Commit graph

382 commits

Author SHA1 Message Date
Rouven Seifert 70123785d6
nginx: enable http3 for falkenstein 2023-12-23 17:30:04 +01:00
Rouven Seifert dab85522ba
ssh3: init packages 2023-12-19 22:42:38 +01:00
Rouven Seifert 1c9806cd0c
misc updates 2023-12-17 17:27:20 +01:00
Rouven Seifert 6a57013187
security: enable u2f 2023-12-17 17:27:14 +01:00
Rouven Seifert dd997624a9
network: add openfortivpn and wifi@db 2023-12-17 17:22:12 +01:00
Rouven Seifert cf9dedf17a
networking updates 2023-12-12 17:44:28 +01:00
Rouven Seifert 9e8e5053fd
add shared systemd module 2023-12-12 17:43:16 +01:00
Rouven Seifert 0ac9348fd2
v4l2, printing and website 2023-12-01 15:07:47 +01:00
Rouven Seifert 2e8e3ada22
networking and security updates 2023-11-25 23:22:16 +01:00
Rouven Seifert aa2c1e702c
host/thinkpad: split into modules 2023-11-24 09:57:15 +01:00
Rouven Seifert 70a6695ca1
updates and virtualization enhancements 2023-11-24 09:19:06 +01:00
Rouven Seifert bad96e4197
falkenstein-1 -> falkenstein 2023-11-20 22:46:51 +01:00
Rouven Seifert 41d348b037
nixos-hardware: remove 2023-11-18 14:54:56 +01:00
Rouven Seifert 81d601608d
adguard + nextcloud: remove 2023-11-18 00:11:37 +01:00
Rouven Seifert 2fae2a695b
refactor: ran deadnix 2023-11-16 15:53:15 +01:00
Rouven Seifert dcaa017e5d
agenix: migrate falkenstein 2023-11-16 15:08:13 +01:00
Rouven Seifert 3c5095f144
agenix: migrate nuc 2023-11-16 14:40:40 +01:00
Rouven Seifert 591c0cd6b5
start replacing sops with agenix 2023-11-16 13:29:18 +01:00
Rouven Seifert 719ef1ba91
mail: use rspamd for dkim 2023-11-16 01:27:01 +01:00
Rouven Seifert 33f39b3a15
overlays: remove wdisplays 2023-11-10 11:58:46 +01:00
Rouven Seifert 2bb6fa41e0
networking updates, too many to write down 2023-11-07 19:56:10 +01:00
Rouven Seifert 862e8ecfb2
add grafana and prometheus 2023-10-29 11:58:56 +01:00
Rouven Seifert 78b1a5761c
cleanup 2023-10-28 15:51:25 +02:00
Rouven Seifert 45628bdbc3
agdsn and networking updates 2023-10-26 12:12:45 +02:00
Rouven Seifert 5148ff5953
wireguard and fail2ban 2023-10-22 15:45:30 +02:00
Rouven Seifert 78a47101ac
matrix: init 2023-10-17 10:39:14 +02:00
Rouven Seifert fdcfeb524c
seafile: init 2023-10-15 16:30:40 +02:00
Rouven Seifert 2bacb74cc1
remove helix flake, add openwrt to router 2023-10-13 00:28:39 +02:00
Rouven Seifert af80cf73db
helix got fixed upstream 2023-10-09 23:37:08 +02:00
Rouven Seifert 0a2b482244
some agdsn related changes 2023-10-08 14:22:52 +02:00
Rouven Seifert b81a7a669a
systemd 254 arrived, switched back to sway 2023-09-29 10:32:24 +02:00
Rouven Seifert e7cb531d8b
dnssec: enable 2023-09-24 22:46:12 +02:00
Rouven Seifert 6dece01018
fixed ssh errors, add hashcash, update mail config, update zsh config 2023-09-24 21:32:28 +02:00
Rouven Seifert 671f4eb06c
refactor networking domain 2023-09-19 13:47:08 +02:00
Rouven Seifert 5cbf915808
nixify some more bots 2023-09-12 11:09:32 +02:00
Rouven Seifert 970ddcdacb
remove crowdsec and add tpm key 2023-09-06 13:35:16 +02:00
Rouven Seifert 74a4348d1d
mail: put sieve scripts in /etc 2023-09-04 13:07:22 +02:00
Rouven Seifert 9f90c1643a
enable spam training 2023-09-03 22:30:56 +02:00
Rouven Seifert 0fb1da3199
mail improvements 2023-09-01 14:15:17 +02:00
Rouven Seifert 0a8ef57823
don't use latest kernels 2023-08-29 20:34:20 +02:00
Rouven Seifert 505d713001
new monitor arrived 2023-08-27 15:48:42 +02:00
Rouven Seifert a1dc57a8de
