5ba2b6d846
hosts/plover: update Keycloak service config
2023-02-09 18:10:46 +08:00
b1427c1c9f
hosts/plover: update hcloud user data init script
2023-02-09 14:58:17 +08:00
1c609f5e95
chore: reformat the codebase
2023-02-09 14:51:22 +08:00
ae787f8fcc
config: update comments on config
2023-02-09 14:50:11 +08:00
45cb320725
docs: update networking guidelines
2023-02-09 14:18:10 +08:00
9a07f06512
hosts/plover: update networking setup
2023-02-09 14:17:59 +08:00
f07aa33220
hosts/plover: update domain names for internal services
2023-02-08 19:05:23 +08:00
ac8d875c35
hosts/plover: properly configure WAN interface
2023-02-08 18:30:27 +08:00
76b17d5beb
docs: update networking configuration notes for Plover
2023-02-08 18:03:35 +08:00
93355b3c67
hosts/plover: add comments to various parts
2023-02-08 18:03:20 +08:00
f75c04eaa9
hosts/plover: replace dnsmasq with CoreDNS as DNS server
2023-02-08 18:00:35 +08:00
3787bf2e68
users/foo-dogsquared: add SSH and GPG client configurations
2023-02-07 19:06:18 +08:00
e54c3dce3d
tasks/backup-archive: rotate private key
2023-02-07 18:29:30 +08:00
c508d7a30d
hosts/plover: update dump limit script
2023-02-07 09:47:01 +08:00
2d7abe51d4
hosts/plover: update nginx default server
2023-02-07 09:45:53 +08:00
46dac540c1
hosts/plover: comply services to PostgreSQL secure schema usage
2023-02-07 09:45:37 +08:00
27ee3feee6
hosts/plover: remove extra config for Atuin service
2023-02-06 22:01:01 +08:00
ee91f62e71
vgc: compile with Qt 6
2023-02-06 21:36:06 +08:00
59bb8126af
shells/nix: add more tools
2023-02-06 21:27:55 +08:00
ad7a75800b
workflows/a-happy-gnome: update timeout to 20 seconds
2023-02-06 19:35:22 +08:00
2ae9147a98
hosts/plover: update IP addresses
...
Decided to go with a new production-like run. Networking really stumps
over for the past days. :(
I'll eventually learn if I go with the simplest examples as I learn
along configuring an Ubuntu-based system in the meantime then translate
it to my NixOS config.
2023-02-06 19:33:24 +08:00
efdbc4c103
hosts: fix Wireguard DNS settings
2023-02-06 19:32:55 +08:00
12abc5146e
hosts/plover: update WAN interface network config
2023-02-06 19:30:51 +08:00
102e216ae5
hosts/plover: enable firewall (again)
2023-02-06 16:09:09 +08:00
bb8714d4cc
docs: update networking setup for Hetzner Cloud deployment
2023-02-06 16:08:52 +08:00
c672357a34
hosts/ni: add cntr for debugging Nix builds
2023-02-06 16:08:19 +08:00
c8b55c278a
hosts: update Wireguard setup
2023-02-06 16:08:08 +08:00
213ecb8598
hosts/plover: remove OpenVPN module
...
The Wireguard setup is working quite nicely compared to the OpenVPN
thingy. It is not as much integrated as OpenVPN though.
2023-02-06 16:05:06 +08:00
0086448efa
hosts/plover: add internal DNS server
2023-02-06 16:00:56 +08:00
d2a272f16b
users/foo-dogsquared: update gh config
2023-02-05 16:40:23 +08:00
8429b280ce
hosts/plover: remove extra configuration
2023-02-05 16:28:18 +08:00
d12f1ea15f
hosts/ni: change Wireguard setup to wg-quick
2023-02-05 16:27:49 +08:00
86afc41f28
flake.nix: add comments
2023-02-05 16:27:14 +08:00
d6def2edc5
shells/cloud: add comments
2023-02-05 16:27:03 +08:00
e8d52088ff
vgc: unstable-2022-08-27 -> unstable-2023-02-05
...
Also, mark it as not broken though it is not properly packaged yet since
the executables are not even included.
2023-02-05 16:25:59 +08:00
bbe083cd6a
workflows/a-happy-gnome: reduce extra configuration
2023-02-05 16:24:34 +08:00
97b9a3ff10
hosts/plover: update networking setup
2023-02-05 11:45:06 +08:00
b1925b99a6
hosts/ni: move bootloader code into hardware configuration
2023-02-06 21:19:56 +08:00
8a23bd7932
hosts/ni: modularize networking configuration
...
Re-added the setup with the traditional networking configuration since
I'm currently using GNOME which only integrates with NetworkManager
which is working alongside it.
systemd-networkd not being used at this point but I'm keeping it.
2023-01-31 16:48:10 +08:00
300aaa786b
hosts/ni: remove swh toolkit
2023-01-29 12:49:27 +08:00
5679323209
hosts/plover: add gateway address to networking set
2023-01-29 12:49:04 +08:00
5d23c751f3
profiles/server: convert part of OpenSSH config to settings attribute
2023-01-29 12:03:44 +08:00
e5066837bf
profiles/server: upgrade Linux hardened kernel to 6.1
...
It's a necessity since it will throw an error being the Linux kernel 6.0
reaching end-of-life upstream.
2023-01-29 12:02:49 +08:00
25709b4208
config: remove nix-alien flake input
...
