69361ee9a2
zsh: document prezto modules, switch dir aliases to dirHashes
2022-12-21 13:53:22 +00:00
1808d153b2
zsh: configure p10k
2022-12-21 13:08:23 +00:00
b3ad0f8f1f
update ~/knowledge to live in ~/private
2022-12-21 08:52:27 +00:00
c745612cfd
Merge branch 'master' of git.uninsane.org:colin/nix-files
2022-12-21 08:51:12 +00:00
278cc98c6d
minor ejabberd config changes, simplify DNS %NATIVE% updating
2022-12-21 08:50:41 +00:00
fac661af15
new script: sane-git-init
2022-12-21 08:40:22 +00:00
65777c70ad
snippets: add link to home-manager docs
2022-12-21 08:30:16 +00:00
09c524a5b1
Merge remote-tracking branch 'origin/staging/nixpkgs-2022-12-18'
2022-12-21 07:47:55 +00:00
0db7f0857a
moby: reduce the number of configurations we keep in /boot
2022-12-21 06:33:50 +00:00
38befe502c
new script to free space in /boot
2022-12-21 06:29:13 +00:00
55e09c2dbf
ejabberd: port to dns-dns; add experimental STUN/TURN support
...
during startup it says:
```
Ignoring TLS-enabled STUN/TURN listener
```
and later
```
Invalid certificate in /var/lib/acme/uninsane.org/fullchain.pem: at line 61: certificate is signed by unknown CA
```
the invalid cert thing has always been here. it's for the root cert. idk
if i need to tell ejabberd that one's self-signed, or what.
2022-12-20 03:26:08 +00:00
bd699c887c
sane-ssl-dump: new script to help debug ssl stuff
2022-12-20 03:25:07 +00:00
2de6f7d364
fix i2p to build on aarch64
2022-12-20 03:10:05 +00:00
d60e5264f3
don't bind-mount /etc/ssh/host_keys: symlink them instead
2022-12-20 00:04:09 +00:00
c66699b697
update nixpkgs: 2022-12-11 -> 2022-12-18; sops-nix
...
```
• Updated input 'nixpkgs':
'github:NixOS/nixpkgs/64e0bf055f9d25928c31fb12924e59ff8ce71e60' (2022-12-11)
→ 'github:NixOS/nixpkgs/04f574a1c0fde90b51bf68198e2297ca4e7cccf4' (2022-12-18)
• Updated input 'nixpkgs-stable':
'github:NixOS/nixpkgs/06278c77b5d162e62df170fec307e83f1812d94b' (2022-12-12)
→ 'github:NixOS/nixpkgs/0938d73bb143f4ae037143572f11f4338c7b2d1c' (2022-12-17)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/da98a111623101c64474a14983d83dad8f09f93d' (2022-12-04)
→ 'github:Mic92/sops-nix/32840f16ffa0856cdf9503a8658f2dd42bf70342' (2022-12-19)
• Updated input 'sops-nix/nixpkgs-stable':
'github:NixOS/nixpkgs/86370507cb20c905800527539fc049a2bf09c667' (2022-12-04)
→ 'github:NixOS/nixpkgs/87b58217c9a05edcf7630b9be32570f889217aef' (2022-12-19)
```
2022-12-19 22:42:58 +00:00
97044bf70e
trust-dns: port to dyn-dns for determining WAN IP
...
although the systemd wantedBy directive is working,
`before` seems to be ignored when the unit fails. so on first run,
dyn-dns runs, fails (poor net connectivity), then trust-dns starts
(fails), then they both restart 10s later.
it's not great, but good enough. also, wan IP is persisted, so this
likely won't happen much in practice.