remove github workflows and add breaktimer 2023-08-19 14:12:51 +02:00
Rouven Seifert 346d04e632
helix fix and some useful zsh functions 2023-08-12 18:34:29 +02:00
Rouven Seifert 4964b6036b
curl update 2023-08-09 09:01:29 +02:00
Rouven Seifert 4a7f6de503
use a newer version of nom 2023-08-06 22:24:01 +02:00
Rouven Seifert 741ebd293d
nixpkgs deprecated lib.getExe on packages without a mainprogram 2023-08-03 13:30:40 +02:00
Rouven Seifert a7a6c8e320
re-enabled impermanence and secure boot 2023-08-02 20:28:22 +02:00
Rouven Seifert 085e064e46
switched the thinkpad to zfs again 2023-08-02 18:04:26 +02:00
Rouven Seifert 7d45f23892
fixes before reinstall 2023-07-31 14:12:10 +02:00
Rouven Seifert b48fa4e383
configured backups 2023-07-30 19:41:51 +02:00
Rouven Seifert 60e1f3c3d0
configured crowdsec 2023-07-27 23:25:08 +02:00
Rouven Seifert f1f11eee2a
better up purge and mail secrets 2023-07-20 21:35:12 +02:00
Rouven Seifert 48e94316c0
configured uptime-kuma 2023-07-15 11:54:30 +02:00
Rouven Seifert 6577b08dab
nixpkgs update 2023-07-12 22:40:38 +02:00
Rouven Seifert b283eb634f
wlsunset, dwarf fortress, mail fixes 2023-07-09 22:49:16 +02:00
Rouven Seifert 78b5dad1d9
reconfigured the mail server 2023-07-05 15:55:17 +02:00
Rouven Seifert 2df9f4c65d
first attempt on gpu passthrough 2023-07-03 10:19:14 +02:00
Rouven Seifert ca8ac0f517
basic river configuration 2023-06-26 23:04:01 +02:00
Rouven Seifert 2d190a8791
beautified overlays 2023-06-22 14:34:05 +02:00
Rouven Seifert 99432a7244
enable zram for the vps 2023-06-19 23:58:04 +02:00
Rouven Seifert 1169e53c76
use lib.getExe where possible 2023-06-19 13:22:15 +02:00
Rouven Seifert 20dd0ece6c
nextcloud 26 -> nextcloud 27 2023-06-19 10:37:17 +02:00
Rouven Seifert 0620ebaa2a
remove exposed keys 2023-06-12 20:11:19 +02:00
Rouven Seifert f567dff94a
replace http cache with build machines and ssh 2023-06-12 16:49:45 +02:00
Rouven Seifert 33a2c28aad
introduce deploy-rs 2023-06-12 12:58:21 +02:00
Rouven Seifert ab78b70605
kernel updates 2023-06-09 11:18:29 +02:00
Rouven Seifert a4f6f8e370
nixpkgs fixes 2023-06-08 17:59:52 +02:00
Rouven Seifert 988ab5a0d0
fix nuc zsh history 2023-06-08 10:16:06 +02:00
Rouven Seifert 7e1d2412ef
initial config 2023-06-05 19:57:19 +02:00
Rouven Seifert 8f78e1f843
configured a spotify widget for waybar 2023-06-03 21:42:12 +02:00
Rouven Seifert b58ae611b6
enabled polkit 2023-06-02 22:21:36 +02:00
Rouven Seifert 627fe030cb
add another discord bot 2023-05-31 17:35:28 +02:00
Rouven Seifert 3bc1e3e76e
secureboot on the nuc doesnt' make sense 2023-05-31 13:32:54 +02:00
Rouven Seifert a9442f038d
configured secureboot 2023-05-31 13:25:21 +02:00
Rouven Seifert ea825be67f
enable systemd in initrd 2023-05-31 10:03:25 +02:00
Rouven Seifert 9530f26505
change the vps ssh port 2023-05-30 22:44:35 +02:00
Rouven Seifert a46a0d6500
update readme.md 2023-05-30 21:25:52 +02:00
Rouven Seifert 09e6824497
fixed missing import 2023-05-30 21:15:46 +02:00
Rouven Seifert 610408a1d8
fixed impermanence secrets for the nuc 2023-05-30 21:15:01 +02:00
Rouven Seifert ad587ca443
set nuc root password 2023-05-30 20:46:59 +02:00
Rouven Seifert 63605568c6
configured impermanence for the nuc 2023-05-30 20:37:36 +02:00
Rouven Seifert d08a5e1c8e
nix flake: update trucksimulator 2023-05-30 17:33:15 +02:00
Rouven Seifert de4d969a0e
Revert "better ipv6 config"
This reverts commit 1999030ee2.
