Simon Bruder
21e139f313
mailserver: Allow using implicit TLS
...
The configuration dates back quite a bit and then STARTTLS was
considered the best option. However, with RFC 8314 from 2018, which now
recommends implicit TLS for IMAP and SMTP submission, this changed.
This allows using implicit TLS for those services. STARTTLS might become
deprecated and/or removed in the future.
2023-06-01 19:54:26 +02:00
Simon Bruder
e7fa0868ae
mailserver: Allow manually blocking sender domains
2023-06-01 19:54:26 +02:00
Simon Bruder
704f1e8d7f
fonts: Fix custom iosevka name
...
They no longer match the old name, only one that looks weird.
2023-06-01 19:54:25 +02:00
Simon Bruder
f9b6483fd6
grub: Remove version
2023-06-01 19:54:22 +02:00
Simon Bruder
1ec8a58921
Rename boot.cleanTmpDir
2023-06-01 19:54:22 +02:00
Simon Bruder
2f3d5c8b6b
Remove usage of nixFlakes
2023-06-01 19:54:22 +02:00
Simon Bruder
d43a2e51b5
ssh: Migrate to 23.05 format
2023-05-30 11:35:13 +02:00
Simon Bruder
5462768f19
pipewire: Add configuration for UMC202HD
...
This has some problems (as explained in the comment), but this at least
makes it work for now.
2023-05-25 20:27:07 +02:00
Simon Bruder
8a574b0417
mailserver: Add default mailboxes
...
This harmonizes the usage of directory names, and gives clients hints
about what mail should go where.
2023-05-14 20:42:15 +02:00
Simon Bruder
cc47b75704
okarin: Init
2023-05-06 11:39:31 +02:00
Simon Bruder
89bc09dcce
wireguard/home: Expose subnet
2023-05-06 11:39:31 +02:00
Simon Bruder
dd705bb298
Move ripgrep to system closure
2023-05-05 16:17:40 +02:00
Simon Bruder
0e27e590e4
mailserver: Add sieve for spam
2023-05-03 12:31:13 +02:00
Simon Bruder
0d3ec89038
mailserver: Add DKIM
2023-05-03 12:31:13 +02:00
Simon Bruder
0ca15315ad
mailserver: Add spam filter
2023-05-03 12:31:11 +02:00
Simon Bruder
cec6a8de65
mailserver: Set up DNS recursor
2023-05-03 12:31:11 +02:00
Simon Bruder
2f39d10a8a
vueko: Migrate to new server
2023-05-03 12:31:11 +02:00
Simon Bruder
78c2e80868
Remove nixpkgs-2205
...
It isn’t used anymore.
2023-04-16 11:26:31 +02:00
Simon Bruder
02a77c5cb2
resolved: Don’t cache negative results
2023-04-16 11:16:47 +02:00
Simon Bruder
a9e9032ab3
Revert "wireguard/home: Add basic overview page"
...
This reverts commit 642d97cb52
.
2023-04-15 18:09:52 +02:00
Simon Bruder
91e739c91b
Fix resolving local names with resolved
2023-04-11 11:33:17 +02:00
Simon Bruder
f05ee27364
tools: Add tcpdump
...
I don’t know I survived without it.
2023-04-09 18:23:29 +02:00
Simon Bruder
d0ab2e1d47
Use better fallback resolvers for resolved
2023-04-07 14:36:01 +02:00
Simon Bruder
4d93272cb0
wireguard/home: Switch to systemd-networkd
2023-04-07 14:14:31 +02:00
Simon Bruder
642d97cb52
wireguard/home: Add basic overview page
...
It is very basic and not pretty, but it is a base that can be extended.
2023-04-07 13:47:40 +02:00
Simon Bruder
fec939d816
wireguard/support: Init
2023-03-09 21:21:13 +01:00
Simon Bruder
cc4460f98b
hitagi: Use nixpkgs unstable
...
