nix-config

Author	SHA1	Message	Date
Zuckerberg	03603119e5	Fix invalid import issue.	2023-04-21 18:57:06 -06:00
Zuckerberg	71baa09bd2	Refactor imports and secrets. Add per system properties and role based secret access. Highlights - No need to update flake for every machine anymore, just add a properties.nix file. - Roles are automatically generated from all machine configurations. - Roles and their secrets automatically are grouped and show up in agenix secrets.nix - Machines and their service configs may now query the properties of all machines. - Machine configuration and secrets are now competely isolated into each machine's directory. - Safety checks to ensure no mixing of luks unlocking secrets and hosts with primary ones. - SSH pubkeys no longer centrally stored but instead per machine where the private key lies for better cleanup.	2023-04-21 12:58:11 -06:00
Zuckerberg	a02775a234	Update install steps	2023-04-19 21:17:45 -06:00
Zuckerberg	5800359214	Update install steps	2023-04-19 21:17:03 -06:00
Zuckerberg	0bd42f1850	Update install steps	2023-04-19 21:15:58 -06:00
Zuckerberg	40f0e5d2ac	Add Phil	2023-04-19 18:12:42 -06:00
Zuckerberg	f90b9f85fd	try out appvm	2023-04-18 23:15:21 -06:00
Zuckerberg	5b084fffcc	moonlander	2023-04-18 23:15:03 -06:00
Zuckerberg	4dd6401f8c	update TODOs	2023-04-18 23:14:49 -06:00
Zuckerberg	260bbc1ffd	Use doas instead of sudo	2023-04-10 22:03:57 -06:00
Zuckerberg	c8132a67d0	Use lf as terminal file explorer	2023-04-10 22:03:29 -06:00
Zuckerberg	3412d5caf9	Use hashed passwordfile just to be safe	2023-04-09 23:00:10 -06:00
Zuckerberg	1065cc4b59	Enable gitea email notifications	2023-04-09 22:05:23 -06:00
Zuckerberg	154b37879b	Cross off finished TODOs	2023-04-09 22:04:51 -06:00
Zuckerberg	a34238b3a9	Easily run restic commands on a backup group	2023-04-09 13:06:15 -06:00
Zuckerberg	42e2ebd294	Allow marking folders as omitted from backup	2023-04-09 12:35:20 -06:00
Zuckerberg	378cf47683	restic backups	2023-04-08 21:25:55 -06:00
Zuckerberg	f68a4f4431	nixpkgs-fmt everything	2023-04-04 23:30:28 -06:00
Zuckerberg	3c683e7b9e	NixOS router is now in active use :)	2023-04-04 20:53:38 -06:00
Zuckerberg	68bd70b525	Basic router working using the wip hostapd module from upstream	2023-04-04 12:57:16 -06:00
Zuckerberg	2189ab9a1b	Improve cifs mounts. Newer protocol version, helpful commands, better network connection resiliency.	2023-03-31 11:43:12 -06:00
Zuckerberg	acbbb8a37a	encrypted samba vault with gocryptfs	2023-03-25 15:49:07 -06:00
Zuckerberg	d1e6d21d66	iperf server	2023-03-25 15:48:39 -06:00
Zuckerberg	1a98e039fe	Cleanup fio tests	2023-03-25 15:48:24 -06:00
Zuckerberg	3459ce5058	Add joplin	2023-03-18 22:04:31 -06:00
Zuckerberg	c48b1995f8	Remove zerotier	2023-03-18 20:41:09 -06:00
Zuckerberg	53c0e7ba1f	Add Webmail	2023-03-14 23:28:07 -06:00
Zuckerberg	820cd392f1	Choose random PIA server in a specified region instead of hardcoded. And more TODOs addressed.	2023-03-12 22:55:46 -06:00
Zuckerberg	759fe04185	with lib;	2023-03-12 21:50:46 -06:00
Zuckerberg	db441fcf98	Add ability to refuse PIA ports	2023-03-12 21:46:36 -06:00
Zuckerberg	83e9280bb4	Use the NixOS firewall instead to block unwanted PIA VPN traffic	2023-03-12 20:49:39 -06:00
Zuckerberg	478235fe32	Enable firewall for PIA VPN wireguard interface	2023-03-12 20:29:20 -06:00
Zuckerberg	440401a391	Add ponyo to deploy-rs config	2023-03-12 19:50:55 -06:00
Zuckerberg	42c0dcae2d	Port forwarding for transmission	2023-03-12 19:50:29 -06:00
Zuckerberg	7159868b57	update todo's	2023-03-12 19:46:51 -06:00
Zuckerberg	ab2cc0cc0a	Cleanup services	2023-03-12 17:51:10 -06:00
Zuckerberg	aaa1800d0c	Cleanup mail domains	2023-03-12 13:29:12 -06:00
Zuckerberg	a795c65c32	Cleanup mail domains	2023-03-12 13:25:34 -06:00
Zuckerberg	5ed02e924d	Remove liza	2023-03-12 00:15:06 -07:00
Zuckerberg	1d620372b8	Remove leftovers of removed compute nodes	2023-03-12 00:14:49 -07:00
Zuckerberg	9684a975e2	Migrate nextcloud to ponyo	2023-03-12 00:10:14 -07:00
Zuckerberg	c3c3a9e77f	disable searx for now	2023-03-12 00:09:40 -07:00
Zuckerberg	ecb6d1ef63	Migrate mailserver to ponyo	2023-03-11 23:40:36 -07:00
Zuckerberg	a5f7bb8a22	Fix vpn systemd service restart issues	2023-03-09 13:07:20 -07:00
Zuckerberg	cea9b9452b	Initial prototype for Wireguard based PIA VPN - not quite 'ready' yet	2023-03-08 23:49:02 -07:00
Zuckerberg	8fb45a7ee5	Turn off howdy	2023-03-08 23:47:11 -07:00
Zuckerberg	b53f03bb7d	Fix typo	2023-03-08 23:45:49 -07:00
Zuckerberg	dee0243268	Peer to peer connection keepalive task	2023-03-07 22:55:37 -07:00
Zuckerberg	8b6bc354bd	Peer to peer connection keepalive task	2023-03-07 22:54:26 -07:00
Zuckerberg	aff5611cdb	Update renamed nixos options	2023-03-07 22:52:31 -07:00

1 2 3 4 5 ...

594 Commits