colin/nix-files
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity

moby: document secrets

Browse Source
This commit is contained in:
Colin
2024-07-21 21:18:43 +00:00
parent e196cea667
commit ef1ee6c1c9
2 changed files with 6 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
secrets/desko/README.md
View File

@@ -1,9 +1,7 @@
- nix_signing_key.bin: - nix_signing_key.bin:
- generate with `nix-store --generate-binary-cache-key desko cache-priv-key.pem cache-pub-key.pem` - generate with `nix-store --generate-binary-cache-key desko cache-priv-key.pem cache-pub-key.pem`
- used when deploying packages to a remote machine - used when deploying packages to a remote machine
- colin-passwd.bin: - colin-passwd.bin:
- see <https://search.nixos.org/options?channel=unstable&show=users.users.%3Cname%3E.hashedPasswordFile&from=0&size=50&sort=relevance&type=packages&query=users.users> - generate with `mkpasswd -m sha512crypt`, or `mkpasswd --rounds=2000000 --method=sha512crypt`
- update by running `sudo passwd colin` and then taking the 2nd item from the colin: line in /etc/shadow
- N.B.: you MUST do `sudo passwd colin` instead of just `passwd`, i guess because of immutable users or something
- guest/authorized_keys.bin - guest/authorized_keys.bin
- who's allowed to login to the guest account - who's allowed to login to the guest account

2
secrets/moby/README.md Normal file
View File

@@ -0,0 +1,2 @@
- colin-passwd.bin:
- generate with `mkpasswd -m sha512crypt`, or `mkpasswd --rounds=200000 --method=sha512crypt`