rebmit/nixos-config
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity
111 commits 1 branch 0 tags 6.6 MiB
Commit graph

111 commits

This branch
This branch
All branches
Author SHA1 Message Date
Lu Wang f7d0658059
inputs: bump nix-exprs 2024-12-30 04:23:49 +08:00
Lu Wang a335722afd
services/nscd: use tmpfiles for proper lifetime guarantees 2024-12-30 02:46:20 +08:00
Lu Wang 0c28d393fa
networking/netns: rename default netns to init netns 2024-12-29 00:45:40 +08:00
Lu Wang 886f8c4031
networking/netns: set NSNCD_SOCKET_PATH for nsncd 2024-12-28 15:38:21 +08:00
Lu Wang e54ad53ab8
treewide: avoid unnecessary permission management with preservation 2024-12-27 16:46:04 +08:00
Lu Wang 4de514f6b4
treewide: refine the granularity of preservation 2024-12-27 02:39:40 +08:00
Lu Wang f28c4d7d7c
treewide: drop impermanence in favor of preservation 2024-12-27 02:38:57 +08:00
Lu Wang 6c422a41c6
services/logrotate: init for custom state path 2024-12-27 02:38:57 +08:00
Lu Wang fa9a4b9ae0
services/nscd: preserve /run/nscd for bind mounts and hardening nsncd 2024-12-25 18:30:53 +08:00
Lu Wang b0a5257254
treewide: raise stateVersion to 24.11 2024-12-24 22:14:33 +08:00
Lu Wang 49521a3df5
treewide: dedup global persistence configuration 2024-12-24 21:55:34 +08:00
Lu Wang bf02e988b3
treewide: dedup btrfs auto scrub configuration 2024-12-24 21:41:45 +08:00
Lu Wang fd97c33c56
treewide: dedup disko configuration 2024-12-24 21:17:36 +08:00
Lu Wang 71ed8b5ebb
services/prometheus: collect ping metrics in enthalpy network 2024-12-22 23:41:00 +08:00
Lu Wang ac082d8fec
services/prometheus: collect caddy metrics 2024-12-22 22:20:43 +08:00
Lu Wang 4d72d754ed
services/prometheus: setup alertmanager with ntfy 2024-12-22 17:21:03 +08:00
Lu Wang 9a5198aabd
services/prometheus: add blackbox exporter for dns_soa and http check 2024-12-22 17:21:01 +08:00
Lu Wang 84f470a4bd
infra: setup bulk redirects 2024-12-22 16:10:16 +08:00
Lu Wang d201469424
infra: reverse proxy prometheus with cloudflare 2024-12-22 15:11:34 +08:00
Lu Wang 20b9063f37
infra: init authenticated origin pulls for ntfy 2024-12-22 02:49:43 +08:00
Lu Wang b364c8d186
hosts/suwako-vie0: disable ntfy 2024-12-22 00:23:46 +08:00
Lu Wang 5089f26f4d
infra: refresh state 2024-12-21 22:32:43 +08:00
Lu Wang 37af72eb5b
services/prometheus: add rules 2024-12-21 22:04:05 +08:00
Lu Wang c6935ca7f7
inputs: bump 2024-12-21 21:36:01 +08:00
Lu Wang 68d8d0a13c
services/prometheus: init server 2024-12-21 20:42:30 +08:00
Lu Wang a06f67bf23
hosts: enable prometheus metrics 2024-12-21 20:23:35 +08:00
Lu Wang 8bb43c697c
services/prometheus: init metrics 2024-12-21 20:22:42 +08:00
Lu Wang 92eb5b1ac4
networking/ports: update enthalpy-ipsec port to 14000 2024-12-21 13:36:14 +08:00
Lu Wang 0e45380338
services/enthalpy: raise retransmission timeout 2024-12-21 01:42:13 +08:00
Lu Wang bc44eb8424
services/mail: hardening postfix and dovecot 2024-12-20 21:41:02 +08:00
Lu Wang 22700c13c7
system/boot: increase maximum buffer size 
References: https://github.com/quic-go/quic-go/wiki/UDP-Buffer-Sizes
 2024-12-20 16:45:17 +08:00
Lu Wang a75d3f9ea8
zones/rebmit.moe: add srv records for mail service 
References: https://www.rfc-editor.org/rfc/rfc6186
 2024-12-19 23:38:45 +08:00
Lu Wang 4177868f1c
services/mail: init postfix, dovecot and rspamd 2024-12-19 22:12:03 +08:00
Lu Wang ba323843c8
services/caddy: use caddy-l4 2024-12-19 15:14:46 +08:00
Lu Wang 8474837509
services/matrix: backup synapse media repo for now 2024-12-19 14:00:02 +08:00
Lu Wang 624323f07a
services/matrix: stop serving element-web 2024-12-19 00:52:12 +08:00
Lu Wang 7c19c23481
treewide: drop reisen-lax0 2024-12-19 00:13:47 +08:00
Lu Wang 742595fa65
services/matrix: init mautrix-telegram 2024-12-19 00:09:09 +08:00
Lu Wang 1e71d7fc3e
services/matrix: drop synapse-admin 2024-12-18 20:35:38 +08:00
Lu Wang 97136a9663
services/matrix: init heisenbridge 2024-12-18 20:17:57 +08:00
Lu Wang f3ea502179
services/matrix-synapse: init 2024-12-18 16:36:47 +08:00
Lu Wang 68961dc077
hosts/reisen-lax0: disable matrix again 2024-12-18 02:02:08 +08:00
Lu Wang f8de244771
Revert "hosts/reisen-lax0: disable matrix" 
This reverts commit c8ed51df7a.
 2024-12-18 01:22:01 +08:00
Lu Wang d1eda7df1b
services/well-known: init 2024-12-18 01:18:04 +08:00
Lu Wang 5b884c320a
infra/passwords: rename tsig secret name 2024-12-17 23:36:44 +08:00
Lu Wang aaaa0158fa
hosts/reisen-fra0: finally disable knot 2024-12-17 23:02:47 +08:00
Lu Wang fa81d0bcb8
zones: drop reisen-fra0 from secondary dns in favor of suwako-vie0 2024-12-17 22:46:17 +08:00
Lu Wang 6dd72d20c7
zones: move primary dns to reisen-sea0 2024-12-17 22:32:23 +08:00
Lu Wang ad70874e8c
hosts/reisen-sin0: init 2024-12-17 22:17:16 +08:00
Lu Wang 9ac31f00fa
services/miniflux: init 2024-12-17 16:32:59 +08:00