Lillian-Violet/NixOS-Config
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

Disable lanzaboote on shodan for now

Browse source
This commit is contained in:
Lillian Violet 2024-09-10 17:25:28 +02:00
parent d758509551
commit 5f43f81d51
2 changed files with 6 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
flake.nix
View file

@ -213,7 +213,7 @@
# > Our main nixos configuration file < # > Our main nixos configuration file <
./nixos/hosts/shodan/configuration.nix ./nixos/hosts/shodan/configuration.nix
sops-nix.nixosModules.sops sops-nix.nixosModules.sops
lanzaboote.nixosModules.lanzaboote #lanzaboote.nixosModules.lanzaboote
disko.nixosModules.disko disko.nixosModules.disko
jovian.nixosModules.jovian jovian.nixosModules.jovian
home-manager.nixosModules.home-manager home-manager.nixosModules.home-manager

10
nixos/hosts/shodan/configuration.nix
View file

@ -207,13 +207,13 @@
# This setting is usually set to true in configuration.nix # This setting is usually set to true in configuration.nix
# generated at installation time. So we force it to false # generated at installation time. So we force it to false
# for now. # for now.
boot.loader.systemd-boot.enable = lib.mkForce false; boot.loader.systemd-boot.enable = true;
boot.initrd.systemd.enable = true; boot.initrd.systemd.enable = true;
boot.lanzaboote = { #boot.lanzaboote = {
enable = true; # enable = true;
pkiBundle = "/etc/secureboot"; # pkiBundle = "/etc/secureboot";
}; #};
boot.loader.systemd-boot.configurationLimit = 3; boot.loader.systemd-boot.configurationLimit = 3;
boot.loader.timeout = 0; boot.loader.timeout = 0;
boot.loader.efi.canTouchEfiVariables = true; boot.loader.efi.canTouchEfiVariables = true;