summary refs log tree commit diff
path: root/nixos/modules
Commit message (Collapse)AuthorAge
...
* | | | | | | | nixos/hail: init (#28442)Philipp Hausmann2017-08-23
| | | | | | | |
* | | | | | | | Merge pull request #27699 from volth/varnish-fixes-sqJoachim F2017-08-22
|\ \ \ \ \ \ \ \ | |_|_|_|/ / / / |/| | | | | | | nixos/varnish: made compatible with varnish 5.1.2, add modules
| * | | | | | | nixos/varnish: made compatible with varnish 5.2.1, add modulesVolth2017-07-26
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * nixos/varnish: command line compatible with varnish 5.2.1, fixes https://github.com/NixOS/nixpkgs/issues/27409 * nixos/varnish: add support for modules (services.varnish.extraModules) * varnish-modules: init at 0.10.2 * varnish-geoip: init at 1.0.2 * varnish-rtstatus: init at 1.2.0 * varnish-digest: init at 1.0.1 * added services.varnish.extraCommandLine option
* | | | | | | | prometheus-unifi-exporter: make ordering more robustRobin Gloster2017-08-22
| |_|/ / / / / |/| | | | | |
* | | | | | | sks and pgpkeyserver-lite modules: init (#27515)Christian Albrecht2017-08-22
| |_|_|_|/ / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * modules sks and pgpkeyserver-lite: runs the sks keyserver with optional nginx proxy for webgui. * Add calbrecht to maintainers * module sks: fix default hkpAddress value * module pgpkeyserver-lite: make hkpAddress a string type option and use (builtins.head services.sks.hkpAddress) as default value * module sks: remove leftover service dependencies
* | | | | | Merge pull request #28293 from makefu/module/gitlab-runner/configOptionsFranz Pletz2017-08-21
|\ \ \ \ \ \ | | | | | | | | | | | | | | module gitlab-runner: introduce configOptions and configFile
| * | | | | | module gitlab-runner: introduce configOptions and configFilemakefu2017-08-15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Also removes configText, functionality is now provided more conveniently by configOptions. Keep in mind that this breaks compatibility with previous configurations, configFile provides a means to protect the CI token from being written into the nix store.
* | | | | | | phpfpm service: remove NoNewPrivileges systemd optionFranz Pletz2017-08-21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | This interferes with sendmail because suid won't work. Fixes #26611.
* | | | | | | Merge commit '3b29468313bc8604fe8f85c8d9316fd276d3985c' into HEADFrederik Rietdijk2017-08-21
|\ \ \ \ \ \ \
| * | | | | | | buildLinux: allow overriding stdenv on each callVladimír Čunát2017-08-20
| | |_|/ / / / | |/| | | | |
* / | | | | | nixos/mpd: allow configuring playlist directory (#28252)Casey Rodarmor2017-08-20
|/ / / / / /
* / / / / / ipfs: added defaultMode, added norouting serviceMaximilian Güntner2017-08-17
|/ / / / /
* | | | | open-vm-tools: do not pull x dependencies unconditionallyPeter Hoeg2017-08-15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The "headless" configuration option is ignored because we unconditionally reference pkgs.open-vm-tools. This fixes that.
* | | | | nixos/munin: scripts need to be executable in order to build a wrapperJean-Pierre PRUNARET2017-08-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | "Builder called die: Cannot wrap /nix/store/XXX-munin-available-plugins/plugin.sh because it is not an executable file" [Bjørn: Keep DRY, quote "$file".]
* | | | | Merge pull request #27796 from LumiGuide/postageJoachim F2017-08-13
|\ \ \ \ \ | | | | | | | | | | | | postage: init at 3.2.17 & add NixOS module
| * | | | | postage: init at 3.2.17 & add NixOS moduleBas van Dijk2017-08-07
| | | | | |
* | | | | | nixos/hardened profile: increase ASLR entropyJoachim Fasting2017-08-13
| | | | | |
* | | | | | nixos/agetty: override upstream defaultFranz Pletz2017-08-13
| | | | | | | | | | | | | | | | | | | | | | | | Also see c2cf696430055498467dd9deec59939e8d52a43e.
* | | | | | Merge commit '4c49205' into HEADFrederik Rietdijk2017-08-13
|\ \ \ \ \ \
| * \ \ \ \ \ Merge pull request #27998 from davidak/macOSDomen Kožar2017-08-11
| |\ \ \ \ \ \ | | | | | | | | | | | | | | | | replace "Mac OS X" and "OS X" with "macOS"
| | * | | | | | replace "Mac OS X" and "OS X" with "macOS"davidak2017-08-07
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | as it is the official name since 2016 https://en.wikipedia.org/wiki/Macintosh_operating_systems#Desktop exception are parts refering to older versions of macOS like "GUI support for Mac OS X 10.6 - 10.12. Note that Emacs 23 and later [...]"
