zuckerberg/nix-config
zuckerberg/nix-config
1
0
Fork 0
Code Issues Pull Requests Actions Activity
665 Commits 6 Branches 0 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Zuckerberg 01b01f06b4 Stop using systemd-networkd it has some flaws with NixOS' networking I need to figure out later. 
It is very elegant, easy to debug/understand, and I definitely want to use it but The most significant
problem is it doesn't work with NixOS containers private networking.  So I'll need to figure that out
or maybe it will be fixed upstream soon.
2025-08-05 19:27:29 -07:00
.gitea/workflows
Update to NixOS 24.05
2024-06-02 21:12:07 -06:00
common
Add KeepassXC keys, remove some very old user keys, and rekey
2025-07-16 22:01:33 -07:00
home
Set ghostty preferences
2025-07-18 19:46:18 -07:00
lib
Add basic nix utilities
2023-10-20 20:13:08 -06:00
machines
Stop using systemd-networkd it has some flaws with NixOS' networking I need to figure out later.
2025-08-05 19:27:29 -07:00
overlays
Use upstream pykms and Actual Budget. Move Actual to s0. Add automated backups for Actual.
2025-03-29 18:36:13 -07:00
patches
Update nixpkgs. Move to new dashy service
2025-03-28 21:05:37 -07:00
secrets
Add KeepassXC keys, remove some very old user keys, and rekey
2025-07-16 22:01:33 -07:00
.gitignore
Add .gitignore
2022-05-20 16:37:33 -04:00
flake.lock
Update nixpkgs and other flake inputs
2025-07-13 17:52:08 -07:00
flake.nix
Update nixpkgs and other flake inputs
2025-07-13 17:52:08 -07:00
LICENSE
Add LICENSE
2021-05-21 13:01:02 +00:00
Makefile
Add build iso helper command
2025-08-05 19:23:42 -07:00
new_machine.md
Update install steps
2023-04-19 21:17:45 -06:00
README.md
If machine role is personal set de.enable = true; automatically
2025-03-28 20:16:26 -07:00
TODO.md
update TODOs
2023-04-23 10:16:54 -06:00

README.md

My NixOS configurations

Source Layout

  • /common - common configuration imported into all /machines
    • /boot - config related to bootloaders, cpu microcode, and unlocking LUKS root disks over tor
    • /network - config for tailscale, and NixOS container with automatic vpn tunneling via PIA
    • /pc - config that a graphical PC should have. Have the personal role set in the machine's properties.nix to enable everthing.
    • /server - config that creates new nixos services or extends existing ones to meet my needs
  • /machines - all my NixOS machines along with their machine unique configuration for hardware and services
    • /kexec - a special machine for generating minimal kexec images. Does not import /common
  • /secrets - encrypted shared secrets unlocked through /machines ssh host keys
Description
My NixOS configurations
Readme MIT 46 MiB
Languages
Nix 92.8%
Shell 6.8%
Makefile 0.4%