|
39a39e763d
|
trust-dns: hack to substitute ANATIVE before anything else
|
2024-06-17 22:44:43 +00:00 |
|
|
f0128b9496
|
apply patch for when trust-dns is renamed to hickory-dns
|
2024-06-01 17:07:44 +00:00 |
|
|
0bb887158b
|
implement a dropbear SSH module
|
2024-05-30 20:58:01 +00:00 |
|
|
b88467771e
|
doc: trust-dns: fix wan.txt example path
|
2024-05-29 09:33:59 +00:00 |
|
|
1ee21c4795
|
NetworkManager: run as user instead of root
|
2024-05-29 09:16:30 +00:00 |
|
|
7e490f5c07
|
remove lingering references to sxmo
|
2024-05-27 00:38:30 +00:00 |
|
|
9d725a0974
|
servo: disable unused nixcache.uninsane.org
|
2024-05-16 02:46:23 +00:00 |
|
|
df4ef0ce5a
|
desko: disable nix-serve
|
2024-05-16 02:35:27 +00:00 |
|
|
66f73c92bd
|
trust-dns: asSystemResolver: listen also on ipv6 address
|
2024-05-14 23:38:01 +00:00 |
|
|
d5e8974a4a
|
refactor: trust-dns: listenAddrs -> listenAddrsIpv4
|
2024-05-14 23:22:50 +00:00 |
|
|
f3cf9e0bed
|
trust-dns: set it to NOT be the system resolver for servo
trust-dns recursor is too beta for servo
|
2024-05-14 09:03:10 +00:00 |
|
|
3a7c9022af
|
trust-dns: bump StartLimitBurst so systemd doesnt abort the service too early
|
2024-05-14 08:50:37 +00:00 |
|
|
2a199bf373
|
trust-dns: recursor: merge DHCP DNS servers from all non-downed connections
otherwise overwriting the toml configs gets messy, when interfaces come up in unpredictable order
|
2024-05-14 08:25:59 +00:00 |
|
|
53198128e8
|
trust-dns: hook NetworkManager for state changes
there may be some edgecases to sort out around e.g. first-run,
but so far it seems to be importing the DHCP search zones :)
|
2024-05-14 07:42:41 +00:00 |
|
|
39eb1d150a
|
dns: deploy trust-dns as the default recursive resolver
outstanding issues: native.uninsane.org doesn't resolve. appears possibly to be an issue with following CNAMEs
|
2024-05-14 04:18:29 +00:00 |
|
|
2ae286ff75
|
nixpkgs: 2024-05-08 -> 2024-05-13, nixpkgs-wayland, sops-nix
```
• Updated input 'nixpkgs-next-unpatched':
'github:nixos/nixpkgs/c8e3f684443d7c2875ff169f6ef2533534105e7b' (2024-05-08)
→ 'github:nixos/nixpkgs/6a217e9b1d39415076c7a6cfc44be5e935e7a839' (2024-05-13)
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/a751e2faa2fc94c1337c32aaf6a6e417afe90be9' (2024-05-08)
→ 'github:nixos/nixpkgs/6bc8c8a7ac13182ee24a5e2caab7ad739f1c55c5' (2024-05-13)
• Updated input 'nixpkgs-wayland':
'github:nix-community/nixpkgs-wayland/7dc8fb2aa7db995ac1ce2a8f2f8d8784b2af591c' (2024-05-08)
→ 'github:nix-community/nixpkgs-wayland/5f7272dff81558143f93e2cb32189a52ef965892' (2024-05-13)
• Updated input 'nixpkgs-wayland/lib-aggregate':
'github:nix-community/lib-aggregate/26fabca301e1133abd3d9192b1bcb6fb45b30f1d' (2024-05-05)
→ 'github:nix-community/lib-aggregate/09883ca828e8cfaacdb09e29190a7b84ad1d9925' (2024-05-12)
• Updated input 'nixpkgs-wayland/lib-aggregate/nixpkgs-lib':
'github:nix-community/nixpkgs.lib/4b620020fd73bdd5104e32c702e65b60b6869426' (2024-05-05)
→ 'github:nix-community/nixpkgs.lib/58e03b95f65dfdca21979a081aa62db0eed6b1d8' (2024-05-12)
• Updated input 'nixpkgs-wayland/nix-eval-jobs':
'github:nix-community/nix-eval-jobs/7b6640f2a10701bf0db16aff048070f400e8ea7c' (2024-04-23)
→ 'github:nix-community/nix-eval-jobs/63154bdfb22091041b307d17863bdc0e01a32a00' (2024-05-09)
• Updated input 'nixpkgs-wayland/nix-eval-jobs/nixpkgs':
'github:NixOS/nixpkgs/1e1dc66fe68972a76679644a5577828b6a7e8be4' (2024-04-22)
→ 'github:NixOS/nixpkgs/ad7efee13e0d216bf29992311536fce1d3eefbef' (2024-05-06)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/893e3df091f6838f4f9d71c61ab079d5c5dedbd1' (2024-05-06)
→ 'github:Mic92/sops-nix/b6cb5de2ce57acb10ecdaaf9bbd62a5ff24fa02e' (2024-05-12)
• Updated input 'sops-nix/nixpkgs-stable':
'github:NixOS/nixpkgs/b980b91038fc4b09067ef97bbe5ad07eecca1e76' (2024-05-04)
