Commit Graph

721 Commits

Author SHA1 Message Date
2e5382a6e4 desktop: add intel-gpu-tools 2024-02-04 21:57:43 +02:00
5510e78f80 configure kernel.sysrq 2024-02-04 19:58:52 +02:00
f544a9f45a fix nvtop 2024-02-04 18:14:23 +02:00
ec62ac5a7d nvtop: enable only intel and nvidia 2024-02-04 18:11:23 +02:00
6fc8aa3d5a desktop: add nvtop 2024-02-04 17:44:52 +02:00
e0f4d307fe desktop: add gparted 2024-02-04 17:24:45 +02:00
967a94af6d bring back "vm" 2024-02-04 16:22:37 +02:00
91b0a01490 supportedLocales 2024-02-02 15:49:38 +02:00
8f79a933e7 overlays: fix 1 2024-02-02 15:29:53 +02:00
64c4534d46 rm -fr certget: 2024-02-02 15:02:31 +02:00
497a59c4c5 firefox: use firefox-bin 2024-01-27 16:34:01 +02:00
3234a33247 base: cleanup pkgs 2024-01-26 09:20:44 +02:00
64a73fe3b7 zfsborg: change compression and chunker params
works better for sqlite3 DBs.

https://github.com/borgbackup/borg/issues/5877#issuecomment-1844793346
2024-01-25 14:57:30 +02:00
e7c02d2d19 desktop: add inkscape 2024-01-25 13:22:15 +02:00
0ae46e25e7 desktop: add geoipWithDatabase 2024-01-25 12:16:06 +02:00
cfee124f99 M-Active: versioning 2024-01-25 09:05:46 +02:00
ee1defe4db Revert "Mail: backup the full evolution folder"
This reverts commit a1484df957.
2024-01-25 08:42:14 +02:00
a1484df957 Mail: backup the full evolution folder 2024-01-25 08:41:06 +02:00
ab052cd45d syncthing: bind to 127.0.0.1 2024-01-25 08:21:35 +02:00
3caa3cd08c fwminex: some power settings
Thanks to https://kirarin.hootr.club/git/steinuil/flakes/src/branch/master/configuration/starry.nix
2024-01-24 10:53:49 +02:00
049554e3ee xinit -> x11vnc 2024-01-22 09:20:58 +02:00
c0754e4223 desktop: add xinit 2024-01-22 09:18:24 +02:00
dbd728ff34 desktop: add netsurf 2024-01-20 12:08:31 +02:00
0170765df5 gitea: use compressed assets 2024-01-17 10:11:13 +02:00
aad3da10ab disable wrk2 2024-01-17 09:54:01 +02:00
351e62f9bc wrk2 2024-01-17 09:02:10 +02:00
440d337a73 base: add ethtool 2024-01-14 18:25:55 +02:00
7fd85a45c9 video-vincentas: add kfire 2024-01-14 10:02:31 +02:00
a9231816b1 remove busybox 2024-01-14 09:33:45 +02:00
0c21e48b50 busybox: low prio 2024-01-14 09:33:45 +02:00
f153e895c5 base: add busybox 2024-01-13 23:18:45 +02:00
8c2e442f78 desktop: add squashfsTools 2024-01-07 15:00:42 +02:00
057650e669 desktop: install scribus 2024-01-07 14:02:37 +02:00
f664618395 desktop: install cheese 2024-01-07 14:02:15 +02:00
51081dce7c xeyes again 2024-01-05 09:17:25 +02:00
6e786aa008 xeyes 2024-01-05 09:16:43 +02:00
c4bdcfc754 desktop: remove thunderbird
evolution it is
2023-12-28 23:02:16 +02:00
f13e6893a4 Revert "desktop: add digikam"
This reverts commit aa46e9ece9.
2023-12-27 23:34:29 +02:00
aa46e9ece9 desktop: add digikam 2023-12-27 23:28:14 +02:00
8008fc9af1 add video-vincentas, kfire 2023-12-27 12:30:46 +02:00
2564b3e863 syncthing: copy/backup ~/.cache/evolution/mail
Good enough for email backups. Openable with neomutt with minimal
setup:

```
$ mkdir -p x/cur; cd x
$ cp -s ~/.cache/evolution/mail/*/folders/Debian/cur/*/* cur/
$ neomutt -f .
```
2023-12-27 12:23:27 +02:00
78debfa8b7 desktop: install neomutt 2023-12-27 12:08:44 +02:00
a4ead997de docs: add info 2023-12-27 12:06:54 +02:00
9981df9db4 desktop: add/improve documentation 2023-12-26 21:53:40 +02:00
ac43b7a0ba desktop: install qemu 2023-12-25 23:09:05 +02:00
62b5972570 desktop: audacity, obs-studio 2023-12-22 08:47:45 +02:00
d576697921 base: add poop 2023-12-20 20:21:42 +02:00
3c4d772e3b enable C locale 2023-12-20 17:09:18 +02:00
22ae0836ea locales: bring back the old means
otherwise perl is complaining
2023-12-20 17:07:54 +02:00
12a00997d5 Revert "begin river"
This reverts commit 28dbf3ec47.
