First try to install Stalwart as a mail software

nixos/machines/kaalut/allowlistPassKoMa.yaml

@@ -0,0 +1,39 @@
+allowlistPassKoMa: ENC[AES256_GCM,data:wsb7LkqKlYBs7wFI3B8kN/8=,iv:NrYRh0dxtFE24z3w0oqTZIsObdNArK6XT5jUmtDZMDM=,tag:A9xsxsL1pdhFjVHbpYLSbw==,type:str]
+sops:
+    kms: []
+    gcp_kms: []
+    azure_kv: []
+    hc_vault: []
+    age:
+        - recipient: age1rasjnr2tlv9y70sj0z0hwpgpxdc974wzg5umtx2pnc6z0p05u3js6r8sln
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBkZElMTjFGWEs5NXVqK2kv
+            dlhpM2txSXluODFKVDM2bExucGJzYW9xU25BCm5QMnYrNS9PN3ozeW1LbGRNdzlo
+            TU5zQ3c3enNZSXh1TDMvUHV3TkdRVmMKLS0tIGw3SnlVQWttbVJqK3JLZjgvZUgy
+            MzlwYlZNblJka0Yxb1QyMnV3OENkOGsKON4XW2H6kOEFcPPub2WdJ3PD4a1wnSYK
+            wjJZ2dz0peRTzHLhQovDI5Qj1ESc+J1RlCL+cSJ187sejestVGSaNA==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1epz92k2rkp43hkrg3u0jgkzhnkwx8y43kag7rvfzwl9wcddelvusyetxl7
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBnYzV2em9uWUtzeW5uekdm
+            THBkQ29zK0J5Sk56a1hnOWI4R2Q1bU9nYldJCk9IbU1vZS9mSjhkaCtEWG03cGds
+            M1Jmbzh3SzZGODN1c095Q3JyKy9lVHMKLS0tIE1DMjc2S0ZiRFQ1OE5ZcGs4VEVG
+            WU11bFMzQjZlejhCcmVGL1Z2Y2ZaTncKcj0Ysj6L73mfbqAp/ViWFcoCS1hk8EPr
+            hOlZIAWPg45ND8rttW9cOIIHhCYAWZqMZEAVvxPBftHc+WGjpoeK9g==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1dhzugelagj6vge5jjxwwn0522ngf7fhxn04sxy2tm8557rtme5tstprwnj
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBJWnVrelZ5U2pwR3EyUmg4
+            My9JeXIvdG9WY0RyazFZd0JrTDZNNkIxUEZnClBHbXh2Zmd0cERjQUZUMy9scUVG
+            VUxqc3FJMGlET2o2cXpMaWNyWFZjeDAKLS0tIGpKSlRlSFVjZmlvUmhZZGNpSDR5
+            VXVsYlNnSVJUbTh6dm5CTVpXMEFSZ2sKSBTQLmWRe8jvDROG3bdMMFKDOghBeZui
+            uat6NxOEDVo6VDqu8hxZ7/4uKpyXh816I7TJPsLYnLy5K46+hcg7/A==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2024-11-23T08:39:10Z"
+    mac: ENC[AES256_GCM,data:Li4aT/YxpbiH2Y3rlGzaJxRv84KElKYt0a8ggnmdzhNBHMRYuBGLrUZWCEFnLcJ3mwyNN3tVpRzNN+iHFpMu5FTdfnTyhXOQ7S46WJMKFSVRqKkRS876GN/UhDMdQnQ7NfcwADgkXwrv3BZKaDJuYNRKwJaYOU6DKGf59verguw=,iv:ETnAQF78r7UAYHh7BP5Hc09PV6KyCDRXQnplTThBt7w=,tag:9ZSSEqU8iMFSRFjITN5d7Q==,type:str]
+    pgp: []
+    unencrypted_suffix: _unencrypted
+    version: 3.9.1

