ahuston-0/nix-dotfiles
1
0
Fork 0
Code Issues Pull Requests 4 Actions Packages Projects Releases Wiki Activity
212 Commits 12 Branches 0 Tags
Commit Graph

212 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Dennis
7e1da03f8c changed config (#81) 2024-02-07 00:20:06 +01:00
Alice Huston
5d8ad216a4 fix boot partition (#80) 2024-02-06 18:06:56 -05:00
Dennis
52c421a45f fix autopull (#79) 
* fix autopull

* add deadnix

* fix git
 2024-02-06 23:58:33 +01:00
Dennis
3b70b4ea60 remove git-lfs from palentine-hill (#78) 
* remove git-lfs from palentine-hill

* fix secrets
 2024-02-06 22:46:13 +01:00
Dennis
d020ef2189 Created fabius user (raspberry pi 5). Changed flake.nix. (#76) 
* Created fabius user (raspberry pi 5). Changed flake.nix.

* add custom iso type

* change to crossPkgs

* add crossCompile aarch64
 2024-02-06 20:35:02 +01:00
Dennis
4c1e86907a dennis the formatter (#75) 
* dennis the formatter

* changed comment

* fixup
 2024-02-05 22:45:43 +01:00
Dennis
47a65a151c fix photon ldap config (#74) 
* fix photon ldap config

* secrets update
 2024-02-05 18:22:52 +01:00
Dennis
59a4293b28 Fix mailserver3 (#72) 
* updated passwd

* Disable mutable-users

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* fix password config

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* change secrets

* add workaround

---------

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
Co-authored-by: Richie Cahill <richie@tmmworkshop.com>
Co-authored-by: ahuston-0 <aliceghuston@gmail.com>
 2024-02-03 23:52:43 +01:00
Alice Huston
4e6bdd2ff5 Disable mutable-users, fix passwords globally (#71) 
* updated passwd

* Disable mutable-users

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* fix password config

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* change secrets

---------

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
Co-authored-by: Richie Cahill <richie@tmmworkshop.com>
Co-authored-by: Dennis Wuitz <dennish@wuitz.de>
 2024-02-03 23:24:45 +01:00
Dennis
66fb506e26 remove sieve script# (#62) 2024-02-03 16:00:35 -05:00
Dennis
f746da7c4c fix dovecot2 sieve scripts (#61) 
* fix dovecot2 sieve scripts

* add pathfix
 2024-02-03 20:10:24 +01:00
Dennis
726c3b208e add dennis local systems (#60) 2024-02-02 22:54:36 +01:00
Dennis
6afd73c990 change flake input (#59) 2024-02-02 01:13:24 -05:00
Dennis
bca76e5325 fix function (#58) 2024-02-02 06:59:47 +01:00
Dennis
320e2225ce change allowed-uris (#57) 2024-02-02 00:46:47 -05:00
Dennis
9f863eac6e add allowed-uris (#56) 2024-02-02 00:31:40 -05:00
Alice Huston
2b917b8332 flip order of caches :) (#53) 
Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
 2024-02-02 00:17:41 -05:00
Dennis
c27b273e17 fix hydra build packages (#55) 
* fix hydra build packages

* change build input
 2024-02-02 06:12:49 +01:00
Dennis
b3888adddb remove unlocked flakes (#54) 2024-02-02 05:20:43 +01:00
Dennis
4c7ba8e68e changes to pg (#52) 2024-02-01 22:25:10 -05:00
Dennis
179c78ccc7 add public key (#51) 2024-02-01 23:05:46 +01:00
Alice Huston
241c66f5ec enable external SMTP for hydra (#49) 
* external SMTP for hydra

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* nix-serve sops

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* add binary cache

* add hydra jobs

* cleanup (#50)

* finish up cleanup branch merge

* switched back to nixpkgs-fmt

* add nixpkgs-fmt to hydrajobs.build

---------

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
Co-authored-by: Dennis Wuitz <dennish@wuitz.de>
Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com>
 2024-02-01 22:50:14 +01:00
Dennis
10ed0c633b add hydra (#48) 2024-02-01 05:24:04 +01:00
Dennis
6d54aec60c add dynamic system generation (#46) 2024-01-30 12:37:13 -05:00
Dennis
664fa4709b fix gitea max_upload_size (#45) 2024-01-28 16:48:09 +01:00
Alice Huston
32de223070 Add ARC/FFMPEG requirements (#44) 
Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
 2024-01-27 12:00:32 -05:00
Dennis
66be96ebff add desktopians (#43) 2024-01-27 16:05:35 +01:00
Dennis
e4f39f57ee remove wordpress (#42) 2024-01-26 23:13:06 +01:00
Richie Cahill
2305974694 removing unnecessary code (#41) 
* removing unnecessary code

