Commit Graph

683 Commits

Author SHA1 Message Date
945f94bf37 open up borgbackup-fwminex to motiejus 2024-08-27 08:58:21 +03:00
bb58bcfed5 finish/fix moving age.secrets 2024-08-27 08:57:17 +03:00
748d42d9e0 add borgbackup-fwminex 2024-08-27 08:54:37 +03:00
01e86db54c move secrets from flake.nix to host config 2024-08-27 08:50:57 +03:00
c2e58f1314 rm sshguard 2024-08-27 08:44:05 +03:00
0e48ec63f4 ssh8022: opn global firewall by default 2024-08-27 08:39:32 +03:00
96a98405ad fra1-b: block global sshd 2024-08-27 08:36:02 +03:00
bc6cc6eb84 ssh8022: expand to more clients and servers 2024-08-25 11:37:56 +03:00
21e84bb162 ssh8022: split client and server 2024-08-25 11:07:35 +03:00
c4da312209 ssh8022 2024-08-24 22:00:37 +03:00
7df65d6466 precompressed: +zstd 2024-08-24 18:45:51 +03:00
9bb81cb1c9 CSP 2024-08-24 17:10:23 +03:00
37239ac18a more observatory headers
https://developer.mozilla.org/en-US/observatory/analyze?host=git.jakstys.lt
2024-08-24 16:27:29 +03:00
f929079fe2 jakstys.lt: headers 2024-08-24 16:22:11 +03:00
e97a3588d8 more recommendations
https://developer.mozilla.org/en-US/observatory/analyze?host=jakstys.lt
2024-08-23 18:33:40 +03:00
9adc5b93af fix headers 2024-08-23 18:32:42 +03:00
a208ce1653 jakstys.lt: add csp 2024-08-23 18:31:36 +03:00
e4fa6645f1 compressDrv: use upstream 2024-08-22 13:08:53 +03:00
9e55dcdc6a desktop: +motion, v4l-utils 2024-08-18 17:06:06 +03:00
69124c558a vno1-gdrx: btrfs snapshot: +daily 2024-08-16 14:11:02 +03:00
2c2cca6bae vm: add autorandr, use newer kernel 2024-08-16 12:55:43 +03:00
039bd308c9 mtworx: fix audio!
Thanks 4588b90e67/hosts/carbon/configuration.nix (L19)
2024-08-16 12:23:32 +03:00
409ec4e5fd mtworx: +sof-firmware 2024-08-16 12:10:48 +03:00
20b91f492e btrfs snapshot: daily UTC 2024-08-12 21:21:07 +03:00
4efd5fd4b3 tlp: move to desktop/ rm platform profile 2024-08-08 21:44:15 +03:00
b157eb2377 mtworx: +tlp 2024-08-08 14:43:17 +03:00
05fc14acc7 fwminex: +Rtorrent 2024-08-07 17:30:19 +03:00
4a858936b9 vno1-gdrx: +motion 2024-08-07 08:57:36 +03:00
bc43fbf222 vno1-gdrx: add btrfssnapshot 2024-08-05 19:07:06 +03:00
e2dde91309 disable postfix 2024-08-05 19:04:46 +03:00
fa8d646d3f fra1-b: fix typo 2024-08-05 19:02:27 +03:00
fee818708c fra1-b: add vno1-gdrx to allowed builders 2024-08-05 19:00:52 +03:00
df593cd0f1 mtworx: enable postfix 2024-08-05 19:00:32 +03:00
b67674dd70 mtworx: +sasl 2024-08-05 18:57:47 +03:00
ed56c5eea2 mtworx: disable sasl_passwd for now 2024-08-05 18:55:30 +03:00
2b5daee129 vno1-gdrx: +syncthing 2024-08-05 18:48:52 +03:00
bb925ba09b make vno1-gdrx deployable 2024-08-05 16:41:24 +03:00
a679c564b2 vno1-gdrx: autorandr 2024-08-05 16:25:21 +03:00
adea82ffc0 vno1-gdrx: fix config mistake 2024-08-05 16:10:53 +03:00
ab1b524ac9 vno1-gdr7: enable some more services 2024-08-05 16:09:13 +03:00
24df5b3ef1 vno1-gdrx 2024-08-05 15:43:08 +03:00
21fb935923 backup matrix-synapse 2024-08-03 19:09:23 +03:00
903815fe09 bring back matrix-synapse 2024-08-03 18:57:29 +03:00
1dc59683e8 syncthing-relay 2024-08-03 18:12:13 +03:00
9b9b609a5f fwminex: formatting 2024-08-03 18:00:16 +03:00
117d65010b remove most of zfs stuff 2024-08-03 17:09:14 +03:00
2a1e055aff remove vno1-oh2 2024-08-03 16:55:08 +03:00
a2d99982e4 soju: move to fwminex 2024-08-03 13:54:29 +03:00