nixos/machines/kaalut/allowlistPassMatheball.yaml

@@ -0,0 +1,39 @@
+allowlistPassMatheball: ENC[AES256_GCM,data:5bAT8zsYuvgc,iv:6ftGMZ36jfTawjxH2CFxefBmBVWJJ+26+HMpGU4tAJ8=,tag:qG6o6L9/zu15nsyTakFCiw==,type:str]
+sops:
+    kms: []
+    gcp_kms: []
+    azure_kv: []
+    hc_vault: []
+    age:
+        - recipient: age1rasjnr2tlv9y70sj0z0hwpgpxdc974wzg5umtx2pnc6z0p05u3js6r8sln
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBkZElMTjFGWEs5NXVqK2kv
+            dlhpM2txSXluODFKVDM2bExucGJzYW9xU25BCm5QMnYrNS9PN3ozeW1LbGRNdzlo
+            TU5zQ3c3enNZSXh1TDMvUHV3TkdRVmMKLS0tIGw3SnlVQWttbVJqK3JLZjgvZUgy
+            MzlwYlZNblJka0Yxb1QyMnV3OENkOGsKON4XW2H6kOEFcPPub2WdJ3PD4a1wnSYK
+            wjJZ2dz0peRTzHLhQovDI5Qj1ESc+J1RlCL+cSJ187sejestVGSaNA==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1epz92k2rkp43hkrg3u0jgkzhnkwx8y43kag7rvfzwl9wcddelvusyetxl7
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBnYzV2em9uWUtzeW5uekdm
+            THBkQ29zK0J5Sk56a1hnOWI4R2Q1bU9nYldJCk9IbU1vZS9mSjhkaCtEWG03cGds
+            M1Jmbzh3SzZGODN1c095Q3JyKy9lVHMKLS0tIE1DMjc2S0ZiRFQ1OE5ZcGs4VEVG
+            WU11bFMzQjZlejhCcmVGL1Z2Y2ZaTncKcj0Ysj6L73mfbqAp/ViWFcoCS1hk8EPr
+            hOlZIAWPg45ND8rttW9cOIIHhCYAWZqMZEAVvxPBftHc+WGjpoeK9g==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1dhzugelagj6vge5jjxwwn0522ngf7fhxn04sxy2tm8557rtme5tstprwnj
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBJWnVrelZ5U2pwR3EyUmg4
+            My9JeXIvdG9WY0RyazFZd0JrTDZNNkIxUEZnClBHbXh2Zmd0cERjQUZUMy9scUVG
+            VUxqc3FJMGlET2o2cXpMaWNyWFZjeDAKLS0tIGpKSlRlSFVjZmlvUmhZZGNpSDR5
+            VXVsYlNnSVJUbTh6dm5CTVpXMEFSZ2sKSBTQLmWRe8jvDROG3bdMMFKDOghBeZui
+            uat6NxOEDVo6VDqu8hxZ7/4uKpyXh816I7TJPsLYnLy5K46+hcg7/A==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2024-11-23T08:39:13Z"
+    mac: ENC[AES256_GCM,data:VD+pb41S20hXLIn0IhVp3cuSB26D+DVXitrGG6/caVsK4Q1GLqh5kpsI3y9UKog3N0hl2qE1+uDWOkdQHrdVFUSBplxraP2dHCKjlU4lPz5nsprW8SA8TQrPrDEsX0aL+xKRDQMracmCskZcujaNsaqjPP3Uvw9e2vWekYdF3l0=,iv:qLUl8D1DDdPCWscELmjE75MfMwr1a7gAEFJka5lpGE8=,tag:W0//60tpXNQwPM1qV4VNrQ==,type:str]
+    pgp: []
+    unencrypted_suffix: _unencrypted
+    version: 3.9.1

nixos/machines/kaalut/allowlistPassMathebau.yaml

@@ -0,0 +1,39 @@
+allowlistPassMathebau: ENC[AES256_GCM,data:SPnAybYbTz3/,iv:dGf5kD5xqtQGuOgEwn51ZxIG4isUVPwjKM8Fkk4jzIU=,tag:MY+WnD6NCR0RjaHXPlYArQ==,type:str]
+sops:
+    kms: []
+    gcp_kms: []
+    azure_kv: []
+    hc_vault: []
+    age:
+        - recipient: age1rasjnr2tlv9y70sj0z0hwpgpxdc974wzg5umtx2pnc6z0p05u3js6r8sln
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBkZElMTjFGWEs5NXVqK2kv
+            dlhpM2txSXluODFKVDM2bExucGJzYW9xU25BCm5QMnYrNS9PN3ozeW1LbGRNdzlo
+            TU5zQ3c3enNZSXh1TDMvUHV3TkdRVmMKLS0tIGw3SnlVQWttbVJqK3JLZjgvZUgy
+            MzlwYlZNblJka0Yxb1QyMnV3OENkOGsKON4XW2H6kOEFcPPub2WdJ3PD4a1wnSYK
+            wjJZ2dz0peRTzHLhQovDI5Qj1ESc+J1RlCL+cSJ187sejestVGSaNA==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1epz92k2rkp43hkrg3u0jgkzhnkwx8y43kag7rvfzwl9wcddelvusyetxl7
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBnYzV2em9uWUtzeW5uekdm
+            THBkQ29zK0J5Sk56a1hnOWI4R2Q1bU9nYldJCk9IbU1vZS9mSjhkaCtEWG03cGds
+            M1Jmbzh3SzZGODN1c095Q3JyKy9lVHMKLS0tIE1DMjc2S0ZiRFQ1OE5ZcGs4VEVG
+            WU11bFMzQjZlejhCcmVGL1Z2Y2ZaTncKcj0Ysj6L73mfbqAp/ViWFcoCS1hk8EPr
+            hOlZIAWPg45ND8rttW9cOIIHhCYAWZqMZEAVvxPBftHc+WGjpoeK9g==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1dhzugelagj6vge5jjxwwn0522ngf7fhxn04sxy2tm8557rtme5tstprwnj
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBJWnVrelZ5U2pwR3EyUmg4
+            My9JeXIvdG9WY0RyazFZd0JrTDZNNkIxUEZnClBHbXh2Zmd0cERjQUZUMy9scUVG
+            VUxqc3FJMGlET2o2cXpMaWNyWFZjeDAKLS0tIGpKSlRlSFVjZmlvUmhZZGNpSDR5
+            VXVsYlNnSVJUbTh6dm5CTVpXMEFSZ2sKSBTQLmWRe8jvDROG3bdMMFKDOghBeZui
+            uat6NxOEDVo6VDqu8hxZ7/4uKpyXh816I7TJPsLYnLy5K46+hcg7/A==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2024-11-23T08:39:15Z"
+    mac: ENC[AES256_GCM,data:o9CWiR+010tZ8W+p+u0fy1wgE+ZgJYH4O4U7KLYjHQ7GPMOqViKVVw5DuWEHF/7uI8zhpMsMMRwUJmFas13uwdF0ckq/VMP1d0o31wOK8iJ0EudXMf9GQRH1KncOuQryDZ6CZKRKa/heNa5nn0pf5e0VfHq8S/h2YjBIl5zSbWY=,iv:5wd271XH9qrTbJgIPHu/33HQaU/tAMuf+ZGK5mnzv7M=,tag:42nXpz99MI+UnKC5QNWnhQ==,type:str]
+    pgp: []
+    unencrypted_suffix: _unencrypted
+    version: 3.9.1

