passiword

configuration.nix

@@ -1,9 +1,8 @@
-{
+{ pkgs
-  pkgs,
+, inputs
-  inputs,
+, modulesPath
-  modulesPath,
+, lib
-  lib,
+, ...
-  ...
 }: {
   imports = [
     (modulesPath + "/profiles/qemu-guest.nix") # Temporary
@@ -19,14 +18,19 @@
     timeout = 0;
   };
 
-  nix.settings.experimental-features = ["nix-command" "flakes"];
+  # boot.zfs.extraPools = [ "zraid" ];
+
+  boot.supportedFilesystems = [ "zfs" ];
+  boot.zfs.forceImportRoot = false;
+
+  nix.settings.experimental-features = [ "nix-command" "flakes" ];
   nix.gc = {
     automatic = true;
     options = "--delete-older-than 30d";
   };
   nix.optimise = {
     automatic = true;
-    dates = ["05:00"];
+    dates = [ "05:00" ];
   };
 
   networking.hostName = "enis";
@@ -34,12 +38,12 @@
   networking.networkmanager.enable = true;
   networking.firewall = {
     enable = true;
-    allowedTCPPorts = [];
+    allowedTCPPorts = [ ];
-    allowedUDPPorts = [];
+    allowedUDPPorts = [ ];
   };
 
   home-manager = {
-    extraSpecialArgs = {inherit inputs;};
+    extraSpecialArgs = { inherit inputs; };
     users = {
       "enis" = import ./home.nix;
     };
@@ -47,8 +51,7 @@
 
   users.users."enis" = {
     isNormalUser = true;
-    # hashedPasswordFile = "./password";
+    hashedPassword = import ./password.nix;
-    initialPassword = "1234";
     extraGroups = [
       "networkmanager"
       "audio"
@@ -58,6 +61,18 @@
     shell = pkgs.zsh;
   };
 
+  users.users."nixos" =
+    {
+      isNormalUser = true;
+      initialPassword = "1234";
+      extraGroups = [ "wheel" ];
+    };
+
+  users.users.root =
+    {
+      initialPassword = "1234";
+    };
+
   programs.zsh = {
     enable = true;
     enableGlobalCompInit = true;
@@ -71,6 +86,8 @@
     curl
     git
     vim
+
+    zfs
   ];
 
   environment.variables = {
@@ -89,14 +106,15 @@
   programs.mtr.enable = true;
   programs.gnupg.agent.enable = true;
 
+  services.udev.enable = true;
   services.thermald.enable = true;
 
   services.openssh = {
     enable = true;
     settings = {
-      PasswordAuthentication = false;
+      PasswordAuthentication = true;
-      KbdInteractiveAuthentication = false;
+      KbdInteractiveAuthentication = true;
-      AllowUsers = ["enis"];
+      AllowUsers = null;
       PermitRootLogin = "no";
     };
   };

disko.nix

@@ -7,7 +7,7 @@
   disko.devices = {
     disk =
       {
-        root = {
+        main = {
           type = "disk";
           device = root-disk;
           content = {
@@ -57,7 +57,7 @@
       }
       // lib.attrsets.genAttrs raid-disks (name: {
         type = "disk";
-        device = "/dev" + name;
+        device = "/dev/" + name;
         content = {
           type = "gpt";
           partitions = {
@@ -65,7 +65,7 @@
               size = "100%";
               content = {
                 type = "zfs";
-                pool = "zraid";
+                pool = "storage";
               };
             };
           };
@@ -73,23 +73,21 @@
       });
 
     zpool = lib.mkIf (builtins.length raid-disks > 0) {
-      zraid = {
+      storage = {
         type = "zpool";
         mode = "raidz";
         # TODO: Cache-ing
-        rootFsOptions = {
+        # rootFsOptions = {
-          compression = "zstd";
+        #   compression = "zstd";
-          "com.sun:auto-snapshot" = "false";
+        #   "com.sun:auto-snapshot" = "false";
-        };
+        # };
+
+        mountpoint = "/storage";
 
         datasets = {
           var = {
             type = "zfs_fs";
-            mountpoint = "/var";
+            mountpoint = "/storage/var";
-          };
-          home = {
-            type = "zfs_fs";
-            mountpoint = "/home";
           };
         };
       };

passwd

@@ -1 +0,0 @@
-$y$j9T$rflI.YoiFDa7wg2F2rmgy1$uCLInRwRKmUIUYlhdHFUwBf0yhnRUK9eTVMvX8UjCz3

password.nix

@@ -0,0 +1 @@
+"$y$j9T$rflI.YoiFDa7wg2F2rmgy1$uCLInRwRKmUIUYlhdHFUwBf0yhnRUK9eTVMvX8UjCz3"