diff options
| -rw-r--r-- | flake.lock | 90 | ||||
| -rw-r--r-- | nixos/modules/security.nix | 6 |
2 files changed, 49 insertions, 47 deletions
@@ -44,11 +44,11 @@ ] }, "locked": { - "lastModified": 1680266963, - "narHash": "sha256-IW/lzbUCOcldLHWHjNSg1YoViDnZOmz0ZJL7EH9OkV8=", + "lastModified": 1681154394, + "narHash": "sha256-avnu1K9AuouygBiwVKuDp6emiTET43az3rcpv0ctLjc=", "owner": "LnL7", "repo": "nix-darwin", - "rev": "99d4187d11be86b49baa3a1aec0530004072374f", + "rev": "025912529dd0b31dead95519e944ea05f1ad56f2", "type": "github" }, "original": { @@ -73,12 +73,15 @@ } }, "flake-utils_2": { + "inputs": { + "systems": "systems" + }, "locked": { - "lastModified": 1659877975, - "narHash": "sha256-zllb8aq3YO3h8B/U0/J1WBgAL8EX5yWf5pMj3G0NAmc=", + "lastModified": 1681202837, + "narHash": "sha256-H+Rh19JDwRtpVPAWp64F+rlEtxUWBAQW28eAi3SRSzg=", "owner": "numtide", "repo": "flake-utils", - "rev": "c0e246b9b83f637f4681389ecabcb2681b4f3af0", + "rev": "cfacdce06f30d2b68473a46042957675eebb3401", "type": "github" }, "original": { @@ -91,15 +94,14 @@ "inputs": { "nixpkgs": [ "unstable" - ], - "utils": "utils" + ] }, "locked": { - "lastModified": 1681127522, - "narHash": "sha256-Eo4dd0AmKshM+A6msQRMwT42QvWGNxa8RjmZ4tY7g9E=", + "lastModified": 1681586243, + "narHash": "sha256-vdP79IZuDZVNSl4RN1LgEuab1Tkbv4gCxiE8VLdRf7U=", "owner": "nix-community", "repo": "home-manager", - "rev": "93f5cb2482dd20e57eb8ca6c819cdad9738f98a0", + "rev": "40ebb62101c83de81e5fd7c3cfe5cea2ed21b1ad", "type": "github" }, "original": { @@ -132,11 +134,11 @@ }, "locked": { "dir": "contrib", - "lastModified": 1681138172, - "narHash": "sha256-dJx0Y9H6FFhQRTDNETDZVgjjuWgyYdvwkYawZcQRbAE=", + "lastModified": 1681604802, + "narHash": "sha256-eZczDle36LaBuHVlElXNIEN6VJ6MEYJwB5gtUdp/l9g=", "owner": "neovim", "repo": "neovim", - "rev": "0451391ec514eb83c7e366b80fcab21de9f8d4ed", + "rev": "6adfd24a066c207334609a6b149ada19c0f568d4", "type": "github" }, "original": { @@ -148,11 +150,11 @@ }, "nixpkgs-2211": { "locked": { - "lastModified": 1681041438, - "narHash": "sha256-NmRGMklxBZ8Ol47CKMQxAU1F+v8ySpsHAAiC7ZL4vxY=", + "lastModified": 1681482634, + "narHash": "sha256-cT/nr3L8khEYZSGp8qqwxFH+/q4/547MfyOdSj6MhBk=", "owner": "nixos", "repo": "nixpkgs", - "rev": "48dcbaf7fa799509cbec85d55b8d62dcf1477d57", + "rev": "fda0d99c2cbbb5c89d8855d258cb0821bd9113ad", "type": "github" }, "original": { @@ -201,11 +203,11 @@ ] }, "locked": { - "lastModified": 1681093076, - "narHash": "sha256-6uLZNeuP5jDDGlFkXgcoAxsJhTKy8yUTw25zdLHzdxE=", + "lastModified": 1681525152, + "narHash": "sha256-KzI+ILcmU03iFWtB+ysPqtNmp8TP8v1BBReTuPP8MJY=", "owner": "oxalica", "repo": "rust-overlay", - "rev": "45c2ed9dd1397526dad35fc867c43955d87f9f3f", + "rev": "b6f8d87208336d7cb85003b2e439fc707c38f92a", "type": "github" }, "original": { @@ -238,11 +240,11 @@ "nixpkgs-stable": "nixpkgs-stable" }, "locked": { - "lastModified": 1681008913, - "narHash": "sha256-6C4BknF+cwCnl/A2fFdlAnc3LMV7f7XqOL09UhLZ9tA=", + "lastModified": 1681209176, + "narHash": "sha256-wyQokPpkNZnsl/bVf8m1428tfA0hJ0w/qexq4EizhTc=", "owner": "Mic92", "repo": "sops-nix", - "rev": "ddc6f124cb9be22d2ba066064c28bc19039a6bce", + "rev": "00d5fd73756d424de5263b92235563bc06f2c6e1", "type": "github" }, "original": { @@ -251,13 +253,28 @@ "type": "github" } }, + "systems": { + "locked": { + "lastModified": 1681028828, + "narHash": "sha256-Vy1rq5AaRuLzOxct8nz4T6wlgyUR7zLU309k9mBC768=", + "owner": "nix-systems", + "repo": "default", + "rev": "da67096a3b9bf56a91d16901293e51ba5b49a27e", + "type": "github" + }, + "original": { + "owner": "nix-systems", + "repo": "default", + "type": "github" + } + }, "unstable": { "locked": { - "lastModified": 1681036984, - "narHash": "sha256-AbScJXshYzbeUKHh+Y3OICc3iAtr+NqJ3Xb81GW+ptU=", + "lastModified": 1681465517, + "narHash": "sha256-EasJh15/jcJNAHtq2SGbiADRXteURAnQbj1NqBoKkzU=", "owner": "nixos", "repo": "nixpkgs", - "rev": "fd531dee22c9a3d4336cc2da39e8dd905e8f3de4", + "rev": "abe7316dd51a313ce528972b104f4f04f56eefc4", "type": "github" }, "original": { @@ -269,11 +286,11 @@ }, "unstable-small": { "locked": { - "lastModified": 1681109905, - "narHash": "sha256-2dBz4WSjYzkjCzDgepH5i2BsN0fVQOlLseG/kt6FhZg=", + "lastModified": 1681559998, + "narHash": "sha256-bGa3v5qKM+dPyEP4Keyt/LR/S+HhRVbfI5LRAm5T5co=", "owner": "nixos", "repo": "nixpkgs", - "rev": "4fba351146e26d9e09d455687b75089ac50b9b13", + "rev": "280b1cdc1ea37bb477be1dada5d753f0246759a8", "type": "github" }, "original": { @@ -282,21 +299,6 @@ "repo": "nixpkgs", "type": "github" } - }, - "utils": { - "locked": { - "lastModified": 1678901627, - "narHash": "sha256-U02riOqrKKzwjsxc/400XnElV+UtPUQWpANPlyazjH0=", - "owner": "numtide", - "repo": "flake-utils", - "rev": "93a2b84fc4b70d9e089d029deacc3583435c2ed6", - "type": "github" - }, - "original": { - "owner": "numtide", - "repo": "flake-utils", - "type": "github" - } } }, "root": "root", diff --git a/nixos/modules/security.nix b/nixos/modules/security.nix index 80fcbaa..358f27b 100644 --- a/nixos/modules/security.nix +++ b/nixos/modules/security.nix @@ -8,11 +8,11 @@ # mount /tmp in ram. This makes temp file management faster # on ssd systems, and volatile! Because it's wiped on reboot. - boot.tmpOnTmpfs = false; - boot.tmpOnTmpfsSize = "80%"; + boot.tmp.useTmpfs = false; + boot.tmp.tmpfsSize = "80%"; # Purge /tmp on boot. (fallback option) - boot.cleanTmpDir = lib.mkDefault (!config.boot.tmpOnTmpfs); + boot.tmp.cleanOnBoot = lib.mkDefault (!config.boot.tmp.useTmpfs); boot.kernel.sysctl = { # The Magic SysRq key is a key combo that allows users connected to the |