→ 'github:NixOS/nixpkgs/8e47858badee5594292921c2668c11004c3b0142' (2024-05-11)
```
|
2024-05-13 22:45:33 +00:00 |
|
|
954c5c8344
|
trust-dns: fix so it starts as part of boot
|
2024-05-09 07:19:17 +00:00 |
|
|
889b332ade
|
trust-dns: split the parts which are generalizable into their own file
i can try to build this into a recursive resolver for *all* my hosts
|
2024-04-30 14:35:56 +00:00 |
|
|
19115dfb65
|
eg25-control: port to s6 (hopefully)
|
2024-04-26 21:44:13 +00:00 |
|
|
fd0723169f
|
nix-serve: fix coredump loop
|
2024-01-19 21:34:45 +00:00 |
|
|
e2a43ddfa0
|
servo: clightning: allow group members to run lightning-cli
|
2024-01-11 15:59:32 +00:00 |
|
|
cecb114810
|
clightning: harden
|
2024-01-04 18:47:40 +00:00 |
|
|
7378d6c5b2
|
bitcoind: host behind tor
|
2024-01-04 16:25:49 +00:00 |
|
|
43498c62f9
|
clightning: integrate with tor
|
2024-01-03 18:29:16 +00:00 |
|
|
41ae86f40f
|
servo: enable clightning
|
2024-01-03 13:56:42 +00:00 |
|
|
3e52956a3a
|
servo: clightning: integrate, but do not enable
|
2024-01-02 18:32:34 +00:00 |
|
|
28d0a72c62
|
define (but dont activate) a clighting bitcoin service
|
2024-01-02 14:29:52 +00:00 |
|
|
23f4b2e2e4
|
nixserve: dependency-inject the pubkey
this is in modules/ dir; shouldn't have that kind of data in it
|
2023-11-23 02:14:18 +00:00 |
|
|
2d65282643
|
nixremote: define the user as part of the nixserve module
|
2023-11-23 02:08:45 +00:00 |
|
|
77a0a36bb8
|
enable remote-building for lappy/moby
|
2023-11-23 01:59:37 +00:00 |
|
|
28d4a4b065
|
persistence: move stores behind a byStore attr to support disabling persistence altogether (for e.g. rescue image)
|
2023-11-08 15:33:15 +00:00 |
|
|
6191542805
|
nix-serve: port 5000 -> 5001; prosody: enable proxy65 on port 5000
|
2023-10-20 04:48:30 +00:00 |
|
|
e5125065d6
|
eg25-control: add a timeout to how long a power-on can take
|
2023-10-07 04:27:14 +00:00 |
|
|
6c6e1ee84b
|
moby: add gps-related services to the "dialout" group
|
2023-10-03 01:01:06 +00:00 |
|
|
2f7655e1c1
|
eg25-control: don't auto-start GPS on boot
this also means we don't power the modem on boot
this is OK to do now that i have a toggle in swaync for GPS
|
2023-09-15 16:55:27 +00:00 |
|
|
71c01795f4
|
moby: eg25-control-freshen-agps: fix to actually run hourly
|
2023-09-15 07:35:05 +00:00 |
|
|
2291c89dbc
|
moby: eg25-control: fixup perms & add service that DLs new agps data when stale
|
2023-09-15 04:47:12 +00:00 |
|
|
1546304b4e
|
eg25-control: run as own user
its perms might still need adjustment so that it can control modem power and write to mmcli
|
2023-09-15 03:54:01 +00:00 |
|
|
a0c2ed38e6
|
eg25-control: allow finer-grained service control
|
2023-09-15 01:38:50 +00:00 |
|
|
1c7997e1ef
|
rename eg25-control-defaults.service -> eg25-control
|
2023-08-28 08:03:14 +00:00 |
|
|
5d349ce042
|
moby: init GPS during boot
|
2023-08-22 04:53:40 +00:00 |
|
|
17b90fc697
|
eg25-manager: configure without modemmanager support
|
2023-08-17 08:34:32 +00:00 |
|
|
4ec947d549
|
eg25-manager: set RestartSec to make the restart loops less painful
|
2023-08-16 09:09:13 +00:00 |
|
|
db99043753
|
eg25-manager.service: remove modem_power module & point to the right UART
|
2023-08-15 10:46:18 +00:00 |
|
|
664b21e5f1
|
enable eg25-manager (experimental)
|
2023-08-10 07:27:38 +00:00 |
|
|
ebcc0c269e
|
trust-dns: remove from this repo
it's fully upstreamed into nixpkgs now
|
2023-07-16 12:27:23 +00:00 |
|
|
e38bf42506
|
trust-dns: migrate module to nixpkgs repo
|
2023-07-13 09:57:11 +00:00 |
|
|
4a7398da2f
|
trust-dns: finish hardening
|
2023-07-13 01:33:31 +00:00 |
|
|
f765e3d030
|
sane-ip-check: also store the upnp gateway
|
2023-07-11 00:55:04 +00:00 |
|
|
452260f7c7
|
trust-dns: don't run as root
|
2023-07-10 09:00:37 +00:00 |
|