2023-12-20 17:06:08 +02:00
28dbf3ec47 begin river 2023-12-20 17:03:48 +02:00
f08fa200f6 deployerbot: push forward a bit 2023-12-19 23:58:53 +02:00
a4a68a3d22 the correct default locale 2023-12-19 23:58:08 +02:00
d53e2394a2 add C locale 2023-12-19 23:54:10 +02:00
af8fc0f85e desktop: add powertop 2023-12-19 15:01:21 +02:00
1aabfec7b4 desktop: i7z 2023-12-19 14:59:53 +02:00
2a3a8f6ec2 base: add lm_sensors 2023-12-19 14:55:29 +02:00
1674f35142 base: add stress-ng 2023-12-19 14:54:36 +02:00
e40f784d2b add evolution 2023-12-18 00:45:18 +02:00
0dac349dc6 add thunderbird 2023-12-16 10:46:25 +02:00
84be8520dd move beta to it's own zone 2023-12-16 00:20:26 +02:00
7ca5106b9d desktop: add virtualenv 2023-12-15 06:36:26 +02:00
c9aeac6ebe remove firefox from non-desktops 2023-12-11 20:08:33 +02:00
132f857f64 firefox:
1. move to shared, so work profile has it
2. add consent-o-matic
2023-12-09 09:57:06 +02:00
97c49bf35b also perf 2023-12-04 16:39:55 +02:00
b08b67a66e add perf-tools 2023-12-04 16:36:17 +02:00
72562e8540 hass: add daikin module 2023-12-03 20:37:59 +02:00
0d9b4681fe temporarily disable sysdig 2023-11-30 07:04:36 +02:00
b574cf84df desktop: add tinycc 2023-11-30 06:56:28 +02:00
f57602a18c desktop: add openshot 2023-11-30 06:55:15 +02:00
358c8ea13d install ffmpeg 2023-11-29 18:39:37 +02:00
71c8c13265 wip zfs 2023-11-28 19:59:32 +02:00
fb310f9e29 23.11: get rid of most warnings 2023-11-28 19:59:32 +02:00
3c3758b852 upgrade to 23.11 2023-11-28 19:59:32 +02:00
6084f3d570 install shellcheck 2023-11-28 17:18:45 +02:00
317d7a9ee7 librsvg, scrcpy 2023-11-28 15:47:29 +02:00
5c5c18b712 install gnumake 2023-11-28 14:23:32 +02:00
8e78a31f20 statix 2023-11-28 01:00:10 +02:00
c31a7904ed bcc -> perf-tools 2023-11-22 18:09:15 +02:00
eb404cce87 remove esphome 2023-11-22 17:01:23 +02:00
7f8219062a Revert "spotdl"
This reverts commit d6748f0798.
2023-11-18 22:14:09 +02:00
d6748f0798 spotdl 2023-11-18 22:06:11 +02:00
9d8ab99953 hass: read automations from the ui 2023-11-17 16:59:50 +02:00
480ae45609 tailscale: use unstable 2023-11-15 09:20:23 +02:00
c7de1294db hass: install esphome and update firewall 2023-11-14 23:36:43 +02:00
c4f3018a33 esphome: listen on wildcard 2023-11-14 23:31:21 +02:00
9535144280 vno1-oh2: esphome 2023-11-14 23:30:00 +02:00
2e2cc27364 fwminex: add wireshark 2023-11-14 23:20:07 +02:00
ef164af0f3 TV WoL 2023-11-14 18:29:44 +02:00
5768552a93 add LG Web OS 2023-11-14 12:50:37 +02:00
99be96c899 add shelly 2023-11-14 10:07:52 +02:00
de939d45cd hass 2023-11-14 09:47:11 +02:00
c3bb5e41d6 hass 2023-11-14 09:18:08 +02:00
a4ca8bc43b wip clight-gui 2023-11-04 21:41:55 +02:00
5b9561b7c6 rm weechat 2023-11-02 22:08:40 +02:00
b554f3e12f M-V: add vno1-oh2 2023-11-02 22:04:31 +02:00
3ccb63b1e5 hm: add some packages to hm-only home 2023-10-27 10:31:00 +03:00
1d8eaabf78 syncthing: M-V 2023-10-24 22:07:51 +03:00
80b1aaaac3 firewall: allow iperf3/udp 2023-10-24 14:46:12 +03:00
7dce601a24 enable iperf3 2023-10-24 14:30:48 +03:00
0dfd9fb232 silenceLogs => !verboseLogs 2023-10-22 23:06:06 +03:00
35145243bd tailscaled: silence logs by default
it works.
