ray/guix-systems
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add initial system configuration

Browse source
This commit is contained in:
Ray Miller 2024-11-29 11:09:04 +00:00
parent 23b52fd4c5
commit b746a3cb76
3 changed files with 141 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

63
systems/basic-vm.scm Normal file
View file

@ -0,0 +1,63 @@
;; This is an operating system configuration template
;; for a "bare bones" setup, with no X11 display server.
(use-modules (gnu))
(use-service-modules networking ssh)
(use-package-modules screen ssh)
(operating-system
(host-name "little-rascal")
(timezone "Europe/London")
(locale "en_GB.utf8")
(keyboard-layout (keyboard-layout "gb" "dvorak"))
;; Boot in "legacy" BIOS mode, assuming /dev/sdX is the
;; target hard disk, and "my-root" is the label of the target
;; root file system.
(bootloader (bootloader-configuration
(bootloader grub-bootloader)
(targets '("/dev/vda"))))
;; It's fitting to support the equally bare bones -nographic
;; QEMU option, which also nicely sidesteps forcing QWERTY.
(kernel-arguments (list "console=ttyS0,115200"))
(file-systems (cons (file-system
(device (file-system-label "/dev/vda1"))
(mount-point "/")
(type "ext4"))
%base-file-systems))
;; This is where user accounts are specified. The "root"
;; account is implicit, and is initially created with the
;; empty password.
(users (cons (user-account
(name "ray")
(comment "Ray Miller")
(group "users")
;; Adding the account to the "wheel" group
;; makes it a sudoer. Adding it to "audio"
;; and "video" allows the user to play sound
;; and access the webcam.
(supplementary-groups '("wheel")))
%base-user-accounts))
(sudoers-file (plain-file "sudoers" "\
root ALL=(ALL) ALL
%wheel ALL=(ALL) NOPASSWD:ALL\n"))
;; Globally-installed packages.
(packages (cons screen %base-packages))
;; Add services to the baseline: a DHCP client and
;; an SSH server.
(services (append (list (service dhcp-client-service-type)
(service openssh-service-type
(openssh-configuration
(password-authentication? #f)
(permit-root-login 'prohibit-password)
(authorized-keys
`(("ray" ,(local-file "/home/ray/.ssh/id_rsa.pub"))
("root" ,(local-file "/home/ray/.ssh/id_rsa.pub"))))
(openssh openssh-sans-x)
(port-number 22))))
%base-services)))

2
systems/files/authorized_keys Normal file
View file

@ -0,0 +1,2 @@
ssh-rsa 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 ray@grey-area
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPSgripG58LBncu0cDp69uTrRoiOdcELjcrn8daCuP6N ray@leto

76
systems/little-rascal.scm Normal file
View file

@ -0,0 +1,76 @@
;; This is an operating system configuration template
;; for a "bare bones" setup, with no X11 display server.
(use-modules (gnu))
(use-service-modules networking ssh)
(use-package-modules screen ssh)
(operating-system
(host-name "little-rascal")
(timezone "Europe/London")
(locale "en_GB.utf8")
(keyboard-layout (keyboard-layout "gb" "dvorak"))
;; Boot in "legacy" BIOS mode, assuming /dev/sdX is the
;; target hard disk, and "my-root" is the label of the target
;; root file system.
(bootloader (bootloader-configuration
(bootloader grub-bootloader)
(targets '("/dev/vda"))))
;; It's fitting to support the equally bare bones -nographic
;; QEMU option, which also nicely sidesteps forcing QWERTY.
(kernel-arguments (list "console=ttyS0,115200"))
(file-systems (cons (file-system
(device (file-system-label "/dev/vda1"))
(mount-point "/")
(type "ext4"))
%base-file-systems))
;; This is where user accounts are specified. The "root"
;; account is implicit, and is initially created with the
;; empty password.
(users (cons (user-account
(name "ray")
(comment "Ray Miller")
(group "users")
;; Adding the account to the "wheel" group
;; makes it a sudoer. Adding it to "audio"
;; and "video" allows the user to play sound
;; and access the webcam.
(supplementary-groups '("wheel")))
%base-user-accounts))
(sudoers-file (plain-file "sudoers" "\
root ALL=(ALL) ALL
%wheel ALL=(ALL) NOPASSWD:ALL\n"))
;; Globally-installed packages.
(packages (cons screen %base-packages))
;; Add services to the baseline: static networking and an SSH server.
(services (append (list (service static-networking-service-type
(list (static-networking
(addresses
(list (network-address
(device "ens3")
(value "192.168.200.2/24"))))
(routes
(list (network-route
(destination "default")
(gateway "192.168.200.1"))
(network-route
(destination "192.168.200.0/24")
(source "192.168.200.2")
(device "ens3"))))
(name-servers '("192.168.200.1")))))
(service openssh-service-type
(openssh-configuration
(password-authentication? #f)
(permit-root-login 'prohibit-password)
(authorized-keys
`(("ray" ,(local-file "./files/authorized_keys"))
("root" ,(local-file "./files/authorized_keys"))))
(openssh openssh-sans-x)
(port-number 22))))
%base-services)))