Commit graph

1381 commits

Author SHA1 Message Date
Simon Bruder 687439cff9
vueko: Expose rspamd prometheus metrics 2023-05-03 12:31:13 +02:00
Simon Bruder 0d3ec89038
mailserver: Add DKIM 2023-05-03 12:31:13 +02:00
Simon Bruder a3030f5dbd
vueko: Expose rspamd 2023-05-03 12:31:13 +02:00
Simon Bruder 0ca15315ad
mailserver: Add spam filter 2023-05-03 12:31:11 +02:00
Simon Bruder cec6a8de65
mailserver: Set up DNS recursor 2023-05-03 12:31:11 +02:00
Simon Bruder 2f39d10a8a
vueko: Migrate to new server 2023-05-03 12:31:11 +02:00
Simon Bruder 199f168c70
Add compress mount option to installation guide 2023-04-29 12:32:01 +02:00
Simon Bruder 4880116919
renge/sbruder.xyz: Add censorship infrastructure
I don’t want to do this, but I might have to. Hetzner’s ToS are very
vague in what content they don’t allow, so I think I might have to
comply with the Russian censorship authority.
2023-04-29 09:41:00 +02:00
Simon Bruder bdbcbd2a0b
vueko/mail: Add alias 2023-04-26 20:15:38 +02:00
Simon Bruder d3b8741eb8
git/delta: Don’t use blame background for code 2023-04-24 15:47:58 +02:00
Simon Bruder a54f8bd4f0
git: Ignore ccls cache 2023-04-24 15:40:05 +02:00
Simon Bruder c3847367f7
neovim: Add ccls 2023-04-21 09:10:40 +02:00
Simon Bruder 9875b7cfbf
vueko/mail: Add alias 2023-04-21 09:10:40 +02:00
Simon Bruder 73c1389435
neovim: Add LanguageTool language server 2023-04-21 09:10:40 +02:00
Simon Bruder 78c2e80868
Remove nixpkgs-2205
It isn’t used anymore.
2023-04-16 11:26:31 +02:00
Simon Bruder 5e9d9181b7
Use unstable home-manager for unstable machines 2023-04-16 11:26:09 +02:00
Simon Bruder 02a77c5cb2
resolved: Don’t cache negative results 2023-04-16 11:16:47 +02:00
Simon Bruder 2a5e20cb36
anki: Use native version
This currently still requires an override to work with wayland, though
there is a nixpkgs PR to fix this.
2023-04-16 11:14:37 +02:00
Simon Bruder dc4a2c27ec
flake.lock: Update
Flake lock file updates:

• Updated input 'flake-utils':
    'github:numtide/flake-utils/93a2b84fc4b70d9e089d029deacc3583435c2ed6' (2023-03-15)
  → 'github:numtide/flake-utils/cfacdce06f30d2b68473a46042957675eebb3401' (2023-04-11)
• Added input 'flake-utils/systems':
    'github:nix-systems/default/da67096a3b9bf56a91d16901293e51ba5b49a27e' (2023-04-09)
• Updated input 'home-manager':
    'github:nix-community/home-manager/9154cd519a8942728038819682d6b3ff33f321bb' (2023-03-17)
  → 'github:nix-community/home-manager/f9edbedaf015013eb35f8caacbe0c9666bbc16af' (2023-04-10)
• Updated input 'nix-pre-commit-hooks':
    'github:cachix/pre-commit-hooks.nix/32b1dbedfd77892a6e375737ef04d8efba634e9e' (2023-03-16)
  → 'github:cachix/pre-commit-hooks.nix/d3de8f69ca88fb6f8b09e5b598be5ac98d28ede5' (2023-04-13)
• Updated input 'nixos-hardware':
    'github:nixos/nixos-hardware/648021dcb2b65498eed3ea3a7339cdfc3bea4d82' (2023-03-23)
  → 'github:nixos/nixos-hardware/3006d2860a6ed5e01b0c3e7ffb730e9b293116e2' (2023-04-07)
• Updated input 'nixpkgs':
    'github:nixos/nixpkgs/9ef6e7727f4c31507627815d4f8679c5841efb00' (2023-03-22)
  → 'github:nixos/nixpkgs/fda0d99c2cbbb5c89d8855d258cb0821bd9113ad' (2023-04-14)
• Updated input 'nixpkgs-unstable':
    'github:nixos/nixpkgs/19cf008bb18e47b6e3b4e16e32a9a4bdd4b45f7e' (2023-03-21)
  → 'github:nixos/nixpkgs/85b081528b937df4bfcaee80c3541b58f397df8b' (2023-04-15)
• Updated input 'sops-nix':
    'github:Mic92/sops-nix/d8827a8368c307fbc6ed594c9a31d619e7360bed' (2023-03-21)
  → 'github:Mic92/sops-nix/b7a6670a28b01cd1f62879921e36be2c69c4137a' (2023-04-16)
• Updated input 'sops-nix/nixpkgs-stable':
    'github:NixOS/nixpkgs/c3912035d00ef755ab19394488b41feab95d2e40' (2023-03-18)
  → 'github:NixOS/nixpkgs/1040ce5f652b586da95dfd80d48a745e107b9eac' (2023-04-16)
2023-04-16 09:55:19 +02:00
Simon Bruder 2700ee3f50
Revert "Allow access to other machines’ configuration"
This reverts commit ea232b1f58.

