Twins
/
server-configuration
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

more stuff

main
LeRoyce Pearson 2024-01-06 14:42:34 -07:00
parent 6a3d080566
commit 254f2db23d
1 changed files with 12 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
configuration.nix
View File

@ -242,6 +242,9 @@
acl_policy_path = pkgs.writeText "acl_policy.hujson" '' acl_policy_path = pkgs.writeText "acl_policy.hujson" ''
{ {
"groups": { "groups": {
"group:servers": [
"samsehu",
],
"group:admin": [ "group:admin": [
"geemili", "geemili",
"desttinghim", "desttinghim",
@ -257,9 +260,9 @@
"ssh": [ "ssh": [
{ {
"action": "accept", "action": "accept",
"src": ["autogroup:member"], "src": ["group:admin"],
"dst": ["autogroup:self"], "dst": ["group:servers"],
"users": ["autogroup:nonroot"], "users": ["group:admin", "geemili", "desttinghim"],
}, },
], ],
} }
@ -308,7 +311,12 @@
]; ];
# Use systemd-resolved and set networkmanager to allow mdns # Use systemd-resolved and set networkmanager to allow mdns
services.resolved.enable = true; services.resolved = {
enable = true;
extraConfig = ''
DNSStubListener=false
'';
};
networking.networkmanager.connectionConfig."connection.mdns" = 2; # 2 == yes networking.networkmanager.connectionConfig."connection.mdns" = 2; # 2 == yes
# Copy the NixOS configuration file and link it from the resulting system # Copy the NixOS configuration file and link it from the resulting system