Gonne/nixConfig
1
0
Fork 0
forked from Fachschaft/nixConfig
Code Pull requests Activity

Compare commits

base: Gonne:889b867c66148d5e04d2e0f430b0674c4edd9ef3
Branches Tags
Gonne:main
Gonne:documentation
Gonne:kaalut2
Gonne:lobon
Gonne:update
Fachschaft:main
..
compare: Gonne:c078a05ad0011a45c23e6ab6bafa06c1491f6f81
Branches Tags
Gonne:documentation
Gonne:main
Gonne:kaalut2
Gonne:lobon
Gonne:update
Fachschaft:main

24 commits
889b867c66 ... c078a05ad0

Author SHA1 Message Date
Gonne
c078a05ad0 Fix e-mail regex. Apostrophes are allowed in local parts but we use them to deliminate strings in the sieve script. 2025-03-24 19:38:05 +00:00
Gonne
ee26c2a42a Update alias file 2025-03-24 19:38:05 +00:00
Gonne
d3758e38bf Update alias script 2025-03-24 19:38:05 +00:00
Gonne
327d4ec34e Move sieve generator script to stalwart-mail service and make all respective /tmp folders private 2025-03-24 19:38:05 +00:00
Gonne
a469194bce Enable SMTPUTF8. We talk to our own VM that supports it. 2025-03-24 19:38:05 +00:00
Gonne
3300389ac8 More comments 2025-03-24 19:38:05 +00:00
Gonne
f7d555471b Rename secret files to have 'secrets.yaml' suffix. 2025-03-24 19:38:05 +00:00
Gonne
737e66f822 Increase limits for our redirect script to be higher than our number of aliases 2025-03-24 19:38:05 +00:00
Gonne
5643438ce6 Include stalwart's patch for redirect to sender instead of our own 2025-03-24 19:38:05 +00:00
Gonne
a566753dad Update to redirect script that works for multiple recipients 2025-03-24 19:38:05 +00:00
Gonne
b13aa775c8 Only set original sender for MAIL FROM 2025-03-24 19:38:05 +00:00
Gonne
6acb1aaed5 Alias file update 2025-03-24 19:38:05 +00:00
Gonne
0e8d4eb121 Group config parameters 2025-03-24 19:38:05 +00:00
Gonne
9c83e40da6 Enable DKIM signing 2025-03-24 19:38:05 +00:00
Gonne
0cbc7041b7 Filter out catch-all addresses of the form "@domain.tld" from the allowlist that are not intended for HRZ 2025-03-24 19:38:05 +00:00
Gonne
3258fbc2e3 Set sender and increase redirect limit for our alias file 2025-03-24 19:38:05 +00:00
Gonne
3918ca5fec Accept mail from our badly configured VMs 2025-03-24 19:38:05 +00:00
Gonne
b0268f9d24 Add mathebau.de to certificate 2025-03-24 19:38:05 +00:00
Gonne
0407561faf Rename config option after update beyond version 0.11.2 2025-03-24 19:38:05 +00:00
Gonne
00e774edf9 Disable matheball.de forwards and submission to mail allowlist until we actually handle it 2025-03-24 19:38:05 +00:00
Gonne
60b7eef25e Allow unpacking stalwart's webadmin interface 2025-03-24 19:38:05 +00:00
Gonne
69c4ccc0d8 Delete directive proxy_interface 
This directive is supposed to prevent mail delivery loops that would be caused by portforwarding to itself.
Behind this ip address, however, there is our general mail vm and not immediately the mailinglist setup.
 2025-03-24 19:38:05 +00:00
Dennis Frieberg
12c9f59e2e
removed nixpkgs-stable overwrite from pre-commit-hooks, because it doesn't exist anymore 2025-03-17 14:53:22 +01:00
Gonne
4f3efdf496 Don't fail installer machine if no drives to install on are mounted 2025-03-06 09:49:08 +01:00
2 changed files with 14 additions and 3 deletions
Show stats Expand all files Collapse all files

1
flake.nix
View file

@ -19,7 +19,6 @@
inputs = {
flake-compat.follows = "";
gitignore.follows = "";
nixpkgs-stable.follows = "";
nixpkgs.follows = "";
};
};

16
nixos/machines/nodens/hardware-configuration.nix
View file

@ -30,16 +30,28 @@
fileSystems."/mnt/persist" = {
device = "/dev/disk/by-label/nixos";
fsType = "btrfs";
options = ["subvol=persist"];
options = [
"subvol=persist"
"users" # Allows any user to mount and unmount
"nofail" # Prevent system from failing if this drive doesn't mount
];
};
fileSystems."/mnt/boot" = {
device = "/dev/disk/by-label/boot";
fsType = "ext4";
options = [
"users" # Allows any user to mount and unmount
"nofail" # Prevent system from failing if this drive doesn't mount
];
};
fileSystems."/mnt/nix" = {
device = "/dev/disk/by-label/nixos";
fsType = "btrfs";
options = ["subvol=nix"];
options = [
"subvol=nix"
"users" # Allows any user to mount and unmount
"nofail" # Prevent system from failing if this drive doesn't mount
];
};
swapDevices = [{device = "/dev/disk/by-uuid/89e13a83-506a-43b4-b06a-09424500ceda";}];