d28f8bc4cf vno1-oh2: remove a bunch of stuff 2024-08-03 13:46:00 +03:00
b06a34c222 fwminex: remove a bunch of stuff 2024-08-03 13:42:26 +03:00
b73e6e4df0 move caddy to fwminex 2024-08-03 13:30:10 +03:00
43337b2e0a bring back https to grafana
not good with oicd
2024-08-03 12:10:29 +03:00
ebd263189e move minidlna to its own module 2024-08-03 07:04:12 +03:00
a6169de898 remove minidlna leftovers 2024-08-03 06:56:20 +03:00
8c74bdca64 move vaultwarden to fwminex 2024-08-03 06:53:37 +03:00
70d2833fa0 move hass to fwminex 2024-08-03 06:33:09 +03:00
323ebd0ca7 fix typo 2024-08-03 06:23:30 +03:00
a60a42bd1b fwminex +nsd +minidlna
vno1-oh2 -prom
2024-08-03 06:21:35 +03:00
1156b20785 enable nsd, minidlna 2024-08-03 06:18:52 +03:00
44fb4a6cd1 cleanup consts 2024-08-03 06:16:00 +03:00
6e644fbb58 caddy: expose metrics 2024-08-03 06:14:17 +03:00
ad82e6fbe5 toString port 2024-08-03 06:12:35 +03:00
8ffea089c3 myData 2024-08-03 06:10:52 +03:00
c8daa0758a vno1: redirect grafana to fwminex 2024-08-03 06:10:03 +03:00
5a811a61e8 grafana: open up port 2024-08-03 06:04:38 +03:00
283e10b9b5 fwminex: +grafana 2024-08-03 05:57:15 +03:00
ce302838ae prom: scrapeInterval=10s 2024-08-03 05:44:59 +03:00
180705c697 enable prometheus 2024-08-03 05:43:54 +03:00
3b2043d993 disable prom 2024-08-02 22:34:34 +03:00
c0dd5cf751 fwminex: add prometheus 2024-08-02 22:33:44 +03:00
70e48ae172 remove photoprism from vno1-oh2 2024-08-02 16:42:46 +03:00
abdf9d20e1 enable photoprism 2024-08-02 16:36:45 +03:00
97521d99ae grafana is non-https 2024-08-02 16:35:26 +03:00
c440ee3043 remove tls from hass 2024-08-02 16:32:04 +03:00
df212bdc8c backup photoprism too 2024-08-02 16:20:46 +03:00
bd357d041a photoprism: do not add any paths for now 2024-08-02 16:04:45 +03:00
14b85ab2bb photoprism: add to fwminex 2024-08-02 16:03:09 +03:00
fd9a4821a0 vaultwarden: remove ws endpoint 2024-08-02 15:43:37 +03:00
d3411793e8 gitea: move backups to fwminex too 2024-08-02 15:00:09 +03:00
9e9e5bb714 firewall 2024-08-02 14:47:20 +03:00
2474b123d7 gitea reverse proxy: to http:// 2024-08-02 14:44:51 +03:00
9930032ebc gitea: move to fwminex 2024-08-02 14:32:16 +03:00
293d02b565 fwminex: backup headscale keys 2024-08-02 14:17:03 +03:00
ba4ed771cc fix syntax error 2024-08-02 14:13:13 +03:00
34f06e89eb vpn.jakstys.lt: point to fwminex in lan 2024-08-02 14:11:20 +03:00
53753ac2ba hs 2024-08-02 14:05:12 +03:00
8a41643702 fwminex.servers.jakst 2024-07-31 11:29:08 +03:00
b4c25b511e formatting 2024-07-31 11:27:41 +03:00
6be2edaac1 fwminex: merged backup dirs 2024-07-31 11:25:28 +03:00
cfa0d1bfb4 fwminex: mkdir /var/www 2024-07-31 10:43:51 +03:00
f1ba3ccc0c fwminex /home: backup to rsync.net too 2024-07-31 10:01:57 +03:00
23f399024a btrfsborg for fwminex 2024-07-31 09:40:05 +03:00
8e80b76c12 fwminex.{motiejus->servers}.jakst 2024-07-31 09:19:13 +03:00
cda7123260 fwminex: fix bad server name 2024-07-31 09:16:58 +03:00
e70cb36e87 borgstor and deployerbot: fix perms 2024-07-31 09:15:46 +03:00
bd10c64250 rm fra1-a 2024-07-31 09:06:53 +03:00
39a2f0bdc1 remote-builder: +maxJobs 2024-07-31 01:06:24 +03:00
a5e666124d prometheus: +fra1-b 2024-07-31 00:38:35 +03:00
99adc4d626 fra1-b: enable postfix 2024-07-31 00:24:37 +03:00
f56f4a42fd remote-builder moves to fra1-b 2024-07-31 00:23:44 +03:00
3b41b88744 fra1-b: syntax 2024-07-31 00:19:40 +03:00
