This commit comments out several configurations in the user's default.nix on harald@mpro. Namely, it disables the sessionPath, home-manager, and alacritty, establishing a new setup for future use.
This commit enables the 'base' edition in the default.nix configuration file within the Darwin suites module. This update provides the necessary settings for the base installation, enhancing the flexibility of system setup.
This commit introduces a new base configuration for the Darwin service. It includes options for system packages, shell programs and security features. This base configuration is customizable with an enable option.
Replace `❯` prompt symbol with `$` for clarity and consistency. Add additional command for Darwin. Remove outdated `command-not-found` section. Update nix and ssh command syntax for better readability and usage.
This commit modifies the `nix` configuration in the `darwin` module, changing from the unstable `nix` package use to the stable version. This change is intended to improve stability and reliability of the module.
This commit renames the 'fonts' array in the darwin system fonts module to 'packages'. The refactor is aimed at improving the code readability and making the name more descriptive and representative of its content.
This commit updates the allowed TCP port for networking in the SGX configuration file. Instead of hardcoding the port number, it now uses the port specified in the netatalk configuration. This change enables more flexibility in port assignment and reduces potential conflicts.
The configuration update for the x86_64-linux t15 hardware adds a US layout variant to the existing German keyboard configuration. This change will allow switching between US and German keyboard layouts as per user requirements.
This commit adds the `autohide-battery@sitnik.ru` extension to the home configurations of `harald@t15` and `harald@x1`. It also adjusts the path of the `xkb.layout` setting in the GUI service's configuration. Furthermore, the `sound-output-device-chooser` extension has been removed.
This commit adds three new GNOME extensions to the gui module in the NixOS service. Specifically, 'gnome-browser-connector', 'autohide-battery', and 'sound-output-device-chooser' were added. This update is intended to enhance the system's user experience.
This commit updates the hardware configuration file for the x86_64-linux system. Specifically, it modifies the xserver keymap settings, ensuring proper keymap configuration for 'de' layout with 'nodeadkeys' variant in the x86_64-linux system.
Multiple boot options have been added in the hardware-configuration for the x86_64-linux system. This includes unsafe secrets mitigation options, such as 'noibrs', 'noibpb', 'nopti', etc., to potentially enhance system performance.
This commit modifies several settings of the home printer module in default.nix. The PageSize parameter was changed, and several new parameters related to print quality and color correction were added for better print results, specifically for photos.
This commit updates the narHashes and revisions of multiple packages in flake.lock file. The revisions are updated to their newer versions for improved performance and security patches.
Created a new module for home printer setup and enabled it on x86_64-linux systems. The module configures printing drivers and ensures that printers are set up properly. In addition, moved specific printer configurations into the newly created homeprinter module.
This commit adds configurations for two printers (Brother DCP-L2530DW and Canon MG6300 series) in the nix file. It also enables printing services and resolves DNSSEC degradation. This ensures a more seamless and secure printing experience.
This commit adds support for the Brother DCP-L2530DW printer driver. The new file, dcpl2530dw-cups/default.nix, includes necessary build inputs and sets up installation paths. Currently, this build only supports the x86_64 platform.
The indentation in the mailserver.nix file was fixed to follow proper syntax guidelines. This was a minor change, but it improves code readability and adherence to stylistic standards.
The 'atticd' service has been deleted from the sgx-nixos configuration. Additionally, the reference to 'atticd.nix' has been removed from the 'default.nix' imports. This was done to help streamline the system configuration.
The user's extraGroups in the NixOS module now contains 'wheel' by default. This change provides the user with more privileges. Consequently, 'wheel' has been removed from the SGX-Attic's 'user.extraGroups' as it became redundant.
This commit removes a predefined TCP port (8080) from the allowed list in the networking firewall. This choice will increase the security features by avoiding any unnecessary open ports in the firewall configuration.
The import statement for the atticd.nix file has been commented out in the default.nix file under the sgx-nixos system. This reflects changes in dependencies or system configurations.
