use doas, get steam to work
This commit is contained in:
parent
9176534664
commit
36e8e08e2f
|
|
@ -376,6 +376,7 @@ in
|
||||||
vscodium
|
vscodium
|
||||||
vulkan-tools
|
vulkan-tools
|
||||||
wayland-utils
|
wayland-utils
|
||||||
|
xorg.xhost
|
||||||
xorg.xlsclients
|
xorg.xlsclients
|
||||||
zoxide
|
zoxide
|
||||||
zsh
|
zsh
|
||||||
|
|
@ -489,8 +490,11 @@ in
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
# OpenGL
|
# OpenGL, 32-bit for steam
|
||||||
hardware.graphics.enable = true;
|
hardware.graphics = {
|
||||||
|
enable = true;
|
||||||
|
enable32Bit = true;
|
||||||
|
};
|
||||||
|
|
||||||
# try to ensure we can use our network LaserJet
|
# try to ensure we can use our network LaserJet
|
||||||
services.printing.enable = true;
|
services.printing.enable = true;
|
||||||
|
|
@ -560,9 +564,15 @@ in
|
||||||
virtualisation.virtualbox.host.enableHardening = false;
|
virtualisation.virtualbox.host.enableHardening = false;
|
||||||
virtualisation.virtualbox.host.addNetworkInterface = false;
|
virtualisation.virtualbox.host.addNetworkInterface = false;
|
||||||
|
|
||||||
# configure sudo
|
# use doas instead of sudo
|
||||||
security.sudo.execWheelOnly = true;
|
security.sudo.enable = false;
|
||||||
security.sudo.extraConfig = ''
|
security.doas.enable = true;
|
||||||
Defaults lecture = never
|
security.doas.extraRules = [
|
||||||
'';
|
# wheel users are allowed to become all users
|
||||||
|
{ groups = [ "wheel" ]; noPass = false; keepEnv = true; persist = true; }
|
||||||
|
|
||||||
|
# wheel users can use sandbox stuff without password
|
||||||
|
{ groups = [ "wheel" ]; runAs = "sandbox-games"; noPass = true; }
|
||||||
|
{ groups = [ "wheel" ]; runAs = "sandbox-kde"; noPass = true; }
|
||||||
|
];
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -31,13 +31,13 @@
|
||||||
# aliases
|
# aliases
|
||||||
shellAliases = {
|
shellAliases = {
|
||||||
# system build/update/cleanup
|
# system build/update/cleanup
|
||||||
update = "sudo nixos-rebuild boot";
|
update = "doas nixos-rebuild boot";
|
||||||
upgrade = "sudo nixos-rebuild boot --upgrade";
|
upgrade = "doas nixos-rebuild boot --upgrade";
|
||||||
updatenow = "sudo nixos-rebuild switch";
|
updatenow = "doas nixos-rebuild switch";
|
||||||
upgradenow = "sudo nixos-rebuild switch --upgrade";
|
upgradenow = "doas nixos-rebuild switch --upgrade";
|
||||||
gc = "sudo nix-collect-garbage --delete-older-than 7d";
|
gc = "doas nix-collect-garbage --delete-older-than 7d";
|
||||||
verify = "sudo nix --extra-experimental-features nix-command store verify --all";
|
verify = "doas nix --extra-experimental-features nix-command store verify --all";
|
||||||
optimize = "sudo nix --extra-experimental-features nix-command store optimise";
|
optimize = "doas nix --extra-experimental-features nix-command store optimise";
|
||||||
|
|
||||||
# list latest files last
|
# list latest files last
|
||||||
ltr = "eza -l -s modified";
|
ltr = "eza -l -s modified";
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue