c1457f5bfb
feeds: port 99% Invisible
2023-01-11 15:25:32 +00:00
7dfaf77a71
feeds: port Sam Harris / Waking Up
2023-01-11 15:15:03 +00:00
72dc7029e6
feeds: port Dan Carlin
2023-01-11 15:06:18 +00:00
95f3215b00
feeds: port darknet diaries and radiolab
2023-01-11 15:03:24 +00:00
baac8df8c2
feeds: fix Econtalk; port Doctorow, 80000hrs, deconstructed, intercepted, Post, The Portal
2023-01-11 14:51:17 +00:00
dc6a08a12b
convert some of my feeds to db entries
2023-01-11 13:16:26 +00:00
2413e2eb5f
feeds: update ACX feed to its non-forwarded origin
2023-01-11 10:59:35 +00:00
bd5209c655
move cross compilation out of the flake and into the host definitions
2023-01-11 08:56:06 +00:00
dbb78088f4
refactor: cleanup instances where we map to attrs to be more resilient against duplicate names
2023-01-09 03:48:07 +00:00
b2774a4004
move pubkeys out a modules/data/ directory
2023-01-09 02:40:25 +00:00
a457fc1416
ssh: move sys config out of hosts/common
2023-01-08 08:43:23 +00:00
2c0b0f6947
ssh: explain why we specify host_keys the way we do instead of through sane.persist
2023-01-08 08:41:48 +00:00
fb57e9aa5b
cleanup the 'every user/group has an id' enforcement
2023-01-08 06:46:07 +00:00
af77417531
feeds: add Perry Bible Fellowship comic
2023-01-08 05:30:36 +00:00
eea80b575d
feeds: disable dilbert (it doesn't embed well)
2023-01-08 05:28:15 +00:00
e8f778fecd
feeds: convert to module
2023-01-08 05:24:56 +00:00
488036beb3
ssh: add git.uninsane.org host key back
2023-01-08 03:22:05 +00:00
00b681eca5
ssh: manager ourself instead of using home-manager
2023-01-08 03:14:47 +00:00
72d589cb2d
ssh: port to modules system
2023-01-08 03:07:57 +00:00
ea5552daa7
bluetooth: accept that LinkKeys are device/host-specific and stop trying to share them across machines
2023-01-07 11:31:35 +00:00
85a2fbc38a
bluetooth: dont persist /var/lib/bluetooth
2023-01-07 08:08:29 +00:00
c063ecd047
bluetooth keys: use sane.fs instead of activationScripts
...
also auto-determines the device ID, which was previously broken
2023-01-07 03:43:31 +00:00
cc9e2d8e15
net: simplify the iwd psk setup
2023-01-07 03:10:39 +00:00
bb41fb95fe
iwd: populate net config with systemd service, not activationScript
2023-01-07 03:03:19 +00:00
d852adf806
move keyring to private store
2023-01-07 02:04:28 +00:00
53edf4e6af
firefox: handle config files manually, instead of leveraging home-manager
2023-01-06 16:11:06 +00:00
0a48d79174
fs: introduce some helpers to make writing symlinks easier
2023-01-06 15:38:29 +00:00
493d317bb1
moby: override browser-cache persistence more cleanly
2023-01-06 13:28:18 +00:00
fe816e9110
persist: lift sane.persist.dirs.{home,sys} up one level
2023-01-06 11:29:13 +00:00
8217b22c86
rename impermanence -> persist
2023-01-06 10:04:51 +00:00
0977721af5
moby: fix to preserve browser cache across boots
2023-01-04 13:27:20 +00:00
2ba6116f10
fs/impermanence: more precisely control unit dependencies/ordering
2023-01-04 11:22:26 +00:00
170008f345
home.files symlinks: port to sane.fs
2023-01-04 07:14:38 +00:00
a9ee26388c
guest account: make home-dir writable by other users
2023-01-04 01:09:23 +00:00
2d7b3750cd
impermanence: split the /home/colin perms fix into more appropriate places
2023-01-03 08:25:43 +00:00
5a2bbcce3b
move plaintext home-dirs out of home-manager module into users module
2023-01-03 07:35:42 +00:00
327e6b536f
impermanence: large refactor, and experimental bind mounting of things from ~/private
2023-01-03 07:22:37 +00:00
9e32211c12
impermanence: cange "encryptedClearOnBoot" to a broader "store" argument
...
in the future it can support ~/private as a backing store
2023-01-03 03:04:19 +00:00
875e923197
declare ~/private in fileSystems and reuse for pamMount
2023-01-02 11:34:02 +00:00
5a273213f6
sops: remove sops.age.sshKeyPaths override: sops gets this from openssh config already
2022-12-30 03:49:31 +00:00
0a6d88dfc1
impermanence: simplify /etc/ssh/host_keys setup
2022-12-30 03:34:59 +00:00
50dfd482cf
document plans for better handling of /etc/ssh
2022-12-29 19:19:51 +00:00
9743aee79d
ssh keys: document the issues i'm seeing
2022-12-29 18:42:59 +00:00
aa1c1f40cb
WIP: impermanence rework (gut 3rd-party lib)
2022-12-29 16:38:58 +00:00
760f2ac66d
move ~/.cache into encrypted private dir
2022-12-29 01:17:40 +00:00
8e5ca11259
cleanup gocryptfs mounting
...
there's possibly some latent issues. i think my changes to the gocryptfs
package *might* not be necessary: if you work via the fuse front-door,
it's a lot harder to get it into these weird places.
2022-12-29 01:17:40 +00:00
121936620a
impermanence: add support for encrypted clear-on-boot storage
...
this is useful for when we need to store files to disk purely due to
their size, but don't actually want them to be persisted.
2022-12-29 01:17:40 +00:00
f5b49e014c
net: add parent's wifi
2022-12-29 00:57:36 +00:00
a0ac7fa98d
snippets: add secret snippets
2022-12-26 09:29:04 +00:00
b03043e513
add sane-bt-search script to search jackett/torrents
2022-12-26 09:05:26 +00:00