2023-10-22 20:14:25 +03:00
a4cc7c2374 desktop: add miniupnpc 2023-10-18 19:50:09 +03:00
d9f33d0fc8 add wireshark 2023-10-17 09:03:52 +03:00
240c40612b desktop: disable nm-wait-online 2023-10-16 18:55:51 +03:00
1d262ec6d2 deployerbot: optionals don't fail pushes 2023-10-16 15:50:41 +03:00
31a4ffd360 syncthing: add missing device 2023-10-11 16:44:28 +03:00
b55bb43500 syncthing: add mtwork 2023-10-11 16:39:31 +03:00
4c0b280dd2 weechat 2023-10-10 22:51:43 +03:00
b243b82c30 fwminex gets dev environment 2023-10-09 22:07:42 +03:00
e05b9eed79 tmux: increase history limit 2023-10-09 09:42:11 +03:00
7718fc348b enable bluetooth 2023-10-09 05:59:02 +03:00
2dd6b04b3a hm: add tray.target 2023-10-09 05:52:49 +03:00
8e5b87c86a cbatticon, default gtk/qt themes 2023-10-09 05:47:36 +03:00
5a606a5b96 syncthing: share books with mxp10 2023-10-08 23:22:07 +03:00
7427732f93 install syncthingtray and trayscale 2023-10-08 23:19:55 +03:00
4b9674d7c6 starting with some scala 2023-10-08 23:00:52 +03:00
531d8dde37 hm: fix bugs when overriding things 2023-10-08 16:40:16 +03:00
1ed4646982 install dhcpcd 2023-10-08 16:25:16 +03:00
6230303b2f add email 2023-10-07 09:45:01 +03:00
b98d1bb9c8 move home-manager config to a dedicated location 2023-10-06 11:24:00 +03:00
ed11b05c37 add mtwork 2023-10-06 08:58:28 +03:00
1e77ae0203 firefox: search suggestions come second 2023-10-04 21:44:21 +03:00
e2990f73bd add a samsung printer driver 2023-10-04 21:16:57 +03:00
e3f415a9a4 install sdparm and hdparm 2023-10-04 07:15:00 +03:00
32a1aff6d9 add usbutils 2023-10-03 21:53:21 +03:00
6000be5584 nix gc: TTL 2d, run weekly 2023-10-02 00:21:04 +03:00
76d01af5c6 install sloccount 2023-10-02 00:00:30 +03:00
1dd4f04725 statix: fix bugs with inherit
now I know better what it does.
2023-10-02 00:00:30 +03:00
652ce88b76 install cloc and tokei 2023-10-02 00:00:30 +03:00
25e8191177 enable statx 2023-10-02 00:00:30 +03:00
5c83f7407a install entr 2023-10-02 00:00:30 +03:00
0e9f90a960 nix run github:astro/deadnix 2023-10-01 22:15:45 +03:00
ea49d06b24 profiles/desktop: add dev packages 2023-09-30 05:44:16 +03:00
95c4f94a25 certget 2023-09-23 22:56:43 +03:00
70e5230611 system users: use /bin/sh
Just learned about "bash security issue" when reading about rrsync.
2023-09-23 22:46:14 +03:00
3b1d1b439f more formatting 2023-09-23 22:29:50 +03:00
92f69eabfa nsd-acme: optionalString 2023-09-23 22:28:27 +03:00
46155b9cb8 cfg cosmetics 2023-09-23 22:25:58 +03:00
1525bdad40 rc: remove obsolete shell alias 2023-09-23 07:26:12 +03:00
be378bb40a wip gtimelog still 2023-09-22 10:35:25 +03:00
9a57670313 install gtimelog 2023-09-22 10:28:53 +03:00
397fcd4a44 jakstpub: nicer smb settings 2023-09-22 10:14:10 +03:00
9c1bfd1b24 add a share for snapshots 2023-09-22 10:06:04 +03:00
69da809527 desktop: sleep before blankscreening 2023-09-21 06:57:45 +03:00
0507fb3328 deployerbot and backups: move time around so they don't ovelap 2023-09-21 06:55:17 +03:00
4b1e8653b5 podman: remove docker alias 2023-09-21 06:35:34 +03:00
c04186a2a6 install distrobox 2023-09-21 06:34:38 +03:00
cfa653752a install distrobox 2023-09-21 06:23:18 +03:00
e3783b8c8b nix-index: use the prebuilt one 2023-09-21 06:06:10 +03:00
4dd83425cf workstation: nix-index and acpid 2023-09-21 05:58:09 +03:00
205aeec19d install iw and acpi; remove random latex 2023-09-20 21:28:15 +03:00
372e65aebf autorandr: remove from home-manager 2023-09-20 15:03:59 +03:00