nixos/machines/kaalut/allowlistPassMathechor.yaml

@@ -0,0 +1,39 @@
+allowlistPassMathechor: ENC[AES256_GCM,data:ll8NF4oldTUr,iv:WQYXNliuIEsZNRBvMC0OQmXER3sAUfcaLtdLQvaLLpY=,tag:Is2bj5c2PLUkztMvYdf+Ew==,type:str]
+sops:
+    kms: []
+    gcp_kms: []
+    azure_kv: []
+    hc_vault: []
+    age:
+        - recipient: age1rasjnr2tlv9y70sj0z0hwpgpxdc974wzg5umtx2pnc6z0p05u3js6r8sln
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBkZElMTjFGWEs5NXVqK2kv
+            dlhpM2txSXluODFKVDM2bExucGJzYW9xU25BCm5QMnYrNS9PN3ozeW1LbGRNdzlo
+            TU5zQ3c3enNZSXh1TDMvUHV3TkdRVmMKLS0tIGw3SnlVQWttbVJqK3JLZjgvZUgy
+            MzlwYlZNblJka0Yxb1QyMnV3OENkOGsKON4XW2H6kOEFcPPub2WdJ3PD4a1wnSYK
+            wjJZ2dz0peRTzHLhQovDI5Qj1ESc+J1RlCL+cSJ187sejestVGSaNA==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1epz92k2rkp43hkrg3u0jgkzhnkwx8y43kag7rvfzwl9wcddelvusyetxl7
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBnYzV2em9uWUtzeW5uekdm
+            THBkQ29zK0J5Sk56a1hnOWI4R2Q1bU9nYldJCk9IbU1vZS9mSjhkaCtEWG03cGds
+            M1Jmbzh3SzZGODN1c095Q3JyKy9lVHMKLS0tIE1DMjc2S0ZiRFQ1OE5ZcGs4VEVG
+            WU11bFMzQjZlejhCcmVGL1Z2Y2ZaTncKcj0Ysj6L73mfbqAp/ViWFcoCS1hk8EPr
+            hOlZIAWPg45ND8rttW9cOIIHhCYAWZqMZEAVvxPBftHc+WGjpoeK9g==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1dhzugelagj6vge5jjxwwn0522ngf7fhxn04sxy2tm8557rtme5tstprwnj
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBJWnVrelZ5U2pwR3EyUmg4
+            My9JeXIvdG9WY0RyazFZd0JrTDZNNkIxUEZnClBHbXh2Zmd0cERjQUZUMy9scUVG
+            VUxqc3FJMGlET2o2cXpMaWNyWFZjeDAKLS0tIGpKSlRlSFVjZmlvUmhZZGNpSDR5
+            VXVsYlNnSVJUbTh6dm5CTVpXMEFSZ2sKSBTQLmWRe8jvDROG3bdMMFKDOghBeZui
+            uat6NxOEDVo6VDqu8hxZ7/4uKpyXh816I7TJPsLYnLy5K46+hcg7/A==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2024-11-23T08:39:18Z"
+    mac: ENC[AES256_GCM,data:/KX/ck4aj/dtKl9LaFIfRBi6HbSJ4IEIPDTqlpwH0zfcm37yQPIUZEV4IS4cNqrQ7TZIkSFdE+f30PQbrF81yJ3vgtyvDRCm3IbUZM3SSsEeLvwTmpmU67bR0+bzXOFMYWbIJYZWM9Ucg/nzikRqKCvtSeSjvQOGd21cmwXPhEc=,iv:Os5YJWp3WBCfPPzG7pWAbLoXZPC3cGdYzRFy5OIJO2o=,tag:+f8bdCM8zMguOXhXDMupNQ==,type:str]
+    pgp: []
+    unencrypted_suffix: _unencrypted
+    version: 3.9.1

