summaryrefslogtreecommitdiffstats
path: root/lass/2configs
diff options
context:
space:
mode:
Diffstat (limited to 'lass/2configs')
-rw-r--r--lass/2configs/bepasty.nix24
-rw-r--r--lass/2configs/copyq.nix10
-rw-r--r--lass/2configs/default.nix5
-rw-r--r--lass/2configs/git.nix9
-rw-r--r--lass/2configs/hfos.nix9
-rw-r--r--lass/2configs/htop.nix1
-rw-r--r--lass/2configs/mail.nix17
-rw-r--r--lass/2configs/mc.nix6
-rw-r--r--lass/2configs/nixpkgs.nix2
-rw-r--r--lass/2configs/power-action.nix2
-rw-r--r--lass/2configs/repo-sync.nix1
-rw-r--r--lass/2configs/websites/domsen.nix1
-rw-r--r--lass/2configs/xresources.nix6
13 files changed, 63 insertions, 30 deletions
diff --git a/lass/2configs/bepasty.nix b/lass/2configs/bepasty.nix
index a3c6d0f28..c2bc3f3cd 100644
--- a/lass/2configs/bepasty.nix
+++ b/lass/2configs/bepasty.nix
@@ -9,7 +9,10 @@ with import <stockholm/lib>;
with import <stockholm/lib>;
let
secKey = import <secrets/bepasty-secret.nix>;
- ext-dom = "paste.lassul.us" ;
+ ext-doms = [
+ "paste.lassul.us"
+ "paste.krebsco.de"
+ ];
in {
services.nginx.enable = mkDefault true;
@@ -25,16 +28,15 @@ in {
defaultPermissions = "admin,list,create,read,delete";
secretKey = secKey;
};
-
- "${ext-dom}" = {
- nginx = {
- enableSSL = true;
- forceSSL = true;
- enableACME = true;
- };
- defaultPermissions = "read";
- secretKey = secKey;
+ } //
+ genAttrs ext-doms (ext-dom: {
+ nginx = {
+ enableSSL = true;
+ forceSSL = true;
+ enableACME = true;
};
- };
+ defaultPermissions = "read";
+ secretKey = secKey;
+ });
};
}
diff --git a/lass/2configs/copyq.nix b/lass/2configs/copyq.nix
index 0616c4025..b255254f2 100644
--- a/lass/2configs/copyq.nix
+++ b/lass/2configs/copyq.nix
@@ -9,7 +9,7 @@ let
${pkgs.copyq}/bin/copyq config activate_closes true
${pkgs.copyq}/bin/copyq config clipboard_notification_lines 0
- ${pkgs.copyq}/bin/copyq config clipboard_tab clipboard
+ ${pkgs.copyq}/bin/copyq config clipboard_tab \&clipboard
${pkgs.copyq}/bin/copyq config disable_tray true
${pkgs.copyq}/bin/copyq config hide_tabs true
${pkgs.copyq}/bin/copyq config hide_toolbar true
@@ -19,10 +19,9 @@ let
${pkgs.copyq}/bin/copyq config text_wrap true
'';
in {
- systemd.user.services.copyq = {
- after = [ "graphical.target" ];
- wants = [ "graphical.target" ];
- wantedBy = [ "default.target" ];
+ systemd.services.copyq = {
+ wantedBy = [ "multi-user.target" ];
+ requires = [ "display-manager.service" ];
environment = {
DISPLAY = ":0";
};
@@ -33,6 +32,7 @@ in {
Restart = "always";
RestartSec = "2s";
StartLimitBurst = 0;
+ User = "lass";
};
};
}
diff --git a/lass/2configs/default.nix b/lass/2configs/default.nix
index 96f70d312..f4e4cd2cc 100644
--- a/lass/2configs/default.nix
+++ b/lass/2configs/default.nix
@@ -64,7 +64,10 @@ with import <stockholm/lib>;
];
}
{
- services.dnscrypt-proxy.enable = true;
+ services.dnscrypt-proxy = {
+ enable = true;
+ resolverName = "d0wn-nl-ns3";
+ };