21e96199bb deployerbot: use vpn for actual deploying anyway 2023-09-20 14:43:04 +03:00
bdcbcec533 forced lock/unlock now works, TBD suspend/resume 2023-09-20 14:25:41 +03:00
b5a947407c disable xautolock 2023-09-20 09:44:05 +03:00
603af72d4e xset: full path 2023-09-20 07:49:20 +03:00
b095b49818 pasystray --key-grabbing --notify-all 2023-09-19 15:20:53 +03:00
5b300e7752 slock 2023-09-19 07:52:20 +03:00
4973a1cdd4 deployerbot: fwminex allows vno1 2023-09-18 20:49:17 +03:00
ceb7fe191e ping 2023-09-18 20:32:22 +03:00
5a5ffd6f00 upgrading fwminex too 2023-09-18 19:50:24 +03:00
c822cc95c2 node_exporter: enable on vno1 subnet 2023-09-18 19:29:27 +03:00
563ccd613a openssh: allow X11 forwarding on desktops 2023-09-18 19:13:36 +03:00
d140360353 replace pasystray with volnoti 2023-09-18 15:16:08 +03:00
920001ce3a ipython and xev 2023-09-18 15:06:10 +03:00
49f5782109 enable volnoti 2023-09-18 15:04:22 +03:00
9ebeef43e3 logind: power key suspends 2023-09-18 14:58:40 +03:00
ac0950f1f8 desktop: autologin 2023-09-18 14:46:48 +03:00
b9b7f2aa3c move efibootmgr to desktop profile 2023-09-18 14:42:34 +03:00
40a1edb925 syncthing: do not share books with mxp10 2023-09-18 13:31:32 +03:00
89bfc8c459 add xss-lock and slock 2023-09-18 13:23:48 +03:00
4740904244 syncthing host missing 2023-09-18 12:48:22 +03:00
5a1745b6d9 add some hosts 2023-09-18 12:47:51 +03:00
0802e17eb1 nix fmt 2023-09-18 12:46:46 +03:00
031e85fa82 syncthing: more folders 2023-09-18 12:44:09 +03:00
e6a47f4420 syncthing: a few more folders 2023-09-18 12:38:17 +03:00
52b1aa4450 syncthing: starting abstractions 2023-09-18 12:13:45 +03:00
a9ec83c732 fwminex: start syncthing 2023-09-18 12:07:41 +03:00
9ece2a456e desktop: install borgbackup 2023-09-18 10:22:33 +03:00
537800ec59 zfsborg: sleep a bit before mounting 2023-09-18 10:06:44 +03:00
2c4598ba7b change snapshot dir 2023-09-18 07:51:47 +03:00
b1a66b6a74 firefox is lowercase 2023-09-17 22:47:21 +03:00
7f4fe7b001 firefox too 2023-09-17 22:46:38 +03:00
d0d09cb4a4 rc.lua: move some windows to screen 9 2023-09-17 22:45:42 +03:00
e039cd2ace rc.lua: lock a bit after turning off the screen 2023-09-17 22:32:41 +03:00
c84d618d97 jakstpub: fix a caddy error 2023-09-17 22:31:12 +03:00
ed8c51b45c syntax nitpicking 2023-09-17 22:16:11 +03:00
f38fd993d3 jakstpub: open up http 2023-09-17 22:13:33 +03:00
3216700d7d awesome: terminal is x-terminal-emulator 2023-09-17 16:16:44 +03:00
f571a87541 add awesome/rc.lua 2023-09-17 08:00:08 +03:00
74d3b2cb23 some autorandr 2023-09-17 07:12:05 +03:00
9f32c033a5 install two more browsers 2023-09-17 06:56:58 +03:00
3d258436a2 add a few packages 2023-09-17 06:48:00 +03:00
abd1d67c2c firefox: do not configure search for now
Sep 16 23:05:45 fwminex hm-activate-motiejus[52877]: Activating checkLinkTargets
    Sep 16 23:05:45 fwminex hm-activate-motiejus[52946]: Existing file '/home/motiejus/.mozilla/firefox/xdefault/search.json.mozlz4' is in the way of '/nix/store/pvmx5mz4gkffnbj826vql07dcqk56jga-home-manager-files/.mozilla/firefox/xdefault/search.json.mozlz4'
    Sep 16 23:05:45 fwminex hm-activate-motiejus[52946]: Please move the above files and try again or use 'home-manager switch -b backup' to back up existing files automatically.
    Sep 16 23:05:45 fwminex systemd[1]: home-manager-motiejus.service: Main process exited, code=exited, status=1/FAILURE
    Sep 16 23:05:45 fwminex systemd[1]: home-manager-motiejus.service: Failed with result 'exit-code'.
