From f892b1ed1c5883e8f12e0e937832e58a8ed4c853 Mon Sep 17 00:00:00 2001 From: makefu Date: Fri, 21 Oct 2016 22:37:59 +0200 Subject: [PATCH 1/4] m 2 default: bump to latest stable (dirtycow) --- 2configs/default.nix | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/2configs/default.nix b/2configs/default.nix index af0e2ba..cb6fe55 100644 --- a/2configs/default.nix +++ b/2configs/default.nix @@ -23,7 +23,8 @@ with import ; user = config.krebs.users.makefu; source = let inherit (config.krebs.build) host user; - ref = "b8ede35"; # stable @ 2016-10-19 + # ref = "b8ede35"; # stable @ 2016-10-19 + ref = "31c72ce"; # stable @ 2016-10-21 (dirtycow) in { nixpkgs = if config.makefu.full-populate || (getEnv "dummy_secrets" == "true") then { From 5792c263ba02aa91fcccdf8988f1999709c2a792 Mon Sep 17 00:00:00 2001 From: makefu Date: Fri, 21 Oct 2016 22:38:18 +0200 Subject: [PATCH 2/4] m 1 gum: remove mattermost --- 1systems/gum.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/1systems/gum.nix b/1systems/gum.nix index c9d4248..bfd880b 100644 --- a/1systems/gum.nix +++ b/1systems/gum.nix @@ -11,9 +11,9 @@ in { ../2configs/fs/simple-swap.nix ../2configs/fs/single-partition-ext4.nix ../2configs/smart-monitor.nix - # ../2configs/iodined.nix + ../2configs/iodined.nix ../2configs/git/cgit-retiolum.nix - ../2configs/mattermost-docker.nix + # ../2configs/mattermost-docker.nix ../2configs/nginx/euer.test.nix ../2configs/nginx/update.connector.one.nix ../2configs/deployment/mycube.connector.one.nix From 44bfbddc3e8038fe8cb8ee643232e93b6f0ec712 Mon Sep 17 00:00:00 2001 From: makefu Date: Sat, 22 Oct 2016 12:47:22 +0200 Subject: [PATCH 3/4] m 1 x: disable docker for now --- 1systems/x.nix | 9 ++++++--- 1 file changed, 6 insertions(+), 3 deletions(-) diff --git a/1systems/x.nix b/1systems/x.nix index 00eca87..e7f5d0d 100644 --- a/1systems/x.nix +++ b/1systems/x.nix @@ -13,6 +13,7 @@ # Krebs #../2configs/disable_v6.nix + ../2configs/rad1o.nix # applications @@ -38,19 +39,21 @@ ../2configs/fs/sda-crypto-root-home.nix # ../2configs/mediawiki.nix #../2configs/wordpress.nix - ../2configs/nginx/public_html.nix + #../2configs/nginx/public_html.nix + ../2configs/nginx/icecult.nix ../2configs/tinc/retiolum.nix # temporary modules ../2configs/temp/share-samba.nix ../2configs/laptop-backup.nix - # ../2configs/temp/elkstack.nix + ../2configs/temp/elkstack.nix # ../2configs/temp/sabnzbd.nix ../2configs/tinc/siem.nix #../2configs/torrent.nix ]; makefu.full-populate = true; + nixpkgs.config.allowUnfree = true; krebs.nginx = { default404 = false; servers.default.listen = [ "80 default_server" ]; @@ -59,7 +62,7 @@ environment.systemPackages = [ pkgs.passwdqc-utils pkgs.bintray-upload ]; - virtualisation.docker.enable = true; + # virtualisation.docker.enable = true; # configure pulseAudio to provide a HDMI sink as well networking.firewall.enable = true; From 0d8ce18c45c4e032ba2b32e17072cdf6c0268a2f Mon Sep 17 00:00:00 2001 From: makefu Date: Sat, 22 Oct 2016 14:21:22 +0200 Subject: [PATCH 4/4] m 1 vbob:disable docker --- 1systems/vbob.nix | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/1systems/vbob.nix b/1systems/vbob.nix index 27a2163..56d1b01 100644 --- a/1systems/vbob.nix +++ b/1systems/vbob.nix @@ -40,7 +40,7 @@ fortclientsslvpn ppp xclip get logstash - docker + # docker devpi-web devpi-client ]; @@ -53,8 +53,6 @@ 8010 ]; - virtualisation.docker.enable = false; - fileSystems."/media/share" = { fsType = "vboxsf"; device = "share";