This commit adds "wheel" to the user.extraGroups in the default SGX configuration file for x86_64-linux system. This is a necessary update to ensure users
This commit refactors the hardware configuration in the SGX attic. A new file named `disko.nix` has been added which houses the disk setup previously located on `hardware-configuration.nix`. Additionally, some parameters in `default.nix` have been updated and unneeded configuration settings have been removed.
This commit adds a new email alias to the mailserver configuration. This new addition will allow emails sent to this address to be properly routed and received.
This commit adds a new email alias to the mailserver configuration. This new addition will allow emails sent to this address to be properly routed and received.
This commit updates the list of email aliases for various users in the mailserver configuration. It reorders existing aliases and introduces new ones, extending their visibility in different domains. This offers aliases under the hoyer.social and hoyer.world domains, enhancing flexibility for users.
This commit updates the certificate scheme configuration on the mailserver. The `certificateScheme` and `acmeCertificateName` have been added, and an unnecessary certificate reference in the `acme.nix` file has been deleted.
This commit removes the dnsProvider attribute ("internetbs") from four entries in the acme.nix file. These changes aim to reduce redundancy and maintain simplicity in the script.
This commit removes the dnsProvider property from the "varlink.org" configuration within the acme.nix file. This step contributes to system simplification and potential adaptability improvements.
Added "herward-hoyer.de" as a new domain in the acme.nix file. Set "internetbs" as the DNS provider and added "*.herward-hoyer.de" to the extra domain names.
The DNS provider has been changed from "internetbs" to "cloudflare". Moreover, configurations for multiple domains have been updated and expanded, including "mx.surfsite.org", "surfsite.org", "hartwin-hoyer.de", "varlink.org", "hoyer.xyz", and others.
A new DNS provider, Cloudflare, has been added to the configuration for domain "harald-hoyer.de" in the acme.nix file. This change will affect the handling of DNS requests for this domain.
The commit includes the addition of the "meike-hoyer.de" domain to the acme.nix file, using "cloudflare" as the DNS provider. This update enhances the system's domain coverage.
This update removes the myprivacy.tools domain from the configuration of the mailserver. As a result, no incoming or outgoing messages will be processed for this domain. Also, all email addresses related to myprivacy.tools were also removed.
This commit introduces a new substituter 'https://attic.teepot.org/tee-pot' and its associated trusted key 'tee-pot:SS6HcrpG87S1M6HZGPsfo7d1xJccCGev7/tXc5+I4jg='. The changes affect the Nix, aesmd_dcap, home settings, and pccs modules. This update provides additional package sources for these modules.
This commit changes the default retention period for garbage collection in the attic daemon setting from 30 days to 3 months. This will allow the system to maintain data for a longer period before cleaning.
This commit introduces a new parameter for setting the garbage collection interval in the atticd.nix file. The garbage collection interval is set to run every 30 days, helping to manage unnecessary data and improve system performance.
The atticd settings in systems/x86_64-linux/sgx-nixos have been updated to include an API endpoint. The primary purpose of this change is to ensure that atticd infrastructure can successfully connect to the new endpoint at https://attic.teepot.org.
The attic-client has been added to the packages for the x86_64-linux system. This change enables interaction with the Attic distributed storage system, expanding the capabilities of this system setting.
The attic-client has been added to the packages for the x86_64-linux system. This change enables interaction with the Attic distributed storage system, expanding the capabilities of this system setting.
This commit allows TCP traffic on port 8080 and permits ICMP echo requests for ping command in SGX-NixOS. Moreover, the necessary code adjustments have been made in the default.nix file.
This commit updates the revision and hashes of several dependencies in flake.lock. It includes updates to "nix-darwin", "disko", "nixpkgs", and "sops-nix", ensuring they are up-to-date with their respective repositories.
This commit includes the atticd service to the sgx-nixos system. The `atticd.nix` file has been added with default configuration and the attic service has been included in imports in `default.nix`. Modifications were made in `flake.nix` and `flake.lock` to integrate attic dependencies.
A new package, k9s, has been added to the default packages for x86_64-linux system. This effort is to enhance the overall system functionality and user experience.
The installation guide in the README file has been modified for clarity. The phrase 'Install system' is updated to 'Install a system' to improve readability and understanding.
Harald Hoyer