1a0bd16b44
servo: enable prosody XMPP server
2022-11-12 10:02:06 +00:00
56f89bb3f7
servo: ejabberd: configure, but then disable because broken
2022-11-12 01:43:14 +00:00
92a67253c3
servo: lay the skeleton files for a XMPP (jabber) server
2022-11-11 12:56:09 +00:00
8d0ded0ea1
postgresql: leave some notes about future optimization opportunities
2022-11-11 10:58:57 +00:00
de820e32b7
servo: pleroma: remove unneeded prepare: :named
config
...
doing this should increase perf
2022-11-11 10:58:29 +00:00
be286cd190
servo: nginx: enable gzip and TLS optimizations
2022-11-11 10:57:57 +00:00
7cacbd9580
goaccess: optimization only refresh stats once per 30s
2022-11-11 10:56:54 +00:00
c84f10e060
freshrss: update feeds less frequently
...
Freshrss is throwing some error in the logs... but it still looks to
*kinda* work? ugh.
2022-11-11 08:48:48 +00:00
205b6a9afb
nginx: forceSSL for git and fedi
2022-11-08 13:28:41 +00:00
10a665d11c
add a servo-cross
target
...
though it looks like rpi4 linux actually fails to cross-compile due to
some RMW page error
2022-11-06 06:04:54 -08:00
77baf03496
Revert "servo: don't ship custom linux kernel packages anymore"
...
This reverts commit 12b5e68b25
.
2022-11-06 05:27:04 -08:00
9f43444f0c
ipfs: migrate settings
...
did not explicitly test these
2022-11-06 03:32:35 -08:00
12b5e68b25
servo: don't ship custom linux kernel packages anymore
...
it's probably not necessary. i confirmed the kernel provides rpi400 dtb
by default.
2022-11-05 22:29:20 -07:00
f6e4c0058c
add mercurial
to dev packages
2022-11-01 22:20:05 -07:00
3ecfea158a
browser: make more easily swappable between firefox and librewolf
2022-11-01 16:23:50 -07:00
518d2f60c0
pleroma: port ExifTool config
...
the old path is deprecated, if my syslog is to be believed.
2022-10-25 04:11:47 -07:00
174bc539bc
moby: enable a statically-assigned but encrypted password
2022-10-24 07:39:50 -07:00
4c4b73f693
refactor: helpers/set-hostname.nix
becomes machines/instantiate.nix
2022-10-24 06:06:11 -07:00
9151f58b37
desko: set a password
2022-10-24 01:59:36 -07:00
8dd267db30
servo: goaccess: anonymize IPs and hide the 'HOSTS' panel
2022-10-24 00:16:42 -07:00
b658b93c64
lappy: store the hashed user passwd in git and decrypt it into /etc/passwd on boot
...
this approach lets me persist the password. persisting /etc/shadow
directly wasn't so feasible. populating /etc/shadow at activation time
is something nix already does and is easy to plug into.
so we store the passwd hash in this repo, but encrypt it to the
destination machine's ssh pubkey to add enough entropy that it's not
brute-forceable through the public git repo.
2022-10-23 06:53:06 -07:00
2b14648587
servo: persist the maildir
...
this way i don't lose my mail on every reboot...
wow i can't believe it took me this long to make the connection.
2022-10-22 07:00:56 -07:00
187a52527b
refactor: squash env
directory
2022-10-22 03:56:50 -07:00
3851136398
nginx/goaccess: opt-in *specific* hosts for public logs
...
the other hosts are by default private. mostly because they're just
internal services where i'm the primary user.
2022-10-21 22:38:38 -07:00
635fee1bda
nginx: include hostname in log so goaccess can group on it
2022-10-21 22:00:49 -07:00
5048ee1ce5
servo: fix RSS feeds.nix invalid reference (fix build)
2022-10-21 21:59:17 -07:00
e787dc29c6
servo: enable goaccess
for metrics/monitoring
...
TODO: change the nginx log format to include virtualhost and enable
goaccess to group by host
2022-10-21 09:55:49 -07:00
d9caf70c6c
home-manager: remove 'enable' option
2022-10-21 07:43:20 -07:00
48ff8e9ca7
more feedbackd user definition to phosh
2022-10-20 19:59:03 -07:00
e11f903aec
create/deply ~/private
: an encrypted filesystem
...
it uses gocryptfs -- a newer alternative to EncFS -- to encrypt
paths and data (but not metadata) onto an underlying backing filesystem
2022-10-18 05:29:36 -07:00
fdb77ac588
matrix-appservice-discord: remove
...
i use mx-puppet now. it works better and requires no patching (at least
yet. maybe it will in the future to support threads).
2022-10-15 02:25:57 -07:00
05cb85fd9b
freshrss: import my feeds on start
...
it's a little clunky in that it seems to need some refreshes
before it gets them, but it works.
2022-10-15 01:41:53 -07:00
fae87d3fbc
servo: pleroma: switch logging from debug -> warn
2022-10-15 00:39:55 -07:00
fcf60bae35
servo: persist the freshrss data
2022-10-13 21:49:54 -07:00
43123e78cb
servo: use user/group names instead of ids for service dir ownership
2022-10-13 18:00:59 -07:00
9305d44fde
servo: add freshrss service
2022-10-13 17:52:43 -07:00
711778a975
servo: nginx stateless deployment of the main blog
...
i.e. no need to run `make publish` when rebuilding the blog anymore.
instead, push blog changes, then `nix flake update; nixos-rebuild switch`
2022-10-11 05:27:51 -07:00
c71346e9b8
servo: matrix: enable mx-puppet-discord for better Discord bridging
2022-10-07 04:33:23 -07:00
f5576c3667
servo: matrix: rename discord.nix
-> discord-appservice.nix
...
this is in contrast to e.g. mx-discord-puppet, which i'll be trying soon
2022-10-07 02:16:01 -07:00
b437ddacd9
servo: disable matrix irc bridge by just not importing the nix file
2022-10-07 02:04:25 -07:00
68bda8aea7
servo: migrate ipfs options (to kubo)
2022-10-06 23:47:16 -07:00
0e9993923d
servo: matrix: move irc config to own file
2022-10-06 02:19:44 -07:00
cc12b87d0e
servo: matrix: use username/groupname instead of uid/gid for impermanence
2022-10-06 01:55:25 -07:00
a5393c3c84
servo: matrix: break the discord bridge out of default.nix
2022-10-06 01:54:46 -07:00
e1cd1be48d
Merge branch 'staging/discord'
2022-10-06 01:38:49 -07:00
37b931418d
servo: matrix-appservice-discord: disable annoying quirks
...
like bad edits, bot replies, etc.
2022-10-06 01:35:00 -07:00
a3db626a00
servo: matrix-appservice-discord: hide keys in sops, and enable.
2022-10-05 22:38:20 -07:00
ca239ca3e6
matrix: set up Discord bridge
...
verified working after i fill in the Discord secrets, but i need to find
a way to provide those outside of the nix store.
2022-10-05 22:02:07 -07:00
47f378e7fc
servo: consolidate service enumeration to services/default.nix
2022-10-04 23:08:03 -07:00
5f277f8653
moby: fix up CMA allocations so fractal (gui app) works
...
this probably enables other apps like Element; untested
2022-10-04 02:25:59 -07:00