Sovran_Systems/Sovran_SystemsOS
1
0
Fork 0
Code Issues Pull Requests 1 Packages Projects Releases Wiki Activity
659 Commits 3 Branches 0 Tags
d68b4be8d3f0065c1a211c76f6dbab96db5636a3
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
naturallaw77 d68b4be8d3 updated readme
2026-03-25 14:35:00 -05:00
file_fixes_and_new_services
added script to make directories
2026-03-24 18:43:07 -05:00
for_new_sovran_pros
optimized both flake.nix
2026-03-25 12:01:26 -05:00
modules
retooling rdp.nix
2026-03-25 13:31:18 -05:00
configuration.nix
added livekit lk-jwt
2026-03-25 07:19:08 -05:00
custom-add-ons.md
updated custom nix
2026-03-25 13:41:46 -05:00
DIY Install Sovran_SystemsOS.md
updated README and DIY
2024-09-14 10:14:39 -07:00
flake.lock
Nixpkgs Update
2026-03-25 12:12:02 -05:00
flake.nix
optimized both flake.nix
2026-03-25 12:01:26 -05:00
LICENSE
updated LICENSE Apache License
2026-02-16 08:36:00 -06:00
README.md
updated readme
2026-03-25 14:35:00 -05:00
sovran_systems_grey.png
updated logo
2024-06-02 11:30:09 -07:00

README.md






Sovran_SystemsOS

A declarative, self-hosted operating system built on NixOS.

Overview

Sovran_SystemsOS is a fully integrated NixOS configuration that transforms a single machine into a personal cloud, communications hub, Bitcoin node, web server, and daily-use desktop — all managed declaratively.

Every service is pre-wired: reverse proxy routing, database initialization, firewall rules, automated backups, and inter-service communication are handled out of the box. Moreover, you can activate the other custom packages; the system does the rest.

Architecture

Sovran_SystemsOS is structured as a set of NixOS modules exposed via a flake. A remote machine consumes the flake and selectively enables features through a simple configuration interface.

Repository Main Flake (flake.nix)
  └── Sovran_SystemsOS flake (nixosModules.Sovran_SystemsOS)
        ├── configuration.nix/       # Base system
        │   ├── gnome Desktop        # Gnome Desktop Interface
        │   ├── caddy                # Reverse proxy + HTTPS
        │   ├── nextcloud            # Cloud storage
        │   ├── wordpress            # CMS / publishing
        │   ├── element              # Matrix Synapse via Element Messaging App
        ├── modules/
        │   ├── bitcoinecosystem.nix # Bitcoin Core / Knots / BTCPay Server / Bitcoin Lightning
        │   ├── bip110.nix           # Bip110 Node Consensus Policy
        │   ├── element-calling.nix  # Matrix Synapse via Element + Element Voice and Video Calling
        │   ├── haven.nix            # Nostr relay
        │   ├── mempool.nix          # Mempool explorer
        │   ├── rdp.nix              # Remote desktop (RDP)
        │   ├── vaultwarden.nix      # Password management
        ├── nix-bitcoin integration
        ├── bitcoin clients integration
        │   ├── sparrow wallet       # Trusted and Standard Open Source Bitcoin Wallet
        │   ├── bisq/bisq2           # Non KYC Bitcoin Buying and Selling   
        ├── agenix (secrets management)
        └── nixvim

Features

Feature Toggles

Custom Add-On Guide

Every major service is gated behind a feature flag. Enable only what you need:

# custom.nix
{ config, pkgs, lib, ... }:

{
  
  sovran_systemsOS = {
    features = {
        bip110          = lib.mkForce true;
        element-calling = lib.mkForce true;
        haven           = lib.mkForce true;
        mempool         = lib.mkForce true;
        rdp             = lib.mkForce true;
    };
    nostr_npub = "pasteyournpubhere";
  };

}

No unnecessary services run. No wasted resources.

Service Stack

Category Service Description
Web Caddy Automatic HTTPS, reverse proxy for all services
Cloud Nextcloud File storage, sync, and collaboration
CMS WordPress Self-hosted publishing and content management
Passwords Vaultwarden Bitwarden-compatible password vault
Messaging Element/Matrix Synapse Federated, decentralized messaging backend
Video/Voice Calling Element Video and Voice Calling Decentralized Voice Over IP for Matrix with optional TURN/STUN
Bitcoin Bitcoin Core / Knots Full node with optional BIP-110 consensus policy
Bitcoin Lightning LND Full node connected over TOR
Payments BTCPay Server Self-hosted Bitcoin payment processor
Explorer Mempool Bitcoin mempool visualizer and block explorer
Nostr Haven Nostr relay server
Remote Access GNOME Remote Desktop RDP access with auto-generated TLS and credentials

Security

  • SSH hardened — password authentication disabled by default
  • Fail2ban — active on https
  • Agenix — encrypted secrets management integrated into the flake
  • Tor — integration into the bitcoin ecosystem
  • Firewall — ports managed per-module; only enabled services are exposed

Reliability

  • Automated backups via rsnapshot
  • Scheduled maintenance via systemd timers
  • Database initialization handled declaratively
  • Reproducible builds — the entire system is defined in code and can be rebuilt or migrated to new hardware at any time

Installation

Full Guide

👉 DIY Install Sovran_SystemsOS

Requirements

Resource Minimum Recommended
CPU 4 cores 8+ cores
RAM 16 GB 32+ GB
Storage 512 GB SSD + 4 TB SSD 2GB SSD + 4+ TB SSD (Bitcoin node requires significant disk)
Network Stable broadband Static IP or DDNS for public-facing services

Community

Channel Link
General Chat #sovran-systems:anarchyislove.xyz
DIY Support #DIY_Sovran_SystemsOS:anarchyislove.xyz

License

See LICENSE for details.

Project Philosophy

Sovran_SystemsOS exists to provide a complete, self-hosted infrastructure stack that eliminates dependency on third-party platforms. It is opinionated by design — services are pre-integrated so you spend time using your system, not assembling it.

This is not a toolkit. It is a working system.

You retain full visibility into every module, every service definition, and every configuration choice. Nothing is hidden. Everything is reproducible.

Be Digtially Sovereign

Reference in New Issue View Git Blame Copy Permalink
Description
The Official Repository of Sovran_SystemsOS.
https://sovransystems.com
Readme Apache-2.0 2.6 GiB
Languages
Nix 56.2%
Shell 43.8%