Mic92/stockholm
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
10,201 Commits 1 Branch 0 Tags 28 MiB
6104ec910e
Commit Graph

3335 Commits

Author SHA1 Message Date
Kierán Meinhardt
6104ec910e external: add kmein ed25519 keys 2021-12-28 16:10:19 +01:00
lassulus
c7b7bd48b5 l tinc: define ed25519 keys for all hosts 2021-12-28 16:09:42 +01:00
lassulus
8692db1285 Merge remote-tracking branch 'mic92/master' 2021-12-25 20:08:31 +01:00
Jörg Thalheim
cb26de2f5c matchbox: remove ipv4 2021-12-25 08:39:02 +01:00
tv
969bd9767e exim-smarthost: dkim_strict = true 2021-12-24 10:19:13 +01:00
tv
b33381d15e exim-smarthost: use LoadCredential 2021-12-24 09:22:41 +01:00
tv
7219292dd5 repo-sync: use LoadCredential 2021-12-24 00:51:28 +01:00
tv
71d11e8f2b repo-sync: add group 2021-12-24 00:51:28 +01:00
tv
234d9d96bf krebs.systemd: allow LoadCredential to be a string 2021-12-24 00:51:28 +01:00
lassulus
2be08e3c52 systemd module: use LoadCredentials from config.systemd.services 2021-12-23 23:59:22 +01:00
lassulus
29b796f521 Merge remote-tracking branch 'ni/master' 2021-12-23 21:49:55 +01:00
tv
d4521eb339 krebs.systemd: allow reload if credentials change 2021-12-23 20:18:28 +01:00
tv
1cf495d6eb krebs.systemd: support credentials of any service 2021-12-23 20:18:28 +01:00
Jörg Thalheim
a9d324f176 mic92: update ip for eve 2021-12-23 08:36:49 +01:00
tv
5f7ab23ebf krebs.tinc: drop environment.systemPackages TODO 
Nobody bothered about this for more than five years.  And even though
fixable, chances are quite high that this feature is not needed anymore.
 2021-12-23 03:20:36 +01:00
tv
8029e80632 krebs.tinc: drop api and imp boilerplate 2021-12-23 03:16:44 +01:00
tv
018018e16b krebs.tinc: don't bother aliasing packages 2021-12-23 03:12:58 +01:00
tv
21e407aa59 krebs.tinc: use LoadCredential 2021-12-23 01:59:25 +01:00
tv
d6ebd497f0 krebs.systemd.services: restart by LoadCredential 2021-12-23 01:59:25 +01:00
tv
448cd3b9af Merge remote-tracking branch 'prism/master' 2021-12-22 23:33:05 +01:00
tv
2656cbf2a9 empty -> emptyDirectory 2021-12-22 23:27:07 +01:00
lassulus
c9f0c17660 tinc module: reload instead of restart 
remove enableLegacy option since reloading is dependant on
/etc/tinc/<netname> existing
 2021-12-22 13:58:30 +01:00
lassulus
8f94e0bc4b Merge remote-tracking branch 'ni/master' 2021-12-21 16:45:56 +01:00
tv
e888b00a6b secret service: don't be wanted by multi-user.target 
This fixes an issue causing secret-trigger-*.service to be restarted on
every activation because after triggering these services are dead, this
in turn causes restarts of secret-*.service.

And finally this caused the issue of always restarting tinc services
as they are PartOf= a couple of secert-*.service.
 2021-12-21 15:27:44 +01:00
lassulus
0a7d779cc1 iptables module: add compat layer to networking.firewall 2021-12-21 12:38:07 +01:00
lassulus
d6f79283bf tinc module: use tinc_pre as default package 2021-12-21 12:08:47 +01:00
lassulus
5b71cbae40 Merge remote-tracking branch 'ni/master' 2021-12-20 21:23:50 +01:00
lassulus
c573ac9f0e Merge remote-tracking branch 'mic92/master' 2021-12-20 21:23:36 +01:00
lassulus
f198b1b80a rss-bridge: 2021-04-20 -> 2021-12-02 2021-12-20 21:22:05 +01:00
Jörg Thalheim
a7f26ef99b mic92: add mickey.r 2021-12-20 19:00:45 +01:00
tv
dbc54fb823 github-known-hosts: update list 2021-12-18 09:50:06 +01:00
lassulus
9e2e237af5 Merge remote-tracking branch 'ni/master' 2021-12-15 09:15:13 +01:00
tv
c2ee574729 flameshot-once profile: +drawColor 2021-12-14 23:23:28 +01:00
tv
657aa2b1d8 flameshot-once profile: don't startup on launch 2021-12-14 23:23:28 +01:00
tv
e655784c49 flameshot-once profile: +showStartupLaunchMessage 2021-12-14 23:23:28 +01:00
tv
329aadc66b flameshot-once profile: +showSidePanelButton 2021-12-14 23:23:28 +01:00
tv
0dc6bc199a flameshot-once profile: +copyAndCloseAfterUpload 2021-12-14 23:23:28 +01:00
tv
0f764d9199 flameshot-once profile: don't check for updates 2021-12-14 23:23:28 +01:00
tv
8fdd9b3a8f flameshot-once profile: use toINI 2021-12-14 23:23:28 +01:00
lassulus
dfdcad1028 nixpkgs-unstable: bc5d683 -> b0bf5f8 2021-12-14 16:03:38 +01:00
lassulus
f35e8188d2 nixpkgs: -> 5730959 2021-12-14 16:03:07 +01:00
lassulus
f2533d8892 ci: add gcroots for successful builds 2021-12-11 12:00:36 +01:00
lassulus
6b59b7972a wiki: listen gollum on localhost only 2021-12-10 18:09:44 +01:00
lassulus
9841e402e2 wiki.r: listen on localhost, fix http redirect 2021-12-10 10:13:49 +01:00
lassulus
6d3ea779b6 rotate krebsAcmeCA.crt 2021-12-10 09:56:02 +01:00
lassulus
e4384e10e9 pkgs.generate-krebs-intermediate-ca: set vailidy to 1y 2021-12-10 09:55:47 +01:00
lassulus
42f9caa6f7 brockman: 4.0.1 -> 4.0.2 2021-12-09 22:58:13 +01:00
lassulus
abd82c4faf ca.r: serve ca.crt via nginx 2021-12-09 14:52:35 +01:00
lassulus
fba330ab36 wiki.r: add acme ssl config 2021-12-09 14:30:25 +01:00
lassulus
08cdf8a6d5 remove hardcoded ca-bundle 2021-12-09 14:12:03 +01:00