The latest update failed and that reminded me I mostly use steam-run now
which is more reliable and becoming my go-to tool for running unpatched
binaries in NixOS.
2023-01-29 10:11:14 +08:00
31d32a50a3
flake.lock: update inputs
...
Flake lock file updates:
• Updated input 'deploy':
'github:serokell/deploy-rs/a5619f5660a00f58c2b7c16d89058e92327ac9b8' (2022-12-29)
→ 'github:serokell/deploy-rs/8c9ea9605eed20528bf60fae35a2b613b901fd77' (2023-01-19)
• Updated input 'emacs-overlay':
'github:nix-community/emacs-overlay/3f8a6e839a1574631e135a34c53e5e58ae81bd8e' (2023-01-15)
→ 'github:nix-community/emacs-overlay/d1ea6872b199edc680917a7248b596e532297538' (2023-01-28)
• Updated input 'helix-editor':
'github:helix-editor/helix/b6331394a3f341ad21f8fad3e6e0b93becda9ce5' (2023-01-13)
→ 'github:helix-editor/helix/482cc22fecc109773882d3e0fd6251c33862e89e' (2023-01-28)
• Updated input 'home-manager':
'github:nix-community/home-manager/2827b5306462d91edec16a3d069b2d6e54c3079f' (2023-01-14)
→ 'github:nix-community/home-manager/08a778d80308353f4f65c9dcd3790b5da02d6306' (2023-01-28)
• Updated input 'neovim-nightly-overlay':
'github:nix-community/neovim-nightly-overlay/fd8e5953cfeada345d7daeedce6ab0919f1284d4' (2023-01-15)
→ 'github:nix-community/neovim-nightly-overlay/947d9a77304ace2f4eceb4291dc778145290b6be' (2023-01-28)
• Updated input 'neovim-nightly-overlay/flake-compat':
'github:edolstra/flake-compat/009399224d5e398d03b22badca40a37ac85412a1' (2022-11-17)
→ 'github:edolstra/flake-compat/35bb57c0c8d8b62bbfd284272c928ceb64ddbde9' (2023-01-17)
• Updated input 'neovim-nightly-overlay/neovim-flake':
'github:neovim/neovim/6134c1e8a39a5e61d0593613343a5923a86e3545?dir=contrib' (2023-01-15)
→ 'github:neovim/neovim/b4c4c232ba6fe3df5c6f12faff4405a16e4d40df?dir=contrib' (2023-01-28)
• Updated input 'nix-alien':
'github:thiagokokada/nix-alien/967735b1f9bdc12f24e7b1ac336e499d12896988' (2022-12-28)
→ 'github:thiagokokada/nix-alien/998aa8523cde352da0529fcc495cd5709a1eeb98' (2023-01-15)
• Updated input 'nixos-generators':
'github:nix-community/nixos-generators/30516cb2b01896e14ce66893e414b6e3eec71cac' (2023-01-02)
→ 'github:nix-community/nixos-generators/6a5dc1d3d557ea7b5c19b15ff91955124d0400fa' (2023-01-25)
• Updated input 'nixpkgs':
'github:NixOS/nixpkgs/befc83905c965adfd33e5cae49acb0351f6e0404' (2023-01-13)
→ 'github:NixOS/nixpkgs/9b97ad7b4330aacda9b2343396eb3df8a853b4fc' (2023-01-25)
• Updated input 'nixpkgs-stable':
'github:NixOS/nixpkgs/a83ed85c14fcf242653df6f4b0974b7e1c73c6c6' (2023-01-14)
→ 'github:NixOS/nixpkgs/ce20e9ebe1903ea2ba1ab006ec63093020c761cb' (2023-01-28)
• Updated input 'nur':
'github:nix-community/NUR/0d9214b8db66df7d3dac2725abb891d80938e921' (2023-01-15)
→ 'github:nix-community/NUR/3ccb2c06d5be111aa3bbc36c7f30dd10a69b9a7a' (2023-01-28)
• Updated input 'rust-overlay':
'github:oxalica/rust-overlay/aab6eb2dfc7a1e42d94b6f24ef13639ff8544af4' (2023-01-15)
→ 'github:oxalica/rust-overlay/bbc57d7aac4ac1ec0a68ff77a22d03622cc11246' (2023-01-28)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/e18eefd2b133a58309475298052c341c08470717' (2023-01-15)
→ 'github:Mic92/sops-nix/b6ab3c61e2ca5e07d1f4eb1b67304e2670ea230c' (2023-01-24)
• Updated input 'sops-nix/nixpkgs-stable':
'github:NixOS/nixpkgs/7c65528c3f8462b902e09d1ccca23bb9034665c2' (2023-01-15)
→ 'github:NixOS/nixpkgs/918b760070bb8f48cb511300fcd7e02e13058a2e' (2023-01-22)
2023-01-29 08:56:43 +08:00
6c1ff358e2
hosts/plover: update Hetzner filesystem setup
2023-01-29 00:01:32 +08:00
8cacfa2867
users/foo-dogsquared: add GitHub CLI setup
2023-01-29 00:00:55 +08:00
0ffc1a4078
hosts/ni: add decorative parts of the configuration
2023-01-26 13:11:32 +08:00
d0720ee7b7
hosts: revise networking-related variables set
2023-01-26 13:10:15 +08:00
00bbbd8135
hosts/ni: disable ldap service
...
Not yet familiar. Also causing me trouble with long login times since it
is also trying for all users in the system, it seems.
2023-01-24 11:08:02 +08:00
