makefu/stockholm
1
0
Fork 0
Code Issues Pull requests Actions 1 Packages Projects Releases Wiki Activity
10836 commits 1 branch 0 tags 12 MiB
Commit graph

1771 commits

Author SHA1 Message Date
tv 2280c39d3e krebs.systemd: don't offer to reload services 
Because new credentials won't be available after reloading, only after
restarting.
 2021-12-29 17:17:45 +01:00
lassulus 7e67b78596 Merge remote-tracking branch 'ni/master' 2021-12-29 16:33:02 +01:00
tv 2f15fd1d68 ergo: fix multiclient default config 2021-12-29 16:23:59 +01:00
lassulus f393c44c22 external: pinpox-ahorn.r -> ahorn.r 2021-12-29 16:13:03 +01:00
lassulus 8a24a9f395 ergo: reload, accounts, channels, doc 2021-12-29 15:52:29 +01:00
lassulus d3c3f1551f Merge remote-tracking branch 'ni/master' 2021-12-29 00:20:31 +01:00
makefu 7766b006a8
Merge remote-tracking branch 'tv/master' 2021-12-29 00:20:28 +01:00
makefu 3330b6a2c4
k 3 ma: add ed25519 keys for all hosts 2021-12-29 00:05:10 +01:00
tv 69d266b76b ergo: kill dead code and stuff 2021-12-28 23:53:27 +01:00
makefu a041768aa1
k 3 ma: make ed25519 keys available for hosts 2021-12-28 23:49:34 +01:00
lassulus 3bec49053d hotdog.r tinc: add ed25519 pubkey 2021-12-28 23:34:13 +01:00
tv e9cd6d91dc ergo: always merge default config 2021-12-28 22:33:36 +01:00
lassulus 2a47990f16 ergo: use DynamicUser 2021-12-28 22:20:54 +01:00
lassulus 96c60accf3 Merge remote-tracking branch 'mic92/master' 2021-12-28 20:27:30 +01:00
tv 13a7209ca2 tv hosts: add all the ed25519 keys 2021-12-28 18:18:35 +01:00
Kierán Meinhardt 98e45d2075 mic92: fix ssh ed25519 keys 2021-12-28 16:49:07 +01:00
lassulus 7870cc2b04 external: fix ed25519 pubkey syntax 2021-12-28 16:44:23 +01:00
lassulus 02fbaca275 external kmein: fix ed25519 pubkey syntax 2021-12-28 16:41:24 +01:00
Pablo Ovelleiro Corral 17e614cb00 external: add pinpox-ahorn 2021-12-28 16:30:33 +01:00
Kierán Meinhardt 6104ec910e external: add kmein ed25519 keys 2021-12-28 16:10:19 +01:00
lassulus c7b7bd48b5 l tinc: define ed25519 keys for all hosts 2021-12-28 16:09:42 +01:00
lassulus 8692db1285 Merge remote-tracking branch 'mic92/master' 2021-12-25 20:08:31 +01:00
Jörg Thalheim cb26de2f5c matchbox: remove ipv4 2021-12-25 08:39:02 +01:00
tv 969bd9767e exim-smarthost: dkim_strict = true 2021-12-24 10:19:13 +01:00
tv b33381d15e exim-smarthost: use LoadCredential 2021-12-24 09:22:41 +01:00
tv 7219292dd5 repo-sync: use LoadCredential 2021-12-24 00:51:28 +01:00
tv 71d11e8f2b repo-sync: add group 2021-12-24 00:51:28 +01:00
tv 234d9d96bf krebs.systemd: allow LoadCredential to be a string 2021-12-24 00:51:28 +01:00
lassulus 2be08e3c52 systemd module: use LoadCredentials from config.systemd.services 2021-12-23 23:59:22 +01:00
lassulus 29b796f521 Merge remote-tracking branch 'ni/master' 2021-12-23 21:49:55 +01:00
tv d4521eb339 krebs.systemd: allow reload if credentials change 2021-12-23 20:18:28 +01:00
tv 1cf495d6eb krebs.systemd: support credentials of any service 2021-12-23 20:18:28 +01:00
Jörg Thalheim a9d324f176 mic92: update ip for eve 2021-12-23 08:36:49 +01:00
tv 5f7ab23ebf krebs.tinc: drop environment.systemPackages TODO 
Nobody bothered about this for more than five years.  And even though
fixable, chances are quite high that this feature is not needed anymore.