    Sep 16 23:05:45 fwminex systemd[1]: Failed to start Home Manager environment for motiejus.
2023-09-16 23:07:27 +03:00
0f9aa4ed0d deploy-rs: remove -- 2023-09-16 10:04:48 +03:00
a5d8ba9cdf deploy-rs: fix typo 2023-09-16 09:35:12 +03:00
fb4b54b24b deployerbot: use deploy-rs directly 2023-09-16 08:56:22 +03:00
b436195d49 hardware observability 2023-09-16 08:53:23 +03:00
948ce2da5a enable autorandr 2023-09-15 22:06:05 +03:00
1f14703f0b start with awesome 2023-09-15 22:04:03 +03:00
48c1bffcd3 add another kb layout 2023-09-15 15:53:07 +03:00
52a1c97f13 reduce number of packages on servers 2023-09-15 15:49:01 +03:00
2061294171 fwminex: add rox-filer 2023-09-15 15:06:55 +03:00
d196f85638 install gm 2023-09-15 15:04:25 +03:00
2bc7029395 joplin -> joplin-desktop 2023-09-15 14:59:00 +03:00
a083360516 firefox: some more settings and addons 2023-09-15 14:56:37 +03:00
fcc52c1297 remove obsolete comment 2023-09-15 14:44:17 +03:00
382ef7b0d7 install pdftk 2023-09-15 14:43:56 +03:00
9821b197c0 add system-wide firefox too 2023-09-15 14:42:55 +03:00
f93555770a firefox: back to standard 2023-09-15 14:41:56 +03:00
2bc3275dfc add some applications and extensions 2023-09-15 14:39:04 +03:00
d57b2e5a1b enable pcscd 2023-09-15 13:27:12 +03:00
e3c5f37b43 add some packages 2023-09-15 13:05:56 +03:00
b1e57c93f1 install parallel everywhere 2023-09-15 12:51:10 +03:00
d7888b000b fix gp 2023-09-15 12:48:14 +03:00
c5191372e8 install gpg 2023-09-15 12:46:10 +03:00
211f580539 gpg-agent: move to per-user 2023-09-15 12:35:59 +03:00
3b005f06cc add firefox 2023-09-15 12:33:09 +03:00
7ee6a0de71 zfsborg: remove the ${mountpoint}/.snapshot-latest prefix
The path in the filesystem is quite clear from the archive name.
2023-09-15 11:05:05 +03:00
30426ad89e zfsborg: mount the tmpfs on all units 2023-09-15 10:10:54 +03:00
c80b1a996a switch to lightdm/xfce4 + sound 2023-09-14 21:58:06 +03:00
09f1b62cc8 add a desktop profile 2023-09-14 21:53:59 +03:00
b38c4013e7 cosmetics: quoting
it's fine, there is overrides.conf
2023-09-14 15:15:27 +03:00
b73f671bc0 silenceLogs is not picked up
Result:
$ cat result/etc/systemd/system/tailscaled.service
[Unit]
Description=Tailscale node agent
Documentation=https://tailscale.com/kb/
Wants=network-pre.target
After=network-pre.target NetworkManager.service systemd-resolved.service

[Service]
ExecStartPre=/nix/store/gr38ww9sj0qbcs8sb17iq9871qvmhfjw-tailscale-1.42.0/bin/tailscaled --cleanup
ExecStart=/nix/store/gr38ww9sj0qbcs8sb17iq9871qvmhfjw-tailscale-1.42.0/bin/tailscaled --state=/var/lib/tailscale/tailscaled.state --socket=/run/tailscale/tailscaled.sock --port=
ExecStopPost=/nix/store/gr38ww9sj0qbcs8sb17iq9871qvmhfjw-tailscale-1.42.0/bin/tailscaled --cleanup

Restart=on-failure

RuntimeDirectory=tailscale
RuntimeDirectoryMode=0755
StateDirectory=tailscale
StateDirectoryMode=0700
CacheDirectory=tailscale
CacheDirectoryMode=0750
Type=notify

[Install]
WantedBy=multi-user.target
2023-09-14 15:10:18 +03:00
76c07129f3 re-add () 2023-09-14 14:51:36 +03:00
fb3c39d7dc re-enable tailscale, oops 2023-09-14 14:48:54 +03:00
9eb8147660 tailscale: silence logs on some machines 2023-09-14 14:37:55 +03:00
553cda8fc7 vno1-rp3b: enable vno3 2023-09-14 13:23:04 +03:00
b1b046d78a sudo: fix extraGroups of motiejus
this misses 'wheel'
2023-09-14 13:07:39 +03:00
e341092306 fwminex: enable redistributable firmware, remove docker volume 2023-09-14 11:31:53 +03:00
a7a6148d0f fwminex: allow nonfree 2023-09-14 10:53:01 +03:00
1430bf9d6d fwminex: swap 2023-09-14 07:43:18 +03:00
85917635fd sshguard is now optional 2023-09-14 06:41:16 +03:00
234933dee1 install smartmontools 2023-09-13 13:29:06 +03:00
e38f446793 add fwminex 2023-09-13 13:04:40 +03:00
e12e139128 samba: make file/dir masks a bit more restrictive 2023-09-13 09:00:28 +03:00
00a6a27b92 zfsborg: use TemporaryFileSystem for temp snapshots
Otherwise:

Sep 13 00:01:05 vno1-oh2 systemd[1]: Started BorgBackup job -var-lib-1.
