Commit Graph

1011 Commits

Author SHA1 Message Date
48e3f2f858 add comment about firewall 2023-04-03 21:28:35 +03:00
6b14092fcf add nixConfig 2023-04-03 21:17:02 +03:00
bdf22a2211 use deploy-rs 2023-04-03 17:17:40 +03:00
aadf1c170b nix fmt . 2023-04-03 16:50:52 +03:00
03629e8561 nix flake update 2023-04-03 16:46:36 +03:00
aeedea5d16 make shell work 2023-04-03 16:43:34 +03:00
f44e8948e2 wip flakes 2023-03-30 16:53:56 +03:00
5283f9f423 update backup timers; remove hel1b 2023-03-30 16:12:18 +03:00
0e8edd0d5f wip flakes 2023-03-29 17:50:55 +03:00
d4fddf58e6 minor config changes; making more consistent with desktop format 2023-03-29 15:25:49 +03:00
926fe7473e backup /var/lib less often
1d is good enough for us.
2023-03-26 23:06:52 +03:00
e68dbc1eee fix matric and tailscale firewall 2023-03-26 15:40:36 +03:00
3578bab44d direct jakstys.lt to hel1-a 2023-03-26 14:13:30 +03:00
26e8e66325 fix synapse port 2023-03-25 17:04:52 +02:00
fed3e876c4 change vno1 ip 2023-03-25 16:27:37 +02:00
82b32479b3 add MX and www.jakstys.lt. 2023-03-21 15:24:39 +02:00
d6a9283bef wip knot 2023-03-21 15:01:06 +02:00
a95b084edc backup /var/lib/matrix-synapse 2023-03-21 13:57:51 +02:00
bfb2a860aa add turn_shared_secret to synapse 2023-03-21 13:55:52 +02:00
53790d15da comments and spaceS 2023-03-21 13:46:26 +02:00
42d615cdb3 enable matrix-synapse 2023-03-21 13:43:34 +02:00
c09ce8f190 /run/matrix-synapse is a tmpfile 2023-03-20 17:08:43 +02:00
f2f493be78 disable matrix-synapse for now 2023-03-19 23:09:11 +02:00
8ecf2415a9 add parted 2023-03-19 22:28:53 +02:00
9c474327ff a few more secrets 2023-03-19 21:50:34 +02:00
315f7e5f75 Add password for secrets/hel1-a/synapse/macaroon_secret_key using nvim. 2023-03-19 21:47:53 +02:00
4b1ebca4f1 Add password for secrets/hel1-a/synapse/registration_shared_secret using nvim. 2023-03-19 21:42:43 +02:00
3e5a703118 use the signing key 2023-03-19 21:41:07 +02:00
71e653c3a7 Add password for secrets/hel1-a/synapse/jakstys.lt.signing.key using nvim. 2023-03-19 21:36:17 +02:00
92c31f1f25 wip synapse 2023-03-19 21:13:48 +02:00
028fec142b minor coturn and system updates 2023-03-19 20:47:19 +02:00
04eb40fad6 vim-rs and synapse 2023-03-08 16:13:26 +02:00
cb30128c8c coturn: module cosmetics 2023-03-04 06:18:44 +02:00
978844a9de send email on zfs scrub failure 2023-03-01 15:20:28 +02:00
8d2142b259 make upgrade and reboot window more liberal 2023-03-01 15:12:19 +02:00
77941cb0dc coturn denylist ips 2023-03-01 15:05:58 +02:00
0a021dc80f coturn watches for changed certs 2023-03-01 14:55:57 +02:00
f6b37127f6 reduce logging; add sshguard 2023-03-01 14:39:48 +02:00
17bb90dca0 stop logging refused connections 2023-03-01 14:17:27 +02:00
5f1f3e1bfc add coturn to firewall 2023-03-01 13:06:53 +02:00
f537b43a0d coturn: add tls key and cert 2023-03-01 13:00:27 +02:00
2e970a22ce patched systemd
that passes secrets in `ExecStartPre`.
2023-02-28 15:30:17 +02:00
e4c39bf857 Add password for secrets/hel1-a/turn/static-auth-secret using nvim. 2023-02-28 14:25:32 +02:00
f2f51f2a87 hardcode gitea and motiejus uid 2023-02-26 07:44:06 +02:00
48309ce908 auto-upgrade at 1am UTC 2023-02-25 17:29:53 +02:00
ea7f4a2577 cosmetics 2023-02-25 17:23:21 +02:00
6e9cdf04ba fix unit-status after actual test 2023-02-25 17:20:01 +02:00
065172836c add sr.ht pubkey 2023-02-25 15:55:08 +02:00
06866ad6fb change backup path 2023-02-25 15:52:23 +02:00
c7bd826234 unit-status-mail for backups 2023-02-25 15:49:39 +02:00