s0me1newithhand7s/reNixos
1
1
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

kyra(hardening): ntps-rs init

Browse source 
Signed-off-by: s0me1newithhand7s <git+me@hand7s.org>
This commit is contained in:
s0me1newithhand7s 2026-05-03 15:58:46 +03:00
parent 614e2c804a
commit 6046ff3995
1 changed files with 42 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

42
kyra/services/ntpd-rs.nix Normal file
View file

@ -0,0 +1,42 @@
_: {
services = {
ntpd-rs = {
enable = true;
metrics = {
enable = true;
};
settings = {
source = [
{
mode = "nts";
address = "time.cloudflare.com";
}
{
mode = "nts";
address = "nts.ntp.se";
}
];
server = [
{
listen = "[::]:123";
}
];
nts-ke-server = [
{
listen = "[::]:4460";
certificate-chain-path = "/var/lib/acme/ntp.hand7s.org/fullchain.pem";
private-key-path = "/var/lib/acme/ntp.hand7s.org/key.pem";
}
];
synchronization = {
minimum-agreeing-sources = 2;
};
};
};
};
}