nixos/machines/kaalut/backupKey.yaml

@@ -0,0 +1,39 @@
+backupKey: ENC[AES256_GCM,data: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,iv:y2iDW/i4D46mE9f6MuTg91jPDi6L8YEpChIZPi0G9e0=,tag:2al2b0qk8WK6QfoVXNotxQ==,type:str]
+sops:
+    kms: []
+    gcp_kms: []
+    azure_kv: []
+    hc_vault: []
+    age:
+        - recipient: age1rasjnr2tlv9y70sj0z0hwpgpxdc974wzg5umtx2pnc6z0p05u3js6r8sln
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBFMkU2WlF3U2UzQTJ2QWxN
+            Yyt3OTVYN3NubWlubUkySjVVdStWT1hhdDNJCjU3UVM5RTF6d2dtbWo2RUN5Z2Ju
+            WE5SR1lTclkxSnROeUpZWWZ3c1JYUVEKLS0tIGhWTngrc2pvRS9nOVhEUW9XQzVL
+            d2NQUG9xRXdVbjI4VTUzN2tabXNZTUUKBVEZrW1IRV2B2lNMzIdzcEbyU6j6bcLK
+            hUWF9UBk7oZGzgPcZ9Mv+ZzkI4wEmCTy8R1lev/ocVSRNdApZpxguw==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1epz92k2rkp43hkrg3u0jgkzhnkwx8y43kag7rvfzwl9wcddelvusyetxl7
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBuczB3WW5LUURHRHdCSkcz
+            clBXZ0RwQlpabkR4ZkhlSkJhbHd3ejJJQ3g0CjhXejB4WnM5QURlcmIzTWNETGVp
+            clBBNWlqZmptNkNKMEhjRUpadTlzV2cKLS0tIGFYaHJCQk9pc2xnQ2R0ejJLc1dZ
+            UVYxYm5LOWxnQmE2U0RGbnpHK3ZpWTgKmNuXeamFRAwwi0byKfT9KV7O9zLpQhYm
+            /0sewbJhOnuxSc1g55Tdle1dZYYwQqbF3WFdg4XBe37HvIyDYpWZAw==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1dhzugelagj6vge5jjxwwn0522ngf7fhxn04sxy2tm8557rtme5tstprwnj
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB3cGRDT3VMeks5ODdyT1lu
+            Wjc1N0dMLzMzc1N4ckJ5RE94MmdHQ2lZcXlJCktialhsWWRCbytiSHlyKzdIZTF0
+            a2l3bnIyVE9RM2IrY2liRi9NYXBTK2cKLS0tIEhCYXJrTWV6cEJST2Q4WHZ6cGtT
+            Ty93MXkrMzNvWWZ5SUp4czlrSnpVRnMKJIH8fLwGt9KkKi9D+0OY7sYvmxj6NAHc
+            00YQXOspEq4TbAxLj881jh2Kfyprxl64sDHpb2icAXzVv6wE2cI2ZQ==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2024-11-23T08:39:23Z"
+    mac: ENC[AES256_GCM,data:Ie0k2AifhYuEs5ht3J0OuLCAEw9HdNDK70BjI4PZntAWgr5iu/dqUGb5xFb8sctbpyyfM0FMI64ds0YZPXZP+HnA/HGJ+O5k3YPTthVv+mXYtw29O60r00IwI1dMiJBTyviYhVRzvQwQ1I1d1G2upoTL+oXFD3PckU9re+6dagA=,iv:hyKAy6HyggkKxXm/mGskpNPSMvi9UkMuz+WypyVU0KQ=,tag:EW73paprAOEUPX8AmuXVpA==,type:str]
+    pgp: []
+    unencrypted_suffix: _unencrypted
+    version: 3.9.1

nixos/machines/kaalut/configuration.nix

@@ -0,0 +1,100 @@
+{
+  imports = [
+    ./hardware-configuration.nix
+    ../../modules/mail.nix
+    ../../roles
+    ../../roles/vm.nix
+    ../../modules/vmNetwork.nix
+  ];
+
+  # System configuration here
+  services.mathebau-mail = {
+    enable = true;
+    domains = [
+      # lists.mathebau.de is forwarded to another VM and does not need to be listed here.
+      {
+        domain = "matheball.de";
+        allowlistPass = "/run/secrets/allowlistPassMatheball";
+      }
+      {
+        domain = "mathebau.de";
+        allowlistPass = "/run/secrets/allowlistPassMathebau";
+        virt_aliases = "/run/secrets/mathebau.aliases";
+      }
+      {
+        domain = "mathechor.de";
+        allowlistPass = "/run/secrets/allowlistPassMathechor";
+        virt_aliases = "/run/secrets/mathechor.aliases";
+      }
+      {
+        domain = "koma89.tu-darmstadt.de";
+        allowlistPass = "/run/secrets/allowlistPassKoMa";
+        virt_aliases = "/run/secrets/koma.aliases";
+      }
+    ];
+  };
+
+  networking.hostName = "kaalut";
+  vmNetwork.ipv4 = "192.168.0.17";
+  system.stateVersion = "24.05";
+
+  sops.secrets = {
+    # Password for the HRZ API that gets a list of mailaddresses that we serve
+    allowlistPassMatheball = {
+      sopsFile = ./allowlistPassMatheball.yaml;
+      owner = "stalwart-mail";
+      group = "stalwart-mail";
+      mode = "0400";
+    };
+    allowlistPassMathebau = {
+      sopsFile = ./allowlistPassMathebau.yaml;
+      owner = "stalwart-mail";
+      group = "stalwart-mail";
+      mode = "0400";
+    };
+    allowlistPassMathechor = {
+      sopsFile = ./allowlistPassMathechor.yaml;
+      owner = "stalwart-mail";
+      group = "stalwart-mail";
+      mode = "0400";
+    };
+    allowlistPassKoMa = {
+      sopsFile = ./allowlistPassKoMa.yaml;
+      owner = "stalwart-mail";
+      group = "stalwart-mail";
+      mode = "0400";
+    };
+    # Virtual alias file
+    "mathebau.aliases" = {
+      sopsFile = ./mathebau.aliases.yaml;
+      owner = "stalwart-mail";
+      group = "stalwart-mail";
+      mode = "0440";
+    };
+    "mathechor.aliases" = {
+      sopsFile = ./mathechor.aliases.yaml;
+      owner = "stalwart-mail";
+      group = "stalwart-mail";
+      mode = "0440";
+    };
+    "koma.aliases" = {
+      sopsFile = ./koma.aliases.yaml;
+      owner = "stalwart-mail";
+      group = "stalwart-mail";
+      mode = "0440";
+    };
+    # password for https://stalw.art/docs/auth/authorization/administrator/#fallback-administrator
+    stalwartAdmin = {
+      sopsFile = ./stalwartAdmin.yaml;
+      owner = "stalwart-mail";
+      group = "stalwart-mail";
+      mode = "0400";
+    };
+    backupKey = {
+      sopsFile = ./backupKey.yaml;
+      owner = "root";
+      group = "root";
+      mode = "0400";
+    };
+  };
+}

