os/modules/core/default.nix

{
  config,
  lib,
  ...
}:
let
  cfg = config.pub-solar.core;
  psCfg = config.pub-solar;
in {
  imports = [
    ./boot.nix
    ./hibernation.nix
    ./i18n.nix
    ./networking.nix
    ./packages.nix
  ];

  # Service that makes Out of Memory Killer more effective
  services.earlyoom.enable = true;

  services.logind.lidSwitch = "hibernate";

  services.tor.settings = {
    UseBridges = true;
  };

  # The options below are directly taken from or inspired by
  # https://xeiaso.net/blog/paranoid-nixos-2021-07-18

  # Limit the use of sudo to the group wheel
  security.sudo.execWheelOnly = true;

  # Remove the complete default environment of packages like
  # nano, perl and rsync
  environment.defaultPackages = lib.mkForce [];

  # fileSystems."/".options = [ "noexec" ];
}
Rework of x-os module / core profile * move core settings to x-os * add option to only install a lite core * rename x-os module to core * remove core profile from flake.nix 2022-08-13 20:59:05 +00:00			`{`
Apply treefmt 2023-01-28 20:49:10 +00:00			`config,`
			`lib,`
			`...`
			`}:`
tree-wide: remove top-level "with lib;" 2024-06-13 00:14:25 +00:00			`let`
Apply treefmt 2023-01-28 20:49:10 +00:00			`cfg = config.pub-solar.core;`
feat: convert to flake-parts Thanks @b12f 2023-11-10 18:48:06 +00:00			`psCfg = config.pub-solar;`
Apply treefmt 2023-01-28 20:49:10 +00:00			`in {`
Rework of x-os module / core profile * move core settings to x-os * add option to only install a lite core * rename x-os module to core * remove core profile from flake.nix 2022-08-13 20:59:05 +00:00			`imports = [`
			`./boot.nix`
Fix build 2022-08-14 18:09:38 +00:00			`./hibernation.nix`
Rework of x-os module / core profile * move core settings to x-os * add option to only install a lite core * rename x-os module to core * remove core profile from flake.nix 2022-08-13 20:59:05 +00:00			`./i18n.nix`
			`./networking.nix`
			`./packages.nix`
			`];`

feat: convert to flake-parts Thanks @b12f 2023-11-10 18:48:06 +00:00			`# Service that makes Out of Memory Killer more effective`
			`services.earlyoom.enable = true;`
Fix core module (#116) Co-authored-by: Hendrik Sokolowski <hensoko@gssws.de> Reviewed-on: https://git.b12f.io/pub-solar/os/pulls/116 Reviewed-by: teutat3s <teutates@mailbox.org> 2022-08-14 13:54:19 +00:00
feat: convert to flake-parts Thanks @b12f 2023-11-10 18:48:06 +00:00			`services.logind.lidSwitch = "hibernate";`
feature/terminal-life-lite-mode (#117) Reviewed-on: https://git.b12f.io/pub-solar/os/pulls/117 Reviewed-by: Benjamin Bädorf <hello@benjaminbaedorf.eu> 2022-08-14 15:17:35 +00:00
feat: convert to flake-parts Thanks @b12f 2023-11-10 18:48:06 +00:00			`services.tor.settings = {`
			`UseBridges = true;`
Fix core module (#116) Co-authored-by: Hendrik Sokolowski <hensoko@gssws.de> Reviewed-on: https://git.b12f.io/pub-solar/os/pulls/116 Reviewed-by: teutat3s <teutates@mailbox.org> 2022-08-14 13:54:19 +00:00			`};`
feat: convert to flake-parts Thanks @b12f 2023-11-10 18:48:06 +00:00
			`# The options below are directly taken from or inspired by`
			`# https://xeiaso.net/blog/paranoid-nixos-2021-07-18`

			`# Limit the use of sudo to the group wheel`
			`security.sudo.execWheelOnly = true;`

			`# Remove the complete default environment of packages like`
			`# nano, perl and rsync`
			`environment.defaultPackages = lib.mkForce [];`

			`# fileSystems."/".options = [ "noexec" ];`
Rework of x-os module / core profile * move core settings to x-os * add option to only install a lite core * rename x-os module to core * remove core profile from flake.nix 2022-08-13 20:59:05 +00:00			`}`