This is needed for Intel Arc support (Mesa 22.3+).
This also makes changes so the nixpkgs system evaluates without
errors/warnings (caused by my configuration).
2023-02-25 10:56:10 +01:00
Simon Bruder
b0dc7169cf
pipewire: Use helvum from unstable
...
The one from 22.11 does not build currently.
2023-02-20 22:35:11 +01:00
Simon Bruder
42a22e89b7
initrd-ssh: Improve module documentation
2023-02-15 11:35:59 +01:00
Simon Bruder
049dfd4be8
fancontrol: Init
2023-01-22 16:34:52 +01:00
Simon Bruder
03492fccad
Migrate sayuri to hitagi
2022-12-30 19:52:58 +01:00
Simon Bruder
e1e1ff06e0
gui: Enable udisks2
...
It no longer is implicitly enabled, so it has to be enabled explicitly.
2022-12-22 22:52:24 +01:00
Simon Bruder
0332206244
fonts/iosevka: Adjust style to match Nerd fonts 2.1
2022-12-21 19:14:06 +01:00
Simon Bruder
54c5cfb240
restic/system: Enable compression
...
Fixes #66 .
2022-12-13 09:59:31 +01:00
Simon Bruder
3cfb7b1d32
gui: Fix polkit syntax error
...
Somehow the ECMAscript compatibility was downgraded.
2022-12-11 16:22:23 +01:00
Simon Bruder
b6a903551e
fonts: Use custom Iosevka variant
...
I don’t like the new defaults.
2022-12-10 16:09:10 +01:00
Simon Bruder
91ec565702
nix: Use 22.11 options
2022-12-10 16:08:13 +01:00
Simon Bruder
ad89732961
sway: Make everything work again
...
This sadly has to downgrade some programs, if I find more time, I will
look more into this and try to make it work with the latest versions.
2022-12-10 16:08:03 +01:00
Simon Bruder
71308a9284
gui: Replace deprecated gtkUsePortal
2022-12-10 15:17:12 +01:00
Simon Bruder
a445953d46
Adapt locale configuration to new NixOS defaults
2022-12-10 14:51:07 +01:00
Simon Bruder
f81a86235d
ausweisapp: Use upstream module
2022-12-10 14:50:41 +01:00
Simon Bruder
c61023b863
Add tools for using digitizer
2022-12-02 18:54:51 +01:00
Simon Bruder
fd3bb4284b
Add prometheus co2 exporter
2022-11-03 16:40:05 +01:00
Simon Bruder
f51bc637da
wireguard/home: Hardcode server’s IPv4 address
...
Some devices (like fuuko) sadly do not have IPv6 connectivity which
makes their connection fail.
2022-10-15 23:28:33 +02:00
Simon Bruder
c0b743a65b
fuuko: Configure to work on-demand
...
This is so I can only enable it when I don’t mind it generating tons of
noise.
2022-10-07 22:20:29 +02:00
Simon Bruder
293312b447
mullvad: Add fzf helper
2022-09-30 12:22:28 +02:00
Simon Bruder
ecdbe9b936
mullvad: Update relays
...
This also changes the framework to handle different relay names.
2022-09-30 12:22:07 +02:00
Simon Bruder
ce90c3363b
cups: Use elma’s new fqdn
2022-09-24 19:29:32 +02:00
Simon Bruder
2cf49b9a18
media-proxy: Add storagebox
2022-09-23 00:14:45 +02:00
Simon Bruder
eb5d270e0b
qbittorrent: Fix exporter vendor sha256
...
For some reason it changed.
2022-09-22 22:09:37 +02:00
Simon Bruder
24db1faff9
syncthing: Do not harcode fuuko’s address
...
External reachability is not guaranteed in the future.
2022-09-13 18:49:54 +02:00
Simon Bruder
fa0afa040f
Clean up tools/programs
...