nixos/machines/kaalut/hardware-configuration.nix

@@ -0,0 +1,30 @@
+{
+  lib,
+  pkgs,
+  ...
+}: {
+  imports = [];
+
+  fileSystems."/" = {
+    device = "root";
+    fsType = "tmpfs";
+    options = ["size=1G" "mode=755"];
+  };
+  fileSystems."/persist" = {
+    device = "/dev/disk/by-label/nixos";
+    fsType = "btrfs";
+    options = ["subvol=persist"];
+    neededForBoot = true;
+  };
+  fileSystems."/boot" = {
+    device = "/dev/disk/by-label/boot";
+    fsType = "ext4";
+  };
+  fileSystems."/nix" = {
+    device = "/dev/disk/by-label/nixos";
+    fsType = "btrfs";
+    options = ["subvol=nix"];
+  };
+
+  nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
+}

nixos/machines/kaalut/koma.aliases.yaml

@@ -0,0 +1,39 @@
+koma.aliases: ENC[AES256_GCM,data:a+oGvyMf2SPxCdMjdu61TEJCYTpOHnyizQi7cSDkhHF2q9YyuuMttHBn/YzOIkZxx9CQeRQhbK1CPmknUEv4oHpYP1TFCHlRhX08g4ZRKHUxMu5u1rK0rTRLiKcHmhQeHfAoVcfRXeURY879ltGYg7mYHdeLMKK0epYb5bM4tA==,iv:1Rgjwiv2XRePmE2UzYstABvQAIaSeOW87VsV29sJUFU=,tag:JcsLDZmsE2lPwxY56ujreg==,type:str]
+sops:
+    kms: []
+    gcp_kms: []
+    azure_kv: []
+    hc_vault: []
+    age:
+        - recipient: age1rasjnr2tlv9y70sj0z0hwpgpxdc974wzg5umtx2pnc6z0p05u3js6r8sln
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB6encybXQydVFxOEExa3h2
+            aklSRzljdmEvdlk0K1I4QzVrT3R0TEI3L1JBCjdCNnc4V2xWZTFoWDJBMEg2elcy
+            Z2U3MmdKWlNqYklUZkJMUUFVbzhOYlEKLS0tIEFYU3N2MEZCUndKa3FzMHkrRDZ4
+            bmhWeUVXK1hHamwwc0VkWU9zSHdqQ0EK21CI9uabjcy/8TaYAZ2dnkEAkp0f+1cy
+            MWsy3gf72qhIPBcqECet1nVdsjWIqVzagSsGnvbM1qVyqWRp/56JbA==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1epz92k2rkp43hkrg3u0jgkzhnkwx8y43kag7rvfzwl9wcddelvusyetxl7
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBFTGJjS1owL2tMeXFyY1p3
+            QUxubUZid0pKUDQzMXdxN1prMkZ3L3NOalFjCnF3TzRWZ2xEd1FnZUh4WEVUUG45
+            c1lnazhzanBsMEFUMmVmOVNVOFV0d0UKLS0tIGF6UWt2azU5UG9YMUthZVBsRitu
+            NU9XVzJXdjdSM0JZbWRoUmdmM2FRUWsKQIfAkTZ2BaN0ot9gqmVCshI5KTMHALMR
+            io1VeEKeyIP/Lr5r+RggCdV/YlazjSiUGJfdGgBaVF5u6ItU3UYVug==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1dhzugelagj6vge5jjxwwn0522ngf7fhxn04sxy2tm8557rtme5tstprwnj
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBXeE9JOE9reGdwd2lYaUZC
+            RkxpNG95Tkl3UWNXT0YxWkU4VkFoUGlDeVJnCnA3SDNXMGZYbXEyZ0hLcnNJQ0gv
+            K3l6T2dOVVIzbEt1amNoVGhGWW9vdEUKLS0tIDFrckxValhzQ216a0Q5RTNCSjBy
+            VHQ5SFhQRzZDTFUxTUR6N0JnV0w0aVEK13d5XK4C+qpgPRqiEo69exZu1//0HKiI
+            N2n2Uzaj7qoqe6rM5XWAYUZeuiqfk98q72tl0GeBt0rNb92C4Sugkw==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2024-11-23T08:39:28Z"
+    mac: ENC[AES256_GCM,data:vK8UIeGZFUfVB3LpsvkFzYGgJSinvsWQDewKVqfAsC0yPHRBP+yCE3SXDeb01sl/ZGlw13o79AxRLBF0Z89QoljWtiWjWWgBnUBFAuURTtMmNBtpbfxgjevXJU9iZgIMAfd/DGuLE7HMLrqfzWOvuZNE9kSz//CkD9PQLorMfGI=,iv:E056ECSWlvSfe8VOQY1KAKyO1Tm3aRsYUCBy8KtLDxo=,tag:nVTmyUB3Pcvjpm1vECmZjw==,type:str]
+    pgp: []
+    unencrypted_suffix: _unencrypted
+    version: 3.9.1