 2021-12-23 03:20:36 +01:00
tv 8029e80632 krebs.tinc: drop api and imp boilerplate 2021-12-23 03:16:44 +01:00
tv 018018e16b krebs.tinc: don't bother aliasing packages 2021-12-23 03:12:58 +01:00
tv 21e407aa59 krebs.tinc: use LoadCredential 2021-12-23 01:59:25 +01:00
tv d6ebd497f0 krebs.systemd.services: restart by LoadCredential 2021-12-23 01:59:25 +01:00
tv 448cd3b9af Merge remote-tracking branch 'prism/master' 2021-12-22 23:33:05 +01:00
tv 2656cbf2a9 empty -> emptyDirectory 2021-12-22 23:27:07 +01:00
lassulus c9f0c17660 tinc module: reload instead of restart 
remove enableLegacy option since reloading is dependant on
/etc/tinc/<netname> existing
 2021-12-22 13:58:30 +01:00
lassulus 8f94e0bc4b Merge remote-tracking branch 'ni/master' 2021-12-21 16:45:56 +01:00
tv e888b00a6b secret service: don't be wanted by multi-user.target 
This fixes an issue causing secret-trigger-*.service to be restarted on
every activation because after triggering these services are dead, this
in turn causes restarts of secret-*.service.

And finally this caused the issue of always restarting tinc services
as they are PartOf= a couple of secert-*.service.
 2021-12-21 15:27:44 +01:00
lassulus 0a7d779cc1 iptables module: add compat layer to networking.firewall 2021-12-21 12:38:07 +01:00
lassulus d6f79283bf tinc module: use tinc_pre as default package 2021-12-21 12:08:47 +01:00
lassulus 5b71cbae40 Merge remote-tracking branch 'ni/master' 2021-12-20 21:23:50 +01:00
Jörg Thalheim a7f26ef99b mic92: add mickey.r 2021-12-20 19:00:45 +01:00
tv dbc54fb823 github-known-hosts: update list 2021-12-18 09:50:06 +01:00
lassulus f2533d8892 ci: add gcroots for successful builds 2021-12-11 12:00:36 +01:00
lassulus abd82c4faf ca.r: serve ca.crt via nginx 2021-12-09 14:52:35 +01:00
lassulus fba330ab36 wiki.r: add acme ssl config 2021-12-09 14:30:25 +01:00
lassulus 155e3e18b0 realwallpaper: use new graph.r endpoint 2021-12-09 11:35:27 +01:00
lassulus e5fc654f50 add ACME ca via ca.r 2021-12-09 11:31:10 +01:00
Jörg Thalheim b981c43a97 mic92: remove ipv4 from turingmachine 2021-12-08 21:08:53 +01:00
Jörg Thalheim 2bcac9f89c mic92: drop redundant addrs blocks 2021-12-08 21:08:53 +01:00
Jörg Thalheim 9900a57f3f mic92: drop eva's ipv4 address 2021-12-08 21:08:53 +01:00
Jörg Thalheim 759a471f88 mic92: drop eddie 2021-12-08 21:08:53 +01:00
makefu 3f6219e251 users: add xkey ssh key, use for logging into puyak 2021-12-08 16:15:40 +01:00
lassulus b48f08ea8e ci: buildbot-classic -> buildbot; cleanup 2021-12-08 16:15:40 +01:00
