about summary refs log tree commit diff stats
path: root/modules (follow)
Commit message (Collapse)AuthorAge
* {modules/system-info,scripts/system_info}: Init HEAD mainBenedikt Peetz3 days
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This collects relevant information for each host in an informative markdown file. An example (generated via `./scripts/system_info.sh`): # server2 ## Virtual Hosts etebase.vhack.eu: dav.vhack.eu gallery.s-schoeffel.de git.foss-syndicate.org invidious-router.vhack.eu: video.fosswelt.org invidious-router.sils.li issues.foss-syndicate.org libreddit.vhack.eu redlib.vhack.eu source.foss-syndicate.org source.vhack.eu ## Open ports TCP 22: ssh TCP 25: mail-smtp TCP 80: http TCP 443: https TCP 465: mail-smtp-tls TCP 993: mail-imap-tls TCP 995: mail-pop3-tls # server3 ## Virtual Hosts b-peetz.de mastodon.vhack.eu matrix.vhack.eu miniflux.foss-syndicate.org: rss.foss-syndicate.org rss.vhack.eu miniflux.vhack.eu openpgpkey.b-peetz.de openpgpkey.s-schoeffel.de openpgpkey.sils.li openpgpkey.vhack.eu peertube.vhack.eu trinitrix.vhack.eu vhack.eu ## Open ports TCP 22: ssh TCP 80: http TCP 443: https TCP 64738: ??? UDP 64738: ???
* {modules,tests}/back: Update to deal with newest backBenedikt Peetz3 days
|
* modules/stalwart-mail: Remove now unneeded `allowInsecureSmtp` optionBenedikt Peetz3 days
|
* modules/stalwart-mail-free: Remove all `security` dependent checks if it's nullBenedikt Peetz3 days
|
* modules/stalwart-mail: Capitalize default mailboxesBenedikt Peetz3 days
| | | | This seems to be somewhat of a standart.
* modules/stalwart-mail: Also listen on :25 without SSL but with STARTTLSBenedikt Peetz3 days
| | | | This is important, so that other MTA can send us mail.
* modules/stalwart-mail: Set a default value for `principals`Benedikt Peetz3 days
|
* modules/stalwart-mail: Include full systemd service and set correct dependenciesBenedikt Peetz3 days
| | | | | This also starts `nginx` so that we can complete http-01 acme challenges.
* modules/stalwart-mail: Select DKIM keys per-domainBenedikt Peetz3 days
|
* modules/stalwart-mail: Avoid hardcoding `vhack.eu` email addressBenedikt Peetz3 days
|
* modules/dns: Add service dependenciesBenedikt Peetz3 days
|
* modules/dns: Set a reasonable verbosity levelBenedikt Peetz3 days
| | | | The default is way too quiet.
* modules/dns: Provide the option to open the required firewall portsBenedikt Peetz3 days
|
* modules/dns: Remove `lib.debug` callsBenedikt Peetz3 days
|
* modules/dns/dns/types/records/PTR.nix: Special case for reverse IP lookupsBenedikt Peetz3 days
| | | | This makes implementing a DNS server in tests easier.
* modules/dns/dns/types/records/MTA-STS.nix: InitBenedikt Peetz3 days
|
* modules/dns/dns/types/records/DMARC.nix: Reference the correct RFCBenedikt Peetz3 days
| | | | | RFC 7208 is titled “Sender Policy Framework (SPF) for Authorizing Use of Domains in Email, Version 1”, whilst RFC 7489 is titled “Domain-based Message Authentication, Reporting, and Conformance (DMARC)”
* modules/stalwart-mail: Move the package to the `pkgs` subtreeBenedikt Peetz3 days
|
* {modules,tests}/dns: InitBenedikt Peetz3 days
| | | | Most of the dns module was taken from: <https://github.com/nix-community/dns.nix>
* module/stalwart-mail: Init initial versionBenedikt Peetz3 days
|
* modules/redlib: Use `nginx`'s module redirect mechanismBenedikt Peetz2025-02-09
|
* modules/nginx: Keep the `$request_uri` when redirectingBenedikt Peetz2025-02-09
|
* modules/nix-sync: Correctly merge `extraSettings` and the needed vhost configBenedikt Peetz2025-02-07
|
* modules/nix-sync: Actually enableBenedikt Peetz2025-02-04
| | | | | This includes the obvious changes, ensuring that it follows our current best-practices.
* refactor(modules/default.nix): Remove now unneeded arguments to `mkByName`Benedikt Peetz2025-02-03
|
* feat(matrix): make secrets configurableSilas Schöffel2025-01-25
|
* feat(mastodon): make secrets configurableSilas Schöffel2025-01-25
|
* feat(miniflux): make secrets configurableSilas Schöffel2025-01-25
|
* feat(peertube): make secrets configurableSilas Schöffel2025-01-25
|
* feat(etesync): migrate to server2Silas Schöffel2025-01-25
|
* fix(modules/etebase): migrate to new vhack.persist optionSilas Schöffel2025-01-25
|
* fix(module/peertube): update emailhostSilas Schöffel2025-01-25
|
* fix(modules/mastodon): update emailhostSilas Schöffel2025-01-25
|
* feat(modules/mail): init on server2Silas Schöffel2025-01-25
|
* feat(modules/backup): initSilas Schöffel2025-01-21
|
* fix(modules/peertube): correct email setupSilas Schöffel2025-01-21
|
* feat(modules/matrix): init on server3Silas Schöffel2025-01-21
|
* feat(modules/mastodon): init on server3Silas Schöffel2025-01-21
|
* fix(peertube): migrate to server3Silas Schöffel2025-01-21
|
* feat(modules/murmur): initSilas Schöffel2025-01-20
|
* feat(modules/nixconfig): initSilas Schöffel2025-01-20
|
* feat(modules/invidious-router): initSilas Schöffel2025-01-20
|
* feat(modules/gallery): initSilas Schöffel2025-01-20
|
* feat(miniflux): init module, host on server2Silas Schöffel2025-01-20
|
* feat(treewide): rekey secrets to allow multiple host setupSilas Schöffel2025-01-20
|
* fix(modules/back): add root_url to back configBenedikt Peetz2024-12-28
| | | | Co-authored-by: Silas Schöffel <sils@sils.li>
* fix(modules/back): Update to the new config file inputBenedikt Peetz2024-12-26
|
* fix(modules/back): Remove the `gitPath` from the service nameBenedikt Peetz2024-12-25
| | | | With it, the service names become nearly illegible.
* feat(modules/nginx): Modularise the redirects and migrate them to server2Benedikt Peetz2024-12-25
| | | | | | The redirects always have an implicit dependency on the DNS config of the running host. As such, simply stating them for all host is never a possibility and setting them per host the only viable option.
* fix(modules/nix-sync/internal): Fix syntax errors in shell-scriptBenedikt Peetz2024-12-25
|
generated by cgit-pink 1.4.1 (git 2.36.1) at 2025-03-12 22:35:19 +0000