1d1c528abc
feeds: add Merveilles forum
2023-01-25 10:31:51 +00:00
35fdd2788f
feeds: add Emerge podcast
2023-01-25 10:28:15 +00:00
77cb951545
feeds: port congressionaldish to db
2023-01-25 09:46:10 +00:00
33d7819619
trust-dns: add a "quiet" option and enable it
2023-01-25 08:18:29 +00:00
0846abb6bf
signald: update, and persist the /var/lib/signald accounts directory
2023-01-25 06:38:27 +00:00
f3568462c2
fix matrix-synapse after nixpkgs update
2023-01-25 03:46:05 +00:00
358b673344
moby: bump CMA 256MB -> 384MB
2023-01-23 07:42:51 +00:00
d9c101689d
feeds: add lwn.net
2023-01-22 23:48:08 +00:00
ccbb573681
nit: remove dead comment in feeds.nix
2023-01-22 23:47:22 +00:00
f5c270233f
feeds: add Tales From The Bridge (podcast)
2023-01-22 23:46:11 +00:00
bf92bb48be
feeds: subscribe to project-insanity.org
2023-01-22 23:40:43 +00:00
2037b425d6
feeds: add Seattle Nice podcast
2023-01-21 09:41:20 +00:00
de74c4e7d5
RSS: add Drew Devault
2023-01-21 06:21:34 +00:00
34a5f3f49b
flake update: nixpkgs 2023-01-15 -> 2023-01-19
...
```
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/6dccdc458512abce8d19f74195bb20fdb067df50' (2023-01-15)
→ 'github:nixos/nixpkgs/d7705c01ef0a39c8ef532d1033bace8845a07d35' (2023-01-19)
```
2023-01-21 05:33:15 +00:00
f2d22231a3
freshrss: force sync feeds on every launch. requires to login as user "colin"
2023-01-21 03:50:27 +00:00
5d78bc6704
moby: enable wireguard/home VPN
2023-01-20 22:40:58 +00:00
4da19a6d34
servo: remove users.nix; move autologinUser -> default.nix
2023-01-20 22:16:47 +00:00
2f75925678
servo: lift pleroma user def out of toplevel -> pleroma.nix
2023-01-20 22:15:26 +00:00
55a1856e87
servo: lift git user def out of toplevel -> gitea.nix
2023-01-20 22:14:14 +00:00
2ee0f4efe2
servo: navidrome: give non-private dir and fix perms
2023-01-20 22:11:15 +00:00
9af157b294
moby: enable the client role
2023-01-20 11:37:43 +00:00
a653311f04
wg-home: enable dynamicEndpointRefreshSeconds to be robust against intermittent failure
2023-01-20 10:34:30 +00:00
f4d6ecb1cf
wg-home: use the DNS endpoint for connecting to my home VPN
2023-01-20 10:34:04 +00:00
c2e5a0a2fc
wg-home: when acting as client, allow server to relay all other clients' messages
2023-01-20 10:20:33 +00:00
c316e51344
desko: enable wg-home
2023-01-20 07:59:11 +00:00
f4f0c1bdd6
servo: fix broken config/typo
2023-01-20 07:45:54 +00:00
6a2374e046
wg-home: unify server and client config
2023-01-20 07:42:31 +00:00
708cb841fe
wg-home: auto-generate peer list from hosts.nix config
2023-01-20 07:22:34 +00:00
094b7223c7
servo: wireguard secret is auto-generated
2023-01-20 07:11:37 +00:00
f6dfc9cf29
hosts: migrate IP addresses into hosts/modules
2023-01-20 07:07:45 +00:00
7c2ab92302
wg-home: derive wireguard key from ssh privkey
2023-01-20 06:57:49 +00:00
7c18d77046
wg-home: make wireguard pubkeys configurable; we'll want one per host
2023-01-20 06:09:57 +00:00
02f316f7f8
tweak wg-home to where i can get a p2p connection between lappy and servo
2023-01-20 05:38:14 +00:00
df848b3262
wg-home: use separate host key than client key
2023-01-20 05:10:51 +00:00
a3a7b6c563
hosts: split wifi and bluetooth pairings into the "client" role
2023-01-20 04:25:08 +00:00
038a9034d7
hosts: remove the is-target attribute and opt into roles via the config system instead
2023-01-20 00:13:13 +00:00
5a232eb832
servo: fix secrets path
2023-01-19 23:57:40 +00:00
9301b95dbb
wg-home: move to shared module so that host and client config can be adjacent
2023-01-19 23:55:56 +00:00
d13bcc49ab
refactor hosts directory, and move ssh keys out of modules/data
...
longer-term, i want hosts/by-name to define host-specific data
that's accessible via the other hosts (things like pubkeys).
also the secrets management needs some rethinking. there's really not
much point in me specifiying where *exactly* a secret comes from at its
use site. i should really be specifying secret store manifests; i.e.
"servo.yaml contains secrets X Y and Z", and leaving the rest up to
auto-computing.
2023-01-19 23:23:43 +00:00
35e28041cd
flake update: nixpkgs-stable: 2023-01-15 -> 2023-01-17
...
```
• Updated input 'nixpkgs-stable':
'github:nixos/nixpkgs/2f9fd351ec37f5d479556cd48be4ca340da59b8f' (2023-01-15)
→ 'github:nixos/nixpkgs/b83e7f5a04a3acc8e92228b0c4bae68933d504eb' (2023-01-17)
```
2023-01-19 10:52:15 +00:00
58a5a8b56d
wg_home_privkey: move secret to common file
2023-01-19 09:47:44 +00:00
e6d4ff3c6a
experimental wg-home VPN shared across my devices
2023-01-19 09:45:03 +00:00
be29ad8bd8
servo: rename wg0 interface -> wg-ovpns
2023-01-19 09:35:07 +00:00
6967c331e2
matrix: fix synapse/signal permissions
2023-01-18 01:50:28 +00:00
bb983a5328
servo: ship with signaldctl
2023-01-17 10:31:21 +00:00
10d69fb0a4
mautrix-signal: configure correct permissions so that i can use the bridge
2023-01-17 07:57:24 +00:00
98ae1a8513
matrix: persist the mautrix-signal directory
2023-01-16 11:58:21 +00:00
72a2ab78f3
matrix: allow mautrix-signal to communicate with signald
2023-01-16 11:54:32 +00:00
487af9b492
fs: fix /var/lib/private to have expected mode (0700)
2023-01-16 11:43:43 +00:00
472d25c056
mautrix-signal: define the shared secrets statically
2023-01-16 11:43:17 +00:00