Kierán Meinhardt 0d329f970b external: add moodle.kmein.r 2021-12-08 12:58:06 +01:00
makefu 28d5d0233a
module airdcpp: make group explicit 2021-12-04 22:43:59 +01:00
makefu 22766982a2
module urlwatch: create group for user 2021-12-04 22:20:50 +01:00
makefu c22610c8e6
Merge remote-tracking branch 'lass/21.11' into 21.11 2021-12-04 18:33:43 +01:00
lassulus 9f6c37f21c github-host-sync: add group 2021-12-01 18:31:53 +01:00
lassulus bb709ce412 buildbot: add groups to users 2021-12-01 18:30:57 +01:00
lassulus 5d6bbe6797 brockman: add group 2021-12-01 18:29:24 +01:00
lassulus cd367626d4 tinc_graphs: add groups 2021-12-01 18:28:26 +01:00
lassulus c5ade4fdd6 realwallpaper: add group 2021-12-01 18:27:04 +01:00
lassulus 280ed594fb htgen: generate group for every user 2021-12-01 18:11:58 +01:00
makefu 9301506249
Merge remote-tracking branch 'lass/master' 2021-12-01 11:21:09 +01:00
lassulus b79f5ab97d Merge remote-tracking branch 'ni/master' 2021-11-30 23:09:27 +01:00
Kierán Meinhardt 948584f291 external: kmein takes over graph.r 2021-11-30 22:09:06 +01:00
lassulus 8a0685d859 l: init tablet.r 2021-11-27 23:48:41 +01:00
lassulus d71fe62fff l prism.r: add jelly.r alias + proxy_pass 2021-11-27 23:47:15 +01:00
lassulus ee59532c60 l prism.r: add internet ipv6 address 2021-11-27 23:45:26 +01:00
makefu 13c525e548
Merge remote-tracking branch 'mic/master' 2021-11-26 14:13:30 +01:00
makefu 463dc7ea67
Merge remote-tracking branch 'lass/master' 2021-11-26 14:12:34 +01:00
Jörg Thalheim f1bca35b39 eve: drop ipv6 2021-11-26 10:36:23 +01:00
Jörg Thalheim a87fa2d11d mic92: add keller ed215519 2021-11-24 20:07:38 +01:00
makefu 44d45e7c2c
k/3/m: add arcadeomat 
brain is also updated
 2021-11-24 08:29:27 +01:00
Luis-Hebendanz f2e83be6a3 qubasa: add kelle.r 2021-11-23 17:44:50 +01:00
Jörg Thalheim db5c1b6659 mic92: add qubasa's public ed25519 key 2021-11-23 17:44:50 +01:00
Luis-Hebendanz a0c5805e9e qubasa: changed tinc pubkey 2021-11-23 17:44:50 +01:00
Jörg Thalheim 600f9cbe61 sauron: add ipv6 2021-11-23 17:44:50 +01:00
Jörg Thalheim 87b7045f53 mic92: add dns name to sandro's machine 2021-11-23 17:44:50 +01:00
Jörg Thalheim a36a09931e mic92: update eva's ip 2021-11-23 17:44:50 +01:00
Jörg Thalheim 2e2f5969ec mic92: add public ipv6/ipv4 for ryan/graham 2021-11-23 17:44:50 +01:00
lassulus ff9a042e70 l dishfire.r: revive with minimal config 2021-11-23 12:47:06 +01:00
lassulus 3d1544c785 Revert "l: rip dishfire.r" 
This reverts commit 61e6552da3.