networking.extraResolvconfConf = ''
name_servers='127.0.0.1'
'';
diff --git a/lass/2configs/git.nix b/lass/2configs/git.nix
index 3e1b2c6e3..be08d0ec1 100644
--- a/lass/2configs/git.nix
+++ b/lass/2configs/git.nix
@@ -32,10 +32,13 @@ let
public-repos = mapAttrs make-public-repo {
stockholm = {
cgit.desc = "take all the computers hostage, they'll love you!";
+ cgit.section = "configuration";
};
- kimsufi-check = {};
} // mapAttrs make-public-repo-silent {
- the_playlist = {};
+ the_playlist = {
+ cgit.desc = "Good Music collection + tools";
+ cgit.section = "art";
+ };
};
restricted-repos = mapAttrs make-restricted-repo (
@@ -58,7 +61,7 @@ let
server = "ni.r";
verbose = config.krebs.build.host.name == "prism";
# TODO define branches in some kind of option per repo
- branches = [ "master" "newest" ];
+ branches = [ "master" ];
};
};
};
diff --git a/lass/2configs/hfos.nix b/lass/2configs/hfos.nix
index a28a6a5d2..f63e5ea53 100644
--- a/lass/2configs/hfos.nix
+++ b/lass/2configs/hfos.nix
@@ -36,5 +36,12 @@ with import <stockholm/lib>;
{ v6 = false; precedence = 1000; predicate = "-d 213.239.205.246 -p tcp --dport 443"; target = "DNAT --to-destination 192.168.122.208:1443"; }
];
- systemd.services.krebs-iptables.after = [ "libvirtd.service" ];
+ # TODO use bridge interfaces instead of this crap
+ systemd.services.libvirtd.serviceConfig.ExecStartPost = let
+ restart-iptables = pkgs.writeDash "restart-iptables" ''
+ #soo hacky
+ ${pkgs.coreutils}/bin/sleep 1s
+ ${pkgs.systemd}/bin/systemctl restart krebs-iptables.service
+ '';
+ in restart-iptables;
}
diff --git a/lass/2configs/htop.nix b/lass/2configs/htop.nix
index 0296101ac..69e04a05b 100644
--- a/lass/2configs/htop.nix
+++ b/lass/2configs/htop.nix
@@ -3,6 +3,7 @@
with import <stockholm/lib>;
{
+ security.hideProcessInformation = true;
nixpkgs.config.packageOverrides = super: {
htop = pkgs.concat "htop" [
super.htop
diff --git a/lass/2configs/mail.nix b/lass/2configs/mail.nix
index e4b319528..a08dc88da 100644
--- a/lass/2configs/mail.nix
+++ b/lass/2configs/mail.nix
@@ -66,7 +66,6 @@ let
# notmuch bindings
macro index \\\\ "<vfolder-from-query>" # looks up a hand made query
- macro index A "<modify-labels>+archive -unread -inbox\n" # tag as Archived
macro index + "<modify-labels>+*\n<sync-mailbox>" # tag as starred
macro index - "<modify-labels>-*\n<sync-mailbox>" # tag as unstarred
@@ -75,9 +74,25 @@ let
bind index d noop
bind pager d noop
+ bind index S noop
+ bind index s noop
bind pager S noop
+ bind pager s noop
macro index S "<modify-labels-then-hide>-inbox -unread +junk\n" # tag as Junk mail
+ macro index s "<modify-labels>-junk\n" # tag as Junk mail
macro pager S "<modify-labels-then-hide>-inbox -unread +junk\n" # tag as Junk mail
+ macro pager s "<modify-labels>-junk\n" # tag as Junk mail
+
+
+ bind index A noop
+ bind index a noop
+ bind pager A noop
+ bind pager a noop
