From 0932b22d61118b05762d8f2ce42b71ddcb0760fc Mon Sep 17 00:00:00 2001
From: john bargman
Date: Sat, 9 Sep 2023 20:21:59 +0100
Subject: initial server config

---
 commander.nix | 29 +++++++++++++++++++++++++++++
 1 file changed, 29 insertions(+)
 create mode 100755 commander.nix

(limited to 'commander.nix')

diff --git a/commander.nix b/commander.nix
new file mode 100755
index 0000000..294d269
--- /dev/null
+++ b/commander.nix
@@ -0,0 +1,29 @@
+{ config, pkgs, ... }:
+{
+  # Some programs need SUID wrappers, can be configured further or are
+  # started in user sessions.
+  # programs.mtr.enable = true;
+  programs.ssh.enableAskPassword = false;
+  programs.gnupg.agent =
+    {
+      pinentryFlavor = "tty";
+      enable = true;
+      enableSSHSupport = true;
+    };
+  security.sudo.wheelNeedsPassword = false;
+  # Define a user account. Don't forget to set a password with ‘passwd’.
+  users.users.commander = {
+    isNormalUser = true;
+    uid = 1009;
+    name = "commander";
+    description = "system administration";
+    createHome = true;
+    home = "/home/commander";
+    hashedPassword = "$6$irFKKFRDPP$H5EaeHornoVvWcKtUBj.29tPvw.SspaSi/vOPGc3GG2bW//M.ld3E7E3XCevJ6vn175A/raHvNIotXayvMqzz0";
+    openssh.authorizedKeys.keys =
+      [
+        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILhzz/CAb74rLQkDF2weTCb0DICw1oyXNv6XmdLfEsT5 darthpjb@gmail.com"
+      ];
+    extraGroups = [ "wheel" "dialout" "disk" "networkManager" ]; # Enable ‘sudo’ for the user.
+  };
+}
-- 
cgit v1.2.3