qenya/nixfiles
1
0
Fork 0
Code Issues 5 Pull requests Actions Activity
267 commits 4 branches 0 tags 2.2 MiB
Commit graph

267 commits

This branch
This branch
All branches
Author SHA1 Message Date
Katherina Walshe-Grey 8d2d55e4c4 openssh: disable fail2ban 
We've always had password authentication disabled, so it's not really
doing much except periodically locking us out of our own servers when we
misconfigure something
 2024-09-24 18:41:17 +01:00
Katherina Walshe-Grey 3195af88ef nginx: improve hardening, tweak headers 
Still not quite where I want it to be but it's better
 2024-09-24 05:31:17 +01:00
Katherina Walshe-Grey 26900a5973 steam: lightly refactor 2024-09-24 05:29:21 +01:00
Katherina Walshe-Grey 2951f948b4 kilgharrah: set up zfs datasets using randomcat's module 2024-09-24 04:49:25 +01:00
Katherina Walshe-Grey 7e1f688699 flake.lock: Update 
Flake lock file updates:

• Updated input 'home-manager':
    'github:nix-community/home-manager/2ab00f89dd3ecf8012f5090e6d7ca1a7ea30f594' (2024-09-17)
  → 'github:nix-community/home-manager/2f23fa308a7c067e52dfcc30a0758f47043ec176' (2024-09-22)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/086b448a5d54fd117f4dc2dee55c9f0ff461bdc1' (2024-09-16)
  → 'github:NixOS/nixpkgs/23cbb250f3bf4f516a2d0bf03c51a30900848075' (2024-09-22)
• Updated input 'nixpkgsSmall':
    'github:NixOS/nixpkgs/a51a2cef87fc37c7e31d3a5345bc493e5f7a5f6e' (2024-09-17)
  → 'github:NixOS/nixpkgs/7ca0f93c530406c1610defff0b9bf643333cf992' (2024-09-23)
• Updated input 'nur':
    'github:nix-community/NUR/59c5c2575c0cae6bc98b9de8161731cfb8cdc1f0' (2024-09-18)
  → 'github:nix-community/NUR/0d7209843407825066ccf9743c40d50b6d68674f' (2024-09-24)
• Updated input 'plasma-manager':
    'github:nix-community/plasma-manager/5a0c70a007837e2db01e0bb68971792e8653d32c' (2024-09-16)
  → 'github:nix-community/plasma-manager/6f1db348fcb89fd6b0b9c32e279d29ee6b4d1272' (2024-09-22)
• Updated input 'randomcat':
    'github:randomnetcat/nix-configs/5d5d5c706fcb6d3f2d5ddd864ab07cd69a35b9d3' (2024-09-24)
  → 'github:randomnetcat/nix-configs/2a6bd13e96db07e2e904fcc1b93faf5484725c91' (2024-09-24)
 2024-09-24 03:15:53 +01:00
Katherina Walshe-Grey f4912efaaa switch to agenix trunk 2024-09-23 23:58:36 +01:00
Katherina Walshe-Grey 5ef9816a34 kilgharrah: enable zfs, luksdev 2024-09-23 23:22:48 +01:00
Katherina Walshe-Grey 4f99cc5102 fix agenix pathspec 2024-09-23 23:22:32 +01:00
Katherina Walshe-Grey 002b136ae8 qenya: install units 2024-09-20 15:58:24 +01:00
Katherina Walshe-Grey 4dbe61e97a yevaud: add experimental BIND config 2024-09-19 23:25:35 +01:00
Katherina Walshe-Grey 58109130e6 base-graphical/desktop: refactor 2024-09-19 23:23:46 +01:00
Katherina Walshe-Grey d7142d8619 qenya/xdg-mime-apps: open mailto links in evolution 2024-09-19 23:21:42 +01:00
Katherina Walshe-Grey 9813aaf27b kilgharrah: disable autosuspend 2024-09-19 23:06:40 +01:00
Katherina Walshe-Grey 8cbfb51930 move deployment config 2024-09-19 23:06:08 +01:00
Katherina Walshe-Grey bbb3bd3c16 kilgharrah: fix networking 2024-09-19 21:55:22 +01:00
Katherina Walshe-Grey 0b6d72a4b6 qenya/vscode: disable automatic flake input evaluation 
Unfortunately the memory requirements are too high to meet realistically
(tested with 8 GiB; still failed).
 2024-09-18 19:45:18 +01:00
Katherina Walshe-Grey 6a1597aee8 Update README.md 2024-09-18 19:38:59 +01:00
Katherina Walshe-Grey e713fe3b2c nix, home-manager: move common config out of flake.nix 2024-09-18 19:38:20 +01:00
Katherina Walshe-Grey a47d1f47e8 flake.lock: Update 
Flake lock file updates:

• Updated input 'home-manager':
    'github:nix-community/home-manager/e1391fb22e18a36f57e6999c7a9f966dc80ac073' (2024-07-03)
  → 'github:nix-community/home-manager/2ab00f89dd3ecf8012f5090e6d7ca1a7ea30f594' (2024-09-17)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/6e99f2a27d600612004fbd2c3282d614bfee6421' (2024-08-30)
  → 'github:NixOS/nixpkgs/086b448a5d54fd117f4dc2dee55c9f0ff461bdc1' (2024-09-16)
• Updated input 'nur':
    'github:nix-community/NUR/444e1f3fdf23aa476489b0038e0738c6f4d9df85' (2024-09-04)
  → 'github:nix-community/NUR/59c5c2575c0cae6bc98b9de8161731cfb8cdc1f0' (2024-09-18)
• Updated input 'plasma-manager':
    'github:nix-community/plasma-manager/60becd0e994e25b372c8d0500fc944396f6c1085' (2024-09-09)
  → 'github:nix-community/plasma-manager/5a0c70a007837e2db01e0bb68971792e8653d32c' (2024-09-16)
 2024-09-18 19:05:11 +01:00
Katherina Walshe-Grey 28698d1a60 yevaud, orm, kalessin: switch to nixpkgs-small 2024-09-18 19:03:35 +01:00
Katherina Walshe-Grey ad1f4d2cc5 deduplicate flake outputs 2024-09-18 18:58:04 +01:00
Katherina Walshe-Grey a938b33679 export nixos configurations as standard flake outputs 2024-09-18 03:49:56 +01:00
Katherina Walshe-Grey f6010a968c treewide: specify hostname in host configs 2024-09-18 03:13:34 +01:00
Katherina Walshe-Grey 9f6d0fbaf8 treewide: move all deployment keys to flake.nix 2024-09-18 03:06:48 +01:00
Katherina Walshe-Grey 32dabca83f don't import universal config in host-specific homeManagerModules 2024-09-17 19:11:57 +01:00
Katherina Walshe-Grey 3849eeb37b export homeManagerModules."qenya@shaw" 2024-09-17 18:57:02 +01:00
Katherina Walshe-Grey d881607cb0 Revert "qenya: plasma: workaround for issue in randomcat's config" 
This reverts commit 7189fae109.

This didn't actually fix the issue, as it turns out mkIf still
resolves the children of its attrset recursively. The longer-term
solution is to export my home-manager config as a flake output,
which I'm moving towards.
 2024-09-17 18:44:50 +01:00
Katherina Walshe-Grey a6359fdd36 export home-manager config from homeManagerModules 2024-09-17 18:40:15 +01:00
Katherina Walshe-Grey f4da07c4e6 move all host-specific configuration to hosts directory 2024-09-17 17:22:58 +01:00
Katherina Walshe-Grey 7189fae109 qenya: plasma: workaround for issue in randomcat's config 2024-09-15 17:40:19 +01:00
Katherina Walshe-Grey cbb44fd11d tohru: install amberol 2024-09-15 16:40:16 +01:00
Katherina Walshe-Grey 3658b0073c qenya: xdg-mime-apps: open text files in DE text editor 2024-09-15 16:40:16 +01:00
Katherina Walshe-Grey f4228d9926 correct flake-compat hash 2024-09-15 16:37:30 +01:00
Katherina Walshe-Grey 251560f761 qenya: declaratively define more of GNOME config 
Closes #3
 2024-09-12 15:41:43 +01:00
Katherina Walshe-Grey 752fce2538 qenya: zsh: automatically run nix-shell when necessary 
Closes #9
 2024-09-12 13:55:15 +01:00
Katherina Walshe-Grey 4a9e6b5f3c move tooling to dev environment 2024-09-12 13:35:35 +01:00
Katherina Walshe-Grey a0a94b86ff home-manager: rearrange config 2024-09-12 12:56:30 +01:00
Katherina Walshe-Grey 9fa74d52c1 qenya: xdg-mime-apps: make default app configuration declarative 2024-09-12 12:44:58 +01:00
Katherina Walshe-Grey afb16a55f3 home-manager: automatically back up overwritten files 2024-09-12 12:44:42 +01:00
Katherina Walshe-Grey 19f0d81b9b qenya: vscode: automatically fetch new flake inputs in nix repos 2024-09-12 12:22:44 +01:00
Katherina Walshe-Grey b18e50fd4a add plasma-manager for plasma config 2024-09-12 11:42:31 +01:00
Katherina Walshe-Grey cb6d7f7837 firefox: disable built-in password management 2024-09-12 11:40:24 +01:00
Katherina Walshe-Grey a2cb35148c pipewire-low-latency: split to reusable module 2024-09-12 11:38:17 +01:00
Katherina Walshe-Grey c5261caa21 base-graphical: include settings for fonts, libinput, printing 2024-09-11 15:06:41 +01:00
Katherina Walshe-Grey 9e638c009f base-graphical: add desktop manager config 2024-09-11 06:36:21 +01:00
Katherina Walshe-Grey aeab801602 base-graphical: init with pipewire config 2024-09-11 05:43:35 +01:00
Katherina Walshe-Grey 3fc4efab9c rename sysadmin module to base-server 2024-09-11 05:17:19 +01:00
Katherina Walshe-Grey 5fefab9707 kilgharrah: switch from pulseaudio to pipewire 2024-09-10 22:40:07 +01:00
Katherina Walshe-Grey 5a71df020e kilgharrah: install zoom 2024-09-08 20:58:53 +01:00
Katherina Walshe-Grey 9a27610757 kilgharrah: install firefox, steam 2024-09-06 02:51:58 +01:00