2023-05-30 13:45:51 +02:00
Rouven Seifert 1999030ee2
better ipv6 config 2023-05-30 13:44:07 +02:00
Rouven Seifert 4e39998ac1
use trucksimulator's default listenport 2023-05-29 23:06:11 +02:00
Rouven Seifert 1cfc7a2078
update mime list 2023-05-29 14:36:54 +02:00
Rouven Seifert 8a5fde591e
add trucksim docs 2023-05-29 13:54:12 +02:00
Rouven Seifert 1c023fa7af
configure trucksimulatorbot 2023-05-29 13:31:20 +02:00
Rouven Seifert 747b917732
flake update and minor fixes 2023-05-28 13:15:29 +02:00
Rouven Seifert 552ed08cbf
temp enabled docker on the vps 2023-05-26 14:50:29 +02:00
Rouven Seifert f90ba1151a
made tmux config global 2023-05-26 00:01:59 +02:00
Rouven Seifert 06eff6014c
commit vps ssh keys 2023-05-25 20:40:13 +02:00
Rouven Seifert f514c328f0
update email domain 2023-05-25 15:52:09 +02:00
Rouven Seifert d031f5e5b3
enable rspamd 2023-05-24 17:08:44 +02:00
Rouven Seifert ff990ac5ba
import fix 2023-05-24 16:38:35 +02:00
Rouven Seifert d337c62451
mailserver fixes 2023-05-24 16:37:45 +02:00
Rouven Seifert 6972c8d5dd
simple mailserver config 2023-05-24 15:51:58 +02:00
Rouven Seifert e04491f9dd
don't enable fwupd in the iso 2023-05-23 20:51:02 +02:00
Rouven Seifert b62b7577ca
remove netboot stuff again 2023-05-22 11:14:56 +02:00
Rouven Seifert 8b37b0adfc
hacked together some basic netboot stuff 2023-05-21 23:40:21 +02:00
Rouven Seifert fbbb68ee06
package cleanup 2023-05-21 13:50:49 +02:00
Rouven Seifert 6da93d0250
impermanence fixes 2023-05-20 16:23:19 +02:00
Rouven Seifert 6e5876f2ff
impermanence test 2023-05-20 13:20:05 +02:00
Rouven Seifert a3e8fba7c0
nixpkgs update, use global fzf 2023-05-20 10:37:41 +02:00
Rouven Seifert 3df08b721e
ran deadnix 2023-05-19 11:42:43 +02:00
Rouven Seifert 0921151c6e
flake cleanup, removed impermanence 2023-05-18 12:49:06 +02:00
Rouven Seifert 2068b655da
nixpkgs and snapper update 2023-05-16 19:41:06 +02:00
Rouven Seifert 11b1eb654d
removed notmuch 2023-05-15 22:59:59 +02:00
Rouven Seifert 958f21fdf0
nix updates 2023-05-08 11:23:04 +02:00
Rouven Seifert 7182df3bd8
flake restructuring 2023-05-06 22:22:05 +02:00
Rouven Seifert f58be4609b
remove zstd from nginx 2023-05-05 23:45:37 +02:00
Rouven Seifert 8f2c34bc57
enhance wireguard and nginx settings 2023-05-05 23:43:40 +02:00
Rouven Seifert 4a57efccad
Update Falkenstein/default.nix 2023-05-05 16:37:44 +02:00
Rouven Seifert 6be5f6a151
flake cleanup and iso tweaks 2023-05-05 16:17:31 +02:00
Rouven Seifert c0c544b447
use upstream packages where possible 2023-05-03 22:55:06 +02:00
Rouven Seifert d3d384fdb8
added dirty jmri package 2023-05-03 16:22:42 +02:00
Rouven Seifert 2308f6cfa1
set a better zsh theme for the iso 2023-05-02 09:58:25 +02:00
Rouven Seifert f7931d72a8
hydra and package fixes 2023-05-02 00:04:26 +02:00
Rouven Seifert d41c30a414
added a basic hydra 2023-05-01 21:05:49 +02:00
Rouven Seifert b7ecc2984d
added own iso 2023-05-01 19:59:25 +02:00
Rouven Seifert 2a06e7523e
prepare vm impermanence 2023-05-01 13:17:37 +02:00
Rouven Seifert 26e43a6da8
add basic vm configuration 2023-05-01 12:30:21 +02:00
Rouven Seifert a9cfb32b12
updates, adguard and notmuch fixes 2023-04-30 21:50:47 +02:00
Rouven Seifert 0677beb1c0
fixed adguard 2023-04-27 18:11:10 +02:00
Rouven Seifert ffdd151409
configured adguard 2023-04-27 17:27:57 +02:00
Rouven Seifert fd2b72ba37
Revert "run nuc backups every 6 hours"
This reverts commit bb546c35c6.