 2021-11-23 11:43:25 +01:00
tv 8f97f5e2e1 krebs zone-head-config: fix style 2021-11-21 20:39:28 +01:00
lassulus b0f39ae34d filebitch.r: define shack prefix 2021-11-14 17:15:17 +01:00
lassulus ebc830a91f puyak.r: define cores 2021-11-14 17:14:10 +01:00
lassulus 14e6157d30 l prism.r: add nets.internet.ip4.prefix 2021-11-08 19:59:03 +01:00
lassulus 4452b26816 Merge remote-tracking branch 'ni/master' 2021-11-08 09:06:57 +01:00
tv d7f44debbd exim: fix for manual 2021-11-08 05:14:49 +01:00
tv 6940c3ac83 htgen: fix for manual 2021-11-08 05:14:49 +01:00
tv 13a1eb3fc5 reaktor2: fix for manual 2021-11-08 05:14:49 +01:00
tv 07d9619956 github-hosts-sync: fix for manual 2021-11-08 05:14:49 +01:00
tv 29c59684a3 exim-smart-host: fix for manual 2021-11-08 05:14:49 +01:00
tv ebd5fbbe05 buildbot: fix for manual 2021-11-08 05:14:49 +01:00
tv c8c0f2597f git: fix for manual 2021-11-08 05:14:49 +01:00
tv 96965e3578 rtorrent: fix for manual 2021-11-08 05:14:49 +01:00
tv 8e5dc749c5 shadow: fix for manual 2021-11-08 05:14:49 +01:00
tv 1247440a3d tinc: fix for manual 2021-11-08 05:14:49 +01:00
tv ae0c0de7f1 github-hosts-sync: fix for manual 2021-11-08 05:11:27 +01:00
tv 87f43a3be4 tinc_graphs: fix for manual 2021-11-08 05:11:27 +01:00
tv 551cfeadef bepasty-server: fix for manual 2021-11-08 05:11:27 +01:00
tv 53f192125b airdcpp: fix default hubs.*.Nick 2021-11-08 05:01:20 +01:00
tv 85604f02df krebs.build.profile: fix type 2021-11-07 21:19:09 +01:00
lassulus 0e668121a1 git: set fcgiwrap group as maingroup 2021-11-05 14:35:03 +01:00
tv 2fccbc483d github-known-hosts: update list 2021-11-04 14:22:01 +01:00
lassulus 9fd58eb162 l codimd: move to pad.lassul.us 2021-10-31 12:35:16 +01:00
xkey e1fdb4728c external: modify catalonia.r 2021-10-30 15:35:43 +02:00
lassulus 0f9c6ee738 news.r, puyak.r: use dynamic tinc port 2021-10-24 20:09:51 +02:00
lassulus d8f72378dc l domsen: add roundcube at mail.lassul.us 2021-10-24 20:03:16 +02:00
lassulus 6e61a2d9fc sync-containers module: make chmod failsafe 2021-10-24 18:27:58 +02:00
lassulus 4fa8f74fc0 solanum: use upstream service 2021-10-24 18:25:51 +02:00
lassulus f455668ff3 l: remove red.r morpheus.r uriel.r 2021-10-24 11:06:43 +02:00
Jörg Thalheim 0564414a31 mic92: add aenderpad 2021-10-23 14:58:10 +02:00
Jörg Thalheim 04ec7f8e7d mic92: add ed25519 for maurice 2021-10-23 14:58:10 +02:00
Jörg Thalheim db9f0d97ec mic92: fix ips of maurice 2021-10-23 14:58:10 +02:00
Jörg Thalheim b13aaa3e65 mic92: add maurice 2021-10-23 14:58:10 +02:00
Jörg Thalheim 6d51da9202 mic92: non-colliding ip address for graham 2021-10-23 14:58:10 +02:00
Jörg Thalheim fd37549f82 mic92: add ryan & graham 2021-10-23 14:58:10 +02:00
lassulus 1ea95b68f4 fetchWallpaper module: add group 2021-10-23 12:08:58 +02:00
lassulus c5bab88a9e tinc module: add group for user 2021-10-23 12:07:40 +02:00
Kierán Meinhardt 411cb36608 external: add names.kmein.r alias 2021-10-12 22:35:11 +02:00
Kierán Meinhardt e4793149c0 external: add bvg.kmein.r alias 2021-10-10 14:45:17 +02:00
