|
8523b406ad
|
todo.md: note that swaync brightness slider does not work
|
2024-06-18 09:48:35 +00:00 |
|
|
6021da072c
|
replace builtins.toJSON with writers.writeJSON where possible
it gives pretty-printed JSON that's easier to work with
|
2024-06-18 09:33:17 +00:00 |
|
|
a49abbd123
|
hosts: add pubkeys for $host-hn
|
2024-06-18 09:33:17 +00:00 |
|
|
f9091c0b0c
|
netns: ensure that network.target depends on network-pre.target (why doesnt it by default?)
this should fix that servo tries to start wg-ovpns before the netns is configured
|
2024-06-18 09:07:40 +00:00 |
|
|
bbf8fd5b20
|
servo: disable almost all WAN stuff (leave only wireguard, as a fallback)
|
2024-06-18 09:04:13 +00:00 |
|
|
be84747ffc
|
check-uninsane: test FTP over doof (and simplify)
|
2024-06-18 08:09:06 +00:00 |
|
|
478b443430
|
doc: sftpgo: note that "/README.md" doesnt work
|
2024-06-18 07:56:26 +00:00 |
|
|
ded5f6560d
|
check-uninsane: fix ftp test to work when invoked from the wan
|
2024-06-18 07:55:11 +00:00 |
|
|
c1b3629dcf
|
swaync: fix segfault under load
|
2024-06-18 07:52:02 +00:00 |
|
|
5879499924
|
swaync-service-dispatcher: simplify quoting
|
2024-06-18 06:40:44 +00:00 |
|
|
5a63f294c0
|
servo: sftpgo: allow fully-anonymous www read access to /pub
this will help me write automated tests for its availability
|
2024-06-18 05:44:20 +00:00 |
|
|
891a29feeb
|
nwg-panel: fix commands (like lock, shutdown) to not run through swaymsg
|
2024-06-18 02:51:58 +00:00 |
|
|
0863505877
|
wifi: add new network
|
2024-06-18 02:34:27 +00:00 |
|
|
0c922bd63a
|
nwg-panel: fix reboot/shutdown commands to not assume systemd
|
2024-06-18 02:32:04 +00:00 |
|
|
e04ec4c706
|
nwg-panel: fix the "lock" button to use the correct screen locker
|
2024-06-18 02:31:46 +00:00 |
|
|
b0f9733ac8
|
sway: fix that Super+L didnt have sandbox access to start the screen locker
|
2024-06-18 02:26:57 +00:00 |
|
|
e2babfc076
|
nwg-panel: fix clock to always be centered, even if that means overlapped rendering
|
2024-06-18 01:08:02 +00:00 |
|
|
ef29b569e5
|
nwg-panel: fix clock size to actually be larger on lappy/desko
|
2024-06-18 01:07:43 +00:00 |
|
|
6f0a455d0b
|
scripts/check-uninsane: implement --verbose flag
|
2024-06-17 23:36:52 +00:00 |
|
|
7d6a420c52
|
sane-vpn: allow sane-vpn do -- [COMMAND]
|
2024-06-17 23:26:28 +00:00 |
|
|
259143b87e
|
scripts/check-uninsane: fix so ssh servo systemctl --failed actually works on servo, even when ssh key is locked
|
2024-06-17 23:24:34 +00:00 |
|
|
fce426c318
|
servo: trust-dns: expose the hn DNS server on port 53
nothing i had was *expecting* it to be on port 1053, and it was just never working (?)