2023-04-24 22:11:57 +02:00
Rouven Seifert bb546c35c6
run nuc backups every 6 hours 2023-04-24 20:38:47 +02:00
Rouven Seifert 8064ba74cc
enable java lsp 2023-04-24 15:15:01 +02:00
Rouven Seifert 1737739b73
global zsh config 2023-04-21 20:03:23 +02:00
Rouven Seifert d261d9fc65
more university related packages 2023-04-17 19:02:09 +02:00
Rouven Seifert 047099ae07
enable firmware updates for the nuc 2023-04-17 11:16:50 +02:00
Rouven Seifert b28898690b
ported trucksimulatorbot images 2023-04-16 16:56:24 +02:00
Rouven Seifert dd60c40217
flake updates 2023-04-16 13:43:30 +02:00
Rouven Seifert 889c6939cf
resolve option conflicts 2023-04-14 11:41:01 +02:00
Rouven Seifert d89fd3a228
add comma to all hosts 2023-04-14 11:38:08 +02:00
Rouven Seifert 6c923b264d
eduroam is kinda broken, fixing with pxl hotspot 2023-04-14 11:14:53 +02:00
Rouven Seifert e19d6002f0
forgot to import 2023-04-13 14:28:09 +02:00
Rouven Seifert a207695b2b
configured the purge bot 2023-04-13 14:24:39 +02:00
Rouven Seifert 7d0571f4a9
formatting 2023-04-12 22:09:46 +02:00
Rouven Seifert d8f9425bed
configured backups for the nuc 2023-04-12 22:09:37 +02:00
Rouven Seifert 71d028c7a0
add the qemu quest agent 2023-04-12 21:14:29 +02:00
Rouven Seifert 2145b6271e
enable ipv6 for the vps 2023-04-12 20:47:00 +02:00
Rouven Seifert de1376b7ed
vps fixes 2023-04-12 17:28:41 +02:00
Rouven Seifert 1cd25fb778
prepared the new vps 2023-04-12 17:21:24 +02:00
Rouven Seifert 534dba6dbe
fix 2023-04-12 15:06:17 +02:00
Rouven Seifert 2fe684269a
networking stuff 2023-04-12 15:05:15 +02:00
Rouven Seifert 33bfb1c7eb
configured nix-serve 2023-04-12 10:06:32 +02:00
Rouven Seifert c3131ca53c
mount /tmp on tmpfs 2023-04-12 09:18:28 +02:00
Rouven Seifert 8b2ea66132
cleanup and restructuring 2023-04-06 22:31:45 +02:00
Rouven Seifert 706220f980
network updates 2023-04-06 11:00:53 +02:00
Rouven Seifert 40d7f3a05c
enabled x32edit and java 2023-04-03 12:57:31 +02:00
Rouven Seifert c5ec676f38
nextcloud updates and hyprland cache 2023-03-26 14:27:15 +02:00
Rouven Seifert fdabdec32d
end robolab and prepare for c 2023-03-22 10:27:13 +01:00
Rouven Seifert 88e869fd45
nix settings and nvim tweaks 2023-03-16 21:46:12 +01:00
Rouven Seifert 5f5ca3fc12
robolab setup 2023-03-09 19:15:05 +01:00
Rouven Seifert 06c7893ad7
set up printers 2023-03-06 18:07:49 +01:00
Rouven Seifert 223b570ba6
mail accout improvements 2023-03-06 15:05:35 +01:00
Rouven Seifert 6454f8c69c
hyprland tweaks 2023-03-04 21:22:42 +01:00
Rouven Seifert 49fa6f0b7e
fwupd and terminal bell configuration 2023-03-04 19:56:45 +01:00
Rouven Seifert 7ec7fcf46e
updates, fixes, adding some s/mime tools 2023-03-02 19:01:48 +01:00
Rouven Seifert 683d9145c9
bigger update that broke some things 2023-02-28 23:33:03 +01:00
Rouven Seifert 82a05531c3
set up swayidle 2023-02-28 23:00:18 +01:00
Rouven Seifert 89604624c9
set up hibernate 2023-02-28 20:48:06 +01:00