2022-12-19 13:12:23 +00:00
3122334a41
dyn-dns: fix to only react when the IP actually changes
2022-12-19 11:54:27 +00:00
0b2faef989
/etc/ssh/host_keys: fix endlessly stacked mounts
...
i believe this was mounting a new /etc/ssh/host_keys on every
activation, resulting in literally thousands of mounts and slowing down
later activations
2022-12-19 11:18:08 +00:00
8acd6ca4f1
create sane.services.dyn-dns
to manage dynamic DNS stuff
...
not yet integrated into servo
2022-12-19 11:16:30 +00:00
8169f7c6b2
ddns-trust-dns: use ddns from router rather than ipinfo.io
2022-12-19 08:24:11 +00:00
cd1aa0b376
sane-vpn-*: reference sane-ip-check instead of duplicating
2022-12-19 06:19:13 +00:00
72b627100c
sane-scripts: simplify recursively referencing sane scripts
2022-12-19 06:18:44 +00:00
567c08460a
add sane-ip-check-router-wan to query WAN with a more trustworthy source
2022-12-19 05:59:44 +00:00
9b66aecf1b
trust-dns: port the remaining records to a structured format
...
SRV and MX _could_ have more structure (priority, etc).
not sure the best path there (option submodule, i guess).
2022-12-19 04:38:43 +00:00
16cb3b83a2
trust-dns: more idiomatic way to define SOA records
2022-12-19 04:00:27 +00:00
970438be8a
trust-dns: rename records
option -> extraConfig
...
i'll be adding special options for records
2022-12-19 03:12:32 +00:00
51da29555e
sane-ip-reconnect: fix issue where we'd reconnect to the existing, subpar network
2022-12-19 01:47:30 +00:00
8a745a9b8a
ejabberd: enable STUN (with partial discovery support)
...
discovery is probably not working:
```
Won't auto-announce STUN/TURN service on port 3478 (udp) without public IP address, please specify 'turn_ipv4_address' and optionally 'turn_ipv6_address'
Won't auto-announce STUN/TURN service on port 3478 (tcp) without public IP address, please specify 'turn_ipv4_address' and optionally 'turn_ipv6_address'
```
no messages for the TLS implementation, so maybe that's working?
2022-12-19 01:22:20 +00:00
3505f3b9f3
ejabberd: provision cert for conference.xmpp.uninsane.org
...
i guess the cert already had that because of legacy prosody setup (?),
but we weren't setup so that new requests would work, i expect.
either that or all of these nginx entries aren't necessary?
2022-12-19 01:22:20 +00:00
444595e847
disable HE and afraid DDNS
2022-12-19 01:22:20 +00:00
3e1407c30b
new script to reconnect to best wifi network
2022-12-19 00:29:48 +00:00
0a744117a4
rename sane-check-ip -> sane-ip-check
2022-12-18 23:54:41 +00:00
a2935cedaa
snippets: add wikipedia search
2022-12-18 22:58:53 +00:00
22e46d52c2
trust-dns: distribute records across service files
2022-12-17 01:29:12 +00:00
1e0c213adf
split webconfig into each service file
2022-12-17 00:52:48 +00:00
3e1340ed61
enable i2p in firefox
2022-12-16 22:15:19 +00:00
341dd3f2b2
new zsh alias: ref -> cd ~/ref
2022-12-16 20:56:48 +00:00
1c9caa40bd
snippets: update nixos wiki to include search param
2022-12-16 20:35:33 +00:00
3be15c6d05
podcasts: add Michael Malice (is it any good? we'll see.)
2022-12-16 08:04:28 +00:00
8e8168ec28
add splatmoji package and sway config
2022-12-16 07:46:06 +00:00
28397807fc
gpt2tc: disable, because the mirror is unreliable
2022-12-16 07:08:55 +00:00
42ebb9a155
sane-private-do: run a command with the private store unlocked; then re-lock it
2022-12-16 06:10:44 +00:00
a8a4b8e739
kiwix: serve the full english Wikipedia
2022-12-16 05:58:51 +00:00
2550601179
serve w.uninsane.org through kiwix-serve
2022-12-16 02:25:57 +00:00
199a49755a
create a kiwix-serve
service
2022-12-16 02:15:17 +00:00
8c7700688f
nixpatches: add kiwix-tools package that's being upstreamed
2022-12-16 01:22:38 +00:00
8fe304d6c1
trust-dns: split the service into a generic config interface
2022-12-15 11:17:50 +00:00
700fef7df3
servo: mediawiki: remove dead commented-out code
2022-12-15 11:17:50 +00:00
01db7e1f23
servo: install mediawiki
2022-12-15 11:17:50 +00:00
df6e8f1562
Merge branch 'master' of git.uninsane.org:colin/nix-files
2022-12-15 09:59:53 +00:00