Create a bootstrap image for Digital Ocean droplets

I need a way to reliably get a NixOS VM provisioned in the cloud, and the
easiest way to do this is to create a qcow2 image, upload it to Digital Ocean,
and use that to start a droplet. This is very much a manual process, but that's
fine, I shouldn't need to do it very often (for now).

1 files changed, 0 insertions, 42 deletions

diff --git a/Omni/OsBase.nix b/Omni/OsBase.nix
deleted file mode 100644
index 3e69d8e..0000000
--- a/Omni/OsBase.nix
+++ /dev/null
@@ -1,42 +0,0 @@
-{ pkgs, config, ... }:
-let ports = import ./Cloud/Ports.nix;
-in {
-  boot.tmp.cleanOnBoot = true;
-  fonts.fonts = with pkgs; [
-    google-fonts
-    mononoki
-    source-code-pro
-    fantasque-sans-mono
-    hack-font
-    fira
-    fira-code
-    fira-code-symbols
-  ];
-  networking.firewall.allowPing = true;
-  nix.settings.substituters =
-    [ "https://cache.nixos.org" ]; # "ssh://dev.simatime.com" ];
-  nix.gc.automatic = true;
-  nix.gc.dates = "Sunday 02:15";
-  nix.optimise.automatic = true;
-  nix.optimise.dates = [ "Sunday 02:30" ];
-  nix.settings.extra-sandbox-paths = [ config.programs.ccache.cacheDir ];
-  nix.settings.trusted-users = [ "ben" ];
-  programs.ccache.enable = true;
-  programs.mosh.enable = true;
-  programs.mosh.withUtempter = true;
-  security.acme.defaults.email = "ben@bsima.me";
-  security.acme.acceptTerms = true;
-  security.sudo.wheelNeedsPassword = false;
-  services.clamav.daemon.enable = true; # security
-  services.clamav.updater.enable = true; # security
-  services.fail2ban.enable = true; # security
-  services.fail2ban.ignoreIP = [ ports.bensIp ]; # my home IP
-  services.fail2ban.maxretry = 10;
-  services.openssh.enable = true;
-  services.openssh.openFirewall = true;
-  services.openssh.settings.X11Forwarding = true;
-  services.openssh.settings.PasswordAuthentication = false;
-  services.openssh.settings.PermitRootLogin = "prohibit-password";
-  system.autoUpgrade.enable = false; # 'true' breaks our nixpkgs pin
-  zramSwap.enable = true;
-}