colin/nix-files
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
7,288 Commits 141 Branches 1 Tag
033faf6f6bebf401d98a279c277ff8af66f3d044
Commit Graph

7288 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Colin
033faf6f6b clightning-sane: fix --help formatting 2024-07-28 19:24:38 +00:00
Colin
eb3651ce59 refactor: assorted: python: logger.warn -> logger.warning 
the former is deprecated
 2024-07-28 03:41:30 +00:00
Colin
bf1f843306 doc: rsyslog: note that this isnt the traditional setup 
also, may want to tune the burst settings in the future. i definitely got rate-limited
 2024-07-28 03:40:53 +00:00
Colin
6cc5669772 servo: remove the root auto-login, so that my s6-rc entrypoint works 
i'm sure there's a better way to do this... meh
 2024-07-28 03:40:07 +00:00
Colin
cb1fbdcaf0 sane-ip-check: add a delay in the retry path 2024-07-28 03:24:02 +00:00
Colin
c83dc4d601 servo: assorted: decrease logging verbosity of matrix, lemmy, dovecot, ntfy-sh 2024-07-28 03:15:27 +00:00
Colin
36bbac539f nginx: port /var/www/sites data to private store 2024-07-28 02:38:36 +00:00
Colin
9a1cd9341f feeds: note some more podcast discovery places 2024-07-28 01:54:14 +00:00
Colin
3a6a5ffe01 rsyslog: persist logs 2024-07-28 01:54:14 +00:00
Colin
971de060d5 WIP: port /var/log persistence to private store 2024-07-28 01:54:14 +00:00
Colin
3ea57f1d6a users: disable pam mount 
this was needed for the old way of mounting ~/private, but no longer
 2024-07-28 01:54:14 +00:00
Colin
fa05e59863 servo: ipfs: port data to private store 2024-07-28 01:54:14 +00:00
Colin
de7ff360dc servo: postfix: port data to private store 2024-07-27 17:43:18 +00:00
Colin
7f1f9a082d flare-signal-nixified: simplify 2024-07-27 17:30:18 +00:00
Colin
6553cdc068 flare-signal-nixified: 0.10.1 -> 0.15.0 2024-07-27 16:54:12 +00:00
Colin
e44771f67d servo: postgresql: port data to private store 2024-07-27 16:51:23 +00:00
Colin
cbe17c03e4 scripts/deploy: fix usage message about --reboot flag 2024-07-27 14:48:44 +00:00
Colin
4c4d841038 servo: slskd: dont persist any data, actually (it still works) 2024-07-27 14:48:31 +00:00
Colin
060ae113a1 servo: transmission: port data to private store 2024-07-27 14:14:27 +00:00
Colin
540124d2f7 servo: slskd: port data to private store 2024-07-27 13:54:01 +00:00
Colin
9df947aa74 servo: ejabberd: port data to private store 2024-07-27 13:40:08 +00:00
Colin
66333cbbe7 servo: prosody: port data to private store 2024-07-27 13:38:34 +00:00
Colin
3353ed3b66 linux-postmarketos-allwinner: 6.9.0 -> 6.9.10 2024-07-27 13:26:18 +00:00
Colin
447923a231 servo: matrix: port data to private store 2024-07-27 12:44:49 +00:00
Colin
3179a6834b servo: gitea: port data to private store 2024-07-27 11:49:47 +00:00
Colin
70a470b81e servo: ntfy: port data to private store 2024-07-27 02:10:43 +00:00
Colin
fff7848cd6 servo: clightning: port data to private store 2024-07-27 02:07:39 +00:00
Colin
1fb6cb483b servo: tor: port to private share 2024-07-27 02:04:08 +00:00
Colin
33e72c8d34 pleroma: port to private share 2024-07-27 02:00:28 +00:00
Colin
8629e2600a jackett: port to private store 2024-07-27 01:49:12 +00:00
Colin
2e644dc020 persist/private: remove the "prefix", to allow the store to hold files not just in /home/colin 
this will require a one-time manual migration on all devices
 2024-07-27 00:26:57 +00:00
Colin
f4a6bc1991 pam_cap: fix ordering so that my sessions have correct capabilities again 2024-07-26 23:58:57 +00:00
Colin
19fd45211f sane-secrets-unlock: remove from ~/.profile and make it an s6 service 
more reliable, in practice
 2024-07-26 22:18:32 +00:00
Colin
ace03bb0e9 persist/private: actually do enable "auto", for servo where i dont auto-tty-login as colin 
this doesn't seem to block the boot
 2024-07-26 22:02:57 +00:00
Colin
8819142128 modules/users: use = instead of -eq for comparison to fix warning which XDG_VTNR is unset 2024-07-26 20:57:23 +00:00
Colin
d905af6cd1 ship sane-private-unlock-remote as a cron job to lappy/desko 2024-07-26 20:54:27 +00:00
Colin
0f084b19f1 sane-scripts.private-unlock-remote: init 2024-07-26 20:16:12 +00:00
Colin
91263b9dcf sane-secrets-dump: allow specifying the secret by name instead of full path 2024-07-26 20:05:51 +00:00
Colin
40e4d0f39c sane-secrets-dump: allow dumping specific fields, and in multiple formats 2024-07-26 19:56:18 +00:00
Colin
06a17e4425 moby: remove dead autologin code 2024-07-26 16:04:38 +00:00
Colin
cbca403158 hosts/common: downgrade the auto-login to lib.mkDefault 
servo uses autologin as root, for the purpose of recovery. let it keep that for now
 2024-07-26 16:04:13 +00:00
Colin
3b8d6c8587 refactor: s6/unl0kr/profile: put more shell init stuff directly in modules/users/default.nix when it doesnt benefit from being pluggable 2024-07-26 15:58:59 +00:00
Colin
d59380b4dd unl0kr: ensure it runs on the same tty the session was initialized on 2024-07-26 14:50:28 +00:00
Colin
f4df121e3d persist/private: s6: use systemd to explicitly start the mount, rather than assume it's already been initiated 2024-07-26 14:01:31 +00:00
Colin
3d91fa2475 systemd.networkd: disable the wait-online service 
it blocks boot like a idiot
 2024-07-26 14:01:31 +00:00
Colin
96f786de20 persist/private: fix so systemd actually knows when the mount has completed 2024-07-26 12:44:32 +00:00
Colin
fcbbfc4a65 fix s6 service ordering: unl0kr -> (wait for mount) -> sway 
note that the systemd-aware mount never completes -- it's stuck in 'activating' forever. that's the next challenge
 2024-07-26 12:18:14 +00:00
Colin
b93e9e75e6 unl0kr: use inotify in the retry logic 2024-07-26 11:31:53 +00:00
Colin
4daf5452e8 unl0kr: dont echo password to terminal 2024-07-26 09:36:06 +00:00
Colin
af905a2f58 unl0kr: split the gocryptfs unlocking into its own separate service 
/mnt/persist/private can be depended on by both s6 user services and systemd system services (which will become useful for servo)

/mnt/persist/private can be unlocked by dropping the key in remotely, however that won't kill unl0kr

TODO: fix unl0kr to not also output text to the tty

TODO: ensure gocryptfs mount can handle being fed a wrong password
 2024-07-26 08:08:21 +00:00