Kierán Meinhardt 8a697d6897 external: refactor kmein hosts 2021-09-19 09:26:03 +02:00
lassulus e7d5d99083 rip Reaktor 2021-09-14 20:32:51 +02:00
lassulus 68c7f79174 l echelon.r: add syncthing id 2021-09-10 09:24:12 +02:00
lassulus b8cd625a70 l: add lasspi & domsen-pixel hosts 2021-09-10 09:23:11 +02:00
lassulus f2287d2024 l: add mumble.lassul.us for mumble-web 2021-09-10 09:22:08 +02:00
Jörg Thalheim 9cebb56981 mic92: restart realwallpaper on failure 2021-09-06 18:53:21 +02:00
lassulus b471ff4191 irc-announce: add tls flag 2021-09-05 23:09:21 +02:00
lassulus aaae1b2f5b hidden-ssh: fix to work with new nixos tor service 2021-09-05 23:04:05 +02:00
makefu 357a021c94
ma: add rss.makefu.r 2021-09-05 21:15:06 +02:00
xkey c7db9e13cd external: add aleph.r 2021-09-04 14:53:23 +02:00
lassulus 6db453c84d l paste: add c.krebsco.de 2021-08-26 09:58:42 +02:00
lassulus bb846b5ca9 l prism.r: add c.r cyberlocker 2021-08-25 12:05:18 +02:00
lassulus 0d84e80619 l: add flix.r alias 2021-08-15 18:49:23 +02:00
Jörg Thalheim 98437c4641 mic92: remove paulheidekrueger; add yasmin 2021-07-30 09:00:00 +00:00
Jörg Thalheim 483c3d608d mic92: add paulheidekrueger 2021-07-30 09:00:00 +00:00
Jörg Thalheim 6763b4475f mic92: add ed25519 for grandalf 2021-07-30 09:00:00 +00:00
Jörg Thalheim d1059dccf5 mic92: connect to tinc via internet for bill/nardole 2021-07-30 09:00:00 +00:00
Jörg Thalheim 1d29774766 mic92: update bills ip address 2021-07-30 09:00:00 +00:00
Jörg Thalheim 5f38a5d722 mic92: add redha ed25519 keys 2021-07-30 09:00:00 +00:00
Jörg Thalheim 36603ca137 mic92: add matchbox ed25519 key 2021-07-30 09:00:00 +00:00
lassulus 1380200b30 hotdog.r: add agenda.r alias 2021-07-27 22:36:36 +02:00
tv 5211b94619 Merge remote-tracking branch 'prism/master' 2021-06-18 20:53:44 +02:00
lassulus 8949b2ad36 external: add ed25519 pubkey of makanek.r 2021-06-16 14:01:45 +02:00
makefu 1fc23b6f77
krebs: init neos, add ssh key to shack infra managers 2021-06-15 17:50:06 +02:00
tv 9e59a65d92 repo-sync: isSystemUser 2021-06-15 15:54:46 +02:00
makefu 8be55929d1
Merge remote-tracking branch 'lass/master' 2021-06-09 19:30:27 +02:00
lassulus 85cd96ed8b gollum: follow upstream 2021-06-09 11:37:27 +02:00
Jörg Thalheim 899b6874ab
mic92: fix key for hydrogen 2021-06-09 10:24:28 +02:00
Jörg Thalheim 8b18facc02 mic92: add ed25519 keys for hydrogen 2021-06-08 21:00:00 +00:00
Jörg Thalheim 8740d705b9 mic92: new ed25519 key for rose 2021-06-08 21:00:00 +00:00
Jörg Thalheim b8374d440e mic92: add ed25519 keys for eve/eva 2021-06-08 21:00:00 +00:00
Jörg Thalheim 1a14d5b95e mic92: add more ed25519 retiolum keys 2021-06-08 21:00:00 +00:00
Jörg Thalheim 3aa5d855e1 mic92: start adding ed25519 as well 2021-06-08 21:00:00 +00:00
Jörg Thalheim 8545edfa9a mic92: fix nardole's public ips 2021-06-08 21:00:00 +00:00
Jörg Thalheim 2c87eb31e0 mic92: remove anindya 2021-06-08 21:00:00 +00:00
Jörg Thalheim e967ad3c6e mic92: add aendernix 2021-06-08 21:00:00 +00:00
