From 8cfd13c077ea127423dd2122ca6404ce039076b6 Mon Sep 17 00:00:00 2001
From: Profpatsch <mail@profpatsch.de>
Date: Sun, 26 Jun 2022 16:18:09 +0200
Subject: machines/legosi: disable duplicity

Apparently one of its python dependencies went EOL and everything went
to fuck because python is a crapfest and nixpkgs policies around it
are stupid. yay.
---
 machines/profpatsch/legosi.nix | 77 +++++++++++++++++++++---------------------
 1 file changed, 38 insertions(+), 39 deletions(-)

(limited to 'machines')

diff --git a/machines/profpatsch/legosi.nix b/machines/profpatsch/legosi.nix
index 8f27d324..72709711 100644
--- a/machines/profpatsch/legosi.nix
+++ b/machines/profpatsch/legosi.nix
@@ -86,45 +86,44 @@ in {
       interfaceName = tailscaleInterface;
     };
 
-    services.duplicity = {
-      enable = true;
-      frequency = "daily";
-
-      root = "/";
-      # exclude all the system-related dirs
-      exclude = [
-        "/bin"
-        "/boot"
-        "/dev"
-        "/nix"
-        "/proc"
-        "/run"
-        "/sys"
-        "/tmp"
-        "/usr"
-        # /var/lib is what we want because it contains all services,
-        # but let’s be generous and keep everything in /var except log
-        "/var/log"
-      ];
-
-      targetUrl = "b2://000efe88f7148a00000000003@profpatsch-legosi/";
-
-      # this uses the internal stateDirectory of the duplicity module
-      # Has to be set manually once of course.
-      secretFile = "/var/lib/duplicity/secrets";
-
-      extraFlags = [
-        "--name" "legosi-root"
-        "--verbosity" "info"
-        "--full-if-older-than" "60D"
-        "--num-retries" "3"
-        # I hate GPG from the bottom of my heart
-        "--encrypt-key" gpgPublicKeyId
-        "--gpg-options" "--keyring ${gpgPublicKeyring} --trust-model always"
-      ];
-
-    };
-
+    # services.duplicity = {
+    #   enable = true;
+    #   frequency = "daily";
+
+    #   root = "/";
+    #   # exclude all the system-related dirs
+    #   exclude = [
+    #     "/bin"
+    #     "/boot"
+    #     "/dev"
+    #     "/nix"
+    #     "/proc"
+    #     "/run"
+    #     "/sys"
+    #     "/tmp"
+    #     "/usr"
+    #     # /var/lib is what we want because it contains all services,
+    #     # but let’s be generous and keep everything in /var except log
+    #     "/var/log"
+    #   ];
+
+    #   targetUrl = "b2://000efe88f7148a00000000003@profpatsch-legosi/";
+
+    #   # this uses the internal stateDirectory of the duplicity module
+    #   # Has to be set manually once of course.
+    #   secretFile = "/var/lib/duplicity/secrets";
+
+    #   extraFlags = [
+    #     "--name" "legosi-root"
+    #     "--verbosity" "info"
+    #     "--full-if-older-than" "60D"
+    #     "--num-retries" "3"
+    #     # I hate GPG from the bottom of my heart
+    #     "--encrypt-key" gpgPublicKeyId
+    #     "--gpg-options" "--keyring ${gpgPublicKeyring} --trust-model always"
+    #   ];
+
+    # };
 
     users.users = {
       root.openssh.authorizedKeys.keys = [ myKey ];
-- 
cgit 1.4.1