Fachschaft/nixConfig
5
2
Fork 2
Code Issues 11 Pull requests 1 Projects Wiki Activity
99 commits 2 branches 0 tags 1.2 MiB
Commit graph

99 commits

This branch
This branch
All branches
Author SHA1 Message Date
Gonne
590ea741d0 Group config parameters 2025-03-02 11:57:05 +01:00
Gonne
5dfd352edd Enable DKIM signing 2025-03-02 11:44:08 +01:00
Gonne
836971cac4 Filter out catch-all addresses of the form "@domain.tld" from the allowlist that are not intended for HRZ 2025-03-02 11:40:31 +01:00
Gonne
32716973d0 Set sender and increase redirect limit for our alias file 2025-03-02 11:40:15 +01:00
Gonne
b2c89091d8 Accept mail from our badly configured VMs 2025-03-02 08:43:26 +01:00
Gonne
bdd88e748b Add mathebau.de to certificate 2025-03-02 08:43:26 +01:00
Gonne
2dda609464 Rename config option after update beyond version 0.11.2 2025-03-02 08:43:22 +01:00
Gonne
0cc1a1fb85 Disable matheball.de forwards and submission to mail allowlist until we actually handle it 2025-03-02 08:43:22 +01:00
Gonne
22b15d0eef Allow unpacking stalwart's webadmin interface 2025-03-02 08:43:22 +01:00
Gonne
f086234f51 Delete directive proxy_interface 
This directive is supposed to prevent mail delivery loops that would be caused by portforwarding to itself.
Behind this ip address, however, there is our general mail vm and not immediately the mailinglist setup.
 2025-03-02 08:43:22 +01:00
Gonne
753b34592c Increase root file system to make space for /tmp folder which needs lots of space during builds 2025-02-27 16:00:24 +00:00
Gonne
cc91339f80 Address second round of review 2025-02-27 16:55:14 +01:00
Gonne
361eed84af Rename machine to Nyarlathotep 2025-02-26 18:04:27 +01:00
Gonne
70b3a694c4 Submit mailing list mails to correct vm based on port forwarding and run allowlist job less often 2025-02-26 12:34:44 +01:00
Gonne
f0e584e239 Add patch to allow alias files to redirect to their sender 2025-02-26 12:34:44 +01:00
Gonne
5a80d86bd3 Post mailaddresses to HRZ allowlist 2025-02-26 12:34:44 +01:00
Gonne
7796b7aa00 Add mail forwarding based on alias files 2025-02-26 12:34:44 +01:00
Gonne
d7b8f935cd Add basic mailserver configuration 2025-02-26 12:34:44 +01:00
Gonne
2aa93c98f5 Add basic machine config for kaalut, a new mail vm 2025-02-26 12:34:44 +01:00
Gonne
882a8ea189 Add our own package to inputs that converts an alias file to a sieve script. 
Remove the simple nixos mailserver dependency thet we won't use.
 2025-02-26 12:34:39 +01:00
Gonne
77bdd979b0 Align file system layout to new naming policy 2025-02-20 16:37:46 +01:00
Gonne
35707122fa Add Nodens, a VM to install NixOS VMs 2025-02-20 16:37:32 +01:00
Gonne
51c83c8ec0 Pass pkgs to machine configs to enable installation of packages there 2025-02-20 16:31:55 +01:00
Gonne
ac85711356 Entferne Backupconfig für die Matheballwebseite 
Die Bilder, die gesichert wurden, liegen jetzt alle im Git-Repo der Webseite
 2024-10-16 16:32:06 +00:00
Dennis Frieberg
ec46a28278
nix config to save some space 2024-10-15 13:19:23 +02:00
Gonne
e7154785dd Disable TLS behind proxies and relays 2024-10-12 14:10:01 +00:00
Gonne
ace96d5f7c Restrict HRZ allowlist update service privileges 2024-10-12 14:10:01 +00:00
Gonne
b50d7d0e6a Mailman backups 2024-10-12 14:10:01 +00:00
Gonne
b9b7a1fa58 Add pushing to hrz allowlist 2024-10-12 14:10:01 +00:00
Gonne
1ab6e5d868 Setze Mailman-Maschine auf 2024-10-12 14:10:01 +00:00
Gonne
0550754cdd nix flake update 
Allows insecure package jitsi-meet (see https://github.com/NixOS/nixpkgs/pull/334638)
 2024-10-12 13:30:00 +02:00
Gonne
575343c844 Unify hook settings and fix warning 
trace: warning: The option `settings.statix' defined in `/nix/store/plj05iykqma26y930qjf75zxp2qx02sl-source/flake.nix, via option perSystem' has been renamed to `hooks.statix.settings'.
 2024-07-02 16:03:14 +02:00
Gonne
e5a9653f39 nix flake update 
In particular contains https://github.com/NixOS/nixpkgs/pull/323753 (This time for real)
 2024-07-02 15:52:10 +02:00
Gonne
367cbeed0a nix flake update 
Especially contains https://github.com/NixOS/nixpkgs/pull/323753
 2024-07-01 21:32:35 +02:00
Gonne
495c580653 nix flake update 2024-06-24 09:50:31 +02:00
Gonne
c739e6f48b nix flake update 2024-06-12 09:13:19 +02:00
Gonne
d1483131b8 Tausche Gonnes SSH-Key 2024-04-26 18:10:24 +02:00
Gonne
47fd90c602 nix flake update 2024-04-26 18:09:29 +02:00
Gonne
e69c8c6efb Remove obsolete DNS resolver 2024-04-03 15:38:50 +02:00
Gonne
7bc8261cb6 Also sync deletion of files from fsaccount before taking the backup 2024-04-03 15:38:50 +02:00
Gonne
e91f417a29 Move secrets to machine config 2024-04-03 15:38:50 +02:00
Dennis Frieberg
cabd210aa6
[#33] Refactored existing network config 2024-04-02 16:01:57 +02:00
Gonne
326cc52c2e Feedback: more comments 2024-03-30 19:52:11 +01:00
Gonne
1bf59168fb Use sops for private key distribution 2024-03-30 09:01:16 +01:00
Gonne
e340a7eb75 Address Feedback 2024-03-30 09:01:16 +01:00
Gonne
b0af48a9d0 Backup des Fachschaftsaccounts 2024-03-30 09:01:16 +01:00
Gonne
b7b0e07f44 Create backuphost Bragi 2024-03-30 09:01:16 +01:00
Gonne
1c827b5ed1 nix flake update 2024-03-30 07:35:22 +01:00
Gonne
38a2c46575 Fix YAML-Format and add Gonne's keys 2024-03-21 16:58:58 +01:00
Gonne
b8f993d71c nix flake update 2024-02-08 05:59:30 +00:00