Sep 13 00:01:06 vno1-oh2 borgbackup-job--var-lib-1-start[329228]: filesystem 'rpool/nixos/var/lib@autosnap_2023-09-12_21:00:06_hourly' is already mounted
Sep 13 00:01:06 vno1-oh2 borgbackup-job--var-lib-1-start[329209]: umount: /var/lib/.snapshot-latest: not mounted.
Sep 13 00:01:06 vno1-oh2 systemd[1]: borgbackup-job--var-lib-1.service: Main process exited, code=exited, status=32/n/a
Sep 13 00:01:06 vno1-oh2 systemd[1]: borgbackup-job--var-lib-1.service: Failed with result 'exit-code'.
Sep 13 00:01:06 vno1-oh2 systemd[1]: borgbackup-job--var-lib-1.service: Triggering OnFailure= dependencies.
2023-09-13 08:37:35 +03:00
4f152205ce samba: log level = 0 2023-09-12 23:27:23 +03:00
bef137b967 wsdd: specify existing hostname 2023-09-12 23:18:46 +03:00
53ce3910aa replace nmbd with wsdd
https://askubuntu.com/questions/661611/make-samba-share-visible-in-windows-network
2023-09-12 23:10:59 +03:00
e45573c8a6 fix samba config
works!
2023-09-12 22:55:17 +03:00
4f45d605e1 vno1-rp3b: some attempts at samba 2023-09-12 17:44:17 +03:00
7891663a65 jakstpub: change home dir to /var/empty 2023-09-12 17:27:11 +03:00
2dd8cda85a open up samba 2023-09-12 16:08:32 +03:00
e61944dfde rewrite firewall rules 2023-09-12 15:46:44 +03:00
2b5b9bc57f samba some progress 2023-09-12 13:31:46 +03:00
49d92971c9 pass BORG_HOST_ID correctly 2023-09-12 11:41:45 +03:00
b204d5532f zfsborg: add BORG_HOST_ID if nics change 2023-09-12 11:30:08 +03:00
563d340013 add lshw 2023-09-12 11:17:50 +03:00
94253212c6 networking.firewall.checkReversePath = "loose" for tailscale 2023-09-11 22:38:44 +03:00
f33f8b3d1b add bonnie++, remove nix-top 2023-09-11 22:01:59 +03:00
80aca1ede2 Revert "firewall: open iperf3 fully"
This reverts commit 56bc914934.
2023-09-11 21:59:43 +03:00
56bc914934 firewall: open iperf3 fully 2023-09-11 21:54:12 +03:00
24412cbfc7 iperf: open up port 2023-09-11 21:43:34 +03:00
99342a6bb9 all: add iperf 2023-09-11 21:32:34 +03:00
27d663e63a bugfix in attrset merging 2023-09-11 17:48:08 +03:00
a522300158 borgbackup: add numbers to jobs 2023-09-11 17:38:18 +03:00
5721531486 nitpicking 2023-09-11 17:27:14 +03:00
583f74cf3f zfsborg: restructure config
Preparing for 2 repo destinations.
