Commit graph

382 commits

Author SHA1 Message Date
Rouven Seifert 9e01a0bc04
ns: fix soa record 2024-03-10 20:42:51 +01:00
Rouven Seifert f717779d32
trucksimulator-images: move to main domain 2024-03-10 19:53:30 +01:00
Rouven Seifert 25ac340213
small cleanup 2024-03-10 19:53:00 +01:00
Rouven Seifert 276a49ce31
nuc: disable dnssec 2024-03-10 19:52:52 +01:00
Rouven Seifert 9f0712d2ca
falkenstein: enable dnssec 2024-03-09 23:22:02 +01:00
Rouven Seifert be70c4119a
dns: simplify zonefile 2024-03-09 21:39:15 +01:00
Rouven Seifert 7a3f987b0d
keycloak: disable 2024-03-09 15:23:50 +01:00
Rouven Seifert 103c238e3e
nuc: disable uptime-kuma 2024-03-09 13:39:07 +01:00
Rouven Seifert 7bad85eb1f
trucksimulator: shorten urls 2024-03-09 13:26:49 +01:00
Rouven Seifert 05dc9b4671
falkenstein.vpn -> falkenstein 2024-03-09 12:40:02 +01:00
Rouven Seifert 525b92a65d
nuc: add keycloak 2024-03-09 12:39:16 +01:00
Rouven Seifert 911fa95dd1
falkenstein: disable zram and add own dns config 2024-03-09 12:38:24 +01:00
Rouven Seifert a85d214498
pfersel: remove secret owner 2024-03-04 20:05:39 +01:00
Rouven Seifert cb11bc0764
mail: a lot of improvements 2024-03-04 20:04:18 +01:00
Rouven Seifert 6159a76a85
matrix: add telegram bridge 2024-02-29 15:37:22 +01:00
Rouven Seifert 0302463733
mail: enable archive 2024-02-26 19:14:36 +01:00
Rouven Seifert 11b11c2be7
nuc: remove grafana 2024-02-18 17:11:57 +01:00
Rouven Seifert e05b987ff7
networking: more virt interfaces 2024-02-18 17:08:02 +01:00
Rouven Seifert 3dc025762f
updates and fixes 2024-02-17 19:14:03 +01:00
Rouven Seifert 7cda66afc2
colorscheme.colors -> colorscheme.palette 2024-02-11 20:12:25 +01:00
Rouven Seifert 839f56d098
thinkpad: add curl and fix fonts 2024-02-11 20:01:15 +01:00
Rouven Seifert e315b81cda
thinkpad: use sudo-rs instead of sudo 2024-02-11 20:00:53 +01:00
Rouven Seifert 2e3f52a60e
thinkpad: enable docker 2024-02-11 19:58:56 +01:00
Rouven Seifert 64777dfabf
nuc: unforce dnssec 2024-02-11 19:58:09 +01:00
Rouven Seifert 82aa8774d9
mail: use nix native sieve options 2024-02-11 19:57:42 +01:00
Rouven Seifert 71939c6c39
systemd: allow soft-reboot 2024-01-29 23:50:34 +01:00
Rouven Seifert b3329fd1a9
home: remove declarative account configuration 2024-01-27 23:03:53 +01:00
Rouven Seifert e7a4594300
matrix: enable element-web 2024-01-27 23:03:29 +01:00
Rouven Seifert 0fb57287bd
falkenstein: add some spoofing restrictions 2024-01-25 18:20:24 +01:00
Rouven Seifert 7a8e304ca1
nuc: disable dnssec as it breaks matrix 2024-01-25 18:19:48 +01:00
Rouven Seifert c8fa651010
updates 2024-01-22 01:08:20 +01:00
Rouven Seifert 6cb6667093
thinkpad: wayland and bluetooth fixes 2024-01-22 01:07:30 +01:00
Rouven Seifert 758c58f5c2 nix flake update 2024-01-14 13:17:29 +01:00
Rouven Seifert 7e8859d116
network: bind wg0to wireless 2024-01-11 14:14:19 +01:00
Rouven Seifert 3a052ca275
Revert "another try"
This reverts commit eefcb05e3a.