* replaced some of the code

* removed endlessh-go from jeeves-jr
 2024-01-16 18:49:03 -05:00
Alice Huston
5d2f5934f8 Add pre-commit-update hook, make nixpkgs-fmt check only (#40) 
* Add pre-commit-update hook, make nixpkgs-fmt check only

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

* Pin pre-commit-update at commit ID of latest version

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>

---------

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
 2024-01-15 13:18:56 -05:00
Richie Cahill
5af2c60bdb Securing jeevesjr (#39) 
* secured openssh

* removing MaxSessions

* setup endlessh

* set openssh logging to VERBOSE

* fix

* got MaxSessions working

* set ClientAliveCountMax

* setup usbguard

* updated central openssh settings

* added sysstat service

* add auditd

* testing lynis setting

* fixed typo

* setup login.defs

* removed login.defs

* updated ChallengeResponseAuthentication to no

* made LogLevel a Default

Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com>

---------

Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com>
 2024-01-13 22:20:01 -05:00
Dennis
fb4039022d Mail secrets update (#38) 
* secrets update

* mail server update
 2024-01-13 18:19:32 +01:00
Dennis
4a228aca5b Firewall change (#37) 
* secrets update

* change firewall
 2024-01-13 16:49:09 +01:00
Dennis
9ba3d31e09 secrets update (#36) 2024-01-13 16:17:13 +01:00
Dennis
26112d1f22 remove gitea http (#35) 2024-01-10 22:52:39 +01:00
Alice Huston
fb3128b5ae Disable podman, fix topgrade config (#34) 
Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
 2024-01-09 11:11:00 -05:00
Dennis
307e6a48ab add networking pingLimit (#33) 2024-01-09 17:09:29 +01:00
Dennis
d7f026b05b add endlessh-go autometic setup (#32) 2024-01-09 16:21:22 +01:00
Alice Huston
a05be0f2d3 Fix topgrade config :( (#31) 
There should be a top-level MISC for topgrade.toml.

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
 2024-01-08 22:54:43 -05:00
Alice Huston
962baa4e64 Disable system,nix updates from Topgrade (#29) 
Topgrade is upgrading from local instead of remote, and throws an error
when it tries to upgrade nix. Disabling these checks.

Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
 2024-01-08 19:11:33 -05:00
Dennis Wuitz
93ce3a6de3 changed ssh port 2024-01-08 19:16:20 +01:00
Dennis
26c79c3b75 Security changes (#28) 
* mail client setup

* change ssh port
 2024-01-08 17:59:25 +01:00
Dennis
26917d53cd mail client setup (#27) 2024-01-08 16:24:53 +01:00
Richie Cahill
6e239a8e90 creating groups for sops.yaml (#25) 
* creating groups for sops.yaml
I used yaml anchors
https://en.wikipedia.org/wiki/YAML#Advanced_components
I also ran the redhat YAML formater

* fixed typo
 2024-01-07 16:57:42 -05:00
Richie Cahill
4abf1a806e Adding zeroteir to jeeves jr (#26) 
* added test.* to .gitignore

* adding zerotier to jeeves-jr

* added comments to .gitignore
 2024-01-07 16:28:09 -05:00
Richie Cahill
9c58bc47c4 Adding packages (#24) 
* adding-packages

* removed TODO

* removed usbutils and     speedtest-cli
 2024-01-06 17:08:43 -05:00
Dennis
a06e3d7347 change ldap search user pass (#23) 2024-01-04 21:07:38 +01:00
Alice Huston
fb2f9253b6 update secrets (#22) 
Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
 2024-01-03 18:05:53 -05:00
Dennis
deb454af8d quckfix (#21) 2024-01-03 23:02:36 +01:00
Dennis
ad29c68aea Move gitea (#20) 
* formatting

* update

* add mailserver

* flake update

* update ldap password

* update ldap password

* update ldap password

* recreate database
 2024-01-03 22:17:22 +01:00