nixos/machines/kaalut/mailForwardSieve.yaml

@@ -0,0 +1,39 @@
+mailForwardSieve: ENC[AES256_GCM,data:EYnhE0qs9mA1v+iyOLUu27CR7F0JIHA7lZ3qbXynnfDPjcCRTKBVB5bwcvXx/QKia7Dt7ECysr8XlcYFXsP37MU10daKM6PLkGP46kfN67Lv/IFmot3choWwxZMFSO2l5qwQUp/g0b8IWpWmBSngGcOpdzSt2y55NdSTjXjZGFXcH4mHl6xtSRZUaJsAIySSFXdGyyigHb5G9i3PTiChR4rs48UtXKyzs8cRyntaRlquduvJUfb9rC1eRnwncz+4gWrnnhCZr5Z4b0LHQf4npfaM3zPTUI1/9b7tOy9I+WPD4oIEkhpw64EjGVTHzq1qW5z4HRgEpTSKR9f3TGpoWEtzIBVhwYMn9lZ2pAXfvcfHfti4PGN5eVIk3asXw0OEHUqDe7AW0aRqokXUv5ocI+HD6Dt9+Y8QRkgyN7zGlhVs+YTlMQViBtXjVFzsr1HY1baCkcuUyr0F3pAmOk+749NpqIIQGEgFq4TzsPykyKTWDOMkB4AFIV+mw4ly3UYC+3c2986MV5YdoGJWmicMivHZpvDUEMnpr8/Qg5h8lYJdxlw2aKq1jIJzp+SthSZH+p1RgheIKi2uo1LKS+ZloWknjzqJgzDTpi0UHIJDRKAM1tfFE0/JJW5WBcwal7d2t4J4EmBMfpTfM6+vCyL9VqXtm5rZVO5yByrdJkFW7fyoNyQi9i/iKXW4iZhNbgFysNH/yi2gQ50Nm5Z9+NZLu4K0j2nHOAD8YSDwpO/PWu1zLKXC0mnwuMNOc0RzuWRc2Tsj1koY7F1bsITAY7U94zLMoyaAG/SpDdEKqPS1bXU0z1HZThMIyP/BqJt5zntrLhiFIWmHN3Kr+6qXA/ngMjVI+nrQs8JvaOQcHeHvyUSAwHklV/XguKB57sAdXbVvDgoM/NZn6qIsArwO4d7j3g954rYmI5eIMzeMfh4zGEUDIBTm+CNliSn4f063RmGp0W5+xyFFlpEpJdKJUJ/nJYBy4v+lZ03zEHccCHhvs7jrit6uz+iRuXuBJMF/wdWBlIosDFUlarSanqXqOo+3c1TM9ok7mk6MQttTvaUkEkVnwU5ZcvlRfL2taxtZFfF/odvTuVI9CFDpJBBYToitl1dD/UomSCkCZJ3E7Uk4JNCRr/c9X/Fsym3X5Ir7v+vfn2EuZ814w306NwsRhj/Zs9ZZwIZM3ejZt8tq6W8mnPovBMTXJrsvwmlPXqqL9ZT10FEFC7vaY2L7+7K4oax1KbpxYdDgYi1a1UJ3atkQCpRUbg2LwtbmGgtJQ8b+D3gxLzDSuoMIKBJoA9g82cr5fln9UNPSs7NHGR8Q2+RBYlwIq7S7gK+bIUJ+WT3BbXZJUZvRr9LK5+IQn+S5/EM8UbdSFVQp+ojka3lT+H/jn+sN6ZY5giDgtnKU/k50CG9F/lEqExKjIR8gQshhNBoPtasdhcvbaxVqrB/2sMk8IuoELfG/gayPmEZgNLhM3DuWAbhAu+UgsX4vmRjhISMEw30bJBTnZl89JndRLWsgynySD4relphQWOLLj/ZWSkC0MclHOZmAHoCGmyoOycKjJTZ5Fdkug8kb6lk8x6dgI5+cPHgDVxc3k9Rm5k+fkO6p1CgP+Sa9pmfLdcfaIZpogPAqO15kV0/zXnSl/OGOMaanUKLy3TolQSz6dLYwLAqOVCH92+lD2xtDmiyG44v5L+5xw1h1jwpmTuR4zFdP+E0z4rZ5YhJB7j1ll0yB2UcjBm5WSeFtZy3ZHe9poAznW6/OkXRP08Dtuk0JNZh9iwO/bsirs8T2oUiuJfd8AC7zCJhIOUDSxbmJFG+1J6mrTUKheH7WAvDkCbNpv5jiA9WUb8Z+rJ3tr+FJkYX2MR8=,iv:B4PggssYfBbZA+mEJOiTo8GYWSZxbl9wJIHjUlv6c2A=,tag:isO6wVZR6UOuDLGCA/tddg==,type:str]
+sops:
+    kms: []
+    gcp_kms: []
+    azure_kv: []
+    hc_vault: []
+    age:
+        - recipient: age1rasjnr2tlv9y70sj0z0hwpgpxdc974wzg5umtx2pnc6z0p05u3js6r8sln
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBoS0c2YkJ6ZkI2RUJRNUY2
+            QTRZSFhZNU51L09rRk40OWhZQTZweG53bDNBCnM5Sm1MRmJxS24zV2lwQUdJc1Q2
+            ZFNPU0hTaCtod3BrRDZKV3VLOUVyQVkKLS0tIDZycm52VmJsUWhaQXRJRnZ0RXJ3
+            bFF0Tm1nODY2ZlRhM2JEZkRNMHU5M1UKqCZtZetF0sR0NCGbuC9OJqomaL0cDzpQ
+            LiEV4UmnEnBAPnQNmGUK/HZReWZe0j4pYBT8Jkyob7dvgkRTzdpJpQ==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1epz92k2rkp43hkrg3u0jgkzhnkwx8y43kag7rvfzwl9wcddelvusyetxl7
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSAzZVBLblNjNjhmS2ZSTW81
+            bUF1cmpSUE5JaDJFVDRTc3kvNFIrMVg3Q0NjCm5aSnU2MXNFQ1NtUnRaQ2FmOG04
+            Q0UvRTJYK1ZZL3p4bzR0bnI5S2Z2ZTgKLS0tIGF4dVh4QzdRdUNKMG1leWp2UFhm
+            Y25tSVRaelVVQWRCcmtVRTMrSis4V2cKVbz6SVEQgAIcdVtRarZqfTaJcgxRphdd
+            WX6YDsdMAFg2fwKKMQy+jQhQl4OymxzhKd4Xzls7KVWMvoSQQJWUDg==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1dhzugelagj6vge5jjxwwn0522ngf7fhxn04sxy2tm8557rtme5tstprwnj
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBQeW1kcWEwYTBhQTJBMmRn
+            QTM2bDVnd3dxVm1HWWZPeDZzdjc5ZzVvdTN3Cit0NmtXbk96K3ZlNkNuRk5RZ2NV
+            R3RETmlCNGdWdk1ORGtmK0pQWVNlMjQKLS0tIHZJLzd5WHY1U1BPbjZESnA5SGdy
+            VVduS0lDU3hETGxtWFZ5YmFUVXQzbEEKFy3uE2yJHygr7lBBfuw1sHonaFVsVaEs
+            lADtRxUOGbxQumFIIYhCVC8R3ZbX569iwtFE0JyNhvcFsLYiUu2gHw==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2024-11-23T08:39:34Z"
+    mac: ENC[AES256_GCM,data:Num40NAUnNFictwt1Nlo5cOgnLBeih7oqXxpRIvHm10bpqK3VI4oxwrPwSOXXqMIh24zYNe7vgc/laxiqI8HCQkP8InBR5iryL1326efqLrVFUkgBvwkPu1GvgwIpvn0lLRMyF8bYFmWZHN2i3k1pVgS1xtQxGecGosPwyxwO2c=,iv:cupUxpzJhmpZB43t1kFTFrTx0PSfKk5wS1xMa0owz+w=,tag:K+GhidGy66LuL7aL/T3NzA==,type:str]
+    pgp: []
+    unencrypted_suffix: _unencrypted
+    version: 3.9.1

