1 { inputs, pkgs, lib, config, ... }:
3 inherit (builtins) readFile;
4 inherit (config.users) users;
19 openssh.authorizedKeys.keys =
20 users."julm".openssh.authorizedKeys.keys ++
21 [ (readFile (inputs.secrets + "/hosts/losurdo/ssh/root.ssh-ed25519.pub")) ];
31 services.sanoid.datasets."rpool/home/julm/mail" = {
32 use_template = [ "snap" ];
36 services.sanoid.datasets."rpool/home/julm/log" = {
37 use_template = [ "snap" ];
42 services.sanoid.datasets."rpool/backup/losurdo/home/julm/work" = {
43 use_template = [ "prune" ];
46 networking.nftables.ruleset = ''
47 add rule inet filter fw2net tcp dport {25,465} skuid ${users.julm.name} counter accept comment "SMTP"
48 add rule inet filter fw2net tcp dport 43 skuid ${users.julm.name} counter accept comment "Whois"
49 add rule inet filter fw2net tcp dport 563 skuid ${users.julm.name} counter accept comment "NNTPS"
50 add rule inet filter fw2net tcp dport 6697 skuid ${users.julm.name} counter accept comment "IRCS"
51 add rule inet filter fw2net tcp dport 11371 skuid ${users.julm.name} counter accept comment "HKP"