diff options
| author | Natasha Moongrave <natasha@256phi.eu> | 2026-05-11 12:50:04 +0200 |
|---|---|---|
| committer | Natasha Moongrave <natasha@256phi.eu> | 2026-05-11 12:50:04 +0200 |
| commit | 4b0b8d385062c7642e8763a73530bc5f3b02a303 (patch) | |
| tree | d79455afa1c417378bee18b8bcac7530f648ba1e | |
| parent | 15bcc7a0fd4825c9a687aa40e6f52300e80abc31 (diff) | |
Added encryption configuration to the system config
| -rw-r--r-- | system/default.nix | 1 | ||||
| -rw-r--r-- | system/encryption.nix | 17 |
2 files changed, 18 insertions, 0 deletions
diff --git a/system/default.nix b/system/default.nix index 0893ac0..5022caf 100644 --- a/system/default.nix +++ b/system/default.nix @@ -10,6 +10,7 @@ ./programs.nix ./services.nix ./users.nix + ./encryption.nix # Desktop and stylix are now configured per-rice in home/rices/*/system.nix ]; diff --git a/system/encryption.nix b/system/encryption.nix new file mode 100644 index 0000000..152d657 --- /dev/null +++ b/system/encryption.nix @@ -0,0 +1,17 @@ +{pkgs, ...}: { + environment.systemPackages = with pkgs; [ + cryptsetup + ]; + + environment.etc."crypttab" = { + text = '' + ssh-keys UUID=da31e270-80d4-4a89-9633-87dd4d736ca2 none noauto,x-systemd.device-timeout=0 + ''; + }; + + fileSystems."/mnt/ssh-keys" = { + device = "/dev/mapper/ssh-keys"; + fsType = "ext4"; + options = ["noauto" "nofail" "x-systemd.automount" "x-systemd.idle-timeout=300"]; + }; +} |