nixos/machines/kaalut/mathechor.aliases.yaml

@@ -0,0 +1,39 @@
+mathechor.aliases: ENC[AES256_GCM,data:jq9oLiCQmAWVcdH13YRmTvCC23dSOAsszwQEVzi1Ij125XlDgVeR1lDXjeVsubTAAd9P8LJFjliz1mL6nA5tP7QTgkygBhLqAP22bAE+L1mDNejYXki2NdOuy8HJgWElCjxFZLGrI7FU+b8zILGsNPEDKa25o3PJbd6dlQeJ7Q2s3bPQ2K/y6FC2RFjCBuGJuNAGAtC5l6ymvjKBdh70At/IZXqtk13vyHVJbMwB,iv:FsQeDq3LMH+hxKcthdQZmyPkLe7XBwiLqfB0Yt+s7r0=,tag:rKjphs1Tss2+3b5bWDzfUw==,type:str]
+sops:
+    kms: []
+    gcp_kms: []
+    azure_kv: []
+    hc_vault: []
+    age:
+        - recipient: age1rasjnr2tlv9y70sj0z0hwpgpxdc974wzg5umtx2pnc6z0p05u3js6r8sln
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB6encybXQydVFxOEExa3h2
+            aklSRzljdmEvdlk0K1I4QzVrT3R0TEI3L1JBCjdCNnc4V2xWZTFoWDJBMEg2elcy
+            Z2U3MmdKWlNqYklUZkJMUUFVbzhOYlEKLS0tIEFYU3N2MEZCUndKa3FzMHkrRDZ4
+            bmhWeUVXK1hHamwwc0VkWU9zSHdqQ0EK21CI9uabjcy/8TaYAZ2dnkEAkp0f+1cy
+            MWsy3gf72qhIPBcqECet1nVdsjWIqVzagSsGnvbM1qVyqWRp/56JbA==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1epz92k2rkp43hkrg3u0jgkzhnkwx8y43kag7rvfzwl9wcddelvusyetxl7
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBFTGJjS1owL2tMeXFyY1p3
+            QUxubUZid0pKUDQzMXdxN1prMkZ3L3NOalFjCnF3TzRWZ2xEd1FnZUh4WEVUUG45
+            c1lnazhzanBsMEFUMmVmOVNVOFV0d0UKLS0tIGF6UWt2azU5UG9YMUthZVBsRitu
+            NU9XVzJXdjdSM0JZbWRoUmdmM2FRUWsKQIfAkTZ2BaN0ot9gqmVCshI5KTMHALMR
+            io1VeEKeyIP/Lr5r+RggCdV/YlazjSiUGJfdGgBaVF5u6ItU3UYVug==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1dhzugelagj6vge5jjxwwn0522ngf7fhxn04sxy2tm8557rtme5tstprwnj
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBXeE9JOE9reGdwd2lYaUZC
+            RkxpNG95Tkl3UWNXT0YxWkU4VkFoUGlDeVJnCnA3SDNXMGZYbXEyZ0hLcnNJQ0gv
+            K3l6T2dOVVIzbEt1amNoVGhGWW9vdEUKLS0tIDFrckxValhzQ216a0Q5RTNCSjBy
+            VHQ5SFhQRzZDTFUxTUR6N0JnV0w0aVEK13d5XK4C+qpgPRqiEo69exZu1//0HKiI
+            N2n2Uzaj7qoqe6rM5XWAYUZeuiqfk98q72tl0GeBt0rNb92C4Sugkw==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2024-11-23T08:39:43Z"
+    mac: ENC[AES256_GCM,data:2tceG586ydMqiNPkPbT7ZM4+zoGslbif9TuB26Pz2ji/KsLvnOSwPsmmilNST32Nz5RYym1JGbU0uVQMzBM6uaQvYoR6vVwgC95lEnkY5nenhh3Xhy/OLtXmRdmrIXvvyxWK/2Gtspyy3HR2yFV0Gw0PY5ODPxpxtrypE2N9YmY=,iv:4d7M/LF0UVkEicXRNUDEDKUldehav60nTCS1Jh/RvwU=,tag:mLOwUSE5osUwZp/8cUqClw==,type:str]
+    pgp: []
+    unencrypted_suffix: _unencrypted
+    version: 3.9.1

