chayleaf
7535990be0
server/certspotter: check tbs instead of pubkey
2023-10-26 02:02:48 +07:00
chayleaf
91a8a50c7b
router/kea: update runtime dir
2023-10-25 18:04:07 +07:00
chayleaf
5b0b925fe3
server/certspotter: fix state path
2023-10-25 14:54:46 +07:00
chayleaf
ece8104cf2
server/gitea: further increase timeout
2023-10-25 06:30:32 +07:00
chayleaf
891fa83f01
certspotter: switch to using StateDirectory
2023-10-25 04:34:15 +07:00
chayleaf
8948db4dac
server/gitea: enable federation, etc
2023-10-25 03:43:39 +07:00
chayleaf
1ccdb2bd47
server: gitea->forgejo
2023-10-25 00:04:46 +07:00
chayleaf
1d77aed15f
certspotter: fix cert check
2023-10-24 16:49:40 +07:00
chayleaf
67f43298e8
server: add certspotter
2023-10-24 00:19:12 +07:00
chayleaf
eda0322bc7
nixmsi: switch to latest kernel again
2023-10-24 00:17:53 +07:00
chayleaf
ce2d2e4a78
router: allow assigning ips per duid
2023-10-24 00:16:14 +07:00
chayleaf
73b1b3b47d
restructure packages; change akkoma domain
2023-10-23 10:36:50 +07:00
chayleaf
0aa8ba4345
hydra: increase cpu usage limit; add minimal fish config
2023-10-19 12:15:25 +07:00
chayleaf
e99c3dafec
ccache code reorg
2023-10-19 02:02:47 +07:00
chayleaf
57d08c6c0e
hydra: fix ssh connection to remote builder
2023-10-18 21:14:46 +07:00
chayleaf
2909ae6367
hydra: disable binfmt
2023-10-18 21:03:59 +07:00
chayleaf
d9b81b4cdc
hydra: add laptop public key
2023-10-18 20:25:13 +07:00
chayleaf
6ff68289d6
hydra: fix eval? (again)
2023-10-18 19:36:18 +07:00
chayleaf
0888579272
hydra: add nixmsi as builder
2023-10-18 19:35:32 +07:00
chayleaf
5376be449f
fix (?) hydra eval
2023-10-18 18:47:35 +07:00
chayleaf
f6b22a776e
work around https://github.com/NixOS/hydra/issues/1186
2023-10-18 18:35:41 +07:00
chayleaf
04f3546f6e
server: add swap
2023-10-17 23:12:08 +07:00
chayleaf
18d471c2ec
nixserver->server; start working on phone config
2023-10-17 20:25:03 +07:00
chayleaf
b7137a836f
nixserver: enable hydra & misc hw code reorg
2023-10-08 08:24:29 +07:00
chayleaf
bb180360b9
add Radxa Rock 5A; update inputs
2023-10-08 04:41:50 +07:00
chayleaf
12c27384df
router: small routing tables tweak
...
TODO: find a way to filter by SNI so I don't have to keep this ugly hack
2023-09-13 16:44:50 +07:00
chayleaf
32ea4fdd8d
server: add keycloak
2023-08-28 00:46:51 +07:00
chayleaf
9e70d53ee5
server: add scanservjs, nixmsi: refix boot
2023-08-24 18:32:47 +07:00
chayleaf
dd45e51bc1
router: fix dnat
2023-08-16 05:10:07 +07:00
chayleaf
5fed5f56c5
update inputs
2023-08-16 00:59:50 +07:00
chayleaf
e97457bea0
router: block some random ip address
2023-08-15 06:19:39 +07:00
chayleaf
0d497d0e07
mss clamp in both directions... maybe?
2023-08-14 05:50:48 +07:00
chayleaf
6804ed705f
router: hijack some dns requests
2023-08-13 22:47:57 +07:00
chayleaf
ea1d12da4f
router/metrics: denoise kea logs
2023-08-13 18:08:34 +07:00
chayleaf
4f650b2091
router: small port 25 changes
...
technically this is relevant for security since it blocks requests to
port 25 over ipv6 from clients other than the server, but it doesn't
matter on my network because i don't have ipv6
2023-08-13 16:40:21 +07:00
chayleaf
fc95bb1e97
router: fix mailserver
...
and other misc changes
2023-08-13 04:59:20 +07:00
chayleaf
67509d0801
system/common: misc nix-related changes
2023-08-12 17:40:51 +07:00
chayleaf
aa6fef1d9c
router: mss clamping
...
also other misc changes such as fix boot on the laptop
2023-08-09 23:43:17 +07:00
chayleaf
5272bf603a
add vim config for minimal systems
...
(also revert making fish the default shell on non-minimal systems)
2023-08-05 03:10:33 +07:00
chayleaf
9bf71ca13a
nix: 2.16->2.15; home/fish/atuin: remove up key binding
...
nix-plugins built for a newer nix versions than pkgs.nix makes using
pkgs.nix impossible, and overriding pkgs.nix globally breaks some
derivations, so I have to do per-app overrides (couldn't find a way to
revert it for a single app for some reason). This reverts a nix-plugins
update to 2.16 so I can build it for 2.15 and escape the "symbol not
found" hell.
also override nixVersions.unstable to be 2.15 as well
finally, use custom code for atuin integration because I hate the way it
normally hijacks my up key
2023-08-04 08:30:16 +07:00
chayleaf
44877e1d59
update inputs
2023-07-31 02:17:16 +07:00
chayleaf
fe587594ff
server/home/hydra: set cpu/io scheduler to idle
2023-07-29 01:19:56 +07:00
chayleaf
5d21e5281e
system/common: minor build optimizations
2023-07-29 00:53:28 +07:00
chayleaf
e50348731e
server/home/hydra: probably fix remaining visual errors
2023-07-28 22:35:31 +07:00
chayleaf
4d19f773df
server/home/hydra: add queue runner to nix allowed users
2023-07-28 22:18:32 +07:00
chayleaf
50279b7c0f
server/home/metrics: listen on 127.0.0.1 only
2023-07-28 21:56:34 +07:00
chayleaf
ed333d5999
server/home: fix /etc/nixos/private
2023-07-28 21:15:28 +07:00
chayleaf
e12b0a756d
more ci fixes
2023-07-28 14:12:55 +07:00
chayleaf
443c52a29e
further ci fixes
2023-07-28 13:51:25 +07:00
chayleaf
9f93d0cbcf
ci: some fixes
...
more fixes are still needed
2023-07-28 13:19:43 +07:00