I haven’t really used some of them, so they don’t need to take space up
in the environment.
2022-09-11 01:21:59 +02:00
Simon Bruder
ea43e14792
Add often used tools to environment
...
I often find myself running them inside a nix shell. Having them
available in the environment makes using them easier and also is
possible when no internet connection is available, which is especially
useful for tools like wl-mirror.
2022-09-11 01:02:30 +02:00
Simon Bruder
9a5305bf19
media-mount: Ensure it is owned by user
...
Otherwise home-manager can’t symlink .envrc.
2022-09-04 15:46:18 +02:00
Simon Bruder
7c81e51d10
network-manger: Switch to iwd as wifi backend
...
wpa_supplicant often requires multiple tries to get a connection.
2022-09-01 22:30:49 +02:00
Simon Bruder
e31c264c92
restic: Do not limit upload by default
...
This allows servers that have a fast internet connection to complete
their backup in seconds instead of minutes.
2022-08-25 23:22:17 +02:00
Simon Bruder
4e78d87bde
restic: Use storage box and restic-rest-server
...
While this setup complicates things, it also should protect me against
(malicious) deletion of old backups.
2022-08-25 23:12:42 +02:00
Simon Bruder
19eab9411c
ssh: Add all hostnames for storage box
2022-08-25 23:12:42 +02:00
Simon Bruder
0bbe240018
tmux: Configure system-wide
...
This is useful on systems that are only accessed as root (e.g.,
servers).
2022-08-25 14:49:22 +02:00
Simon Bruder
947a7d65a3
unfree: Remove yuzu-{ea,mainline}
2022-08-13 17:21:09 +02:00
Simon Bruder
6211ea6005
games: Blacklist hid_nintendo
...
It does not work with my 8BitDo Pro 2. Disabling the kernel module makes
it work with SDL’s hidraw driver.
2022-08-13 11:47:10 +02:00
Simon Bruder
0b4bfc931c
media-mount: Add storage box
2022-08-09 15:13:50 +02:00
Simon Bruder
8091bae559
ausweisapp: Init
2022-07-24 18:06:54 +02:00
Simon Bruder
97a1f12d7b
grub: Disable memtest86
...
The download URL does not work anymore.
2022-07-11 21:31:41 +02:00
Simon Bruder
9dd20698d1
mullvad: Update relays
2022-07-08 11:51:04 +02:00
Simon Bruder
a68420ca69
Sort modules includes
2022-07-08 11:51:04 +02:00
Simon Bruder
22d017999f
syncthing: Init
2022-07-08 11:51:04 +02:00
Simon Bruder
8dc59487f3
restic/system: Exclude /var/cache
2022-07-08 11:51:04 +02:00
Simon Bruder
2fc312dd47
flake: Use overlays.default for default overlay
...
The `overlay` output is deprecated.
2022-07-08 11:51:03 +02:00
Simon Bruder
d177dcc710
Allow users to set set allow_other for fuse mounts
2022-06-15 00:45:51 +02:00
Simon Bruder
67b30a52af
Remove private binary cache
...
I don’t actually use it and it adds complexity to installing new
machines.
2022-06-10 00:03:03 +02:00
Simon Bruder
b948f46fad
nunotaba: Re-init
2022-06-10 00:03:03 +02:00
Simon Bruder
98cd9fee9c
okarin: Remove
...
It was too slow to do anything useful with, so I cancelled it. Unless
something dramatically changes, I won’t rent servers from Contabo
anymore.
2022-06-01 15:39:02 +02:00
Simon Bruder
3e82450879
pipewire: Remove media-session config
...
It is disabled by default in favour of wireplumber.
2022-06-01 15:17:14 +02:00
Simon Bruder
0bb4f4204d
Use new option for ACME email address
2022-05-31 15:04:53 +02:00
Simon Bruder
23652c4b8f
restic/system: Exclude mounts
2022-05-15 11:14:34 +02:00
Simon Bruder
4712cd20be
media-mount: Init
2022-05-14 17:50:11 +02:00
Simon Bruder
f31fb7dc5d
udev: Add rule for TI-84+ SE
...
