| Commit message (Collapse) | Author | Age |
|
|
|
|
|
| |
User and system administration help for the Gnome
https://help.gnome.org/users/gnome-help/3.10
|
|
|
|
|
|
| |
Desktop-neutral user information store, search tool and indexer
https://wiki.gnome.org/Projects/Tracker
|
|
|
|
|
|
|
| |
Reverting postgres superuser changes until after stable.
This reverts commit 6cc0cc7ff6136963acb32b5107696484b6220562, reversing
changes made to 3c4be425dbe2d5a00f2923210a86ce7e7a4c516f.
|
|
|
|
|
|
| |
Reverting postgres superuser changes until after stable.
This reverts commit c66be6378d8bbcea271b2d2102741fdda87ec8fe.
|
|
|
|
|
|
| |
Reverting postgres superuser changes until after stable.
This reverts commit 7de29bd26f5e514e95d5d261c08f3029337eecb3.
|
|
|
|
|
|
| |
Reverting postgres superuser changes until after stable.
This reverts commit e2066841106a6b89093ab685368742efa4e3c2c1.
|
| |
|
|
|
|
|
|
|
| |
This prevents errors like "Another app is currently holding the
xtables lock" if the firewall and NAT services are starting in
parallel. (Longer term, we should probably move to a single service
for managing the iptables rules.)
|
| |
|
| |
|
|\
| |
| |
| | |
Fixes #2105.
|
| |
| |
| |
| | |
This allows applying NAT to an interface, rather than an IP range.
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
For example, the following sets up a container named ‘foo’. The
container will have a single network interface eth0, with IP address
10.231.136.2. The host will have an interface c-foo with IP address
10.231.136.1.
systemd.containers.foo =
{ privateNetwork = true;
hostAddress = "10.231.136.1";
localAddress = "10.231.136.2";
config =
{ services.openssh.enable = true; };
};
With ‘privateNetwork = true’, the container has the CAP_NET_ADMIN
capability, allowing it to do arbitrary network configuration, such as
setting up firewall rules. This is secure because it cannot touch the
interfaces of the host.
The helper program ‘run-in-netns’ is needed at the moment because ‘ip
netns exec’ doesn't quite do the right thing (it remounts /sys without
bind-mounting the original /sys/fs/cgroups).
|
| |
| |
| |
| |
| |
| |
| | |
This has the unintended side-effect of restarting httpd every time we
run switch-to-configuration, even if httpd hasn't changed (because
we're doing a "stop keys.target" now). So use a "Wants" dependency
instead.
|
|\ \
| | |
| | | |
nixos: disable ntp on containers by default
|
| | | |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
This allows to easily override the used PHP package, especially for
example if you want to use PHP 5.5 or if you want to override the
derivation.
Signed-off-by: aszlig <aszlig@redmoonstudios.org>
|
|\ \ \
| | | |
| | | |
| | | | |
cjdns: update to 20130303
|
| | | |
| | | |
| | | |
| | | |
| | | | |
build system is now nodejs based
new nixos module to start cjdns
|
| |/ /
|/| |
| | |
| | | |
Both for master and slave.
|
|\ \ \
| |/ /
|/| | |
accounts-daemon service, fix gnome-shell, add libgnomekbd, musicbrainz5, sushi, gnome-contacts
|
| | |
| | |
| | |
| | |
| | | |
Give the user a full desktop, and the possibility to exclude
non-base packages from the default list of packages.
|
| | | |
|
| | | |
|
| | | |
|
| | |
| | |
| | |
| | |
| | |
| | | |
A quick previewer for Nautilus
http://en.wikipedia.org/wiki/Sushi_(software)
|
| | |
| | |
| | |
| | | |
Enable by default with gnome3.
|
| | | |
|
| | |
| | |
| | |
| | | |
Fixes #2134.
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
This reverts commit 02a30bea44edf1116dcab16c5e64501312b2927b,
necessary after reverting to udisks 1.0.4.
http://hydra.nixos.org/build/10194840
|
| | |
| | |
| | |
| | | |
Fixes #2135.
|
|\ \ \
| |/ /
|/| |
| | |
| | |
| | | |
fix-new-conduit
Create 'postgres' user and use pg_isready
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
The postgresql module has a postStart section that waits for a database
to accept connections before continuing. However, this assumes various
properties about the database - specifically the database user
and (implicitly) the database name. This means that for old
installations, this command fails because there is no 'postgres' user,
and the service never starts.
While 7deff39 does create the 'postgres' user, a better solution is to
use `pg_isready`, who's sole purpose is to check if the database is
accepting connections. This has no dependency on users, so should be
more robust.
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Old PostgreSQL installations were created using the 'root' database
user. In this case, we need to create a new 'postgres' account, as we
now assume that this is the superuser account.
Unfortunately, these machines will be left with a 'root' user as
well (which will have ownership of some databases). While PostgreSQL
does let you rename superuser accounts, you can only do that when you
are connected as a *different* database user. Thus we'd have to create a
special superuser account to do the renaming. As we default to using
ident authentication, we would have to create a system level user to do
this. This all feels rather complex, so I'm currently opting to keep the
'root' user on these old machines.
|
| | | |
|
|\ \ \
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
nixos: add Murmur module (Mumble chat)
Conflicts:
nixos/modules/misc/ids.nix
|
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Murmur is the headless server component of the Mumble chat system.
Signed-off-by: Austin Seipp <aseipp@pobox.com>
|
|\ \ \ \
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
rippled: initial pkg and module expressions
Had to change the rippled uid.
Conflicts:
nixos/modules/misc/ids.nix
|
| | | | | |
|
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
rippled is the Ripple P2P payment network reference server
https://ripple.com
|
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
With glib-networking, epiphany and other gnome apps
can access https and other networking protocols.
|
|\ \ \ \ \
| | | | | |
| | | | | | |
Added MonetDB NixOS module.
|
| | |/ / /
| |/| | | |
|
| | | | | |
|
| | | | | |
|
| | | | | |
|
| |_|/ /
|/| | | |
|
|\| | | |
|
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
as per postgresql manual, interactions with psql should be carried
out with the postgresql system user and postgresql db user by default.
ensure it happens in postStart.
|
| | | | |
|