colin/nix-files
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
779 Commits 125 Branches 1 Tag 12 MiB
staging/2022-10-08-flutter-update
Commit Graph

48 Commits

Author SHA1 Message Date
colin
874c352987 net: add psk for connecting to my mobile hotspot 2022-10-08 19:24:55 -07:00
colin
a3db626a00 servo: matrix-appservice-discord: hide keys in sops, and enable. 2022-10-05 22:38:20 -07:00
colin
d6e34c6e98 net: rename encrypted .psk files -> .psk.bin 2022-09-29 06:12:51 -07:00
colin
10c7a8d779 delete old network manager files 2022-09-29 06:10:35 -07:00
colin
3184c6cfb6 net: switch to iwd for better experience 
iwd, v.s. wpa_supplicant, has smarter metrics for choosing which
wireless networks to connect to when multiple are in range.
 2022-09-29 06:08:33 -07:00
colin
beda2b5238 net: share connections between all devices by not specifying the adapter name 2022-09-25 18:03:23 -07:00
colin
2316b4a3ce NetworkManager: store (and deploy) wifi connections to all devices 
i haven't saved the hard-wired connection on desko/servo, but i think
that's alright: they should be DHCP'd.
 2022-09-22 18:28:03 -07:00
colin
b8ab7c1fa9 desko: enable nix-serve 2022-09-14 14:45:07 -07:00
colin
f0334db736 secrets: update for moby keys 2022-08-31 17:25:21 -07:00
colin
cd89ea884b secrets: update moby keys 2022-08-31 17:01:41 -07:00
colin
0e611ba3d4 sublime: disable song notifications 2022-08-09 23:12:51 -07:00
colin
c5b132b8c8 persist sublime music config 
we encode the whole config as a secret. that's because it contains the
auth info. not *that* much else is of interest in it. it doesn't appear
to be stateful, thankfully: the state is in
~/.local/share/sublime-music.
 2022-08-09 23:10:21 -07:00
colin
c6fbe3574d vpn: rename ovpnd -> ovpnd-us 
this is needed to disambiguate it against the other regions.
 2022-07-09 00:52:05 -07:00
colin
f790147fb0 add ukraine VPN 2022-07-09 00:48:09 -07:00
colin
1dd791874a remove himalaya: we're using aerc now 2022-06-21 02:02:04 -07:00
colin
924b91564e fix aerc connection settings 2022-06-21 00:21:32 -07:00
colin
ceef35af96 add aerc accounts.conf to secret store (and home-manager) 2022-06-20 23:55:43 -07:00
colin
6c810bc82c update lappy key 2022-06-20 16:03:52 -07:00
Colin
2b8ff8d5ae rename 'uninsane' machine -> 'servo' 2022-06-12 15:11:41 -07:00
colin
fb15f84f1d desko: enable duplicity backups 2022-06-10 01:43:48 -07:00
colin
22bcfe8853 rotate sops key for desko 2022-06-10 00:32:19 -07:00
colin
cd43247d2c enable himalaya for sending and receiving email 
sent messages don't get copied to the sent mailbox, but oh well.
problem for another day.
 2022-06-09 18:58:42 -07:00
Colin
cf4cde548a implement OVPN wireguard service 2022-06-09 17:41:03 -07:00
Colin
492506ab01 remove the last remnants of the old secrets system. 
using SOPS exclusively now
 2022-06-08 17:07:48 -07:00
Colin
ff002c3197 matrix: port secrets to sops 2022-06-08 17:03:41 -07:00
Colin
117b69d39e pleroma: port secrets to sops 2022-06-08 16:46:32 -07:00
Colin
46b0f10b9d nix-serve: port secrets to sops 2022-06-08 16:27:35 -07:00
Colin
e188db9344 postfix/dovecot: convert secrets to sops 2022-06-08 15:59:02 -07:00
Colin
85f16d9732 ovpn config: use sops for secrets 2022-06-08 14:39:10 -07:00
Colin
bc9450a0fa port ddns-he to sops secret 2022-06-08 14:32:16 -07:00
Colin
364f76b59e move uninsane secrets to a machine-global file 2022-06-08 14:22:43 -07:00
Colin
a313f61351 duplicity: migrate secrets to sops 2022-06-07 02:33:11 -07:00
Colin
d2ea4c5ffe migrate duplicity PASSPHRASE to sops 2022-06-06 19:06:53 -07:00
colin
4689d49d9f secrets: add lappy host key to access list 2022-06-06 18:07:28 -07:00
colin
3fea4297a8 secrets: add moby host to the access list 2022-06-06 18:05:28 -07:00
colin
fbd99f0069 re-encrypt keys for uninsane host 2022-06-06 17:53:39 -07:00
colin
b10b6c4aab sops: add uninsane.colin to access list 2022-06-06 16:57:35 -07:00
colin
0a1c959cb5 sops: add moby and lappy pubkeys 2022-06-06 16:54:05 -07:00
colin
1c16348724 secrets: add an example sops secret 2022-06-06 16:39:27 -07:00
Colin
6318e66314 uninsane: enable nix-cache 
note that the other machines can't easily use it unitl i upgrade to nixos-22.05
 2022-05-28 12:39:50 -07:00
Colin
0b79ac872a remove dated duplicity_url secrets/ file 2022-05-27 02:25:24 -07:00
Colin
0b3e7a2c4a update secrets documentation 2022-05-27 01:01:06 -07:00
Colin
27f1360681 migrate dovecot secrets to secrets nix file 2022-05-27 00:57:36 -07:00
Colin
e207ca56dc duplicity: port passphrase to secrets file 2022-05-27 00:46:58 -07:00
Colin
a9b7b614b8 move matrix-synapse email password to secrets file 2022-05-27 00:34:19 -07:00
Colin
91d8b95459 move secrets to a subdirectory, for improved overrides 2022-05-26 23:52:08 -07:00
Colin
f2a7592143 secrets: document how to update a secret 2022-05-22 09:41:16 +00:00
Colin
55b3b6ad46 port to a flake 
built and switched. will try reboot.
 2022-05-21 01:59:51 +00:00