diff options
author | lassulus <lassulus@lassul.us> | 2017-07-23 21:10:50 +0200 |
---|---|---|
committer | lassulus <lassulus@lassul.us> | 2017-07-23 21:19:35 +0200 |
commit | 93243ccb4d69a20e2528834ba6c743df2922c287 (patch) | |
tree | 5d9b15c67c6697a86cf5417395cf06302c1cd77c /lass/1systems/shodan | |
parent | 460590bf8bfa5d0ad85d590724bf7be6c895d312 (diff) |
lass: cleanup
Diffstat (limited to 'lass/1systems/shodan')
-rw-r--r-- | lass/1systems/shodan/config.nix | 57 |
1 files changed, 4 insertions, 53 deletions
diff --git a/lass/1systems/shodan/config.nix b/lass/1systems/shodan/config.nix index a68471aa0..00ea82671 100644 --- a/lass/1systems/shodan/config.nix +++ b/lass/1systems/shodan/config.nix @@ -4,8 +4,11 @@ with import <stockholm/lib>; { imports = [ <stockholm/lass> + #TODO reinstall with correct layout and use lass/hw/x220 + <stockholm/krebs/2configs/hw/x220.nix> + + <stockholm/lass/2configs/mouse.nix> <stockholm/lass/2configs/retiolum.nix> - <stockholm/lass/2configs/hw/tp-x220.nix> <stockholm/lass/2configs/baseX.nix> <stockholm/lass/2configs/git.nix> <stockholm/lass/2configs/exim-retiolum.nix> @@ -14,58 +17,6 @@ with import <stockholm/lib>; <stockholm/lass/2configs/fetchWallpaper.nix> <stockholm/lass/2configs/backups.nix> <stockholm/lass/2configs/wine.nix> - #{ - # users.extraUsers = { - # root = { - # openssh.authorizedKeys.keys = map readFile [ - # ../../krebs/Zpubkeys/uriel.ssh.pub - # ]; - # }; - # }; - #} - { - users.users.sokratess = { - uid = genid "sokratess"; - home = "/home/sokratess"; - group = "users"; - createHome = true; - extraGroups = [ - "audio" - "networkmanager" - ]; - useDefaultShell = true; - password = "aidsballs"; - }; - krebs.per-user.sokratess.packages = [ - pkgs.firefox - pkgs.python27Packages.virtualenv - pkgs.python27Packages.ipython - pkgs.python27Packages.python - ]; - } - { - krebs.monit = let - echoToIrc = msg: - pkgs.writeDash "echo_irc" '' - set -euf - export LOGNAME=prism-alarm - ${pkgs.irc-announce}/bin/irc-announce \ - ni.r 6667 ${config.networking.hostName}-alarm \#noise "${msg}" >/dev/null - ''; - in { - enable = true; - http.enable = true; - alarms = { - hfos = { - test = "${pkgs.curl}/bin/curl -sf --insecure 'https://hfos.hackerfleet.de'"; - alarm = echoToIrc "test hfos failed"; - }; - }; - }; - krebs.iptables.tables.filter.INPUT.rules = [ - { predicate = "-p tcp -i retiolum --dport 9093"; target = "ACCEPT"; } - ]; - } ]; krebs.build.host = config.krebs.hosts.shodan; |