about summary refs log tree commit diff
path: root/configuration
AgeCommit message (Collapse)Author
2024-12-31Add proxy device to VM for port forwarding SSHMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-31Split default profile into a second, more specialized oneMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-31Install and enable sshd in Incus VMsMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-31Add incus bridge to trusted interfacesMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-31Make IPv6 gateway on-linkMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-30Add proper header to cloud-init in Incus preseedMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-30Do not lock password for users in Incus VMMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-30Add Incus patch to repair compatibility with QEMU 9.1.2Mel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-30Remove deprecated `grub.version` optionMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-30Use DHCP for IPv4 configuration, like OVH wantsMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-30Update server host key and rekey secretMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-30Move server from Hetzner to OVHMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-30Pass cloud-init preseed in a YAML stringMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-30Add initial LXC Incus configuration, with cloud-init preseedMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-30Enable nftables as preparation for LXC IncusMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-30Allow user public keys for SSH loginMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-30Move user passwords and keys out for easier reuseMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-30Move secrets folder into configurationMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-29Reload on name secret change step-3Mel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-29Create system user for specimen service, and allow it to read name secretMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-29Use name secret in specimen applicationMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-29Forced to add IPv4, because to this day GitHub still does not support ↵Mel
IPv6-only hosts!! :( Signed-off-by: Mel <einebeere@gmail.com>
2024-12-29Add agenix module and packageMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-29Disable root login, lsit permitted SSH usersMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-29Add philip as user on server, force hashed passwordsMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-29Enable specimen module on serverMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-29Enable flakes on NixOS serverMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-29Add git to server utilitiesMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-29Generated system configuration from Hetzner serverMel
Signed-off-by: Mel <einebeere@gmail.com>
2024-12-29Flake harness for application and server configurationMel
Signed-off-by: Mel <einebeere@gmail.com>
generated by cgit-pink 1.4.1 (git 2.36.1) at 2026-04-26 10:57:05 +0000