a81aa3e6ae more fra1-b 2024-07-31 00:18:48 +03:00
f11145282f fra1-b: remove kvm-intel 2024-07-31 00:05:54 +03:00
77fd1e8d2c add /boot 2024-07-31 00:04:07 +03:00
1ae8bcb293 fra1-b 2024-07-30 23:06:33 +03:00
6a54c9f69d fwminex: +synthing 2024-07-30 22:46:29 +03:00
9f8754044d fwminex: snapshot /home too 2024-07-29 17:00:55 +03:00
2c8f0ff420 nightly -> daily UTC 2024-07-29 16:54:48 +03:00
94f4f71944 fra1-a: disable caddy 2024-07-29 16:48:08 +03:00
7d025ffbb4 fwminex: snapshot /var/lib 2024-07-29 16:44:35 +03:00
9e301158fa snapshot /home also hourly 2024-07-29 16:31:32 +03:00
7970c36801 btrfssnapshot: make it somewhat work 2024-07-29 16:11:01 +03:00
9ea80639a3 nix fmt 2024-07-29 15:39:54 +03:00
5cf65d35db vno1-oh2: stop backing up matrix 2024-07-29 04:30:33 +03:00
faae4708f9 deployerbot: fwminex and vno3-rp3b are unconditional 2024-07-28 22:47:29 +03:00
1947ed9ba5 deployerbot: move from vno1-oh2 to fwminex 2024-07-28 22:35:34 +03:00
38311119f9 deployerbot: allow fwminex too 2024-07-28 22:25:58 +03:00
846ec80d9f fwminex: +acpi 2024-07-28 21:43:30 +03:00
1152e5aefe systemd-cryptsetup: skip tpm2-device for now
doesn't seem to work
2024-07-28 20:40:53 +03:00
601cabebf2 usb_mod: tpm_tis 2024-07-28 20:38:31 +03:00
f34b877a0e fwminex: trying tpm2 again 2024-07-28 20:36:21 +03:00
47e2e6b632 fwminex: +remote-builder 2024-07-24 09:17:28 +03:00
60cf99e821 fwminex: change passwords 2024-07-24 09:02:57 +03:00
9fe808c3fb Revert "wip: remove recovery key"
This reverts commit 86ee6a1eff.
2024-07-23 22:25:19 +03:00
86ee6a1eff wip: remove recovery key 2024-07-23 22:18:38 +03:00
b4eee91f31 adding recovery key 2024-07-23 22:15:02 +03:00
2b18b37145 fwminex: logind 2024-07-23 22:04:08 +03:00
54636d230c fwminex: +secrets 2024-07-23 22:01:40 +03:00
08a88f0d0a fwminex: some settings 2024-07-23 17:53:03 +03:00
40bf9c4ab5 remove e11sync 2024-07-16 06:14:22 +03:00
f47b8d09f8 fwminex: reinstall 2024-07-16 05:40:40 +03:00
3ace354089 mtworx: trying tpm2 2024-07-16 05:25:09 +03:00
04cba1c22a mtworx: +tmp2 2024-07-15 20:59:26 +03:00
02a364b700 tpm2 + ventoy 2024-07-15 20:14:58 +03:00
eb88693322 11sync.net: bring back on fra1-a for now 2024-07-01 01:22:08 +03:00
afff09ddae 11sync: move to vno1-oh2 2024-07-01 01:19:10 +03:00
abc073993f soft-shutdown 11sync 2024-07-01 01:05:18 +03:00
aa4f741840 remove op5p 2024-06-26 22:45:14 +03:00
c5d369bd4c vno1-oh2: +ffmpeg 2024-06-16 15:45:23 +03:00
57b520154d /dev/disk/by-id/... -> /dev/nvme0n1pX 2024-06-08 01:18:04 +03:00
96032560c3 mtworx: remove emulatedSystems 2024-06-07 23:53:23 +03:00
7afc328ae1 mtworx: use the fra1-a remote builder 2024-06-07 23:45:30 +03:00
f6740477b5 wifibackup: more tuning 2024-06-06 02:22:30 +03:00
d312aeeaa4 wifibackup: enable on mtworx too 2024-06-06 02:06:46 +03:00
95def71a76 wifibackup 2024-06-06 01:57:00 +03:00
529f23f9ed soju: disable admin socket for now 2024-06-05 23:18:40 +03:00
ac3c9d0b5d mtworx: fix pkgs 2024-06-05 14:36:15 +03:00
5c76eef615 Merge branch '24.05' 2024-06-05 14:34:48 +03:00
e303deb919 Revert "Revert "mtworx: use a stable linux kernel""
This reverts commit 34f08f45fd.

Older one reports cache misses accurately.
2024-05-31 16:21:59 +03:00
34f08f45fd Revert "mtworx: use a stable linux kernel"
This reverts commit 0ba9172334.
2024-05-31 16:07:16 +03:00