(use-modules (srfi srfi-1) (gnu) (guix)) (use-system-modules nss) (use-service-modules networking ssh version-control databases admin) (use-package-modules base bash shells) (operating-system (host-name "gv") (timezone "Europe/Paris") (locale "en_US.utf8") (initrd-modules (append (list "megaraid_sas") ;; "shpchp" is now a built-in) %base-initrd-modules)) (bootloader (bootloader-configuration (bootloader grub-bootloader) (target "/dev/sda"))) (users (cons* (user-account (name "grothoff") (comment "Christian Grothoff") (group "users") (supplementary-groups '("wheel" "netdev")) (home-directory "/home/grothoff")) (user-account (name "dold") (comment "Florian Dold") (group "users") (supplementary-groups '("wheel" "netdev")) (home-directory "/home/dold")) (user-account (name "git") (comment "gitolite") (group "git") (home-directory "/home/git")) %base-user-accounts)) (groups (cons (user-group (name "git")) %base-groups)) (file-systems (cons* (file-system (device (uuid "304189db-f9df-4222-810d-94c993598c3b")) (mount-point "/") (type "ext4")) ;;(file-system ;;(mapped-device ;; (source (uuid "6631d48c-1371-4b50-aa94-5863c706773e")) ;; (target "home") ;; (type luks-device-mapping)) ;; (mount-piont "/home") ;; (type "ext4")) %base-file-systems)) (packages (append (map specification->package '("mg" "cryptsetup" "screen" "tmux" "wget" "vim" "openssh" "openssl" "postgresql" "nss-certs" "curl" "gnutls-dane" "gitolite" "acme-client")) %base-packages)) (services (cons* (service static-networking-service-type (list (static-networking (interface "enp4s0f1") (ip "147.87.255.221") (netmask "255.255.255.240") (gateway "147.87.255.209") (name-servers '("8.8.8.8"))))) (service special-files-service-type ;; Using 'canonical-package' as bash and coreutils ;; canonical packages are already a part of ;; '%base-packages'. `(("/bin/sh" ,(file-append (canonical-package bash) "/bin/sh")) ("/usr/bin/env" ,(file-append (canonical-package coreutils) "/bin/env")) ("/bin/ksh" ,(file-append (canonical-package loksh) "/bin/ksh")))) (service openssh-service-type (openssh-configuration (x11-forwarding? #t) (port-number 22) (password-authentication? #f) (permit-root-login 'without-password))) (service rottlog-service-type (rottlog-configuration)) (service postgresql-service-type) (git-daemon-service #:config (git-daemon-configuration (user-path "git"))) (service openntpd-service-type (openntpd-configuration (listen-on '("127.0.0.1" "::1")) (sensor '("udcf0 correction 70000")) (constraint-from '("www.gnu.org")) (constraints-from '("https://www.google.com/")) (allow-large-adjustment? #t))) (modify-services %base-services (guix-service-type config => (guix-configuration (inherit config) (substitute-urls (cons* "https://berlin.guixsd.org" %default-substitute-urls))))))) ;; Allow resolution of '.local' host names with mDNS. (name-service-switch %mdns-host-lookup-nss))