+ macro index A "<modify-labels>+archive -unread -inbox\n" # tag as Archived
+ macro index a "<modify-labels>-archive\n" # tag as Archived
+ macro pager A "<modify-labels>+archive -unread -inbox\n" # tag as Archived
+ macro pager a "<modify-labels>-archive\n" # tag as Archived
+
bind index t noop
bind pager t noop
diff --git a/lass/2configs/mc.nix b/lass/2configs/mc.nix
index fc347ba3c..513ee1bd0 100644
--- a/lass/2configs/mc.nix
+++ b/lass/2configs/mc.nix
@@ -325,12 +325,10 @@ in {
(pkgs.concat "mc" [
pkgs.mc
(pkgs.writeDashBin "mc" ''
- export MC_DATADIR=${pkgs.concat "mc-datadir" [
- (pkgs.writeOut "mc-ext" {
+ export MC_DATADIR=${pkgs.writeOut "mc-ext" {
"/mc.ext".link = mcExt;
"/sfs.ini".text = "";
- })
- ]}
+ }};
export TERM=xterm-256color
exec ${pkgs.mc}/bin/mc -S xoria256 "$@"
'')
diff --git a/lass/2configs/nixpkgs.nix b/lass/2configs/nixpkgs.nix
index a6409b7db..7f6512552 100644
--- a/lass/2configs/nixpkgs.nix
+++ b/lass/2configs/nixpkgs.nix
@@ -3,6 +3,6 @@
{
krebs.build.source.nixpkgs.git = {
url = https://cgit.lassul.us/nixpkgs;
- ref = "c0ecd31";
+ ref = "ade5837";
};
}
diff --git a/lass/2configs/power-action.nix b/lass/2configs/power-action.nix
index f22bf451a..c7bdb525d 100644
--- a/lass/2configs/power-action.nix
+++ b/lass/2configs/power-action.nix
@@ -26,7 +26,7 @@ in {
lowerLimit = 0;
charging = false;
action = pkgs.writeDash "suspend-wrapper" ''
- /var/setuid-wrappers/sudo ${suspend}
+ /run/wrappers/bin/sudo ${suspend}
'';
};
user = "lass";
diff --git a/lass/2configs/repo-sync.nix b/lass/2configs/repo-sync.nix
index dfea637ed..74e508549 100644
--- a/lass/2configs/repo-sync.nix
+++ b/lass/2configs/repo-sync.nix
@@ -10,6 +10,7 @@ let
public = true;
name = mkDefault "${name}";
cgit.desc = mkDefault "mirror for ${name}";
+ cgit.section = mkDefault "mirror";
hooks = mkIf announce (mkDefault {
post-receive = pkgs.git-hooks.irc-announce {
nick = config.networking.hostName;
diff --git a/lass/2configs/websites/domsen.nix b/lass/2configs/websites/domsen.nix
index daecdcd2f..fde3f7c2b 100644
--- a/lass/2configs/websites/domsen.nix
+++ b/lass/2configs/websites/domsen.nix
@@ -120,6 +120,7 @@ in {
sender_domains = [
"jla-trading.com"
"ubikmedia.eu"
+ "ubikmedia.de"
];
ssl_cert = "/var/lib/acme/lassul.us/fullchain.pem";
ssl_key = "/var/lib/acme/lassul.us/key.pem";
diff --git a/lass/2configs/xresources.nix b/lass/2configs/xresources.nix
index 35dbe2044..b5e721483 100644
--- a/lass/2configs/xresources.nix
+++ b/lass/2configs/xresources.nix
@@ -36,9 +36,10 @@ let
'';
in {
- systemd.user.services.xresources = {
+ systemd.services.xresources = {
description = "xresources";
- wantedBy = [ "default.target" ];
+ wantedBy = [ "multi-user.target" ];
+ after = [ "display-manager.service" ];
environment = {
DISPLAY = ":0";
@@ -50,6 +51,7 @@ in {
Type = "simple";
ExecStart = "${pkgs.xorg.xrdb}/bin/xrdb -merge ${xresources}";
Restart = "on-failure";
+ User = "lass";
};
};
}