Jörg Thalheim 63964fda5c mic92: nardole: update key + add ip addresses 2021-06-08 21:00:00 +00:00
Jörg Thalheim a0b63d8afb bill: add ip addresses + new key 2021-06-08 21:00:00 +00:00
Jörg Thalheim c8c3f359c9 mic92: move loki.r to eva 2021-06-08 21:00:00 +00:00
Jörg Thalheim 3724069be6 mic92: change ip address of eva 2021-06-08 21:00:00 +00:00
lassulus 0b5c89dae9 module ergo: init 2021-06-08 17:44:52 +02:00
lassulus 05a7777108 jeschli enklave.r: disable ci 2021-06-06 09:34:49 +02:00
makefu eb801fa458
module urlwatch: add isSystemUser 2021-06-05 15:52:49 +02:00
makefu e044c3121a
ma: isSystemUser everything 2021-06-05 15:18:10 +02:00
lassulus 7fa69b3399 tinc_graphs: isSystemUser 2021-06-05 14:57:08 +02:00
lassulus a9f43dff49 realwallpaper: isSystemUser 2021-06-05 14:56:41 +02:00
lassulus f21ebcf4dc bepasty-server: isSystemUser 2021-06-05 14:52:48 +02:00
lassulus b9d9b711b8 github-hosts-sync: set isSystemUser at correct location 2021-06-05 14:45:43 +02:00
lassulus 8b3cd5aef1 github-hosts-sync: isSystemUser 2021-06-05 14:15:30 +02:00
lassulus 47f3dd9345 buildbot: isSystemUser 2021-06-05 14:15:10 +02:00
lassulus 26a1458a03 brockman: isSystemUser 2021-06-05 13:12:18 +02:00
lassulus a400657702 fetchWallpaper: set isSystemUser 2021-06-03 20:15:42 +02:00
lassulus 86007337dd Merge remote-tracking branch 'ni/master' 2021-06-03 19:17:58 +02:00
tv f558f1bc0c *: set isSystemUser or isNormalUser 
This is a requirement for nixpkgs 21.05, or else evaluation will fail
with:

Exactly one of users.users.${name}.isSystemUser and users.users.${name}.isNormalUser must be set.
 2021-06-02 00:11:38 +02:00
lassulus 3b601871b7 external: add nxnv (rtjure) 2021-06-01 19:05:58 +02:00
lassulus 721946e1f0 external: add nxnx.r (rtjure) 2021-05-27 15:14:50 +02:00
lassulus eb656a4fe5 l: update android pubkey 2021-05-24 22:15:09 +02:00
lassulus 434420bd0a solanum: remove unneeded BANDB stuff 2021-05-24 16:21:20 +02:00
tv 5460255668 Merge remote-tracking branch 'prism/master' 2021-05-20 11:08:58 +02:00
tv a5d9c02a93 hidden-ssh: freenode -> hackint 2021-05-20 10:29:40 +02:00
lassulus 08cf800cca modules: charybdis -> solanum 2021-05-19 00:03:20 +02:00
lassulus fe45bafe1d external: add nxdc.r 2021-05-12 06:54:56 +02:00
Jörg Thalheim 18a50e5238 mic92: rename nardile to nardole 2021-05-04 16:00:00 +00:00
Jörg Thalheim f6f57f0f83 mic92: add nardile 2021-05-04 16:00:00 +00:00
Jörg Thalheim 8235cbb507 mic92: add bill 2021-05-04 16:00:00 +00:00
Jörg Thalheim b8670c2db5 mic92: add sauron 2021-05-04 16:00:00 +00:00
Jörg Thalheim 3429fcae08 mic92: add philipsaendig 2021-05-04 16:00:00 +00:00
Jörg Thalheim 0beccdf224 mic92: update harsha's key 2021-05-04 16:00:00 +00:00
Jörg Thalheim 52a7e2c299 mic92: add dimitra 2021-05-04 16:00:00 +00:00
Jörg Thalheim b2501a0ded mic92: add anindya 2021-05-04 16:00:00 +00:00
Jörg Thalheim ffeda392b1 mic92: remove dpdkm/inspector 2021-05-04 16:00:00 +00:00
Jörg Thalheim 5b33b477e1 mic92: add okelmann 2021-05-04 16:00:00 +00:00