This breaks the unlock script.
2023-04-15 18:10:04 +02:00
Simon Bruder a9e9032ab3
Revert "wireguard/home: Add basic overview page"
This reverts commit 642d97cb52.
2023-04-15 18:09:52 +02:00
Simon Bruder 52dab514ca
fuuko: Use additional NIC instead of VLANs 2023-04-15 18:08:46 +02:00
Simon Bruder 62b1b6a37e
vueko/mail: Remove alias 2023-04-15 17:23:18 +02:00
Simon Bruder c2beb57f21
vueko/mail: Add alias 2023-04-11 12:08:00 +02:00
Simon Bruder 1a78049a7a
renge: Use networkd 2023-04-11 11:44:59 +02:00
Simon Bruder 91e739c91b
Fix resolving local names with resolved 2023-04-11 11:33:17 +02:00
Simon Bruder f05ee27364
tools: Add tcpdump
I don’t know I survived without it.
2023-04-09 18:23:29 +02:00
Simon Bruder 9c5da77efc
fuuko: Note router/AP in readme 2023-04-08 18:45:14 +02:00
Simon Bruder a8ace37aa2
mayushii: Switch to MediaTek wireless adapter
Whenever possible, I’ll try to avoid Realtek in the future.
2023-04-08 18:09:08 +02:00
Simon Bruder 8e70f1c790
neovim: Add java language server 2023-04-07 23:28:31 +02:00
Simon Bruder afc328b5ed
git: Use uni email for specific directories 2023-04-07 23:28:16 +02:00
Simon Bruder d0ab2e1d47
Use better fallback resolvers for resolved 2023-04-07 14:36:01 +02:00
Simon Bruder 4d93272cb0
wireguard/home: Switch to systemd-networkd 2023-04-07 14:14:31 +02:00
Simon Bruder 642d97cb52
wireguard/home: Add basic overview page
It is very basic and not pretty, but it is a base that can be extended.
2023-04-07 13:47:40 +02:00
Simon Bruder ea232b1f58
Allow access to other machines’ configuration
This requires removing the filter for other machines. This was
implemented to avoid copying secrets to other machines. I never deployed
this configuration to a system that is not fully encrypted and the
“secrets” are just things I do not want publicly available, not
credentials.
2023-04-07 13:45:01 +02:00
Simon Bruder 1498c3fab6
vueko/mail: Add alias 2023-04-07 13:40:55 +02:00
Simon Bruder 5cd4845dbf
fuuko/router: Add wireless AP
It is anything but great, though I will try to find a better solution
for this.
2023-04-05 10:11:39 +02:00
Simon Bruder 7c0ccbbd6a
fuuko/router: Use bridge for lan 2023-04-05 10:11:39 +02:00
Simon Bruder 67dabb0de5
fuuko: Note that remote unlocking is broken 2023-04-02 12:16:00 +02:00
Simon Bruder 68cc1d32d4
fuuko/router: Add static record for switch 2023-04-02 12:00:19 +02:00
Simon Bruder 444aa962b5
fuuko: Add router service
This now mostly replaces ayu, which has been sitting between upstream
and the switch the last 6 months.

