Commit graph

86 commits

Author SHA1 Message Date
Simon Bruder 513e0cf383
renge/sbruder.xyz: Make transparency files state 2024-01-10 21:42:34 +01:00
Simon Bruder 9995ff511e
restic/system: Prune on renge
Because of fuuko’s very slow link, the prune had not been successful for
a whole quarter. Now that renge has more RAM, it can finally run the
prune without having to worry about OOM.
2024-01-10 21:27:42 +01:00
Simon Bruder 34231fb13b
Migrate psycho-power-papagei.de out of repo
The files are not compatible with plans for future licensing.
2024-01-06 01:36:51 +01:00
Simon Bruder 26d85e97aa
infovhost: Init
This avoids boilerplate code for displaying the imprint on the fqdn of
the machine.
2024-01-03 12:09:27 +01:00
Simon Bruder 0393661579
yuzuru: Init 2024-01-03 11:44:34 +01:00
Simon Bruder 2a5da89f53
Do not enable fwupd on virtual machines
It only uses up resources on those hosts but serves no purpose.
2024-01-01 16:11:28 +01:00
Simon Bruder faf159bb66
renge: Discontinue nitter and libreddit 2023-12-31 17:31:18 +01:00
Simon Bruder bf7732bbb0
renge/netbox: Drop
It was disabled anyway.
2023-12-31 17:31:18 +01:00
Simon Bruder 9d7d7cb592
wordclock-dimmer: Migrate to shinobu 2023-12-31 17:31:17 +01:00
Simon Bruder eef5f9b617
renge: Migrate to larger server 2023-12-31 17:31:17 +01:00
Simon Bruder 92bbeffca9
renge/prometheus: Shorten instance name for nodes 2023-12-25 23:39:54 +01:00
Simon Bruder 0c108d9e44
renge/element-web: Use snake_case for config
camelCase is deprecated[0].

This also removes an unused jitsi server preference.

[0] https://github.com/element-hq/element-web/blob/develop/docs/config.md#-deprecation-notice
2023-12-24 13:06:57 +01:00
Simon Bruder 80fcaab244
nginx: Make recommended settings global 2023-12-16 10:19:20 +01:00
Simon Bruder 8e1b76e663
renge/forgejo: Migrate from gitea 2023-12-10 15:36:11 +01:00
Simon Bruder ba843ac8c0
Upgrade to 23.11
Flake lock file updates:

• Updated input 'bang-evaluator':
    'git+https://git.sbruder.de/simon/bangs?ref=refs/heads/master&rev=7fc3d5019c907566abbad8f84ba9555a5786bd01' (2021-08-01)
  → 'git+https://git.sbruder.de/simon/bangs?ref=refs/heads/master&rev=a06c68c44862f74757a203e2df41ea83c33722d9' (2023-12-02)
• Updated input 'home-manager':
    'github:nix-community/home-manager/04bac349d585c9df38d78e0285b780a140dc74a4' (2023-11-12)
  → 'github:nix-community/home-manager/aeb2232d7a32530d3448318790534d196bf9427a' (2023-11-24)
• Updated input 'home-manager-unstable':
    'github:nix-community/home-manager/9a4725afa67db35cdf7be89f30527d745194cafa' (2023-11-19)
  → 'github:nix-community/home-manager/4a8545f5e737a6338814a4676dc8e18c7f43fc57' (2023-12-01)
• Updated input 'nix-pre-commit-hooks':
    'github:cachix/pre-commit-hooks.nix/e558068cba67b23b4fbc5537173dbb43748a17e8' (2023-11-15)
  → 'github:cachix/pre-commit-hooks.nix/e5ee5c5f3844550c01d2131096c7271cec5e9b78' (2023-11-25)
• Updated input 'nixos-hardware':
    'github:nixos/nixos-hardware/1721da31f9b30cbf4460c4ec5068b3b6174a4694' (2023-11-18)
  → 'github:nixos/nixos-hardware/8772491ed75f150f02552c60694e1beff9f46013' (2023-11-29)
• Updated input 'nixpkgs':
    'github:nixos/nixpkgs/9fb122519e9cd465d532f736a98c1e1eb541ef6f' (2023-11-16)
  → 'github:nixos/nixpkgs/5de0b32be6e85dc1a9404c75131316e4ffbc634c' (2023-12-01)
• Updated input 'nixpkgs-overlay':
    'git+https://git.sbruder.de/simon/nixpkgs-overlay?ref=refs/heads/master&rev=c8a17806a75733dec2ecdd8f0021c70d1f9dfc43' (2023-10-04)
  → 'git+https://git.sbruder.de/simon/nixpkgs-overlay?ref=refs/heads/master&rev=37f80d1593ab856372cc0da199f49565f3b05c71' (2023-12-02)
• Updated input 'nixpkgs-overlay/poetry2nix':
    'github:nix-community/poetry2nix/093383b3d7fdd36846a7d84e128ca11865800538' (2023-09-22)
  → 'github:nix-community/poetry2nix/7acb78166a659d6afe9b043bb6fe5cb5e86bb75e' (2023-12-01)
• Updated input 'nixpkgs-overlay/poetry2nix/nix-github-actions':
    'github:nix-community/nix-github-actions/165b1650b753316aa7f1787f3005a8d2da0f5301' (2023-07-09)
  → 'github:nix-community/nix-github-actions/4bb5e752616262457bc7ca5882192a564c0472d2' (2023-11-03)
• Added input 'nixpkgs-overlay/poetry2nix/systems':
    'github:nix-systems/default/da67096a3b9bf56a91d16901293e51ba5b49a27e' (2023-04-09)
• Added input 'nixpkgs-overlay/poetry2nix/treefmt-nix':
    'github:numtide/treefmt-nix/e82f32aa7f06bbbd56d7b12186d555223dc399d1' (2023-11-12)
• Added input 'nixpkgs-overlay/poetry2nix/treefmt-nix/nixpkgs':
    follows 'nixpkgs-overlay/poetry2nix/nixpkgs'
• Updated input 'nixpkgs-unstable':
    'github:nixos/nixpkgs/c757e9bd77b16ca2e03c89bf8bc9ecb28e0c06ad' (2023-11-17)
  → 'github:nixos/nixpkgs/e92039b55bcd58469325ded85d4f58dd5a4eaf58' (2023-11-29)
• Updated input 'sops-nix':
    'github:Mic92/sops-nix/49a87c6c827ccd21c225531e30745a9a6464775c' (2023-11-19)
  → 'github:Mic92/sops-nix/e19071f9958c8da4f4347d3d78790d97e98ba22f' (2023-12-02)
• Updated input 'sops-nix/nixpkgs-stable':
    'github:NixOS/nixpkgs/decdf666c833a325cb4417041a90681499e06a41' (2023-11-18)
  → 'github:NixOS/nixpkgs/dfb95385d21475da10b63da74ae96d89ab352431' (2023-11-25)
2023-12-02 18:54:42 +01:00
Simon Bruder 0055de1c26
shinobu/snmp-exporter: Init 2023-11-04 13:57:59 +01:00
Simon Bruder 4f536a00d2
Switch home domain to shinonome-lab.de
When having DNSSEC activated (as it is the case on sbruder.de), dnsmasq
interfering in queries for hosts on the LAN often causes problems.