2023-09-11 17:25:12 +03:00
866347b042 add borgstor 2023-09-11 15:51:33 +03:00
377030d0c0 headscale: remove ipv6 subnet
it's confusing: I couldn't find an easy way to get the ipv4 address on a client
2023-09-11 14:37:05 +03:00
20ccb666c8 smtp 2023-09-07 19:46:47 +03:00
c7643a20d8 home-manager git name 2023-09-07 19:46:46 +03:00
fd9f30f7d4 snmp exporter: maybe exposing the file will work now? 2023-09-05 14:58:30 +03:00
24e6aa333e snmp exporter: expose in vpn for all to see 2023-09-05 14:45:09 +03:00
5c1cccb8a4 snmp: from package back to module 2023-09-05 14:41:52 +03:00
2963f0a0d7 gc: every 7d 2023-09-03 07:20:49 +03:00
fe30f6c32a Add dl.jakstys.lt 2023-08-29 15:41:57 +03:00
cc11726ed7 remove hel1-a 2023-08-27 15:17:54 +03:00
617b829589 deployerbot: add fra1-a 2023-08-27 01:04:09 +03:00
1db9253ae6 fra1-a 2023-08-26 23:37:16 +03:00
23347f6952 matrix-synapse: listen on 127.0.0.1
reverse proxying is over
2023-08-25 17:00:30 +03:00
3687d7cd73 matrix-synapse listen on 0.0.0.0 2023-08-25 16:14:12 +03:00
2776f8c517 fix extraConfigFiles 2023-08-25 16:03:46 +03:00
355d8c21cc move matrix-synapse to it's module 2023-08-25 15:49:37 +03:00
3f9db2ad12 configure nvim 2023-08-25 11:01:46 +03:00
f87a712635 node_exporter gets its own uidgid 2023-08-25 09:55:21 +03:00
9740b42493 gitea: listen on 3001 2023-08-25 09:41:42 +03:00
6cf894ee68 move logRefusedConnections to base 2023-08-24 23:49:21 +03:00
c3168bb2d3 headscale 2023-08-24 23:46:45 +03:00
be4df58cbb move gitea to its own module 2023-08-24 23:34:48 +03:00
86ee4ee571 enable chrony 2023-08-24 17:14:57 +03:00
407024dfa9 zfsunlock: use IP addresses + zfsunlock 2023-08-22 14:14:20 +03:00
8bd3af3878 tmux 2023-08-18 23:49:49 +03:00
4f337fe8c0 configure nvim system-wide 2023-08-18 23:33:56 +03:00
1522a5284e neovim: default editor 2023-08-18 21:45:38 +03:00
a9ab4b4514 re-enabling vim 2023-08-18 19:07:52 +03:00
7063b1d84e vim nitpicks 2023-08-18 18:50:39 +03:00
74b19c049b remove some old leftovers from vimrc 2023-08-18 18:44:21 +03:00
e1378a3617 start with vim 2023-08-18 18:43:34 +03:00
3be112cc46 home-manager: use global pkgs 2023-08-18 16:30:26 +03:00
47453cdfe1 home-manager/motiejus: add very basic test configs 2023-08-18 16:26:00 +03:00
bbf562d205 move node_exporter to its own module 2023-08-18 09:32:01 +03:00
4dee4159e7 nix --accept-flake-config 2023-08-16 20:26:37 +03:00
b4ac54d9a7 install perf-tools 2023-08-16 00:04:38 +03:00
4354cde55e vno1-rp3b 2023-08-15 07:18:26 +03:00
98a4ad79f8 grafana now on https://grafana.jakstys.lt, over vpn 2023-08-14 09:04:09 +03:00
a2a741d27e fmt and formatting; nsd-acme is less verbose 2023-08-10 10:48:34 +03:00
fa435f65d0 zones don't need to be sanitized
it's DNS!
2023-08-10 10:46:06 +03:00
7bedc09abb deployerbot: do not restart if changed
leads to interesting deadlocks when upgrading self
2023-08-10 10:40:07 +03:00
4878c42ca9 cron + alerting for cert updates 2023-08-10 00:46:36 +03:00
9059f84632 uacme can return 1 when cert is up to date 2023-08-10 00:37:21 +03:00
76a748e086 grafana is now prod 2023-08-10 00:29:56 +03:00
98816538d2 trying grafana1 2023-08-10 00:24:36 +03:00
69e6734eb7 nsd-acme: misc fixes 2023-08-09 15:55:05 +03:00
9a456192af nsd-acme 2023-08-09 15:34:44 +03:00
3e66f95668 zfsunlock nitpick 2023-08-09 14:26:49 +03:00
9a7e42b95d nsd: ConditionPathExists all files 2023-08-07 14:50:32 +03:00
5ae9886929 deployerbot: set PATH in systemd service definition 2023-08-07 14:39:38 +03:00
c8525b4e6b node_exporter on hel1-a 2023-08-06 01:00:02 +03:00
665e79a984 prometheus: beginnings 2023-08-05 18:32:28 +03:00
f4e04faef3 friendlyport 2023-08-05 18:18:30 +03:00
43d6d25dd0 sysdig: enable everywhere 2023-08-05 17:27:13 +03:00
cf6eeb6f29 deployerbot: start action at 23:30 UTC
According to 'nixos infra status' finding a good time of day to run the
updates for nixos release non-small is futile.
