devops@home

NixOS yeeeeaaaahhhh!

How to create a NixOS installation media

Build ISO:

nix build .#nixosConfigurations.iso-desktop.config.system.build.isoImage

Copy it to the USB drive from result/iso via dd or usbimager.

Boot the NixOS installer ISO. Check that you can connect to the machine via SSH.

Get a machine's public AGE key from the host SSH keys:

nix-shell -p ssh-to-age --run 'ssh-keyscan x.x.x.x | ssh-to-age'

Save this key to the .sops.yaml. setup secrets/<hostname>.yaml with all needed secrets.

Run something like this:

nixos-anywhere -f .#name --copy-host-keys \
  --disk-encryption-keys /tmp/disk.key /tmp/deploy/disk.key \
  --target-host [email protected]`

Where:

Login to the machine after reboot.

Name		Name	Last commit message	Last commit date
Latest commit History 1,364 Commits
home		home
lib		lib
modules		modules
nixos		nixos
pkgs		pkgs
secrets		secrets
shells		shells
.envrc		.envrc
.gitattributes		.gitattributes
.gitignore		.gitignore
.nixd.json		.nixd.json
.sops.yaml		.sops.yaml
LICENSE		LICENSE
README.md		README.md
default.nix		default.nix
flake.lock		flake.lock
flake.nix		flake.nix