Rouven Seifert d2b548cac2
misc security and qol updates 2023-02-28 15:05:07 +01:00
Rouven Seifert 668e6901fb icons everywhere 2023-02-25 16:30:02 +01:00
Rouven Seifert adc6afca11
integrated hyprland into systemd 2023-02-21 12:24:34 +01:00
Rouven Seifert fca5f7a167
use tpm to encrypt drives 2023-02-18 19:33:05 +01:00
Rouven Seifert f923077cf9
switched the nuc to btrfs 2023-02-17 21:59:26 +01:00
Rouven Seifert 607b2d7a35
preparing nuc for reinstall 2023-02-17 21:35:12 +01:00
Rouven Seifert 9a8e3bd12d
configured snapper 2023-02-16 23:27:16 +01:00
Rouven Seifert 2751a9750c
switched to btrfs 2023-02-16 22:08:44 +01:00
Rouven Seifert 55611013b7
show a beautiful cat when starting zsh 2023-02-14 21:50:36 +01:00
Rouven Seifert 93a33fbe51
updates people, updates 2023-02-14 19:49:31 +01:00
Rouven Seifert 19580dd4f2
fixed colors 2023-02-12 14:56:42 +01:00
Rouven Seifert 0e77ba38e0
switched to foot 2023-02-11 12:58:28 +01:00
Rouven Seifert a10344afbb
updates and zfs tweaks 2023-01-28 22:28:56 +01:00
Rouven Seifert c8c4be8737
console colors 2023-01-28 15:26:54 +01:00
Rouven Seifert be6057ebf0
switched to zfs on the thinkpad 2023-01-28 14:54:44 +01:00
Rouven Seifert f4ef85b10d
initial config 2023-01-27 00:24:24 +01:00
Rouven Seifert 8a3c94e6c2 nextcloud doesn't need a db password 2023-01-25 15:08:30 +01:00
Rouven Seifert e8d6ca3917 fixed vaultwarden 2023-01-25 14:24:10 +01:00
Rouven Seifert 6b41537bc2
initial vaultwarden config 2023-01-25 13:48:58 +01:00
Rouven Seifert 10cd007f8d nextcloud tweaks 2023-01-24 12:39:53 +01:00
Rouven Seifert 84451b9e12
firewall fixes 2023-01-24 12:15:51 +01:00
Rouven Seifert 9f5cf5143e
maybe I should also use the modules 2023-01-24 12:05:09 +01:00
Rouven Seifert a8dfc9276e
added nextcloud 2023-01-24 11:58:36 +01:00
Rouven Seifert 1dfcdd7d7c
networkd for the nuc 2023-01-23 23:35:44 +01:00
Rouven Seifert 7d42e61e3d neat zfs stuff 2023-01-23 17:43:43 +01:00
Rouven Seifert c0767193c9 added nuc 2023-01-23 17:30:09 +01:00
Rouven Seifert c8bca81c12
configured lockscreen 2023-01-21 19:03:24 +01:00
Rouven Seifert fd3f3dd2a7
giving up on flameshot 2023-01-21 14:44:23 +01:00
Rouven Seifert b6633d73a3
cleaned up a bit 2023-01-20 22:12:45 +01:00
Rouven Seifert b8efb1ffed
config I can work with 2023-01-20 12:23:05 +01:00
Rouven Seifert c59157a753
initial halfway working config 2023-01-20 10:46:28 +01:00
Rouven Seifert d0371f85b3
moved awesome back in here 2023-01-19 22:50:54 +01:00
Rouven Seifert dd10deec8c
fixed wireguard and added ausweisapp 2023-01-16 16:55:17 +01:00
Rouven Seifert 0d7dbc7d82
configured home network 2023-01-15 14:58:38 +01:00
Rouven Seifert 427e0319f7
droppend bond and configured wireguard 2023-01-15 14:27:49 +01:00
Rouven Seifert 974b62495e
initial systemd-networkd conf, has problems 2023-01-15 02:28:40 +01:00
Rouven Seifert 89c992c0d9
formatting and updates 2023-01-10 11:31:33 +01:00