2024-01-04 17:26:11 +01:00
Rouven Seifert eefcb05e3a
another try 2024-01-04 14:56:38 +01:00
Rouven Seifert 94689ed2b2
disable gcc tuning 2024-01-04 14:54:49 +01:00
Rouven Seifert 20f2a3edb4
Revert "one last try"
This reverts commit 41b724b744.
2024-01-04 14:54:25 +01:00
Rouven Seifert 41b724b744
one last try 2024-01-04 14:53:06 +01:00
Rouven Seifert 66a502d7e6
small hydra test 2024-01-04 11:30:19 +01:00
Rouven Seifert ee31ef9c4c
gcc: tune arch 2024-01-04 00:17:40 +01:00
Rouven Seifert 60ed410a43
bring back hydra 2024-01-04 00:13:46 +01:00
Rouven Seifert 031a2004f3
cleanup and update changes 2024-01-04 00:13:32 +01:00
Rouven Seifert fcdc32c2f0
networking: fix wireguard dns 2024-01-04 00:10:15 +01:00
Rouven Seifert ec6fefe59c
refactor: cleanup 2023-12-29 19:47:57 +01:00
Rouven Seifert 3aa45471d8
thinkpad: power management improvements 2023-12-29 19:40:10 +01:00
Rouven Seifert 8a6f689e6a
virtualisation: fix firewall and secureboot
gpu passthrough wann?
2023-12-27 22:55:40 +01:00
Rouven Seifert c4e59829c4
network: disable lldpd 2023-12-27 22:22:42 +01:00
Rouven Seifert 51001f585b
networking: fix ifsr-apb password 2023-12-24 23:40:01 +01:00
Rouven Seifert 1bcad0949a
systemd-networkd improvements 2023-12-23 17:30:24 +01:00
Rouven Seifert 70123785d6
nginx: enable http3 for falkenstein 2023-12-23 17:30:04 +01:00
Rouven Seifert dab85522ba
ssh3: init packages 2023-12-19 22:42:38 +01:00
Rouven Seifert 1c9806cd0c
misc updates 2023-12-17 17:27:20 +01:00
Rouven Seifert 6a57013187
security: enable u2f 2023-12-17 17:27:14 +01:00
Rouven Seifert dd997624a9
network: add openfortivpn and wifi@db 2023-12-17 17:22:12 +01:00
Rouven Seifert cf9dedf17a
networking updates 2023-12-12 17:44:28 +01:00
Rouven Seifert 9e8e5053fd
add shared systemd module 2023-12-12 17:43:16 +01:00
Rouven Seifert 0ac9348fd2
v4l2, printing and website 2023-12-01 15:07:47 +01:00
Rouven Seifert 2e8e3ada22
networking and security updates 2023-11-25 23:22:16 +01:00
Rouven Seifert aa2c1e702c
host/thinkpad: split into modules 2023-11-24 09:57:15 +01:00
Rouven Seifert 70a6695ca1
updates and virtualization enhancements 2023-11-24 09:19:06 +01:00
Rouven Seifert bad96e4197
falkenstein-1 -> falkenstein 2023-11-20 22:46:51 +01:00
Rouven Seifert 41d348b037
nixos-hardware: remove 2023-11-18 14:54:56 +01:00
Rouven Seifert 81d601608d
adguard + nextcloud: remove 2023-11-18 00:11:37 +01:00
Rouven Seifert 2fae2a695b
refactor: ran deadnix 2023-11-16 15:53:15 +01:00
Rouven Seifert dcaa017e5d
agenix: migrate falkenstein 2023-11-16 15:08:13 +01:00
Rouven Seifert 3c5095f144
agenix: migrate nuc 2023-11-16 14:40:40 +01:00
Rouven Seifert 591c0cd6b5
start replacing sops with agenix 2023-11-16 13:29:18 +01:00
Rouven Seifert 719ef1ba91
mail: use rspamd for dkim 2023-11-16 01:27:01 +01:00
Rouven Seifert 33f39b3a15
overlays: remove wdisplays 2023-11-10 11:58:46 +01:00
Rouven Seifert 2bb6fa41e0
networking updates, too many to write down 2023-11-07 19:56:10 +01:00
Rouven Seifert 862e8ecfb2
add grafana and prometheus 2023-10-29 11:58:56 +01:00
Rouven Seifert 78b1a5761c
cleanup 2023-10-28 15:51:25 +02:00
