colin/nix-files
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
10541698a7
nix-files/modules/universal
History
colin b658b93c64 lappy: store the hashed user passwd in git and decrypt it into /etc/passwd on boot 
this approach lets me persist the password. persisting /etc/shadow
directly wasn't so feasible. populating /etc/shadow at activation time
is something nix already does and is easy to plug into.
so we store the passwd hash in this repo, but encrypt it to the
destination machine's ssh pubkey to add enough entropy that it's not
brute-forceable through the public git repo.
2022-10-23 06:53:06 -07:00
..
home-manager refactor: purge impermanence.home-files option 2022-10-22 05:56:04 -07:00
allocations.nix servo: add freshrss service 2022-10-13 17:52:43 -07:00
default.nix refactor: squash env directory 2022-10-22 03:56:50 -07:00
fs.nix sane ssh mounts: enable noCheck to silence syslog warnings 2022-09-27 04:33:28 -07:00
home-packages.nix home: add handbrake program 2022-10-23 03:02:31 -07:00
net.nix fix activationScript ordering to remove sops double-decrypt hack 2022-10-23 06:53:05 -07:00
secrets.nix lappy: store the hashed user passwd in git and decrypt it into /etc/passwd on boot 2022-10-23 06:53:06 -07:00
system-packages.nix refactor: squash env directory 2022-10-22 03:56:50 -07:00
users.nix lappy: store the hashed user passwd in git and decrypt it into /etc/passwd on boot 2022-10-23 06:53:06 -07:00
vpn.nix vpn: rename ovpnd -> ovpnd-us 2022-07-09 00:52:05 -07:00