This domain is specifically for the case of not having DNSSEC on it.
2023-10-27 23:54:56 +02:00
Simon Bruder af1d41ffda
dns: Add prometheus exporter 2023-10-26 01:18:17 +02:00
Simon Bruder a884f11f69
renge/gitea: Switch to manual user confirmation
There was too much spam registration going on.
2023-10-13 20:23:54 +02:00
Simon Bruder ace6f449c3
renge/gitea: Don’t allow creating org by default 2023-10-08 21:36:33 +02:00
Simon Bruder 16c0472bb0
nazuna: Enable torrent 2023-10-04 23:19:44 +02:00
Simon Bruder 7fc8a4694c
nazuna: Init 2023-10-04 23:19:44 +02:00
Simon Bruder bc08d06985
renge: Disable netbox
I don’t depend on it (yet) and lately, renge often runs out of memory
during backups.
2023-09-12 15:00:51 +02:00
Simon Bruder 385cf15e02
renge/invidious: Use new hmac_key setting 2023-08-18 12:02:50 +02:00
Simon Bruder 0bdf13b3bd
renge/netbox: Add plugins 2023-08-12 13:59:03 +02:00
Simon Bruder 6f67715a65
renge/netbox: Init 2023-08-12 11:53:11 +02:00
Simon Bruder 0f6a9a1bee
{renge,vueko}: Use correct IPv6 address 2023-08-12 01:00:37 +02:00
Simon Bruder 25ff150b3d
prometheus: Add disk full alert 2023-08-02 23:22:19 +02:00
Simon Bruder 3df0ddcc27
shinobu/co2_exporter: Migrate from fuuko 2023-07-01 13:14:32 +02:00
Simon Bruder 1b44e31627
shinobu: Init 2023-07-01 12:37:12 +02:00
Simon Bruder 4adeba626a
renge/gitea: Migrate to 23.05 options 2023-06-01 19:54:22 +02:00
Simon Bruder cc47b75704
okarin: Init 2023-05-06 11:39:31 +02:00
Simon Bruder 687439cff9
vueko: Expose rspamd prometheus metrics 2023-05-03 12:31:13 +02:00
Simon Bruder 4880116919
renge/sbruder.xyz: Add censorship infrastructure
I don’t want to do this, but I might have to. Hetzner’s ToS are very
vague in what content they don’t allow, so I think I might have to
comply with the Russian censorship authority.
2023-04-29 09:41:00 +02:00
Simon Bruder 1a78049a7a
renge: Use networkd 2023-04-11 11:44:59 +02:00
Simon Bruder 444aa962b5
fuuko: Add router service
This now mostly replaces ayu, which has been sitting between upstream
and the switch the last 6 months.

It now also configures routing over Mullvad, which also finally enables
IPv6 (I don’t understand how people get away with not providing it
natively in 2023).

Once I get a WLAN card, it will also host its own access point, which
currently still relies on ayu as “dumb AP” (as OpenWRT calls it).
2023-04-02 01:14:01 +02:00
Simon Bruder c622c86582
renge/sbruder.xyz: Clarify snail mail note 2023-03-23 01:40:28 +01:00
Simon Bruder 7199515e8c
renge/invidious: Disable popular page 2023-03-09 21:21:12 +01:00
Simon Bruder 46b695886a
renge/mautrix-signal: Drop
It never really worked and currently just uses up resources.
2023-02-07 11:29:23 +01:00
Simon Bruder d3e7424562
renge/mautrix-whatsapp: Disable logging to file
It logs *all* messages and the level does not influence this. That is
not desirable, so it should be disabled.
2023-02-07 11:26:42 +01:00
Simon Bruder d1a29ef2dd
renge/synapse: Fix synapse log config
The parameter name changed, which lead to synapse ignoring the wrong
config option.
2023-01-10 17:49:16 +01:00
Simon Bruder 03492fccad
Migrate sayuri to hitagi 2022-12-30 19:52:58 +01:00
Simon Bruder 54c5cfb240
restic/system: Enable compression
Fixes #66.
2022-12-13 09:59:31 +01:00
Simon Bruder 81b3d4590a
renge/hedgedoc: Migrate to 22.11 options 2022-12-10 15:15:58 +01:00
Simon Bruder aa7cf807f2
renge/grafana: Migrate to 22.11 options 2022-12-10 15:15:43 +01:00
Simon Bruder 60577ad4ea
renge/gitea: Migrate to 22.11 options 2022-12-10 15:15:11 +01:00
Simon Bruder 8c317b76bf
Drop temporary unstable packages 2022-12-10 14:49:16 +01:00
Simon Bruder 9d4a7a5a00
renge/mautrix-signal: Use unstable package
The stable package is broken.
2022-11-12 00:09:22 +01:00
Simon Bruder fd3bb4284b
Add prometheus co2 exporter 2022-11-03 16:40:05 +01:00
Simon Bruder 18dab0ab94
renge/mautrix-signal: Allow file transfer
mautrix-whatsapp places a file in /tmp/ for file transfers. However,
signald is running with PrivateTemp=true. This uses systemd’s feature
that allows a unit to share a namespace with another one and places
mautrix-signal in the same namespace as signald, so they share their
private tmp directory.
2022-10-16 15:52:08 +02:00