pub-solar/os
5
0
Fork 2
Code Issues 4 Pull requests Packages Projects 1 Releases Wiki Activity
1651 commits 29 branches 43 tags 19 MiB
Commit graph

15 commits

Author SHA1 Message Date
teutat3s 17c76ec7b1
caddy: use module from latest to enable gracefully
All checks were successful
continuous-integration/drone/pr Build is passing
Details 
reloading upon config change instead of restarting
 2023-07-13 21:16:12 +02:00
teutat3s 6fd2903516
flora-6: add back openssh MACs that got removed
All checks were successful
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is passing
Details 
from defaults

NixOS default openssh MACs have changed to use "encrypt-then-mac" only.
This breaks compatibilty with clients that do not offer these MACs. For
compatibility reasons, we add back the old defaults.
See: https://github.com/NixOS/nixpkgs/pull/231165

https://blog.stribik.technology/2015/01/04/secure-secure-shell.html
https://infosec.mozilla.org/guidelines/openssh#modern-openssh-67
 2023-07-07 12:13:57 +02:00
teutat3s 9dbfb4eaaa
flora-6: use renamed openssh settings 
trace: warning: The option `services.openssh.permitRootLogin' defined in `/nix/store/ha98lp4l8ccspyfn5liq0k9ds3cs20zl-source/hosts/flora-6/flora-6.nix' has been renamed to `services.openssh.settings.PermitRootLogin'.
trace: warning: The option `services.openssh.passwordAuthentication' defined in `/nix/store/ha98lp4l8ccspyfn5liq0k9ds3cs20zl-source/hosts/flora-6/flora-6.nix' has been renamed to `services.openssh.settings.PasswordAuthentication'.
 2023-07-02 17:55:58 +02:00
teutat3s dd62bf1752
flora-6: init owncast
All checks were successful
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is passing
Details
2023-05-13 16:50:58 +02:00
teutat3s 80c1a7927a
flora-6: configure more agressive garbage
All checks were successful
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is passing
Details 
collection

Reason: it has already happened a few times, that flora-6 ran out of
disk space. With this fix, hopefully the garbage collection should
kick in earlier and prevent this from happening
 2023-03-05 18:38:42 +01:00
teutat3s b6ebd71c61
keycloak: use version 20.0.3 from nixos-22.11 
It's the same version as on nixos-unstable
 2023-02-01 13:15:30 +01:00
Benjamin Bädorf 26318bcafc
feat/mailman: Add flora-6 config for mailman 2023-01-31 21:25:45 +01:00
teutat3s 997561f817
caddy: add to hakkonaut group
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Add public SSH key to hakkonaut user
 2023-01-29 17:39:34 +01:00
teutat3s 9732e4edf1
Apply treefmt 2023-01-28 23:51:33 +01:00
teutat3s 90b182e499
Merge branch 'main' into infra 2023-01-28 23:27:21 +01:00
teutat3s f375843f43
flora-6: init drone ci 2023-01-28 21:26:13 +01:00
teutat3s f2c5739c97
Update flake.lock, remove fork flake input 
gitea gpg PR got merged into nixos-unstable in
https://github.com/NixOS/nixpkgs/pull/203183
 2023-01-21 23:21:16 +01:00
Benjamin Bädorf 2b03c98cf2
Refactor flora-6 services a bit 2022-11-27 23:31:08 +01:00
teutat3s a795bf4429
Rename flora6 -> flora-6 2022-11-27 21:56:40 +01:00
Benjamin Bädorf 1f2d56e0c9
Rename flora6 to flora-6 
This aligns with the coming changes in hostnames in the terraform
infrastructure.
 2022-11-26 02:40:51 +01:00
Renamed from hosts/flora6/flora6.nix (Browse further)