colin/nix-files
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
1,676 Commits 125 Branches 1 Tag 12 MiB
staging/mesa-downgrade
Commit Graph

314 Commits

Author SHA1 Message Date
colin
b3b914bc2e disable i2p on all hosts (i don't use it) 2023-01-26 23:35:29 +00:00
colin
b358cbe02a feeds: rifters: port to db 2023-01-26 00:07:29 +00:00
colin
64cd562824 feeds: IEEE spectrum: port to db 2023-01-26 00:05:50 +00:00
colin
749f59a4af feeds: palladium: port to db 2023-01-26 00:04:17 +00:00
colin
77d5ff623e feeds: Profectus: port to db 2023-01-26 00:02:55 +00:00
colin
6386abb8c6 feeds: SemiAccurate: port to db 2023-01-26 00:01:28 +00:00
colin
28f8434c53 feeds: vitalik.ca: port to db 2023-01-26 00:00:16 +00:00
colin
30fafb4837 feeds: sagacious suricata: port to db 2023-01-25 23:59:23 +00:00
colin
c7205ed668 feeds: bunnie juang: port to db 2023-01-25 23:58:43 +00:00
colin
c69c6612fe feeds: Daniel Janus: port to db 2023-01-25 23:57:53 +00:00
colin
6951b277ad feeds: ian henry: port to db 2023-01-25 23:57:00 +00:00
colin
1167c9bd0c feeds: bitbashing: port to db 2023-01-25 23:56:22 +00:00
colin
1fb2ddbecc feeds: jefftk: port to db 2023-01-25 23:52:00 +00:00
colin
27608cb8c7 feeds: pomeroyb: port to db 2023-01-25 23:51:12 +00:00
colin
33ee59e80d feeds: miniature-calendar: port to db 2023-01-25 23:49:52 +00:00
colin
edacc28e4a feeds: smbc: port to db 2023-01-25 23:45:49 +00:00
colin
99780e30bc feeds: pbfcomics: port to db 2023-01-25 23:45:16 +00:00
colin
140dd05bd1 feeds: xkcd: port to db 2023-01-25 23:44:06 +00:00
colin
c35bc92ac9 feeds: Sean Carrol/Preposterous Universe: port to db 2023-01-25 23:40:55 +00:00
colin
16b92f98e7 feeds: put a num on it: port to db 2023-01-25 23:38:58 +00:00
colin
576b63da9c feeds: sideways view: port to db 2023-01-25 23:35:39 +00:00
colin
e434add20d feeds: Overcoming Bias: port to db 2023-01-25 23:34:30 +00:00
colin
d288086aa2 feeds: roots of progress: port to db 2023-01-25 23:32:53 +00:00
colin
e9c0f692d8 feeds: gwern: port to db 2023-01-25 23:32:11 +00:00
colin
5a75d0f56b feeds: richardcarrier: port to db 2023-01-25 23:29:58 +00:00
colin
a222cf18a3 feeds: port slimemoldtimemold to db 2023-01-25 23:29:17 +00:00
colin
45b9ee763b feeds: applied divinity studies: port to db 2023-01-25 23:28:23 +00:00
colin
50a2196495 feeds: unintended consequences: port to db 2023-01-25 23:27:15 +00:00
colin
e4419ffad4 feeds: stpeter.im: port to db 2023-01-25 23:26:23 +00:00
colin
ae3ba64fc3 feeds: dshr.org: port to db 2023-01-25 23:25:11 +00:00
colin
948b2489d3 feeds: port austinvernon to db 2023-01-25 22:50:41 +00:00
colin
abe491b563 feeds: port lynalden to db 2023-01-25 22:49:45 +00:00
colin
9911593a63 feeds: port benedict evans to db 2023-01-25 22:48:57 +00:00
colin
f72e901f57 feeds: port balaji to db 2023-01-25 22:22:06 +00:00
colin
2047222233 RSS: add philosopher.coach 2023-01-25 21:27:18 +00:00
colin
5d33cb66d6 feeds: add Julia Evans 2023-01-25 10:55:50 +00:00
colin
6fded1f256 feeds: add Matt Webb 2023-01-25 10:36:10 +00:00
colin
1d1c528abc feeds: add Merveilles forum 2023-01-25 10:31:51 +00:00
colin
35fdd2788f feeds: add Emerge podcast 2023-01-25 10:28:15 +00:00
colin
77cb951545 feeds: port congressionaldish to db 2023-01-25 09:46:10 +00:00
colin
33d7819619 trust-dns: add a "quiet" option and enable it 2023-01-25 08:18:29 +00:00
colin
0846abb6bf signald: update, and persist the /var/lib/signald accounts directory 2023-01-25 06:38:27 +00:00
colin
f3568462c2 fix matrix-synapse after nixpkgs update 2023-01-25 03:46:05 +00:00
