colin/nix-files
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
6,924 Commits 125 Branches 1 Tag 15 MiB
5d80e298b5
Commit Graph

6924 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Colin
5d80e298b5 wg-home: deploy so as to be compatible with sane-vpn (e.g., route *WAN* traffic through it) 2024-07-05 18:45:26 +00:00
Colin
56e488b130 sane-stop-all-servo: remove extraneous call to sudo 2024-07-05 14:12:48 +00:00
Colin
5ebaaf46a2 hping: ship 
it's a handy net debugging tool
 2024-07-05 00:51:06 +00:00
Colin
bee3ec1fa0 wireshark: fix sandboxing when reading pcaps 2024-07-04 22:28:02 +00:00
Colin
46eab8f4e2 gst-device-monitor: sandbox 2024-07-04 19:49:28 +00:00
Colin
828d4fcc9c iio-sensor-proxy: sandbox 2024-07-04 19:27:16 +00:00
Colin
ca2ac89cec avahi-browse: sandbox 2024-07-04 19:15:33 +00:00
Colin
1ae1d94d53 ols: sandbox 2024-07-04 19:11:16 +00:00
Colin
c68f333bc9 sanebox: document --sanebox-net-dev all 2024-07-04 19:11:06 +00:00
Colin
9a09faa9e4 objdump: sandbox 2024-07-04 19:00:14 +00:00
Colin
ae2eaa786c sanebox: pasta: fix to never forward ports INTO the namespace 
i thought this was OK, but i think it changes the *return route* as well, allowing for VPN escape -- specifically within gnome-calls (UPnP stuff?)
 2024-07-04 18:48:14 +00:00
Colin
9c523b3ddd geoclue-demo-agent: sandbox 2024-07-04 16:21:30 +00:00
Colin
44c4e88b90 gnome-calls: dont ship dbus files 2024-07-04 15:29:59 +00:00
Colin
5ca0ca4f47 servo: freshrss: disable (unused service) 2024-07-04 15:29:39 +00:00
Colin
00ea7e17c5 servo: remove unused calibre service 2024-07-04 14:00:40 +00:00
Colin
823f8f2be3 feeds: subscribe to FLOSS Weekly 2024-07-04 13:34:48 +00:00
Colin
13bec790cb feeds: link to Wikipedia podcasts lists 2024-07-04 13:29:39 +00:00
Colin
e72f9be1bf feeds: subscribe to Sharp Tech 2024-07-04 13:23:36 +00:00
Colin
0fd8dc2a01 sane-scripts.stop-all-servo: sandbox (correctly, i hope) 2024-07-04 12:44:28 +00:00
Colin
24ed242bac servo: fix warning for getExe and iptables 2024-07-04 12:43:02 +00:00
Colin
f290b16f12 sane-bt: transmission -> transmission_4 2024-07-04 12:40:09 +00:00
Colin
b4cb3decff s6-rc: fix wrapper to expand XDG_RUNTIME_DIR again 2024-07-04 12:38:06 +00:00
Colin
7084bf95fa where-am-i: sandbox 2024-07-04 12:35:09 +00:00
Colin
acd0926d1f nwg-panel: sandbox 2024-07-04 12:34:35 +00:00
Colin
2dba46da6b pactl: sandbox 2024-07-04 11:18:06 +00:00
Colin
110c440697 programs: soundconverter: fix sandboxing 2024-07-04 10:33:51 +00:00
Colin
f4047bfbea koreader: docs: increase default font size 28 -> 30 
am i getting old?
 2024-07-04 08:49:49 +00:00
Colin
c573ac4e7e overlays/preferences: fix evolution-data-server to build w/o webkit, again (missed this in a recent rename) 2024-07-04 08:12:29 +00:00
Colin
cc15be54d4 uassets: 2024-07-02 -> 2024-07-03 2024-07-04 06:59:46 +00:00
Colin
8b95a5fa37 nixpkgs: 2024-07-02 -> 2024-07-03 2024-07-04 06:59:46 +00:00
Colin
b596f88ccc nixpkgs-wayland: 2024-07-02 -> 2024-07-03 2024-07-04 06:59:36 +00:00
Colin
e82feb9f71 make-sandboxed: migrate to binary wrapper 2024-07-03 19:35:56 +00:00
Colin
4839a40205 make-sandboxed: use makeWrapper proper, rather than rolling my own 
i can't use the _binary_ wrapper unless i use a fully-qualified path to 'sanebox' or hide it behind something like /usr/bin/env
 2024-07-03 17:54:38 +00:00
Colin
631c47c9bc programs/assorted: prefer makeBinaryWrapper over makeWrapper 2024-07-03 16:35:45 +00:00
Colin
b2f36e4ef6 rofi: add a "Close Menu" item to the app/file launcher 2024-07-03 14:05:24 +00:00
Colin
9a210b4a63 rofi/sane-open: fix so "Apps" menu item reveals keyboard 2024-07-03 13:43:28 +00:00
Colin
181ebfc627 moby: launch Signal by default (it seems to be less crashy than before) 2024-07-03 12:43:12 +00:00
Colin
ddb904ae19 iio-sensor-proxy: implement partial magnetometer support 2024-07-03 12:34:34 +00:00
Colin
a234e57d89 nixpkgs: 2024-07-01 -> 2024-07-02 2024-07-03 09:08:53 +00:00
Colin
a75a8f8425 sops-nix: 2024-06-30 -> 2024-07-01 2024-07-03 09:06:44 +00:00
Colin
9cbe74b20b 2024-06-29 -> 2024-07-02 2024-07-03 09:05:46 +00:00
Colin
6b06062cc9 uassets: 2024-07-01 -> 2024-07-02 2024-07-03 09:05:08 +00:00
Colin
b009b2c836 nixpkgs-wayland: 2024-07-01 -> 2024-07-02 2024-07-03 09:04:43 +00:00
Colin
d46239f2ad docs: iio-sensor-proxy: document current state of compass in Pinephone 2024-07-02 22:25:41 +00:00
Colin
47f474fecd moby: fix the magnetometer (compass) 
it's not immediately viewable by geoclue, but it's viewable (and
working) from the CLI:
```
SANEBOX_DISABLE=1 watch cat /sys/devices/platform/soc/1c2b000.i2c/i2c-1/1-001c/iio:device2/in_magn_x_raw
```

the longer-term fix requires u-boot integration, but this hack is
actually entirely contained to linux. u-boot gives linux a
mostly-unmodified dtb from the linux package, and i just modify the
linux dtb to use the specific magnetometer my hardware has.
 2024-07-02 20:29:49 +00:00
Colin
828ef00b61 servo: transmission: torrent-done: print call args at start to aid debugging 2024-07-02 16:07:46 +00:00
Colin
5d14a39d52 qmk: ergodox: make braces easier to type and clean up layers 2024-07-02 14:09:42 +00:00
Colin
58f89aadf3 scripts: add a way to flash my ergodox-ez firmware 2024-07-02 12:18:58 +00:00
Colin
d9a03ee64a signal-desktop-from-src: 7.11.1 -> 7.14.0 2024-07-02 09:53:55 +00:00
Colin
697543a675 u-boot-pinephone: use "extraPatches" instead of "patches", to future-proof 2024-07-01 17:44:53 +00:00