Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2018-03-01 | nixos: Move uses of stdenv.shell to runtimeShell. | Shea Levy | 2 | -2/+2 | |
2018-02-27 | nixos/usbguard: Do not check permissions on rules file (using undocumented ↵ | Nadrieril | 1 | -1/+1 | |
-P flag) | |||||
2018-02-17 | nixos/modules: rename IP addresses/routes options | rnhmjoj | 1 | -4/+3 | |
2018-02-10 | Merge pull request #34524 from Infinisil/physlock-allowAnyUser | Jörg Thalheim | 1 | -21/+43 | |
nixos/physlock: add allowAnyUser option | |||||
2018-02-08 | nixos/tor: add hiddenServices.<name>.authorizeClient | Robert Schütz | 1 | -0/+30 | |
2018-02-02 | physlock: add allowAnyUser option | Silvan Mosberger | 1 | -21/+43 | |
2018-01-06 | nixos/clamav: replace mkIf [] with optional | Léo Gaspard | 1 | -2/+2 | |
2017-12-29 | usbguard service: `rules` option should be of type 'lines' | Nadrieril | 1 | -1/+1 | |
2017-12-03 | Merge pull request #28939 from xtruder/nixos/tor/trans_proxy | Jaka Hudoklin | 1 | -2/+81 | |
tor module: add support for transparent proxy and dns | |||||
2017-11-28 | clamav module: make services.clamav.daemon.enable actually work | Léo Gaspard | 1 | -4/+5 | |
2017-10-20 | Merge pull request #30173 from dmjio/patch-1 | Joachim F | 1 | -1/+1 | |
oauth2_proxy: default address updated | |||||
2017-10-14 | Revert "sshguard: make it run" | Peter Hoeg | 1 | -32/+36 | |
This reverts commit 69d8b81b4ba613dbf59850b8f32e2d7ddeb133be. | |||||
2017-10-14 | sshguard: make it run | Peter Hoeg | 1 | -37/+33 | |
2017-10-13 | Revert "Simple proof of concept for how to do other types of services" | Dan Peebles | 1 | -11/+3 | |
This reverts commit 7c3253e519a572f90a907fc56bb6407da004b24c. I included this in another push by accident and never intended for it to be in mainline. See https://github.com/NixOS/nixpkgs/pull/26075 if you want more. | |||||
2017-10-06 | oauth2_proxy: default address updated | David Johnson | 1 | -1/+1 | |
Go will fail to parse this otherwise. https://github.com/golang/go/issues/19297 | |||||
2017-09-23 | nixos/tor: add support for transparent proxy and dns | Jaka Hudoklin | 1 | -2/+81 | |
2017-09-20 | Make sure dummy kernel module is loaded for hologram-agent. | Rob Vermaas | 1 | -0/+2 | |
(cherry picked from commit eb873f6c78e1c5306956b4c9fd651b25a6b9c40c) | |||||
2017-09-13 | tor: skip ControlPort in torrc, if not set. | Jörg Thalheim | 1 | -1/+1 | |
2017-09-10 | physlock: 0.5 -> 11-dev | timor | 1 | -0/+2 | |
Update physlock to a more current version which supports PAM and systemd-logind. Amongst others, this should work now with the slim login manager without any additional configuration, because it does not rely on the utmp mechanism anymore. | |||||
2017-08-29 | frandom: Remove | Tim Steinbach | 1 | -31/+0 | |
2017-08-25 | nixos/usbguard: create package and module (#28363) | Phil | 1 | -0/+200 | |
* nixos/usbguard: create package and module No usbguard module or package existed for NixOS previously. USBGuard will protect you from BadUSB attacks. (assuming configuration is done correctly) * nixos/usbguard: remove extra packages Users can override this by themselves. * nixos/usbguard: add maintainer and fix style | |||||
2017-08-24 | Merge pull request #28338 from oxij/nixos/better-tor | Joachim F | 1 | -135/+299 | |
nixos: better tor config | |||||
2017-08-22 | nixos: tor: rename portSpec -> port, type all "port"s properly | SLNOS | 1 | -19/+19 | |
2017-08-22 | nixos: tor: better submodule for hidden services | SLNOS | 1 | -73/+121 | |
Rebased onto master with a different implementation. Originally: "add support for serving hidden services". | |||||
2017-08-22 | nixos: tor: more options, no unexpected consequences for default relay operators | SLNOS | 1 | -58/+174 | |
Before this commit default relay configuration could produce unexpected real life consequences. This patch makes those choices explicit and documents them extensively. | |||||
