diff --git a/machines/photo01/_configuration.nix b/machines/photo01/_configuration.nix index f414ad6..08e2fb4 100644 --- a/machines/photo01/_configuration.nix +++ b/machines/photo01/_configuration.nix @@ -38,13 +38,6 @@ in environment.systemPackages = with pkgs; [ neovim ]; - services.openssh = { - enable = true; - settings = { - PasswordAuthentication = false; - }; - }; - users.users.root.openssh.authorizedKeys.keys = [ "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDMBW7rTtfZL9wtrpCVgariKdpN60/VeAzXkh9w3MwbO julien@enigma" "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKrijwPlb7KQkYPLznMPVzPPT69cLzhEsJzZi9tmxzTh cst1@x270" @@ -73,14 +66,6 @@ in }; # TODO: switch to unixsockets if supported - services.nginx = { - enable = true; - recommendedTlsSettings = true; - recommendedOptimisation = true; - recommendedGzipSettings = true; - recommendedProxySettings = true; - clientMaxBodySize = "500m"; - }; nix = { settings = { diff --git a/machines/photo01/_hardware-configuration.nix b/machines/photo01/_hardware-configuration.nix index e081e13..6fd864e 100644 --- a/machines/photo01/_hardware-configuration.nix +++ b/machines/photo01/_hardware-configuration.nix @@ -4,18 +4,18 @@ imports = [ (modulesPath + "/profiles/qemu-guest.nix") ]; boot = { - loader.systemd-boot.enable = true; - initrd.kernelModules = [ ]; - kernelModules = [ ]; - extraModulePackages = [ ]; - initrd.availableKernelModules = [ - "ata_piix" - "uhci_hcd" - "virtio_pci" - "virtio_scsi" - "sd_mod" - "sr_mod" - ]; + loader.systemd-boot.enable = true; + initrd.kernelModules = [ ]; + kernelModules = [ ]; + extraModulePackages = [ ]; + initrd.availableKernelModules = [ + "ata_piix" + "uhci_hcd" + "virtio_pci" + "virtio_scsi" + "sd_mod" + "sr_mod" + ]; }; diff --git a/machines/photo01/nginx.nix b/machines/photo01/nginx.nix new file mode 100644 index 0000000..a87afd8 --- /dev/null +++ b/machines/photo01/nginx.nix @@ -0,0 +1,13 @@ +{ ... }: + +{ + + services.nginx = { + enable = true; + recommendedTlsSettings = true; + recommendedOptimisation = true; + recommendedGzipSettings = true; + recommendedProxySettings = true; + clientMaxBodySize = "500m"; + }; +} diff --git a/machines/photo01/openssh.nix b/machines/photo01/openssh.nix new file mode 100644 index 0000000..c60bd67 --- /dev/null +++ b/machines/photo01/openssh.nix @@ -0,0 +1,11 @@ +{ ... }: + +{ + services.openssh = { + enable = true; + settings = { + PasswordAuthentication = false; + }; + }; + +}