It now also configures routing over Mullvad, which also finally enables
IPv6 (I don’t understand how people get away with not providing it
natively in 2023).

Once I get a WLAN card, it will also host its own access point, which
currently still relies on ayu as “dumb AP” (as OpenWRT calls it).
2023-04-02 01:14:01 +02:00
Simon Bruder a6af0f92b4
fuuko: Note GPU change in README 2023-04-02 00:17:23 +02:00
Simon Bruder 8984961768
vueko/mail: Add alias 2023-03-26 18:12:59 +02:00
Simon Bruder 1eb75bde58
vueko/mail: Add alias 2023-03-26 18:12:46 +02:00
Simon Bruder 2dd93095a3
flake.lock: Update
Flake lock file updates:

• Updated input 'flake-utils':
    'github:numtide/flake-utils/3db36a8b464d0c4532ba1c7dda728f4576d6d073' (2023-02-13)
  → 'github:numtide/flake-utils/93a2b84fc4b70d9e089d029deacc3583435c2ed6' (2023-03-15)
• Updated input 'home-manager':
    'github:nix-community/home-manager/b0be47978de5cfd729a79c3f57ace4c86364ff45' (2023-03-08)
  → 'github:nix-community/home-manager/9154cd519a8942728038819682d6b3ff33f321bb' (2023-03-17)
• Updated input 'nix-pre-commit-hooks':
    'github:cachix/pre-commit-hooks.nix/1a20b9708962096ec2481eeb2ddca29ed747770a' (2023-03-09)
  → 'github:cachix/pre-commit-hooks.nix/32b1dbedfd77892a6e375737ef04d8efba634e9e' (2023-03-16)
• Updated input 'nix-pre-commit-hooks/nixpkgs-stable':
    'github:NixOS/nixpkgs/2f9fd351ec37f5d479556cd48be4ca340da59b8f' (2023-01-15)
  → 'github:NixOS/nixpkgs/9b8e5abb18324c7fe9f07cb100c3cd4a29cda8b8' (2023-03-15)
• Updated input 'nixos-hardware':
    'github:nixos/nixos-hardware/6e303a505ad31a8e68a7f0d43e2170e81c16919b' (2023-03-09)
  → 'github:nixos/nixos-hardware/648021dcb2b65498eed3ea3a7339cdfc3bea4d82' (2023-03-23)
• Updated input 'nixpkgs':
    'github:nixos/nixpkgs/a7cc81913bb3cd1ef05ed0ece048b773e1839e51' (2023-03-07)
  → 'github:nixos/nixpkgs/9ef6e7727f4c31507627815d4f8679c5841efb00' (2023-03-22)
• Updated input 'nixpkgs-unstable':
    'github:nixos/nixpkgs/c90c4025bb6e0c4eaf438128a3b2640314b1c58d' (2023-03-08)
  → 'github:nixos/nixpkgs/19cf008bb18e47b6e3b4e16e32a9a4bdd4b45f7e' (2023-03-21)
• Updated input 'sops-nix':
    'github:Mic92/sops-nix/00e9e9cd46600d68dd98a392025d4894c3711b58' (2023-03-08)
  → 'github:Mic92/sops-nix/d8827a8368c307fbc6ed594c9a31d619e7360bed' (2023-03-21)
• Updated input 'sops-nix/nixpkgs-stable':
    'github:NixOS/nixpkgs/d51554151a91cd4543a7620843cc378e3cbc767e' (2023-03-04)
  → 'github:NixOS/nixpkgs/c3912035d00ef755ab19394488b41feab95d2e40' (2023-03-18)
2023-03-24 13:15:35 +01:00
Simon Bruder 94dabbbe89
neovim: Remove vim-nix
Most of its functionalty is now provided by tree-sitter. Also, it
somehow causes errors for vimtex‽
2023-03-24 13:14:07 +01:00
Simon Bruder c622c86582
renge/sbruder.xyz: Clarify snail mail note 2023-03-23 01:40:28 +01:00
Simon Bruder 712314a300
imprint: Add fax number 2023-03-23 01:38:31 +01:00
Simon Bruder 04138292f7
vueko/mail: Add alias 2023-03-23 00:59:23 +01:00
Simon Bruder 2fc8b9cff4
hitagi: Use kernel from nixpkgs unstable
It now includes 6.2
2023-03-09 21:22:03 +01:00