| Commit message (Collapse) | Author | Age |
|
|
|
|
|
|
|
|
|
| |
Disable networkmanager from writing `/etc/resolv.conf` and use
configured DNS servers with DNS over TLS.
Prune down list of nameservers as Level3 and OpenDNS do not currently
support DoT.
Signed-off-by: Kenny Ballou <kb@devnulllabs.io>
|
|
|
|
| |
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
|
|
|
| |
The system version is older than the user version since the system is
tracking the stable branch.
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
|
|
|
| |
enable automatic garbage collection and add wheel users to trusted nix
users.
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
| |
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
| |
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
| |
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
|
|
| |
Disable wayland since it doesn't work well on this machine.
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
|
|
|
|
|
|
|
|
| |
Found this configuration options in a [reddit][0] post. This works out
pretty well.
Remove the keyfiles since they are never available when the system is
unlocking.
[0]: https://www.reddit.com/r/NixOS/comments/fv3iza/yubikey_and_luks_on_multiple_machines/
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
| |
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
|
|
|
| |
Similar to a197c85 ("orobas: remove redshift service", Wed May 13
12:02:37 2020 -0600), we no longer need redshift.
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
|
|
|
|
|
|
|
| |
The configurations for these applications was done in the root file for
each machine. This led to issues where each machine had different
behaviour, specifically, when it came to changes in GnuPG were
introduced after upgrading to 20.03. By moving these common
configurations into a separate file, each machine can be sure to have
similar configurations.
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
|
|
| |
keymap and font have been renamed in 20.03.
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
| |
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
|
|
| |
At least until wayland lands.
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
|
|
| |
This isn't really working as well as I would like for now.
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
| |
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
| |
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
| |
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
| |
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
| |
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
|
|
|
|
| |
Similar to 95db843 ("phenex: module blacklist iptables", Mon Nov 18
23:17:01 2019 -0700), we want to blacklist the iptables module such that
it does not interfere with nftables modules.
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
|
|
| |
Simply flip the hide process information security knob for now.
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
|
|
|
|
| |
Similar to f54116d ("phenex: use generated hardware-configuration", Wed
Oct 30 09:15:40 2019 -0600), we want to use the generated configuration
file instead of the currently saved one.
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
|
|
| |
Enable all the documentation.
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
| |
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
|
|
| |
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|
|
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
|