teutat3s
50614131d2
flora-6: disable migrated services, enable ci runner
...
continuous-integration/drone/push Build is passing
for forgejo actions
https://forgejo.org/docs/latest/admin/actions
2023-10-30 02:14:52 +01:00
Benjamin Bädorf
c5f0dca0d5
feat: add collabora
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is failing
2023-09-13 10:25:23 +02:00
teutat3s
17c76ec7b1
caddy: use module from latest to enable gracefully
...
continuous-integration/drone/pr Build is passing
reloading upon config change instead of restarting
2023-07-13 21:16:12 +02:00
teutat3s
6fd2903516
flora-6: add back openssh MACs that got removed
...
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
from defaults
NixOS default openssh MACs have changed to use "encrypt-then-mac" only.
This breaks compatibilty with clients that do not offer these MACs. For
compatibility reasons, we add back the old defaults.
See: https://github.com/NixOS/nixpkgs/pull/231165
https://blog.stribik.technology/2015/01/04/secure-secure-shell.html
https://infosec.mozilla.org/guidelines/openssh#modern-openssh-67
2023-07-07 12:13:57 +02:00
teutat3s
9dbfb4eaaa
flora-6: use renamed openssh settings
...
trace: warning: The option `services.openssh.permitRootLogin' defined in `/nix/store/ha98lp4l8ccspyfn5liq0k9ds3cs20zl-source/hosts/flora-6/flora-6.nix' has been renamed to `services.openssh.settings.PermitRootLogin'.
trace: warning: The option `services.openssh.passwordAuthentication' defined in `/nix/store/ha98lp4l8ccspyfn5liq0k9ds3cs20zl-source/hosts/flora-6/flora-6.nix' has been renamed to `services.openssh.settings.PasswordAuthentication'.
2023-07-02 17:55:58 +02:00
teutat3s
dd62bf1752
flora-6: init owncast
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
2023-05-13 16:50:58 +02:00
teutat3s
80c1a7927a
flora-6: configure more agressive garbage
...
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
collection
Reason: it has already happened a few times, that flora-6 ran out of
disk space. With this fix, hopefully the garbage collection should
kick in earlier and prevent this from happening
2023-03-05 18:38:42 +01:00
teutat3s
b6ebd71c61
keycloak: use version 20.0.3 from nixos-22.11
...
It's the same version as on nixos-unstable
2023-02-01 13:15:30 +01:00
Benjamin Bädorf
26318bcafc
feat/mailman: Add flora-6 config for mailman
2023-01-31 21:25:45 +01:00
teutat3s
997561f817
caddy: add to hakkonaut group
...
continuous-integration/drone/push Build is passing
Add public SSH key to hakkonaut user
2023-01-29 17:39:34 +01:00
teutat3s
9732e4edf1
Apply treefmt
2023-01-28 23:51:33 +01:00
teutat3s
90b182e499
Merge branch 'main' into infra
2023-01-28 23:27:21 +01:00
teutat3s
f375843f43
flora-6: init drone ci
2023-01-28 21:26:13 +01:00
teutat3s
f2c5739c97
Update flake.lock, remove fork flake input
...
gitea gpg PR got merged into nixos-unstable in
https://github.com/NixOS/nixpkgs/pull/203183
2023-01-21 23:21:16 +01:00
Benjamin Bädorf
2b03c98cf2
Refactor flora-6 services a bit
2022-11-27 23:31:08 +01:00
teutat3s
a795bf4429
Rename flora6 -> flora-6
2022-11-27 21:56:40 +01:00
Benjamin Bädorf
1f2d56e0c9
Rename flora6 to flora-6
...
This aligns with the coming changes in hostnames in the terraform
infrastructure.
2022-11-26 02:40:51 +01:00