colin
358b673344 moby: bump CMA 256MB -> 384MB 2023-01-23 07:42:51 +00:00
colin
d9c101689d feeds: add lwn.net 2023-01-22 23:48:08 +00:00
colin
ccbb573681 nit: remove dead comment in feeds.nix 2023-01-22 23:47:22 +00:00
colin
f5c270233f feeds: add Tales From The Bridge (podcast) 2023-01-22 23:46:11 +00:00
colin
bf92bb48be feeds: subscribe to project-insanity.org 2023-01-22 23:40:43 +00:00
colin
2037b425d6 feeds: add Seattle Nice podcast 2023-01-21 09:41:20 +00:00
colin
de74c4e7d5 RSS: add Drew Devault 2023-01-21 06:21:34 +00:00
colin
34a5f3f49b flake update: nixpkgs 2023-01-15 -> 2023-01-19 
```
• Updated input 'nixpkgs-unpatched':
    'github:nixos/nixpkgs/6dccdc458512abce8d19f74195bb20fdb067df50' (2023-01-15)
  → 'github:nixos/nixpkgs/d7705c01ef0a39c8ef532d1033bace8845a07d35' (2023-01-19)
```
 2023-01-21 05:33:15 +00:00
colin
f2d22231a3 freshrss: force sync feeds on every launch. requires to login as user "colin" 2023-01-21 03:50:27 +00:00
colin
5d78bc6704 moby: enable wireguard/home VPN 2023-01-20 22:40:58 +00:00
colin
4da19a6d34 servo: remove users.nix; move autologinUser -> default.nix 2023-01-20 22:16:47 +00:00
colin
2f75925678 servo: lift pleroma user def out of toplevel -> pleroma.nix 2023-01-20 22:15:26 +00:00
colin
55a1856e87 servo: lift git user def out of toplevel -> gitea.nix 2023-01-20 22:14:14 +00:00
colin
2ee0f4efe2 servo: navidrome: give non-private dir and fix perms 2023-01-20 22:11:15 +00:00
colin
9af157b294 moby: enable the client role 2023-01-20 11:37:43 +00:00
colin
a653311f04 wg-home: enable dynamicEndpointRefreshSeconds to be robust against intermittent failure 2023-01-20 10:34:30 +00:00
colin
f4d6ecb1cf wg-home: use the DNS endpoint for connecting to my home VPN 2023-01-20 10:34:04 +00:00
colin
c2e5a0a2fc wg-home: when acting as client, allow server to relay all other clients' messages 2023-01-20 10:20:33 +00:00
colin
c316e51344 desko: enable wg-home 2023-01-20 07:59:11 +00:00
colin
f4f0c1bdd6 servo: fix broken config/typo 2023-01-20 07:45:54 +00:00
colin
6a2374e046 wg-home: unify server and client config 2023-01-20 07:42:31 +00:00
colin
708cb841fe wg-home: auto-generate peer list from hosts.nix config 2023-01-20 07:22:34 +00:00
colin
094b7223c7 servo: wireguard secret is auto-generated 2023-01-20 07:11:37 +00:00
colin
f6dfc9cf29 hosts: migrate IP addresses into hosts/modules 2023-01-20 07:07:45 +00:00
colin
7c2ab92302 wg-home: derive wireguard key from ssh privkey 2023-01-20 06:57:49 +00:00
colin
7c18d77046 wg-home: make wireguard pubkeys configurable; we'll want one per host 2023-01-20 06:09:57 +00:00
colin
02f316f7f8 tweak wg-home to where i can get a p2p connection between lappy and servo 2023-01-20 05:38:14 +00:00
colin
df848b3262 wg-home: use separate host key than client key 2023-01-20 05:10:51 +00:00
colin
a3a7b6c563 hosts: split wifi and bluetooth pairings into the "client" role 2023-01-20 04:25:08 +00:00
colin
038a9034d7 hosts: remove the is-target attribute and opt into roles via the config system instead 2023-01-20 00:13:13 +00:00
colin
5a232eb832 servo: fix secrets path 2023-01-19 23:57:40 +00:00
colin
9301b95dbb wg-home: move to shared module so that host and client config can be adjacent 2023-01-19 23:55:56 +00:00
colin
d13bcc49ab refactor hosts directory, and move ssh keys out of modules/data 
longer-term, i want hosts/by-name to define host-specific data
that's accessible via the other hosts (things like pubkeys).

