about summary refs log tree commit diff stats
path: root/hosts/by-name (follow)
Commit message (Collapse)AuthorAge
* modules/stalwart-mail: Add admin account password stalwartBenedikt Peetz2025-04-23
| | | | This is required to start creating accounts via the webinterface.
* hosts/server2: Use the internal stalwart directoryBenedikt Peetz2025-04-23
|
* hosts/server2: Setup sharkeyBenedikt Peetz2025-04-22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Server2 is currently not so much under load, as such it seems better to split the load. # server2 ## Virtual Hosts etebase.vhack.eu: dav.vhack.eu gallery.s-schoeffel.de git.foss-syndicate.org invidious-router.vhack.eu: video.fosswelt.org invidious-router.sils.li issues.foss-syndicate.org libreddit.vhack.eu nextcloud.vhack.eu # <-- This redlib.vhack.eu sharkey.vhack.eu # <-- And this are the “only” really heavy services here. source.foss-syndicate.org source.vhack.eu ## Open ports TCP 22: ssh TCP 25: mail-smtp TCP 53: dns TCP 80: http TCP 443: https TCP 465: mail-smtp-tls TCP 993: mail-imap-tls TCP 995: mail-pop3-tls TCP 10222: taskchampion-sync UDP 53: dns # server3 ## Virtual Hosts b-peetz.de mail.vhack.eu mastodon.vhack.eu matrix.vhack.eu miniflux.foss-syndicate.org: rss.foss-syndicate.org rss.vhack.eu miniflux.vhack.eu openpgpkey.b-peetz.de openpgpkey.s-schoeffel.de openpgpkey.sils.li openpgpkey.vhack.eu peertube.vhack.eu trinitrix.vhack.eu vhack.eu ## Open ports TCP 22: ssh TCP 25: <port is 'mail-smtp' but service 'vhack.mail' is not enabled.> TCP 53: dns TCP 80: http TCP 443: https TCP 465: <port is 'mail-smtp-tls' but service 'vhack.mail' is not enabled.> TCP 993: <port is 'mail-imap-tls' but service 'vhack.mail' is not enabled.> TCP 4190: ??? TCP 64738: ??? UDP 53: dns UDP 64738: ???
* hosts/server2: Enable taskwarrior-syncBenedikt Peetz2025-04-11
|
* nextcloud: init on server2Silas Schöffel2025-04-07
|
* hosts/server2: FormatBenedikt Peetz2025-04-01
|
* {hosts/server3,zones/vhack.eu}: Activate stalwart-mail on server3 for soisphaBenedikt Peetz2025-04-01
|
* zones/vhack.eu: Make it obvious, that the serial number must be changedBenedikt Peetz2025-04-01
| | | | | | | The comment alone would probably suffice, but having a convenient function that makes it obvious *what* part of the serial number you are actually supposed to change seems quite useful, when trying to reduce the possibilities of forgetting it.
* {hosts/server2,modules/mail}: Re-active the old mail serverBenedikt Peetz2025-03-30
| | | | | | | | | | Running two mail-servers on one system is a total /mess/. Both try to bind to the same ports, the old stack consists of **5** different systemd services whilst stalwart-mail's systemd service simply refuses to stop, etc. I'm confident that it can work, but it would probably be best to deploy the new mail-server on server3.
* hosts/server2: Use the correct path to the DKIM keysBenedikt Peetz2025-03-29
|
* hosts/server2: Setup stalwalt-mail on mail.vhack.eu for soispha@vhack.euBenedikt Peetz2025-03-29
| | | | | | | | We need to actually test stalwart out in the real world, because the test can never actually capture all the weird things people do with their mail setup. Refs: #6ea08aa
* zones: Provide a single entry point for all zonesBenedikt Peetz2025-03-11
|
* {hosts,zones}: Init dns zone for vhack.euBenedikt Peetz2025-03-10
|
* hosts/server2: Use new back configBenedikt Peetz2025-03-09
|
* fix(hosts/server2/redirects): Also recognize the old source.vhack.eu redirectBenedikt Peetz2025-02-09
|
* hosts/server3/websites: Host nix-sync on server3Benedikt Peetz2025-02-07
|
* hosts/server2/websites: Correct extraSettings for wkdBenedikt Peetz2025-02-04
| | | | | The `/.well-known/openpgpkey/hu/` path does not exist. Thus remove the erroneous `hu/` at the end.
* hosts/server2/websites: Use the new repository urlsBenedikt Peetz2025-02-04
| | | | | | This changes: https://codeberg.org/bpeetz/b-peetz.de.git -> https://git.foss-syndicate.org/bpeetz/b-peetz.de.git https://codeberg.org/vhack.eu/gpg_wkd.git -> https://git.foss-syndicate.org/vhack.eu/pgp-wkd.git
* modules/nix-sync: Actually enableBenedikt Peetz2025-02-04
| | | | | This includes the obvious changes, ensuring that it follows our current best-practices.
* refactor(hosts/{server2,server3}): Move the backup secrets in a directoryBenedikt Peetz2025-01-29
|
* feat(matrix): make secrets configurableSilas Schöffel2025-01-25
|
* feat(mastodon): make secrets configurableSilas Schöffel2025-01-25
|
* feat(miniflux): make secrets configurableSilas Schöffel2025-01-25
|
* feat(peertube): make secrets configurableSilas Schöffel2025-01-25
|
* feat(hosts)!: remove server1Silas Schöffel2025-01-25
| | | | This host is unused and therefore unneeded
* feat(etesync): migrate to server2Silas Schöffel2025-01-25
|
* feat(redlib): move to server2Silas Schöffel2025-01-25
|
* feat(modules/mail): init on server2Silas Schöffel2025-01-25
|
* feat(modules/backup): initSilas Schöffel2025-01-21
|
* fix(hosts/server1): remove migrated servicesSilas Schöffel2025-01-21
|
* feat(modules/matrix): init on server3Silas Schöffel2025-01-21
|
* feat(modules/mastodon): init on server3Silas Schöffel2025-01-21
|
* fix(peertube): migrate to server3Silas Schöffel2025-01-21
|
* feat(modules/murmur): initSilas Schöffel2025-01-20
|
* feat(modules/nixconfig): initSilas Schöffel2025-01-20
|
* feat(modules/invidious-router): initSilas Schöffel2025-01-20
|
* feat(modules/gallery): initSilas Schöffel2025-01-20
|
* feat(miniflux): init module, host on server2Silas Schöffel2025-01-20
|
* feat(hosts/server3): initSilas Schöffel2025-01-04
|
* fix(server2/networking): correct ipv6 addressSilas Schöffel2024-12-27
|
* fix(hosts/server2): Use correct path to `vhack.eu/nixos-server` repoBenedikt Peetz2024-12-25
|
* feat(modules/nginx): Modularise the redirects and migrate them to server2Benedikt Peetz2024-12-25
| | | | | | The redirects always have an implicit dependency on the DNS config of the running host. As such, simply stating them for all host is never a possibility and setting them per host the only viable option.
* refactor(hosts): Use a `by-name` structure and construct all host depended ↵Benedikt Peetz2024-12-25
values This allows us to outsource the host-handling from the `flake.nix` file.
generated by cgit-pink 1.4.1 (git 2.36.1) at 2025-11-04 04:26:56 +0000