| Commit message (Collapse) | Author | ||
|---|---|---|---|
| 2 days | modules/system-info: Provide a nice warning message, if a port is not yet ↵ | Benedikt Peetz | |
| registered | |||
| 2 days | modules/matrix: Use the typed NixOS for user and db creation | Benedikt Peetz | |
| Note, that I have no way to test if this is actually going to work (no tests for matrix). But, I assume that it is not going to pose problems, as we are not migrating the db and these options won't remove state. | |||
| 2 days | modules/matrix: Group `vhack` attr keys together | Benedikt Peetz | |
| 2 days | modules/mastodon: Group `vhack` keys together | Benedikt Peetz | |
| 2 days | flake.nix: Remove gnutls | Benedikt Peetz | |
| We are not generating taskserver certificates anymore. | |||
| 3 days | modules/taskchampion: Make its data directory owned by taskchampion user | Benedikt Peetz | |
| 3 days | zones/vhack.eu: Actually set the `sharkey.vhack.eu` subdomain | Benedikt Peetz | |
| 4 days | modules/stalwart-mail: Add recommended proxy settings for stalwarts-proxy | Benedikt Peetz | |
| This includes setting things, like setting the `X-Forwarded-For` header. | |||
| 4 days | modules/constants: Also add a user to each group, so that duplicated gids ↵ | Benedikt Peetz | |
| are avoided | |||
| 4 days | tests/email-http: Use the factored out DNS server | Benedikt Peetz | |
| 4 days | hosts/server2: Use the internal stalwart directory | Benedikt Peetz | |
| 4 days | tests/email-http: Test the http self-service availability | Benedikt Peetz | |
| 4 days | modules/stalwart-mail: Don't restart the systemd service | Benedikt Peetz | |
| Restarting might be useful, if stalwart is actually _running_ in prod, but currently the constant restart makes it very difficult to debug (or even stop) the service. | |||
| 4 days | modules/stalwart-mail: Enable the http self-service interface | Benedikt Peetz | |
| 4 days | modules/nginx: Set the "acme" group as group of the "acme" user | Benedikt Peetz | |
| For some reason, this is not done already. Setting this prevents an assertion being thrown, that the "acme" user does not have a group. | |||
| 4 days | modules/stalwart-mail: Allow both nginx and stalwart-mail access to the cert | Benedikt Peetz | |
| This is needed for the http challenge (and for the potential to use nginx as a proxy in the future.) | |||
| 4 days | modules/stalwart-mail: Explicitly list out valid password hashes | Benedikt Peetz | |
| If a password hash does not match stalwart's know ones, it will just treat it as plaintext. This is obviously very bad, and should be avoided. | |||
 |
index : nixos-server | |
| nixos-config for vhack.eu servers https://vhack.eu | vhack.eu |
| about summary refs log tree commit diff stats |