|
2024-06-17 23:16:00 +00:00 |
|
|
9b794777b5
|
servo: trust-dns: have the ovpns DNS provider return doof-based addresses instead of WAN-based addresses
|
2024-06-17 23:14:21 +00:00 |
|
|
3ada668366
|
servo: expose all wan services also to the doof tunnel
|
2024-06-17 23:08:08 +00:00 |
|
|
39a39e763d
|
trust-dns: hack to substitute ANATIVE before anything else
|
2024-06-17 22:44:43 +00:00 |
|
|
50353280d3
|
servo: port ANATIVE over the doof interface to return the doof IP address
|
2024-06-17 22:37:50 +00:00 |
|
|
72b8211029
|
servo: switch ns2.uninsane.org from ovpns -> doof
|
2024-06-17 22:19:36 +00:00 |
|
|
dbf719b59b
|
scripts/check-uninsane: fix the git.uninsane.org check to work even w/o access to SSH keys
|
2024-06-17 22:16:23 +00:00 |
|
|
57d7d3821f
|
scripts/check-uninsane: dont rely on ovpns.uninsane.org bootstrap DNS: directly test the known IPv4 address
|
2024-06-17 22:12:34 +00:00 |
|
|
e86e9fc079
|
scripts/check-uninsane: add a check for DNS via doofnet
|
2024-06-17 22:11:02 +00:00 |
|
|
d708b78ebe
|
scripts/check-uninsane: fix ftp check, to not error if README.md exists in the current directory
|
2024-06-17 22:10:47 +00:00 |
|
|
075418eda1
|
git: add alias git com to commit
|
2024-06-17 22:01:58 +00:00 |
|
|
9fc5b83b61
|
refactor: servo: hardcode OVPN-related IP addresses in far fewer places
|
2024-06-17 22:00:39 +00:00 |
|
|
4b99607f7b
|
scripts/check-uninsane: annotate the OVPNS/DOOF checks
|
2024-06-17 09:25:10 +00:00 |
|
|
0d99293b2f
|
servo: split the doof/ovpns netns config into its own module
a big thing this gets me is that the attributes (like IP addresses) are now accessible via 'config' an i won't have to hardcode them so much
|
2024-06-17 09:25:10 +00:00 |
|
|
b3890b82dc
|
servo: http/https: expose to doof
|
2024-06-17 07:55:53 +00:00 |
|
|
3fc96a3e32
|
check-uninsane: also test http://uninsane.org, over OVPN connection
|
2024-06-17 07:50:15 +00:00 |
|
|
1af7b613bd
|
servo: doof: respond to DNS queries
|
2024-06-17 07:39:52 +00:00 |
|
|
4c8695aae8
|
servo: fix missing route table for doof
|
2024-06-17 07:31:28 +00:00 |
|
|
d45e3fda5e
|
servo: trust-dns: enable on doof-net
|
2024-06-17 07:20:23 +00:00 |
|
|
456e0de872
|
servo: doof net: add the capability to forward ports
|
2024-06-17 07:20:23 +00:00 |
|
|
7825ddc123
|
servo: split out a "bridgedWireguardNamespace" helper for configuring ovpns VPN
i can re-use this to forward traffic over doof
|
2024-06-17 07:20:23 +00:00 |
|
|
dd47a5083c
|
servo: only forward ports to OVPN which are actually marked for visiblity
|
2024-06-17 06:29:09 +00:00 |
|
|
14d5d9eb5a
|
servo: net: remove dead Hurricane Electric code
|
2024-06-17 06:04:29 +00:00 |
|
|
1f6f2399d6
|
nwg-panel: fix swaync icon
|
2024-06-16 06:35:32 +00:00 |
|
|
b0ee12ba7b
|
modules/users: export HOME in environment.d because some services (nwg-panel) need it
|
2024-06-16 06:01:20 +00:00 |
|
|
a6d268ca72
|
nwg-panel: disable the brightness indicator
|
2024-06-16 05:42:58 +00:00 |
|
|
1ecc033ff5
|
nwg-panel: re-add missing style.css
|
2024-06-16 05:27:32 +00:00 |
|
|
c87dab93b3
|
scripts/deploy: allow specifying multiple hosts or multiple variants
|
2024-06-16 05:15:12 +00:00 |
|
|
53139a7cdf
|
nwg-panel: address some TODOs
|
2024-06-16 04:59:23 +00:00 |
|