2023-08-02 15:41:07 +03:00
07921f1eaa nix flake update: schedule at 16:00 UTC 2023-08-01 14:24:32 +03:00
7a224096ba set PATH once 2023-07-30 09:01:27 +03:00
c99adbbaa1 bring back exec 2023-07-30 08:59:58 +03:00
d536eb5656 set OLD_PATH once 2023-07-30 08:56:38 +03:00
afd7743f37 deployerbot: push after a successful deploy 2023-07-30 08:53:19 +03:00
482f01bb01 deployer: set -x 2023-07-30 07:36:12 +03:00
36bbceac03 limit deployerbot-follower to our vpn 2023-07-30 07:23:43 +03:00
d1b19e6cf6 deployerbot: do not set -x 2023-07-30 07:00:10 +03:00
a9e8904d28 add deployerbot-follower to trusted users 2023-07-30 06:55:04 +03:00
ef050725c1 deploy-rs can deploy multiple targets with --targets 2023-07-30 06:50:06 +03:00
69ee6c9caa add comment re calendar time 2023-07-30 06:45:54 +03:00
f18a2ff855 deploy updates regularly 2023-07-30 06:41:13 +03:00
9de5120cc3 updaterbot: move all to deployer 2023-07-30 06:30:52 +03:00
9e0bd48a22 clean up old paths -- untested 2023-07-28 16:15:59 +03:00
49b9cc8351 vno1-oh2: enable deployerbot master 2023-07-28 16:09:41 +03:00
bff8cef210 fixes in deployment script 2023-07-28 15:55:16 +03:00
e588514c07 updater 2023-07-28 15:43:23 +03:00
a030ae0879 fix syntax error 2023-07-28 14:25:36 +03:00
579f21b0d1 hel1-a: make initrd consistent with vno1-oh2 2023-07-28 14:25:14 +03:00
bddb20cd13 updater: move to it's own service 2023-07-28 14:22:40 +03:00
e9c8320f72 unitstatus: unit status cmd is more robust 2023-07-28 14:04:26 +03:00
3237810611 unitstatus: remove escaping
Otherwise:

    Invalid unit name "borgbackup/job//home" escaped as "borgbackup-job--home" (maybe you should use systemd-escape?).
2023-07-28 13:56:52 +03:00
45724064d1 add M-R 2023-07-28 09:10:40 +03:00
89f7838c93 add Irenos folder 2023-07-26 22:24:51 +03:00
0677c8eb2a a few network traffic observability programs 2023-07-26 15:42:10 +03:00
8cecf18f43 mount zfs snapshots read-only 2023-07-26 15:36:11 +03:00
4522af453b start/stop firewall commands 2023-07-26 15:14:12 +03:00
ab11ee31f2 vno1-oh2: pass ssh key to borg 2023-07-26 14:49:34 +03:00
bb5ae6d2f7 sshguard: whitelist all known public ips 2023-07-26 14:17:14 +03:00
99488618ce enable sshguard and plocate 2023-07-26 14:12:09 +03:00
cff18bfb8f move common zfs settings to modules/base 2023-07-26 14:01:57 +03:00
d4527c24a6 mailutils comes with postfix 2023-07-26 13:32:03 +03:00
bac191ef2f postfix: add to vno1-oh2 2023-07-26 13:27:15 +03:00
bccefbc4ba split backup dirs to their repos 2023-07-26 12:59:19 +03:00
4f1aa85659 syncthing 2023-07-26 12:55:15 +03:00
77c40d676d add sysstat 2023-07-26 11:09:52 +03:00
9cf3ed3185 add procps 2023-07-26 11:06:28 +03:00
71fd71cb6b vno1-oh2: add updaterbot 2023-07-24 16:46:35 +03:00
8b673d25af change initrd pubkey of vno1-oh2 2023-07-24 16:46:35 +03:00
f5d3249fa0 add en_US.UTF-8/UTF-8 locale 2023-07-24 12:47:41 +03:00
4611c08d4f cleanup ips; nix fmt 2023-07-24 12:36:34 +03:00
c2249cebb1 zfsunlock: quiet diagnostics 2023-07-24 10:38:29 +03:00
679226b60f zfsunlock 2023-07-24 10:31:29 +03:00
6c9cb09a6f root unlocking is more restrictive
akin to asking for a password
2023-07-23 16:05:07 +03:00
dd60e07a14 wip more intitrd unlockers 2023-07-23 15:24:38 +03:00
b529dd5c5c make host pubkeys reachable via myData 2023-07-23 15:10:22 +03:00
f4446cb506 wip vno1-oh2 2023-07-22 16:51:34 +03:00
28d12ab379 small cleanup 2023-07-20 15:04:50 +03:00
5313a3ffeb users and passwords 2023-07-20 15:02:38 +03:00
16a8eff543 small cleanup 2023-07-20 11:56:37 +03:00
0f1d12cb34 unitstatus: pre-defined service units now exist 2023-07-20 10:25:53 +03:00
1bfd201028 add unitstatus
with some TODOs
2023-07-20 06:58:47 +03:00
9b090ff8ae zfsborg 2023-07-20 05:47:21 +03:00
97f720558d base/snapshot: move sanoid there 2023-07-18 16:32:45 +03:00
46e2d86918 wip snapshots 2023-07-18 12:31:48 +03:00
26747bd639 flakes 2023-07-18 11:27:59 +03:00