Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2023-09-11 | Merge pull request #253427 from Yarny0/sshd-requiredrsasize | Maximilian Bosch | 1 | -2/+1 | |
nixos/sshd: don't validate mock host key, permit `RequiredRSASize` | |||||
2023-09-09 | Merge pull request #248502 from kurnevsky/wstunnel | Yorick | 1 | -2/+2 | |
wstunnel: correct listen option | |||||
2023-09-05 | Merge pull request #252978 from oluceps/dae-upup | Weijia Wang | 1 | -25/+145 | |
dae,nixos/dae: 0.2.4 -> 0.3.0 | |||||
2023-09-05 | nixos/sshd: avoid mock host key, permit `RequiredRSASize` | Yarny0 | 1 | -2/+1 | |
With this commit, the validation of `sshd_config` is performed with `sshd -G` instead of `sshd -t`. The former does not require a valid host key. Checking the host key was never useful for us: We just generated a dummy host key to make the validation mechanism happy. With this change the dummy key is no longer needed. This change not only saves some CPU cycles (avoid the generation of an RSA key), but it also permits to set `RequiredRSASize` to a value larger than the current rsa key default size (3072). | |||||
2023-09-04 | Merge pull request #241680 from 4z3/networking.nftables.checkRulesetRedirects | Maciej Krüger | 1 | -1/+21 | |
2023-09-04 | nixos/jool: allow to manage multiple instances | rnhmjoj | 1 | -127/+186 | |
2023-09-03 | nixos/dae: add example link | oluceps | 1 | -1/+3 | |
Co-authored-by: Mathias Zhang <me@zzzsy.top> | |||||
2023-09-03 | nixos/dae: add confgFile option | zzzsyyy | 1 | -0/+8 | |
Co-authored-by: oluceps <nixos@oluceps.uk> | |||||
2023-09-03 | nixos/dae: add more config options | oluceps | 1 | -25/+135 | |
2023-09-01 | Merge pull request #248669 from Atemu/dnscrypt-proxy-update-alias | Atemu | 1 | -3/+3 | |
dnscrypt-proxy: rename from dnscrypt-proxy2 | |||||
2023-08-30 | privoxy: fix types.string -> types.str | name_snrl | 1 | -1/+1 | |
2023-08-29 | nixos/nncp: add caller and daemon services | Emery Hemingway | 1 | -0/+131 | |
2023-08-28 | networking/nftables: ensure deletions | Maciej Krüger | 1 | -1/+1 | |
2023-08-28 | networking/nftables: make ruleset+rulesetFile non-exclusive | Maciej Krüger | 1 | -2/+3 | |
2023-08-28 | networking/nftables: enable flushRuleset by default if rulset{,File} used | Maciej Krüger | 1 | -1/+2 | |
2023-08-28 | nixos/nftables: save deletions to file and run them afterwards | Maciej Krüger | 1 | -10/+50 | |
Co-authored-by: duament | |||||
2023-08-28 | networking/nftables: only delete our tables if flushRuleset is set to false | Maciej Krüger | 1 | -1/+5 | |
2023-08-28 | networking/nftables: remove no longer relevant conflict warnings | Maciej Krüger | 1 | -2/+0 | |
2023-08-28 | networking/nftables: enable flushing ruleset for older versions | Maciej Krüger | 1 | -0/+4 | |
Co-authored-by: Naïm Favier <n@monade.li> | |||||
2023-08-28 | *: migrate to using nftables.tables instead of ruleset directly | Maciej Krüger | 2 | -25/+20 | |
2023-08-28 | networking/nftables: add .tables property and disable ruleset flushing by ↵ | Maciej Krüger | 1 | -1/+93 | |
default This allows for other unmanaged tables to co-exist peacefully on the os, by having the nixos-managed tables be re-created atomically and the other tables will simply be left untouched. | |||||
2023-08-24 | Merge pull request #251032 from Kranzes/twingate-resolved | Ilan Joselevich | 1 | -1/+1 | |
nixos/twingate: avoid conflicts with resolved | |||||
2023-08-23 | nixos/twingate: avoid conflicts with resolved | Ilan Joselevich | 1 | -1/+1 | |
2023-08-23 | tailscale: add mfrw as maintainer | Muhammad Falak R Wani | 1 | -1/+1 | |
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com> | |||||
