updates

2025-11-22 20:57:22 +00:00 · 2025-11-22 20:57:22 +00:00 · 03130d29d1
commit 03130d29d1
parent 5546b4cbe9
13 changed files with 572 additions and 0 deletions
--- a/modules/apps.nix
+++ b/modules/apps.nix
@ -0,0 +1,14 @@
+{ pkgs, ... }:
+{
+  environment.systemPackages = with pkgs; [
+    # General tool suite
+    libreoffice-qt6-fresh
+    gimp
+    tor-browser
+    kaidan
+    thunderbird
+
+    # Optional VPN
+    protonvpn-gui
+  ];
+}
--- a/modules/base.nix
+++ b/modules/base.nix
@ -0,0 +1,26 @@
+{
+  networking.hostName = "aberrant";
+
+  # Necessary for flake support
+  nix.settings.experimental-features = ["nix-command" "flakes"];
+
+  # General / Perf
+  zramSwap.enable = true;
+  boot.tmp.cleanOnBoot = true;
+  time.timeZone = "UTC";
+
+  users.users = {
+    # Disables root login by setting an invalid password
+    root.hashedPassword = "!";
+    anon = {
+      isNormalUser = true;
+      extraGroups = ["wheel"];
+      initialPassword = "anon";
+    };
+  };
+
+  # Redundant but good practice
+  security.sudo.wheelNeedsPassword = true;
+
+  system.stateVersion = "25.05";
+}
--- a/modules/branding.nix
+++ b/modules/branding.nix
@ -0,0 +1,38 @@
+{ lib, config, pkgs,... }:
+let
+  customGrubTheme = pkgs.minimal-grub-theme.overrideAttrs (oldAttrs: rec {
+    # srcs = oldAttrs.srcs or [ ] ++ [ ../var/icon.png ];
+
+    installPhase = let
+      originalInstall = oldAttrs.installPhase or ''
+        mkdir -p $out
+      '';
+    in ''
+      ${originalInstall}
+      # Copy the custom icon to $out (e.g., next to other theme files)
+      cp ${../var/icon.png} $out/icons/installer.png
+    '';
+  });
+in
+{
+  stylix = {
+    enable = true;
+    autoEnable = true;
+    polarity = "dark";
+    image = ../var/wallpaper.png;
+    targets.console.enable = false;
+  };
+
+  system.nixos = {
+    distroName = lib.mkForce "Aberrant Linux";
+  };
+
+  isoImage = {
+    appendToMenuLabel = " LiveCD";
+    grubTheme = customGrubTheme;
+  };
+
+  image.baseName = lib.mkForce "aberrant${
+    lib.optionalString (config.isoImage.edition != "") "-${config.isoImage.edition}"
+  }-${config.system.nixos.label}-${pkgs.stdenv.hostPlatform.system}";
+}
--- a/modules/default.nix
+++ b/modules/default.nix
@ -0,0 +1,12 @@
+{
+  imports = [
+    ./base.nix
+    ./tor.nix
+
+    ./kde.nix
+    ./apps.nix
+    
+    ./branding.nix
+    ./user.nix
+  ];
+}
--- a/modules/kde.nix
+++ b/modules/kde.nix
@ -0,0 +1,14 @@
+{
+  services = {
+    desktopManager.plasma6.enable = true;
+    displayManager.sddm = {
+      enable = true;
+      settings = {
+        Autologin = {
+          Session = "plasma.desktop";
+          User = "anon";
+        };
+      };
+    };
+  };
+}
--- a/modules/tor.nix
+++ b/modules/tor.nix
@ -0,0 +1,18 @@
+{
+  #services.tor = {
+  #  enable = true;
+  #  settings = {
+  #    VirtualAddrNetwork = "10.192.0.0/10";
+  #    AutomapHostsOnResolve = true;
+  #    TransPort = 9040;  
+  #    DNSPort = 5353;  
+  #  };
+  #};
+
+  #networking.firewall.extraCommands = ''
+  #  # Redirect DNS UDP to Tor DNSPort
+  #  iptables -t nat -A PREROUTING -p udp --dport 53 -j REDIRECT --to-ports 5353
+  #  # Redirect TCP connections to Tor TransPort
+  #  iptables -t nat -A PREROUTING -p tcp --syn -j REDIRECT --to-ports 9040
+  #'';
+}
--- a/modules/user.nix
+++ b/modules/user.nix
@ -0,0 +1,8 @@
+{
+  home-manager.users."anon" = {
+    home.stateVersion = "25.05";
+    home.file."~/Desktop/README.md" = {
+      source = ../var/README.md;
+    };
+  };
+}