nixos/machines/kaalut/stalwartAdmin.yaml

@@ -0,0 +1,39 @@
+stalwartAdmin: ENC[AES256_GCM,data:lAd0XfikNLJxK5qMtrBkKdbhwZo=,iv:3H3E8JPGPg3af3doeTSD9cuq2+ZLBNK3g1cqiI1k5rw=,tag:Wa/Fsc00mxuFnzyKTQp7CQ==,type:str]
+sops:
+    kms: []
+    gcp_kms: []
+    azure_kv: []
+    hc_vault: []
+    age:
+        - recipient: age1rasjnr2tlv9y70sj0z0hwpgpxdc974wzg5umtx2pnc6z0p05u3js6r8sln
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBncElOY2VuRUNzWHhCdkVr
+            MWJmbXNLRWpnT1NCK0pJeWpsQ0pwSVpialVJCmVzaVBRMitKRWpLOThBMGl4c2pt
+            U291Zk8yeFhtVWNmamxJbVF3V3NMSVEKLS0tIDR5Nmhvb2hPNUVlVU9BQnJxU0lv
+            L3ZvZ3VXZVdIVXJYOHkwYUR1N0dSVFkK5LRlqyJbxuKkddgO4xSNUkrAiUnrbVUt
+            C72CNDg4q/KQ8nQ5TP+JgKyYZQFzvKPhP7+YdfUobDaHOPnKG0cVAg==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1epz92k2rkp43hkrg3u0jgkzhnkwx8y43kag7rvfzwl9wcddelvusyetxl7
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB5WXoweFRJME1sRzhSd1VO
+            bDY1QWp1aWtldEdwbHRXUGt4UmN1T1hhem4wCmQwcnBnRkFsaFVBd0FqNHNoc0ov
+            RTQwbFpZa0E2aVRLWGNEc2NySkcwNzAKLS0tIERrWVBSNFlQQVV1c2g1YjI4RjlR
+            MFJQUU94RUoxTVErVHFkYmM3TlhFcTgKHCsbj8nfFOb4eYh6IdXKL+xXWNF7JSjR
+            Zl0rUTXSWlf4DOGtolp9ZuYMkJ9tcDUh1Qy090lQ0+FKUdTpnreorg==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1dhzugelagj6vge5jjxwwn0522ngf7fhxn04sxy2tm8557rtme5tstprwnj
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBBcUsrZThHZ1VCNzhOS1Iz
+            d1pvR3M3WHNOdUJ5c0tzYVdYT20vYmF5Y2cwCmQ1ejRuMGxIS2U3NGdMOTFuN21H
+            VXgveWc0SE5TVlgzV1lieVZpRTN5SXMKLS0tIGlxSHVUMEh4R0pUekRGeGRjejdi
+            dEg0V01PdWpNdUxmN1RzQVZjdTlMSkEKdT7VEl5kIRyNY1KwWShuvyIZkyT+KlHs
+            JbhcFJznJNkn13G+SuPaLQ/WxpuO1MxDCeKnya/vuNw3sSu74nSWrg==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2024-11-23T08:39:45Z"
+    mac: ENC[AES256_GCM,data:GGDnb19XQPXR3Apzn9oDFH03NjU9LR0HCHgtjLErJbmHZJl6wAmjST79cDpaDSWKtdT4KPrJLXCuRt1a/LbmqmTzegsfXsfmq881WwFJ1pyyrK9Z9kVxdNeXmb3GyGU7Mrg929O3V2xRhXgpTaOxNCWPWtZPITOE561sU8X0eb8=,iv:LNPIpNGWAP5VvFnLBAf8MPwMNfjwz1veazvlIw4r8JA=,tag:h4SAW6uIHpeRfYKLVSRPkA==,type:str]
+    pgp: []
+    unencrypted_suffix: _unencrypted
+    version: 3.9.1