b7549e63f5 
							
						 
					 
					
						
						
							
							prototype  
						
						
						
						
					 
					
						2023-04-26 14:46:55 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							306ce8bc3f 
							
						 
					 
					
						
						
							
							Move s0 to systemd-boot  
						
						
						
						
					 
					
						2023-04-25 23:41:08 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							b5dd983ba3 
							
						 
					 
					
						
						
							
							Automatically set machine hostname  
						
						
						
						
					 
					
						2023-04-24 20:52:17 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							832894edfc 
							
						 
					 
					
						
						
							
							Gitea runner  
						
						
						
						
					 
					
						2023-04-23 10:29:18 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							feb6270952 
							
						 
					 
					
						
						
							
							Update options for newer nixpkgs  
						
						
						
						
					 
					
						2023-04-23 10:28:55 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							b4dd2d4a92 
							
						 
					 
					
						
						
							
							update TODOs  
						
						
						
						
					 
					
						2023-04-23 10:16:54 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							38c2e5aece 
							
						 
					 
					
						
						
							
							Fix properties.nix path loading  
						
						
						
						
					 
					
						2023-04-21 23:24:05 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							0ef689b750 
							
						 
					 
					
						
						
							
							flake.lock: Update  
						
						... 
						
						
						
						Flake lock file updates:
• Updated input 'agenix':
    'github:ryantm/agenix/b7ffcfe77f817d9ee992640ba1f270718d197f28' (2023-01-31)
  → 'github:ryantm/agenix/2994d002dcff5353ca1ac48ec584c7f6589fe447' (2023-04-21)
• Updated input 'deploy-rs':
    'github:serokell/deploy-rs/8c9ea9605eed20528bf60fae35a2b613b901fd77' (2023-01-19)
  → 'github:serokell/deploy-rs/c2ea4e642dc50fd44b537e9860ec95867af30d39' (2023-04-21)
• Updated input 'flake-utils':
    'github:numtide/flake-utils/5aed5285a952e0b949eb3ba02c12fa4fcfef535f' (2022-11-02)
  → 'github:numtide/flake-utils/cfacdce06f30d2b68473a46042957675eebb3401' (2023-04-11)
• Added input 'flake-utils/systems':
    'github:nix-systems/default/da67096a3b9bf56a91d16901293e51ba5b49a27e' (2023-04-09)
• Updated input 'nix-index-database':
    'github:Mic92/nix-index-database/4306fa7c12e098360439faac1a2e6b8e509ec97c' (2023-02-26)
  → 'github:Mic92/nix-index-database/68ec961c51f48768f72d2bbdb396ce65a316677e' (2023-04-15)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/78c4d33c16092e535bc4ba1284ba49e3e138483a' (2023-03-03)
  → 'github:NixOS/nixpkgs/8dafae7c03d6aa8c2ae0a0612fbcb47e994e3fb8' (2023-04-22) 
						
						
					 
					
						2023-04-21 21:22:00 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							e72e19b7e8 
							
						 
					 
					
						
						
							
							Fix auto upgrade  
						
						
						
						
					 
					
						2023-04-21 18:58:54 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							03603119e5 
							
						 
					 
					
						
						
							
							Fix invalid import issue.  
						
						
						
						
					 
					
						2023-04-21 18:57:06 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							71baa09bd2 
							
						 
					 
					
						
						
							
							Refactor imports and secrets. Add per system properties and role based secret access.  
						
						... 
						
						
						
						Highlights
- No need to update flake for every machine anymore, just add a properties.nix file.
- Roles are automatically generated from all machine configurations.
- Roles and their secrets automatically are grouped and show up in agenix secrets.nix
- Machines and their service configs may now query the properties of all machines.
- Machine configuration and secrets are now competely isolated into each machine's directory.
- Safety checks to ensure no mixing of luks unlocking secrets and hosts with primary ones.
- SSH pubkeys no longer centrally stored but instead per machine where the private key lies for better cleanup. 
						
						
					 
					
						2023-04-21 12:58:11 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							a02775a234 
							
						 
					 
					
						
						
							
							Update install steps  
						
						
						
						
					 
					
						2023-04-19 21:17:45 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							5800359214 
							
						 
					 
					
						
						
							
							Update install steps  
						
						
						
						
					 
					
						2023-04-19 21:17:03 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							0bd42f1850 
							
						 
					 
					
						
						
							
							Update install steps  
						
						
						
						
					 
					
						2023-04-19 21:15:58 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							40f0e5d2ac 
							
						 
					 
					
						
						
							
							Add Phil  
						
						
						
						
					 
					
						2023-04-19 18:12:42 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							f90b9f85fd 
							
						 
					 
					
						
						
							
							try out appvm  
						
						
						
						
					 
					
						2023-04-18 23:15:21 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							5b084fffcc 
							
						 
					 
					
						
						
							
							moonlander  
						
						
						
						
					 
					
						2023-04-18 23:15:03 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							4dd6401f8c 
							
						 
					 
					
						
						
							
							update TODOs  
						
						
						
						
					 
					
						2023-04-18 23:14:49 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							260bbc1ffd 
							
						 
					 
					
						
						
							
							Use doas instead of sudo  
						
						
						
						
					 
					
						2023-04-10 22:03:57 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							c8132a67d0 
							
						 
					 
					
						
						
							