If it is plugged in for a longer time (a few minutes are enough), at
least on mayushii, the dock hangs and will not respond unless the
system is rebooted (re-plugging, restarting the dock and suspending does
not work). I couldn’t figure out why this is happening.
2022-05-11 16:38:32 +02:00
Simon Bruder
606b203205
zsh: Globally set histsize to 100000
...
Otherwise this occasionally deletes my user’s history if the user config
is not fully loaded yet.
2022-04-28 09:32:03 +02:00
Simon Bruder
76787d43a0
restic/system: Ignore /root/.cache
2022-04-23 21:10:55 +02:00
Simon Bruder
b307f1d518
fonts: Use blobmoji as default emoji font
2022-04-23 21:10:27 +02:00
Simon Bruder
141bfa4f46
yuzuru: Remove
...
It no longer hosts any services so it is going to be removed.
2022-04-09 10:12:12 +02:00
Simon Bruder
5cb356c368
makemkv: Init
2022-04-01 18:20:46 +02:00
Simon Bruder
c70da831eb
tools: Install sqlite globally
...
It often is needed on servers where there is no user.
2022-03-26 12:42:45 +01:00
Simon Bruder
da56357ad8
zsh: Disable globbing of # globally
...
Otherwise using nix shell et al. as root is a pain.
2022-03-26 12:37:11 +01:00
Simon Bruder
8dc3558c7c
qbittorrent/exporter: Do not expose seeding time
...
It is not useful and just wastes storage space.
2022-03-25 21:54:07 +01:00
Simon Bruder
954849f763
renge: Init
2022-03-23 17:34:56 +01:00
Simon Bruder
ea88259856
okarin/qbittorrent: Init
2022-03-19 10:35:09 +01:00
Simon Bruder
0e3bd19aa8
media-proxy: Unset referer for same-site requests
...
The qBittorrent WebUI does not work with it set to a different host than
the target. This implementation does not compromise security, because
the referer is only unset if the real referer was the locally proxied
page. All other referers are passed through verbatim.
2022-03-18 23:43:24 +01:00
Simon Bruder
faa84c574d
qbittorrent: Init module
2022-03-18 22:14:09 +01:00
Simon Bruder
7ed13269a7
okarin: Init
2022-03-03 10:51:19 +01:00
Simon Bruder
175b5e1ef1
logitech: Init
2022-02-09 07:24:23 +01:00
Simon Bruder
20b861a994
fuuko/torrent: Use AriaNg’s nixpkgs version
...
Otherwise node 10 will have to be built from source since it no longer
gets built by Hydra.
2022-01-23 11:58:37 +01:00
Simon Bruder
922e007db9
restic/system: Don’t explicitly ignore rust target
...
Newer cargo versions automatically add a CACHEDIR.TAG file to the target
directory.
2022-01-22 10:33:33 +01:00
Simon Bruder
6499b7b196
restic/system: Start earlier
...
This avoids the backup failing due to clients being suspended during the
backup.
2022-01-22 10:32:51 +01:00
Simon Bruder
0baeb59b38
tools: Add parted
2022-01-14 15:53:29 +01:00
Simon Bruder
6eadefd6fb
Revert "pipewire: Enable jack"
...
This reverts commit 9588343b6e
.
It causes issues with yuzu.
2022-01-02 16:45:21 +01:00
Simon Bruder
ac85009184
udev: Add rules for Switch Pro Controller
2021-12-19 11:25:51 +01:00
Simon Bruder
398ca91aa5
tools: Add wireshark
2021-12-10 18:00:13 +01:00
Simon Bruder
505697715d
nix: Remove fallback for deamon nice levels
2021-12-06 16:00:41 +01:00