My NixOs config
This is my personal NixOS configuration, being lapdated since 2019, by using flakes
and home-manager
. You will also find a bit of security and privacy configurations in my attempt of improving Linux’s desktop. You are welcome to take inspiration :)
flake.nix -- entry point, merges everything bellow
|
|--> profiles/* -- high-level configuration, the "user profile"
|--> hardwares/* -- configs specific by hardware
|
|--> modules/* -- modules to compose the "profiles/*" and "hardwares/*",
| -- defines the custom "myNix" options
|
|--> overlays/* -- define new or override packages
|--> lib/* -- custom functions and abstractions for everything above (eg: bwrapIt)
If you want a full disk reset:
# download script from _scripts/setup_disk.sh
curl -L setup-disk.shiryel.com > setup.sh
chmod +x setup.sh
# run it
./_scripts/setup_disk.sh /dev/YOUR_DEVICE_HERE
If you already have a system formated, add your hardware_config.nix
to system/hardware/hardware-configuration.nix
and run:
sudo nixos-rebuild switch --flake .#generic
You can get started with flakes here: https://nixos.wiki/wiki/Flakes
Also, you may want to take a look on the flakes that I took inspiration:
xrandr
- check if primary on a output with 16:9 aspect ratiorecord
- check if screen recording is working on every workspacedig +short txt qnamemintest.internet.nl
- check if QNAME minimisation is enabledsudo cat /var/log/dnscrypt-proxy/dnscrypt-proxy.log
- check if dnscrypt is choosing a good DNS server with low latencyssh -T git@github.com
- check if ssh, gpg and pinentry are workinghttps://www.cloudflare.com/ssl/encrypted-sni/
- check DNSSEC (SNI will be unsuported)systemctl --user --type=target
- check available user targetssystemctl --user --failed
- check failed user servicessystemctl --failed
- check failed system servicessystemd-analyze security
- check system securitysystemd-analyze security --user
- check user security
by Lucky Blackat