							Use lf as terminal file explorer  
						
						
						
						
					 
					
						2023-04-10 22:03:29 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							3412d5caf9 
							
						 
					 
					
						
						
							
							Use hashed passwordfile just to be safe  
						
						
						
						
					 
					
						2023-04-09 23:00:10 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							1065cc4b59 
							
						 
					 
					
						
						
							
							Enable gitea email notifications  
						
						
						
						
					 
					
						2023-04-09 22:05:23 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							154b37879b 
							
						 
					 
					
						
						
							
							Cross off finished TODOs  
						
						
						
						
					 
					
						2023-04-09 22:04:51 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							a34238b3a9 
							
						 
					 
					
						
						
							
							Easily run restic commands on a backup group  
						
						
						
						
					 
					
						2023-04-09 13:06:15 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							42e2ebd294 
							
						 
					 
					
						
						
							
							Allow marking folders as omitted from backup  
						
						
						
						
					 
					
						2023-04-09 12:35:20 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							378cf47683 
							
						 
					 
					
						
						
							
							restic backups  
						
						
						
						
					 
					
						2023-04-08 21:25:55 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							f68a4f4431 
							
						 
					 
					
						
						
							
							nixpkgs-fmt everything  
						
						
						
						
					 
					
						2023-04-04 23:30:28 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							3c683e7b9e 
							
						 
					 
					
						
						
							
							NixOS router is now in active use :)  
						
						
						
						
					 
					
						2023-04-04 20:53:38 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							68bd70b525 
							
						 
					 
					
						
						
							
							Basic router working using the wip hostapd module from upstream  
						
						
						
						
					 
					
						2023-04-04 12:57:16 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							2189ab9a1b 
							
						 
					 
					
						
						
							
							Improve cifs mounts. Newer protocol version, helpful commands, better network connection resiliency.  
						
						
						
						
					 
					
						2023-03-31 11:43:12 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							acbbb8a37a 
							
						 
					 
					
						
						
							
							encrypted samba vault with gocryptfs  
						
						
						
						
					 
					
						2023-03-25 15:49:07 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							d1e6d21d66 
							
						 
					 
					
						
						
							
							iperf server  
						
						
						
						
					 
					
						2023-03-25 15:48:39 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							1a98e039fe 
							
						 
					 
					
						
						
							
							Cleanup fio tests  
						
						
						
						
					 
					
						2023-03-25 15:48:24 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							3459ce5058 
							
						 
					 
					
						
						
							
							Add joplin  
						
						
						
						
					 
					
						2023-03-18 22:04:31 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							c48b1995f8 
							
						 
					 
					
						
						
							
							Remove zerotier  
						
						
						
						
					 
					
						2023-03-18 20:41:09 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							53c0e7ba1f 
							
						 
					 
					
						
						
							
							Add Webmail  
						
						
						
						
					 
					
						2023-03-14 23:28:07 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							820cd392f1 
							
						 
					 
					
						
						
							
							Choose random PIA server in a specified region instead of hardcoded. And more TODOs addressed.  
						
						
						
						
					 
					
						2023-03-12 22:55:46 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							759fe04185 
							
						 
					 
					
						
						
							
							with lib;  
						
						
						
						
					 
					
						2023-03-12 21:50:46 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							db441fcf98 
							
						 
					 
					
						
						
							
							Add ability to refuse PIA ports  
						
						
						
						
					 
					
						2023-03-12 21:46:36 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							83e9280bb4 
							
						 
					 
					
						
						
							
							Use the NixOS firewall instead to block unwanted PIA VPN traffic  
						
						
						
						
					 
					
						2023-03-12 20:49:39 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							478235fe32 
							
						 
					 
					
						
						
							
							Enable firewall for PIA VPN wireguard interface  
						
						
						
						
					 
					
						2023-03-12 20:29:20 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							440401a391 
							
						 
					 
					
						
						
							
							Add ponyo to deploy-rs config  
						
						
						
						
					 
					
						2023-03-12 19:50:55 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							42c0dcae2d 
							
						 
					 
					
						
						
							
							Port forwarding for transmission  
						
						
						
						
					 
					
						2023-03-12 19:50:29 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							7159868b57 
							
						 
					 
					
						
						
							
							update todo's  
						
						
						
						
					 
					
						2023-03-12 19:46:51 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							ab2cc0cc0a 
							
						 
					 
					
						
						
							
							Cleanup services  
						
						
						
						
					 
					
						2023-03-12 17:51:10 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							aaa1800d0c 
							
						 
					 
					
						
						
							
							Cleanup mail domains  
						
						
						
						
					 
					
						2023-03-12 13:29:12 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							a795c65c32 
							
						 
					 
					
						
						
							
							Cleanup mail domains  
						
						
						
						
					 
					
						2023-03-12 13:25:34 -06:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							5ed02e924d 
							
						 
					 
					
						
						
							
							Remove liza  
						
						
						
						
					 
					
						2023-03-12 00:15:06 -07:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							1d620372b8 
							
						 
					 
					
						
						
							
							Remove leftovers of removed compute nodes  
						
						
						
						
					 
					
						2023-03-12 00:14:49 -07:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							9684a975e2 
							
						 
					 
					
						
						
							
							Migrate nextcloud to ponyo  
						
						
						
						
					 
					
						2023-03-12 00:10:14 -07:00