Hosts

Host Map

Hostname	Device Description	Primary User	Role
twilight	Desktop Computer	Leyla	Desktop
horizon	13 inch Framework Laptop	Leyla	Laptop
defiant	NAS Server	Leyla	Service
emergent	Desktop Computer	Eve	Laptop
threshold	Laptop	Eve	Desktop

Rebuild current machine to match target host:

sudo nixos-rebuild switch --flake .#hostname

Rebuild current machine maintaining current target

./rebuild.sh

New machine setup

keys for decrypting password secrets for each users located at /var/lib/sops-nix/key.txt

updating passwords: sops secrets/secrets.yaml

./install.sh --target 192.168.1.130 --flake hostname

how the current config was set up https://www.youtube.com/watch?v=G5f6GC7SnhU

something about ssh keys for remotes

Notes:

• Look into this for fixing nixos-anywhere https://github.com/lucidph3nx/nixos-config/tree/main
• Look into this for rotating sops keys https://technotim.live/posts/rotate-sops-encryption-keys/
• Look into this for openssh known configurations https://search.nixos.org/options?channel=unstable&from=0&size=15&sort=alpha_asc&type=packages&query=services.openssh
• Look into this for flake templates https://nix.dev/manual/nix/2.22/command-ref/new-cli/nix3-flake-init

Updating

nix flake update

Tasks:

Tech Debt

• allowUnfree should be dynamically enabled by the users whenever they need them (this isnt enabled at all right now for some reason???)
• use dashes for options not camel case
• Move configs for pipe mouse, open rgb, and via keyboard to hardware config and install users side from those configs

New Features

• DISKO for server
• GNOME default monitors per hardware configuration?
• stop nas from sleeping
• VS code extensions should be installed declaratively
• Flake templates
• Install all the things on the NAS
• firefox declarative???
• figure out steam vr things?
• Open GL?
• util functions
• openssh known hosts
• limit boot configurations to 2 on defiant
• rotate sops encryption keys periodically (and somehow sync between devices?)
• zfs email after scrubbing