Commit Graph

103 Commits

Author SHA1 Message Date
66fb506e26 remove sieve script# () 2024-02-03 16:00:35 -05:00
f746da7c4c fix dovecot2 sieve scripts ()
* fix dovecot2 sieve scripts

* add pathfix
2024-02-03 20:10:24 +01:00
726c3b208e add dennis local systems () 2024-02-02 22:54:36 +01:00
6afd73c990 change flake input () 2024-02-02 01:13:24 -05:00
bca76e5325 fix function () 2024-02-02 06:59:47 +01:00
320e2225ce change allowed-uris () 2024-02-02 00:46:47 -05:00
9f863eac6e add allowed-uris () 2024-02-02 00:31:40 -05:00
2b917b8332 flip order of caches :) ()
Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
2024-02-02 00:17:41 -05:00
c27b273e17 fix hydra build packages ()
* fix hydra build packages

* change build input
2024-02-02 06:12:49 +01:00
b3888adddb remove unlocked flakes () 2024-02-02 05:20:43 +01:00
4c7ba8e68e changes to pg () 2024-02-01 22:25:10 -05:00
179c78ccc7 add public key () 2024-02-01 23:05:46 +01:00
241c66f5ec enable external SMTP for hydra ()
* external SMTP for hydra

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* nix-serve sops

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* add binary cache

* add hydra jobs

* cleanup ()

* finish up cleanup branch merge

* switched back to nixpkgs-fmt

* add nixpkgs-fmt to hydrajobs.build

---------

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
Co-authored-by: Dennis Wuitz <dennish@wuitz.de>
Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com>
2024-02-01 22:50:14 +01:00
10ed0c633b add hydra () 2024-02-01 05:24:04 +01:00
6d54aec60c add dynamic system generation () 2024-01-30 12:37:13 -05:00
664fa4709b fix gitea max_upload_size () 2024-01-28 16:48:09 +01:00
32de223070 Add ARC/FFMPEG requirements ()
Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
2024-01-27 12:00:32 -05:00
66be96ebff add desktopians () 2024-01-27 16:05:35 +01:00
e4f39f57ee remove wordpress () 2024-01-26 23:13:06 +01:00
2305974694 removing unnecessary code ()
* removing unnecessary code

* replaced some of the code

* removed endlessh-go from jeeves-jr
2024-01-16 18:49:03 -05:00
5d2f5934f8 Add pre-commit-update hook, make nixpkgs-fmt check only ()
* Add pre-commit-update hook, make nixpkgs-fmt check only

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Pin pre-commit-update at commit ID of latest version

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

---------

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
2024-01-15 13:18:56 -05:00
5af2c60bdb Securing jeevesjr ()
* secured openssh

* removing MaxSessions

* setup endlessh

* set openssh logging to VERBOSE

* fix

* got MaxSessions working

* set ClientAliveCountMax

* setup usbguard

* updated central openssh settings

* added sysstat service

* add auditd

* testing lynis setting

* fixed typo

* setup login.defs

* removed login.defs

* updated ChallengeResponseAuthentication to no

* made LogLevel a Default

Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com>

---------

Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com>
2024-01-13 22:20:01 -05:00
fb4039022d Mail secrets update ()
* secrets update

* mail server update
2024-01-13 18:19:32 +01:00
4a228aca5b Firewall change ()
* secrets update

* change firewall
2024-01-13 16:49:09 +01:00
9ba3d31e09 secrets update () 2024-01-13 16:17:13 +01:00
26112d1f22 remove gitea http () 2024-01-10 22:52:39 +01:00
fb3128b5ae Disable podman, fix topgrade config ()
Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
2024-01-09 11:11:00 -05:00
307e6a48ab add networking pingLimit () 2024-01-09 17:09:29 +01:00
d7f026b05b add endlessh-go autometic setup () 2024-01-09 16:21:22 +01:00
a05be0f2d3 Fix topgrade config :( ()
There should be a top-level MISC for topgrade.toml.

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
2024-01-08 22:54:43 -05:00
962baa4e64 Disable system,nix updates from Topgrade ()
Topgrade is upgrading from local instead of remote, and throws an error
when it tries to upgrade nix. Disabling these checks.

