sam/nixos-4screen
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

chore: document non-target disks and harden NixOS base config

Browse Source 
Co-authored-by: aider (openrouter/openai/gpt-5.2) <aider@aider.chat>
This commit is contained in:
sam rolfe
2026-02-08 14:00:03 +11:00
parent 73bae4f9b9
commit 7b2e6e1fd2
2 changed files with 24 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
docs/nixos_build_spec.md
View File

@@ -12,6 +12,12 @@ KEEP (do not format):
WIPE + install NixOS here: WIPE + install NixOS here:
- /dev/nvme0n1p5 (currently Ubuntu ext4 /) UUID=4e99904c-ce6f-4c3c-898a-e29cfc373489 - /dev/nvme0n1p5 (currently Ubuntu ext4 /) UUID=4e99904c-ce6f-4c3c-898a-e29cfc373489
## Other attached disks (DO NOT FORMAT)
- /dev/sda (240GB Patriot Burst) contains NTFS label "Back Up" (keep)
- /dev/sdb (500GB) ext4 label "TempBackup" (keep)
- /dev/sdc (320GB) ext4 label "Integral300" UUID=27febd74-20aa-4a3a-92c1-6fdd1ad7e88e (mount at /data)
- /dev/sde (160GB) ext4 label "XPSystemDrive" (keep)
Bootloader: Bootloader:
- systemd-boot, using the existing EFI partition (/dev/nvme0n1p1) - systemd-boot, using the existing EFI partition (/dev/nvme0n1p1)

19
hosts/sam-4screen-desktop/configuration.nix
View File

@@ -75,11 +75,24 @@
# flip this to true. # flip this to true.
services.openssh.settings.PasswordAuthentication = false; services.openssh.settings.PasswordAuthentication = false;
# Explicitly enable firewall (keep SSH as the only opened port via openFirewall above).
networking.firewall.enable = true;
# --- # ---
# dconf (helps portals/GTK apps) # dconf (helps portals/GTK apps)
# --- # ---
programs.dconf.enable = true; programs.dconf.enable = true;
# Polkit is commonly required for a smooth experience with portals and desktop actions,
# especially in minimal Wayland sessions.
security.polkit.enable = true;
# ---
# Firmware / microcode (stability)
# ---
hardware.enableRedistributableFirmware = true;
hardware.cpu.intel.updateMicrocode = true;
# --- # ---
# OpenGL (important for NVIDIA Wayland apps) # OpenGL (important for NVIDIA Wayland apps)
# --- # ---
@@ -134,7 +147,10 @@
# Wayland portals (refine later if screencast needs a different backend) # Wayland portals (refine later if screencast needs a different backend)
xdg.portal = { xdg.portal = {
enable = true; enable = true;
extraPortals = [ pkgs.xdg-desktop-portal-gtk ]; extraPortals = [
pkgs.xdg-desktop-portal-gtk
pkgs.xdg-desktop-portal-gnome
];
}; };
# Minimal system packages needed for the session and core usability # Minimal system packages needed for the session and core usability
@@ -153,6 +169,7 @@
services.xserver.videoDrivers = [ "nvidia" ]; services.xserver.videoDrivers = [ "nvidia" ];
hardware.nvidia.modesetting.enable = true; hardware.nvidia.modesetting.enable = true;
hardware.nvidia.nvidiaSettings = true; hardware.nvidia.nvidiaSettings = true;
hardware.nvidia.nvidiaPersistenced = true;
# --- # ---
# NixOS release compatibility # NixOS release compatibility