentication = "local all all ident";
services.postgresql.initialScript = ./postgresql.sql;
services.samba = {
enable = true;
shares = {
share = {
path = "/home/share";
"read only" = "yes";
"browseable" = "yes";
"guest ok" = "no";
"valid users" = "andrzej";
};
};
extraConfig = ''
guest account = nobody
map to guest = bad user
'';
};
virtualisation.docker.enable = true;
virtualisation.virtualbox.host.enable = true;
programs.zsh.enable = true;
nixpkgs.config.allowUnfree = true;
/*security.setuidPrograms = [ "pmount" "pumount" ];*/
environment.variables = {
BROWSER = "google-chrome-stable";
};
users = {
defaultUserShell = "/run/current-system/sw/bin/zsh";
extraUsers.andrzej = {
createHome = true;
home = "/home/andrzej";
useDefaultShell = true;
isNormalUser = true;
uid = 1000;
};
extraGroups = {
wheel.members = [ "andrzej" ];
vboxusers.members = [ "andrzej" ];
docker.members = [ "andrzej" ];
};
};
system.stateVersion = "17.03";
}