unexplrd/nixos-blueprint
2
2
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

services: refactor

Browse Source
This commit is contained in:
unexplrd
2025-12-21 22:26:32 +02:00
parent ca6858e6bd
commit 74cfe03198
1 changed files with 27 additions and 29 deletions
Download Patch File Download Diff File Expand all files Collapse all files
modules/shared/nixos/services.nix
+23 -25
View File
@@ -1,40 +1,38 @@
{ {lib, ...}: {
services = { services =
lib.attrsets.recursiveUpdate {
# hardware.openrgb.enable = true; # hardware.openrgb.enable = true;
avahi.enable = true; avahi.enable = true;
dnscrypt-proxy2 = { dnscrypt-proxy.enable = true;
enable = true; flatpak.enable = true;
settings = { fstrim.enable = true;
fwupd.enable = true;
kmscon.enable = true;
opensnitch.enable = false;
openssh.enable = true;
scx.enable = true;
userborn.enable = true;
} {
dnscrypt-proxy.settings = {
bootstrap_resolvers = ["9.9.9.11:53" "9.9.9.9:53"]; bootstrap_resolvers = ["9.9.9.11:53" "9.9.9.9:53"];
require_dnssec = true; require_dnssec = true;
server_names = ["mullvad-doh"]; server_names = ["mullvad-doh"];
}; };
fstrim.interval = "daily";
kmscon = {
hwRender = true;
extraOptions = "--drm";
}; };
flatpak.enable = true; logind.settings.Login = {
fstrim = { HandleLidSwitch = "ignore";
enable = true; HandlePowerKey = "suspend";
interval = "daily";
}; };
fwupd.enable = true; opensnitch.settings = {
logind = {
lidSwitch = "ignore";
powerKey = "suspend";
};
opensnitch = {
enable = false;
settings = {
DefaultAaction = "deny"; DefaultAaction = "deny";
Firewall = "iptables"; Firewall = "iptables";
InterceptUnknown = true; InterceptUnknown = true;
ProcMonitorMethod = "ebpf"; ProcMonitorMethod = "ebpf";
}; };
}; scx.scheduler = "scx_flash";
openssh.enable = true;
scx = {
enable = true;
scheduler = "scx_flash";
};
syncthing.openDefaultPorts = true;
userborn.enable = true;
}; };
} }