2024-08-24 14:21:48 +00:00
|
|
|
{
|
|
|
|
|
pkgs,
|
|
|
|
|
lib,
|
|
|
|
|
config,
|
|
|
|
|
...
|
2024-08-25 00:41:29 +00:00
|
|
|
}:
|
|
|
|
|
{
|
2024-08-24 14:21:48 +00:00
|
|
|
pub-solar-os.networking.domain = "test.pub.solar";
|
|
|
|
|
|
|
|
|
|
security.acme.defaults.server = "https://ca.${config.pub-solar-os.networking.domain}/acme/acme/directory";
|
|
|
|
|
|
2024-08-25 00:41:29 +00:00
|
|
|
security.pki.certificates = [ (builtins.readFile ./step/certs/root_ca.crt) ];
|
2024-08-24 14:21:48 +00:00
|
|
|
|
2024-08-24 21:49:31 +00:00
|
|
|
services.openssh = {
|
|
|
|
|
enable = true;
|
|
|
|
|
openFirewall = true;
|
|
|
|
|
settings = {
|
|
|
|
|
PermitRootLogin = lib.mkForce "yes";
|
|
|
|
|
PermitEmptyPasswords = lib.mkForce "yes";
|
|
|
|
|
PasswordAuthentication = lib.mkForce true;
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
security.pam.services.sshd.allowNullPassword = true;
|
|
|
|
|
|
2024-08-28 21:54:59 +00:00
|
|
|
services.resolved.extraConfig = lib.mkForce ''
|
|
|
|
|
DNS=192.168.1.254
|
|
|
|
|
Domains=~.
|
|
|
|
|
'';
|
2024-08-24 21:49:31 +00:00
|
|
|
|
2024-08-28 21:54:59 +00:00
|
|
|
environment.systemPackages = [
|
|
|
|
|
pkgs.dig
|
|
|
|
|
];
|
2024-08-24 14:21:48 +00:00
|
|
|
}
|
2024-08-28 21:54:59 +00:00
|
|
|
|