Rouven Seifert 45628bdbc3
agdsn and networking updates 2023-10-26 12:12:45 +02:00
Rouven Seifert 5148ff5953
wireguard and fail2ban 2023-10-22 15:45:30 +02:00
Rouven Seifert 78a47101ac
matrix: init 2023-10-17 10:39:14 +02:00
Rouven Seifert fdcfeb524c
seafile: init 2023-10-15 16:30:40 +02:00
Rouven Seifert 2bacb74cc1
remove helix flake, add openwrt to router 2023-10-13 00:28:39 +02:00
Rouven Seifert af80cf73db
helix got fixed upstream 2023-10-09 23:37:08 +02:00
Rouven Seifert 0a2b482244
some agdsn related changes 2023-10-08 14:22:52 +02:00
Rouven Seifert b81a7a669a
systemd 254 arrived, switched back to sway 2023-09-29 10:32:24 +02:00
Rouven Seifert e7cb531d8b
dnssec: enable 2023-09-24 22:46:12 +02:00
Rouven Seifert 6dece01018
fixed ssh errors, add hashcash, update mail config, update zsh config 2023-09-24 21:32:28 +02:00
Rouven Seifert 671f4eb06c
refactor networking domain 2023-09-19 13:47:08 +02:00
Rouven Seifert 5cbf915808
nixify some more bots 2023-09-12 11:09:32 +02:00
Rouven Seifert 970ddcdacb
remove crowdsec and add tpm key 2023-09-06 13:35:16 +02:00
Rouven Seifert 74a4348d1d
mail: put sieve scripts in /etc 2023-09-04 13:07:22 +02:00
Rouven Seifert 9f90c1643a
enable spam training 2023-09-03 22:30:56 +02:00
Rouven Seifert 0fb1da3199
mail improvements 2023-09-01 14:15:17 +02:00
Rouven Seifert 0a8ef57823
don't use latest kernels 2023-08-29 20:34:20 +02:00
Rouven Seifert 505d713001
new monitor arrived 2023-08-27 15:48:42 +02:00
Rouven Seifert a1dc57a8de
remove github workflows and add breaktimer 2023-08-19 14:12:51 +02:00
Rouven Seifert 346d04e632
helix fix and some useful zsh functions 2023-08-12 18:34:29 +02:00
Rouven Seifert 4964b6036b
curl update 2023-08-09 09:01:29 +02:00
Rouven Seifert 4a7f6de503
use a newer version of nom 2023-08-06 22:24:01 +02:00
Rouven Seifert 741ebd293d
nixpkgs deprecated lib.getExe on packages without a mainprogram 2023-08-03 13:30:40 +02:00
Rouven Seifert a7a6c8e320
re-enabled impermanence and secure boot 2023-08-02 20:28:22 +02:00
Rouven Seifert 085e064e46
switched the thinkpad to zfs again 2023-08-02 18:04:26 +02:00
Rouven Seifert 7d45f23892
fixes before reinstall 2023-07-31 14:12:10 +02:00
Rouven Seifert b48fa4e383
configured backups 2023-07-30 19:41:51 +02:00
Rouven Seifert 60e1f3c3d0
configured crowdsec 2023-07-27 23:25:08 +02:00
Rouven Seifert f1f11eee2a
better up purge and mail secrets 2023-07-20 21:35:12 +02:00
Rouven Seifert 48e94316c0
configured uptime-kuma 2023-07-15 11:54:30 +02:00
Rouven Seifert 6577b08dab
nixpkgs update 2023-07-12 22:40:38 +02:00
Rouven Seifert b283eb634f
wlsunset, dwarf fortress, mail fixes 2023-07-09 22:49:16 +02:00
Rouven Seifert 78b5dad1d9
reconfigured the mail server 2023-07-05 15:55:17 +02:00
Rouven Seifert 2df9f4c65d
first attempt on gpu passthrough 2023-07-03 10:19:14 +02:00
Rouven Seifert ca8ac0f517
basic river configuration 2023-06-26 23:04:01 +02:00
Rouven Seifert 2d190a8791
beautified overlays 2023-06-22 14:34:05 +02:00
Rouven Seifert 99432a7244
enable zram for the vps 2023-06-19 23:58:04 +02:00
Rouven Seifert 1169e53c76
use lib.getExe where possible 2023-06-19 13:22:15 +02:00