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
2024-01-08 19:11:33 -05:00
93ce3a6de3 changed ssh port 2024-01-08 19:16:20 +01:00
26c79c3b75 Security changes ()
* mail client setup

* change ssh port
2024-01-08 17:59:25 +01:00
26917d53cd mail client setup () 2024-01-08 16:24:53 +01:00
6e239a8e90 creating groups for sops.yaml ()
* creating groups for sops.yaml
I used yaml anchors
https://en.wikipedia.org/wiki/YAML#Advanced_components
I also ran the redhat YAML formater

* fixed typo
2024-01-07 16:57:42 -05:00
4abf1a806e Adding zeroteir to jeeves jr ()
* added test.* to .gitignore

* adding zerotier to jeeves-jr

* added comments to .gitignore
2024-01-07 16:28:09 -05:00
9c58bc47c4 Adding packages ()
* adding-packages

* removed TODO

* removed usbutils and     speedtest-cli
2024-01-06 17:08:43 -05:00
a06e3d7347 change ldap search user pass () 2024-01-04 21:07:38 +01:00
fb2f9253b6 update secrets ()
Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
2024-01-03 18:05:53 -05:00
deb454af8d quckfix () 2024-01-03 23:02:36 +01:00
ad29c68aea Move gitea ()
* formatting

* update

* add mailserver

* flake update

* update ldap password

* update ldap password

* update ldap password

* recreate database
2024-01-03 22:17:22 +01:00
ec7a51f254 Add smartmontools to global program list, alice config changes ()
* Update ssh keys, home-manager packages

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Add smartmontools to the global program list

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Fix formatting

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

---------

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
2024-01-03 22:08:16 +01:00
ef51f72e8c Feature email server ()
* formatting

* update

* add mailserver

* flake update

* update ldap password

* update ldap password

* update ldap password
2024-01-03 13:42:14 +01:00
3963808c78 Feature email server ()
* formatting

* update

* add mailserver

* flake update

* update ldap password

* update ldap password
2024-01-03 13:40:13 +01:00
73dd4211dd Feature email server ()
* formatting

* update

* add mailserver

* flake update

* update ldap password
2024-01-03 13:36:43 +01:00
502902c833 Feature email server ()
* formatting

* update

* add mailserver

* flake update

* update ldap password
2024-01-02 17:07:32 +01:00
db67a9d7e5 Feature email server ()
* formatting

* update

* add mailserver

* flake update
2024-01-02 16:30:08 +01:00
477b4cf466 Add autopull service for testing & pre-commit-hooks ()
* configure programs for photon

* sops fix

* Add flake-update-service for testing

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Add sops config

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* add photon password

* Fix user password

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* actually fix user config

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* change password for user dennis

* removed user password

* fixed yaml secrets

* yaml is silly, fix my yamls pls

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* quickfix

* Enforce systemdboot on palatine-hill

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* reconfigure photon

* Fix ZFS config on palatine-hill

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Fix systemd-boot on palatine-hill

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* sops update-keys

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Fix botched merge

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Add custom ssh command

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Fix option name, add package dependency

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Fix option name, add dependency

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* ssh-key path to str

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Fix git command

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Set up nixpkgs.fmt

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Allow autopull to trigger a rebuild

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Revert triggerRebuild on palatine-hill, add clarifying comment

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Attempt pre-commit hooks

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Increase pull frequency

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Fix duplicate flake-utils url

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Add fmt hook

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* add nix-flake-check hook

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Remove unnecessary flake-utils import by name

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Trying to setup inputs for nix-pre-commit

Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com>

* Fixing input with flake inputs

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* make autopull service default and fix flake check hook

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Remove pre-commit-config.yml from gitignore

that decision seems to be something from one of my previous attempts at
this. Given that the config is needed for this to work it only makes
sense to have it.

/.pre-commit-config.yaml
/.pre-commit-config.yaml

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Rollback previous commit. yml file is a softlink

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

---------

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
Co-authored-by: Dennis Wuitz <dennish@wuitz.de>
Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com>
2024-01-01 12:41:32 -05:00
d5bd40ed67 gitea ldap connection ()
* gitea ldap connection

* name change
2024-01-01 16:38:17 +01:00
67bc474739 Fix found for docker haproxy. Removing haproxy from nix config ()
Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
2024-01-01 01:19:19 -05:00