| Commit message (Collapse) | Author | Age |
... | |
|/| |
|
| | |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
We used the domain name instead of the host name, which obviously
doesn't work for multiple host. In addition to that I changed some
directory to make importing easier and enabled the "nix-command" and
"flakes" experimental options, to make the `nix flake check` command
usable.
Refs: #15
|
| |
| |
| |
| | |
Nix flakes make a lot of things very easy.
|
|\|
| |
| |
| |
| |
| |
| | |
server1_headless into server1
Reviewed-on: https://git.sils.li/vhack.eu/nixos-server/pulls/13
Reviewed-by: sils <sils@sils.li>
|
|/
|
|
|
| |
We run a headless server, so some things, like emergency boot mode, don't really make sense. This
import disables these.
|
|\
| |
| |
| |
| | |
Reviewed-on: https://git.sils.li/vhack.eu/nixos-server/pulls/12
Reviewed-by: sils <sils@sils.li>
|
| | |
|
| | |
|
| |
| |
| |
| |
| |
| |
| | |
Saving hashed passwords should be relatively safe, as long as the hashing
algorithm isn't flawed. Considering, that we use yescrypt with higher
than average parameters ('jFT' instead of 'j9T'), we should be safe for
now.
|
| | |
|
| |\
| |/
|/| |
|
|\ \
| | |
| | |
| | |
| | |
| | |
| | | |
persistent' (#9) from server1_ssh into server1
Reviewed-on: https://git.sils.li/vhack.eu/nixos-server/pulls/9
Reviewed-by: sils <sils@sils.li>
|
| | |
| | |
| | |
| | | |
This reverts commit 5a137ce8b8f4b1dcfee03d001938c0fa25df842f.
|
| |\ \
| |/ /
|/| | |
|
| | |
| | |
| | |
| | | |
resolve conflicts with target branch
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
I changed the valid ssh-host-keys from both rsa and ed25519 to
only ed25519 and moved them to `/srv/ssh` to make them persistent.
In addition to that, I also increased the rounds for the ed25519 key to
1000.
This fixes the ssh-host-key issue introduced by pull request #5.
Fixes: #5
|
| | |\
| |_|/
|/| | |
|
|\ \ \
| |/ /
|/| |
| | |
| | | |
Reviewed-on: https://git.sils.li/vhack.eu/nixos-server/pulls/11
Reviewed-by: sils <sils@sils.li>
|
| |\ \
| |/ /
|/| | |
|
| | |
| | |
| | |
| | |
| | | |
The names of the settings in the GitHub repository are outdated, this
commit changes the setting name to the real ones.
|
| | |
| | |
| | |
| | | |
This module generates a TOML config from a nix set.
|
| | | |
|
| | |
| | |
| | |
| | | |
I'm not sure if this is really helpful
|
| |/
|/|
| |
| |
| |
| |
| | |
The passwords will be stored in a specific password file, which because it
isn't part of this repository is secure.
Refs: #9
|
|\ \
| |/
|/|
| |
| |
| |
| | |
server1_boot into server1
Reviewed-on: https://git.sils.li/vhack.eu/nixos-server/pulls/10
Reviewed-by: sils <sils@sils.li>
|
|/
|
|
| |
Co-authored-by: sils <sils@sils.li>
|
|\
| |
| |
| |
| |
| |
| | |
server1_minecraft into server1
Reviewed-on: https://git.sils.li/vhack.eu/nixos-server/pulls/8
Reviewed-by: ene <ene@sils.li>
|
| |\
| | |
| | |
| | | |
https://git.sils.li/vhack.eu/nixos-server into server1_minecraft
|
| |/
|/| |
|
|\ \
| | |
| | |
| | |
| | |
| | |
| | | |
server1_minecraft into server1
Reviewed-on: https://git.sils.li/vhack.eu/nixos-server/pulls/7
Reviewed-by: ene <ene@sils.li>
|
| |\ \
| |/ /
|/| | |
|
|\ \ \
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
server1_minecraft into server1
Reviewed-on: https://git.sils.li/vhack.eu/nixos-server/pulls/6
Reviewed-by: ene <ene@sils.li>
|
| | | | |
|
| | |/ |
|
| |/ |
|
|/ |
|
|\
| |
| |
| |
| |
| |
| | |
server1
Reviewed-on: https://git.sils.li/vhack.eu/nixos-server/pulls/5
Reviewed-by: ene <ene@sils.li>
|
| |
| |
| |
| |
| | |
Having persistence as opt-in has several advantages,
for instance better reproduceability.
|
| |
| |
| |
| | |
Another step towards temproot
|
|/
|
|
| |
This enables further changes like temproot.
|
|\
| |
| |
| |
| | |
Reviewed-on: https://git.sils.li/vhack.eu/nixos-server/pulls/4
Reviewed-by: ene <ene@sils.li>
|
|/ |
|
|\
| |
| |
| |
| |
| |
| | |
ene/nixos-server:server1 into server1
Reviewed-on: https://git.sils.li/vhack.eu/nixos-server/pulls/2
Reviewed-by: sils <sils@sils.li>
|
| |
| |
| |
| |
| | |
Yes, root login is in itself a bad thing, but reducing the attack
surface somewhat should be a good first step to a bright future.
|
|/
|
|
|
|
|
|
|
| |
This marks the beginning of a clean git commit history.
This is because of two changes:
* Usage of conventional-commits (https://www.conventionalcommits.org/en/v1.0.0/).
* Consistent formatting of the code base to reduce diff footprints.
The choice of Alejandra as auto-formatter is obviously not final.
|
| |
|
| |
|
|
|