2023-08-19 | Merge pull request #240982 from rnhmjoj/pr-jool | Martin Weinelt | 1 | -0/+222 | |
nixos/jool: add service for setting up SIIT/NAT64 | |||||
2023-08-16 | Merge pull request #249101 from motiejus/headscale-oidc | K900 | 1 | -1/+1 | |
headscale.oidc: client_secret_path is a string | |||||
2023-08-15 | Merge pull request #246181 from jvanbruegge/haproxy-package | Pol Dellaiera | 1 | -11/+6 | |
nixos/haproxy: allow to specify haproxy package | |||||
2023-08-15 | nixos/haproxy: allow to specify haproxy package | Jan van Brügge | 1 | -11/+6 | |
2023-08-14 | headscale.oidc: client_secret_path is a string | Motiejus Jakštys | 1 | -1/+1 | |
It can be include an environment-variable, like `${CREDENTIALS_DIRECTORY}/some-path`, failing validation for `types.path`. | |||||
2023-08-13 | dnscrypt-proxy: rename from dnscrypt-proxy2 | Atemu | 1 | -3/+3 | |
An alias is added for dnscrypt-proxy2 | |||||
2023-08-13 | Merge pull request #247899 from DavHau/zerotier-docs | Nick Cao | 1 | -1/+3 | |
nixos/zerotierone: document networks never left automatically | |||||
2023-08-11 | nixos/hostapd: add missing stringification of path in INI format | oddlama | 1 | -1/+1 | |
2023-08-11 | wstunnel: correct listen option | Evgeny Kurnevsky | 1 | -2/+2 | |
2023-08-10 | nixos/dae: use network-online | CnTeng | 1 | -2/+2 | |
2023-08-10 | nixos/chrony: add enableMemoryLocking option | Franz Pletz | 1 | -1/+13 | |
Fixes #222629. | |||||
2023-08-08 | nixos/zerotierone: document networks never left automatically | DavHau | 1 | -1/+3 | |
Removing a network from the joinNetworks list does not make the machine leave the network which is confusing. This behavior is now clarified via the options description | |||||
2023-08-08 | Merge pull request #245852 from rnhmjoj/pr-fix-dnscrypt | Michele Guerini Rocco | 1 | -16/+5 | |
dnscrypt-wrapper fixes | |||||
2023-08-07 | nixos/dae: init | pokon548 | 1 | -0/+41 | |
2023-08-05 | nixos/ntopng: seperate interface config with newlines | Emery Hemingway | 1 | -1/+1 | |
2023-08-04 | Merge pull request #242538 from tnias/fix/apparmor | ajs124 | 1 | -0/+32 | |
apparmor: add some policies and improve abstractions and utils | |||||
2023-08-03 | Merge pull request #224635 from helsinki-systems/drop/dhcpd | Martin Weinelt | 1 | -230/+0 | |
dhcpd: remove | |||||
2023-07-31 | nixos/bird: fix checkConfig with cross-compilation | Yureka | 1 | -1/+1 | |
2023-07-29 | Merge pull request #245570 from jwygoda/tailscaled-autoconnect-options | Pol Dellaiera | 1 | -8/+10 | |
nixos/tailscale: add extraUpFlags option | |||||
2023-07-28 | nixos/tailscale: add extraUpFlags option | Jarosław Wygoda | 1 | -8/+10 | |
2023-07-28 | Merge pull request #245413 from oddlama/fix-hostapd-mac-allow | Ryan Lahfa | 1 | -5/+2 | |
2023-07-28 | nixos/dhcp(46): remove | ajs124 | 1 | -230/+0 | |
package reached its EOL on 2022-10-04 see https://www.isc.org/blogs/isc-dhcp-eol/ for details | |||||
2023-07-26 | Merge pull request #244356 from datafoo/mosquitto-systemd-credentials | pennae | 1 | -9/+56 | |
nixos/mosquitto: leverage systemd credentials | |||||
2023-07-26 | Merge pull request #244841 from flokli/networkmanager-fix-ppp-plugin | Florian Klink | 1 | -0/+2 | |
nixos/networkmanager: create pppd lock directory | |||||
2023-07-25 | nixos/hostapd: fix regression after refactoring to RFC42. | oddlama | 1 | -5/+2 | |
Switching from submodule notation from ({name, ...}: {}) to (submob: {}) seems to require a different accessing scheme. | |||||
2023-07-25 | nixos/fonts: rename fonts.enableDefaultFonts to fonts.enableDefaultPackages | Sandro Jäckel | 1 | -1/+1 | |
to better fit the renamed fonts.packages |