also the secrets management needs some rethinking. there's really not
much point in me specifiying where *exactly* a secret comes from at its
use site. i should really be specifying secret store manifests; i.e.
"servo.yaml contains secrets X Y and Z", and leaving the rest up to
auto-computing.
 2023-01-19 23:23:43 +00:00
colin
35e28041cd flake update: nixpkgs-stable: 2023-01-15 -> 2023-01-17 
```
• Updated input 'nixpkgs-stable':
    'github:nixos/nixpkgs/2f9fd351ec37f5d479556cd48be4ca340da59b8f' (2023-01-15)
  → 'github:nixos/nixpkgs/b83e7f5a04a3acc8e92228b0c4bae68933d504eb' (2023-01-17)
```
 2023-01-19 10:52:15 +00:00
colin
58a5a8b56d wg_home_privkey: move secret to common file 2023-01-19 09:47:44 +00:00
colin
e6d4ff3c6a experimental wg-home VPN shared across my devices 2023-01-19 09:45:03 +00:00
colin
be29ad8bd8 servo: rename wg0 interface -> wg-ovpns 2023-01-19 09:35:07 +00:00
colin
6967c331e2 matrix: fix synapse/signal permissions 2023-01-18 01:50:28 +00:00
colin
bb983a5328 servo: ship with signaldctl 2023-01-17 10:31:21 +00:00
colin
10d69fb0a4 mautrix-signal: configure correct permissions so that i can use the bridge 2023-01-17 07:57:24 +00:00
colin
98ae1a8513 matrix: persist the mautrix-signal directory 2023-01-16 11:58:21 +00:00
colin
72a2ab78f3 matrix: allow mautrix-signal to communicate with signald 2023-01-16 11:54:32 +00:00
colin
487af9b492 fs: fix /var/lib/private to have expected mode (0700) 2023-01-16 11:43:43 +00:00
colin
472d25c056 mautrix-signal: define the shared secrets statically 2023-01-16 11:43:17 +00:00
colin
9eafacad12 mautrix-signal: get a *little* closer to working 
it looks like mautrix-signal reads the appserver token (AS_TOKEN) from
its config file -- which we place in the nix store. as such, we have no
easy way of getting the token from registration.yaml over to
mautrix-signal. this is presumably what the environmentFile stuff is
meant for, but it doesn't *really* help much.

i think it makes sense to pursue coffeetables' nix-matrix-appservices
module, which has good-looking AS_TOKEN support:
<https://gitlab.com/coffeetables/nix-matrix-appservices>
 2023-01-16 10:22:44 +00:00
colin
0eb46a3179 add mautrix-signal (experimental) 2023-01-16 09:03:56 +00:00
colin
b4e19c037e ejabberd: TODO: fix acme/nginx group membership 2023-01-16 05:59:52 +00:00
colin
926decbea5 persist ~/.cache/nix 2023-01-14 23:21:15 +00:00
colin
fd7acc8fc8 let host nix (i.e. nix-shell, nix-locate) know about our patched nixpkgs and overlays 2023-01-13 09:41:05 +00:00
colin
0f25cba331 moby kernel: disable config option that would break build 2023-01-13 04:40:34 +00:00
colin
39959e912d cross: fix cross compilation by setting both local AND crossSystem 2023-01-13 04:40:34 +00:00
colin
b1741a18e1 feeds: include "title" in the output OPML -- when it exists 2023-01-13 04:13:44 +00:00
colin
110ab1a794 feeds: fix snowden to not be a podcast 2023-01-11 16:20:53 +00:00
colin
7d5a81e542 feeds: port Civboot 2023-01-11 16:11:46 +00:00
colin
1af2a3f329 feeds: port Michael Malice 2023-01-11 16:05:25 +00:00
colin
3fa9e910a9 feeds: port Matrix Live 2023-01-11 16:03:00 +00:00
colin
6befc40700 feeds: migrate Decoder 2023-01-11 15:51:41 +00:00