2017-08-22 | sks and pgpkeyserver-lite modules: init (#27515) | Christian Albrecht | 1 | -0/+82 | |
* modules sks and pgpkeyserver-lite: runs the sks keyserver with optional nginx proxy for webgui. * Add calbrecht to maintainers * module sks: fix default hkpAddress value * module pgpkeyserver-lite: make hkpAddress a string type option and use (builtins.head services.sks.hkpAddress) as default value * module sks: remove leftover service dependencies | |||||
2017-08-11 | nixos/tor: add tor hidden service options (#28081) | Phil | 1 | -12/+92 | |
* nixos/tor: add hiddenServices option This change allows to configure hidden services more conveniently. * nixos/tor: fix default/example mixup * nixos/tor: use docbook in documentation Also use more elegant optionalString for optional strings. * tor: seperate hidden service port by newline * tor: better example for hidden service path a path below /var/lib/tor is usually used for hidden services | |||||
2017-07-21 | nixos/oauth2_proxy: actually pass provider-specific options | Rhys | 1 | -5/+4 | |
Syntax errors prevented important parameters from being passed to oauth2_proxy, which could have permitted unauthorised access to services behind the proxy. | |||||
2017-07-03 | vault: do not restart the service on "nixos-rebuild switch" | Volth | 1 | -0/+2 | |
2017-06-29 | vault: services.vault.storagePath for the file backend | Volth | 1 | -22/+23 | |
2017-06-28 | removed generation of self-signed certificate | Volth | 1 | -20/+12 | |
2017-06-28 | vault: add unitConfig.RequiresMountsFor to systemd config | Volth | 1 | -13/+17 | |
2017-06-28 | vault: start after consul if consul is used as storage backend | Volth | 1 | -1/+2 | |
2017-06-27 | create directory only for "file" storage | Volth | 1 | -6/+17 | |
2017-06-27 | vault: run as an unpivileged user | Volth | 1 | -172/+97 | |
2017-06-27 | delete lines | Katyucha | 1 | -1/+0 | |
2017-06-27 | Vault: 0.6.5 -> 0.7.2 with services | Katyucha | 1 | -0/+208 | |
2017-05-26 | Simple proof of concept for how to do other types of services | Dan Peebles | 1 | -3/+11 | |
2017-05-16 | shibboleth: Add Myself as a Maintainer (#25817) | J M | 1 | -0/+2 | |
2017-05-02 | shibboleth-sp module: Set Config File Path for FastCGI Units | jammerful | 1 | -0/+2 | |
Without this environment variable both shibauthorizer and shibresponder default to ${pkgs.shibboleth-sp}etc/shibboleth/shibboleth2.xml | |||||
2017-05-02 | Add Shibboleth Service Provider Module | jammerful | 1 | -0/+71 | |
2017-04-30 | Merge pull request #23697 from sargon/master | Michael Raskin | 1 | -0/+140 | |
sshguard + service: init at 2.0.0 | |||||
2017-04-11 | treewide: use boolToString function | Franz Pletz | 1 | -10/+7 | |
2017-03-26 | sshguard: new package | Daniel Ehlers | 1 | -0/+140 | |
2017-03-22 | nixos/tor: add missing option type | Joachim Fasting | 1 | -0/+1 | |
2017-03-17 | nixos/treewide: remove boolean examples for options | Franz Pletz | 1 | -1/+0 | |
They contain no useful information and increase the length of the autogenerated options documentation. See discussion in #18816. | |||||
2017-03-16 | nixos: torify: disable by default, add some documentation as of why | Jan Malakhovski | 1 | -4/+12 | |
This `tsocks` wrapper leaks DNS requests to clearnet, meanwhile Tor comes with `torsocks` which doesn't. Previous commits to this file state that all of this still useful somehow. Assuming that it's true, at least let's not confuse users with two different tools and don't clash with the `tsocks` binary from nixpkgs by disabling this by default. | |||||
2017-03-16 | nixos: tor: add enableGeoIP | Jan Malakhovski | 1 | -0/+16 | |
2017-03-15 | physlock: fix issue 21935 | Bart Brouns | 1 | -12/+2 | |
2017-02-02 | hologram: 8d86e3f -> d20d1c3 | Fernando J Pando | 2 | -0/+57 | |
- Updates dependencies - Adds configuration module - Tested on Nixos Unstable |