|
|
55175e5957
|
geary: fix that it was failing to connect
|
2024-08-21 06:06:10 +00:00 |
|
|
|
2758b0eae2
|
signal-desktop: DO start by default: until/unless i get signal-flare working, hosts which are capable should launch signal-desktop at boot
|
2024-08-21 03:30:16 +00:00 |
|
|
|
9c9b237e69
|
/mnt/servo/*: fix for curl 8.9.0
see: <https://github.com/curl/curl/discussions/14299>
|
2024-08-20 09:53:37 +00:00 |
|
|
|
17dcf566f7
|
loupe: add /dev/dri to the sandbox for faster rendering
|
2024-08-20 08:52:24 +00:00 |
|
|
|
6e1ccc3e19
|
all: pin kernel to a later version (6.10, whereas it would be reduced to 6.6 by next nixpkgs update)
|
2024-08-20 08:51:38 +00:00 |
|
|
|
4055c6d3e9
|
podcasts: subscribe to C-Span's _The Weekly_
|
2024-08-20 02:23:41 +00:00 |
|
|
|
ddffda1594
|
nixpkgs: 0-unstable-2024-08-13 -> 0-unstable-2024-08-18
|
2024-08-19 13:49:32 +00:00 |
|
|
|
aecbfb45c9
|
gnome-calls: dont fail offline indefinitely when DNS errors
|
2024-08-18 14:24:11 +00:00 |
|
|
|
391c4f5aac
|
geary: change the default autostart to true
|
2024-08-17 12:13:15 +00:00 |
|
|
|
48b0960966
|
moby: dont auto-start signal-desktop (its too battery draining)
|
2024-08-17 12:11:40 +00:00 |
|
|
|
08d6f9c761
|
dconf: sandbox out-of-place
|
2024-08-16 02:48:24 +00:00 |
|
|
|
05bc5923cf
|
sway: sandbox out-of-place
|
2024-08-16 02:48:24 +00:00 |
|
|
|
114b37928a
|
tor-browser: sandbox out-of-place
|
2024-08-16 02:44:27 +00:00 |
|
|
|
e846a5046a
|
feeds: subscribe to 404 media
|
2024-08-16 02:41:17 +00:00 |
|
|
|
729d2a9809
|
firefox: dont use inplace wrapper
avoiding inplace wrapping gives me more leverage over what gets linked into the final runtime environment
|
2024-08-16 02:16:37 +00:00 |
|
|
|
62ebdf5de4
|
brave: fix sandboxing
|
2024-08-16 00:15:58 +00:00 |
|
|
|
f834f551ed
|
assorted: clarify why i use wrapperType = inplace when sandboxing
|
2024-08-15 21:01:42 +00:00 |
|
|
|
140b61a944
|
slic3r: ship
|
2024-08-15 10:32:22 +00:00 |
|
|
|
db7767c679
|
assorted: remove some no-longer-needed sandbox.wrapperType = "inplace" declarations
|
2024-08-15 10:32:22 +00:00 |
|
|
|
60a4eb0bde
|
gnome-calls: associate with tel:, sip:, sips: URIs
|
2024-08-14 08:27:27 +00:00 |
|
|
|
a96e83f4e1
|
doc: gnome-calls: document some UI elements
|
2024-08-14 07:53:47 +00:00 |
|
|
|
e245164da3
|
nixpkgs-wayland: 2024-08-12 -> 2024-08-13
|
2024-08-13 22:01:31 +00:00 |
|
|
|
db39dc209f
|
xdg-desktop-portal-gnome: sandbox
|
2024-08-13 03:34:09 +00:00 |
|
|
|
77a753b0d6
|
gnome-maps: todo: better portal integration
|
2024-08-13 02:50:59 +00:00 |
|
|
|
144afd8171
|
sway: fix wlroots drmSync bug via upstream patch
|
2024-08-12 21:52:44 +00:00 |
|
|
|
7827f6c584
|
sway: note that the activation patch is still necessary
|
2024-08-12 18:28:16 +00:00 |
|
|
|
e1899495a0
|
nixpkgs-wayland: 0-unstable-2024-08-06 -> 0-unstable-2024-08-12
|
2024-08-12 18:05:32 +00:00 |
|
|
|
a56ad56a4f
|
refactor: move ~/.cache/nix persistence to hosts/common/programs/nix.nix
|
2024-08-12 16:06:26 +00:00 |
|
|
|
da551b8b97
|
geary: grant access to more files
|
2024-08-12 16:04:20 +00:00 |
|
|
|
ca412d08bd
|
nautilus: grant access to more files
|
2024-08-12 16:04:11 +00:00 |
|
|
|
74acfeadd5
|
programs/assorted: clarify sandbox.enable = false situation
|
2024-08-12 10:27:41 +00:00 |
|
|
|
e7d5a61014
|
libcap: split into separate capsh and captree programs, and sandbox the latter
|
2024-08-12 10:13:50 +00:00 |
|
|
|
fc826a3503
|
libcap: patch in captree locally rather than via a nixpkgs patch that would force mass rebuilds
|
2024-08-12 09:39:43 +00:00 |
|
|
|
d4290588bf
|
rename: trust-dns -> hickory-dns
|
2024-08-12 01:23:39 +00:00 |
|
|
|
bfe278c17a
|
feeds: subscribe to Weird Little Guys
|
2024-08-12 00:35:34 +00:00 |
|
|
|
d39459d8b5
|
NetworkManager: tighten the systemd sandboxing
|
2024-08-11 22:54:47 +00:00 |
|
|
|
4d5e60756b
|
modemmanager: make its capabilities more obvious
|
2024-08-11 22:54:41 +00:00 |
|
|
|
119afcf393
|
firefox: remove open-in-mpv (obsoleted by firefox-xdg-open)
|
2024-08-11 22:37:12 +00:00 |
|
|
|
d3d970eb3e
|
firefox: dont require approval to open xdg-open: URIs
|
2024-08-11 22:32:26 +00:00 |
|
|
|
c0d5004926
|
firefox: add a right-click context menu to open any URI with the system handler
it still prompts the user to allow it, but i'll fix that later i guess
|
2024-08-11 22:26:23 +00:00 |
|
|
|
d9a876e49a
|
fractal: association with https://matrix.to links
|
2024-08-11 21:45:51 +00:00 |
|
|
|
5e71e5a067
|
moby: enable bluetooth
|
2024-08-11 06:27:07 +00:00 |
|
|
|
f0b0d15ad7
|
evtest: ship
|
2024-08-11 06:26:58 +00:00 |
|
|
|
8aebc1fe87
|
feeds: subscribe to Oyez supreme court oral arguments
|
2024-08-10 11:16:54 +00:00 |
|
|
|
a2f34be9d6
|
avahi: fix so the dbus policy files get installed system wide, again
|
2024-08-10 02:59:20 +00:00 |
|
|
|
bda172bc2d
|
avahi: harden systemd service
N.B.: i haven't tested this on moby yet (which advertizes the gps-share service) nor on servo (which maybe uses it for jellyfin, idk)
|
2024-08-10 02:04:57 +00:00 |
|
|
|
a91a2d8a7f
|
gps-share: fix sandboxing
|
2024-08-10 01:10:31 +00:00 |
|
|
|
875d919fa8
|
systemd-rfkill: harden
|
2024-08-10 00:34:13 +00:00 |
|
|
|
a323f321b5
|
snapper: disable
it wasn't working to begin with
|
2024-08-10 00:09:58 +00:00 |
|
|
|
039ffcdcd4
|
newsflash: sandbox
|
2024-08-09 21:35:33 +00:00 |
|