Rouven Seifert 20dd0ece6c
nextcloud 26 -> nextcloud 27 2023-06-19 10:37:17 +02:00
Rouven Seifert 0620ebaa2a
remove exposed keys 2023-06-12 20:11:19 +02:00
Rouven Seifert f567dff94a
replace http cache with build machines and ssh 2023-06-12 16:49:45 +02:00
Rouven Seifert 33a2c28aad
introduce deploy-rs 2023-06-12 12:58:21 +02:00
Rouven Seifert ab78b70605
kernel updates 2023-06-09 11:18:29 +02:00
Rouven Seifert a4f6f8e370
nixpkgs fixes 2023-06-08 17:59:52 +02:00
Rouven Seifert 988ab5a0d0
fix nuc zsh history 2023-06-08 10:16:06 +02:00
Rouven Seifert 7e1d2412ef
initial config 2023-06-05 19:57:19 +02:00
Rouven Seifert 8f78e1f843
configured a spotify widget for waybar 2023-06-03 21:42:12 +02:00
Rouven Seifert b58ae611b6
enabled polkit 2023-06-02 22:21:36 +02:00
Rouven Seifert 627fe030cb
add another discord bot 2023-05-31 17:35:28 +02:00
Rouven Seifert 3bc1e3e76e
secureboot on the nuc doesnt' make sense 2023-05-31 13:32:54 +02:00
Rouven Seifert a9442f038d
configured secureboot 2023-05-31 13:25:21 +02:00
Rouven Seifert ea825be67f
enable systemd in initrd 2023-05-31 10:03:25 +02:00
Rouven Seifert 9530f26505
change the vps ssh port 2023-05-30 22:44:35 +02:00
Rouven Seifert a46a0d6500
update readme.md 2023-05-30 21:25:52 +02:00
Rouven Seifert 09e6824497
fixed missing import 2023-05-30 21:15:46 +02:00
Rouven Seifert 610408a1d8
fixed impermanence secrets for the nuc 2023-05-30 21:15:01 +02:00
Rouven Seifert ad587ca443
set nuc root password 2023-05-30 20:46:59 +02:00
Rouven Seifert 63605568c6
configured impermanence for the nuc 2023-05-30 20:37:36 +02:00
Rouven Seifert d08a5e1c8e
nix flake: update trucksimulator 2023-05-30 17:33:15 +02:00
Rouven Seifert de4d969a0e
Revert "better ipv6 config"
This reverts commit 1999030ee2.
2023-05-30 13:45:51 +02:00
Rouven Seifert 1999030ee2
better ipv6 config 2023-05-30 13:44:07 +02:00
Rouven Seifert 4e39998ac1
use trucksimulator's default listenport 2023-05-29 23:06:11 +02:00
Rouven Seifert 1cfc7a2078
update mime list 2023-05-29 14:36:54 +02:00
Rouven Seifert 8a5fde591e
add trucksim docs 2023-05-29 13:54:12 +02:00
Rouven Seifert 1c023fa7af
configure trucksimulatorbot 2023-05-29 13:31:20 +02:00
Rouven Seifert 747b917732
flake update and minor fixes 2023-05-28 13:15:29 +02:00
Rouven Seifert 552ed08cbf
temp enabled docker on the vps 2023-05-26 14:50:29 +02:00
Rouven Seifert f90ba1151a
made tmux config global 2023-05-26 00:01:59 +02:00
Rouven Seifert 06eff6014c
commit vps ssh keys 2023-05-25 20:40:13 +02:00
Rouven Seifert f514c328f0
update email domain 2023-05-25 15:52:09 +02:00
Rouven Seifert d031f5e5b3
enable rspamd 2023-05-24 17:08:44 +02:00
Rouven Seifert ff990ac5ba
import fix 2023-05-24 16:38:35 +02:00
Rouven Seifert d337c62451
mailserver fixes 2023-05-24 16:37:45 +02:00
Rouven Seifert 6972c8d5dd
simple mailserver config 2023-05-24 15:51:58 +02:00
Rouven Seifert e04491f9dd
don't enable fwupd in the iso 2023-05-23 20:51:02 +02:00
Rouven Seifert b62b7577ca
remove netboot stuff again 2023-05-22 11:14:56 +02:00
Rouven Seifert 8b37b0adfc
hacked together some basic netboot stuff 2023-05-21 23:40:21 +02:00