* | | | | | | | ddclient nixos module: follow best practice for running daemonsPeter Hoeg2017-08-13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Couple of changes: - move home to /var/lib/ddclient so we can enable ProtectSystem=full - do not stick binary into systemPackages as it will only run as a daemon - run as dedicated user/group - document why we cannot run as type=forking (output is swallowed) - secure things by running with ProtectSystem and PrivateTmp - .pid file goes into /run/ddclient - let nix create the home directory instead of handling it manually - make the interval configurable
* | | | | | | | ddclient: assign group for ddclientPeter Hoeg2017-08-13
| | | | | | | |
* | | | | | | | Merge pull request #27903 from volth/issue-27857-libvirt-xml-manipulationFranz Pletz2017-08-12
|\ \ \ \ \ \ \ \ | |_|_|_|_|/ / / |/| | | | | | | libvirt: 3.5.0 -> 3.6.0
| * | | | | | | apply 'restartIfChanged = false' to all libvirtd servicesvolth2017-08-10
| | | | | | | | | | | | | | | | | | | | | | | | Although it is quite safe to restart ```libvirtd``` when there are only ```qemu``` machines, in case if there are ```libvirt_lxc``` containers, a restart may result in putting the whole system into an odd state: the containers go on running but the new ```libvirtd``` daemons do not see them.
| * | | | | | | libvirt: don't suspend and resume on changeRobin Gloster2017-08-05
| | | | | | | |
| * | | | | | | libvirt: 3.5.0 -> 3.6.0Volth2017-08-03
| | |_|_|_|_|/ | |/| | | | |
* | | | | | | Merge pull request #28188 from Nadrieril/ffsync-fix-pythonpathFrederik Rietdijk2017-08-12
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | firefox syncserver service: fix PYTHONPATH
| * | | | | | | firefox syncserver service: fix PYTHONPATHNadrieril2017-08-12
| | | | | | | |
* | | | | | | | ripple-rest: removeRobin Gloster2017-08-12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | marked as broken for > 1 yr, development is frozen and author recommends moving to https://github.com/ripple/ripple-lib
* | | | | | | | prometheus-blackbox-exporter: 0.5.0 -> 0.8.1Franz Pletz2017-08-12
| | | | | | | |
* | | | | | | | Merge pull request #27997 from richardlarocque/mosquitto_hashed_pass_docsJörg Thalheim2017-08-12
|\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | nixos/mosquitto: Fix instructions for password gen
| * | | | | | | | nixos/mosquitto: Fix instructions for password genRichard Larocque2017-08-06
| | |_|_|/ / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes https://github.com/NixOS/nixpkgs/issues/27996. Updates instructions for generating hashes passwords for use in a Mosquitto password file. Using `mosquitto_passwd` to generate these hashes is a little less convenient, but the results are more likely to be compatible with the mosquitto daemon. As far as I can tell, the hashes generated with `mkpassd` did not work as intended. But this may have been hidden by another bug: https://github.com/NixOS/nixpkgs/issues/27130.
* | | | | | | | nixos/tor: add tor hidden service options (#28081)Phil2017-08-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * nixos/tor: add hiddenServices option This change allows to configure hidden services more conveniently. * nixos/tor: fix default/example mixup * nixos/tor: use docbook in documentation Also use more elegant optionalString for optional strings. * tor: seperate hidden service port by newline * tor: better example for hidden service path a path below /var/lib/tor is usually used for hidden services
* | | | | | | | nixos/samba: fix pam service name typo (#28049)Keith Amidon2017-08-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The PAM service name used before this commit was "sambda", with an extra 'd'. For some reason I don't quite fully understand this typo prevents GDM from starting. This change fixes that as tested in VMs built using "nixos-rebuild -I nixpkgs=<mypkgs> build-vm".
* | | | | | | | Merge pull request #27993 from Nadrieril/rsync-run-as-userFranz Pletz2017-08-11
|\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | rsync service: allow running as user (plus some tweaks)
| * | | | | | | | rsync service: allow running as not rootNadrieril2017-08-06
| | | | | | | | |
| * | | | | | | | rsync service: restart service on configuration changeNadrieril2017-08-06
| | | | | | | | |
| * | | | | | | | rsync service: modernize config file generationNadrieril2017-08-06
| | | | | | | | |
* | | | | | | | | Merge pull request #28127 from peterhoeg/f/collectdPeter Hoeg2017-08-12
|\ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | influxdb (on nixos): reduce closure size by 99.99% (and a bit)
| * | | | | | | | | influxdb nixos module: allow customizing the collectd dependencyPeter Hoeg2017-08-11
| | | | | | | | | |
* | | | | | | | | | Merge pull request #27939 from evujumenuk/wireguard-rt_tablesFranz Pletz2017-08-11
|\ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | wireguard: add per-peer routing table option
| * | | | | | | | | | wireguard: convert "table" to an interface optionevujumenuk2017-08-08
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Do the right thing, and use multiple interfaces for policy routing. For example, WireGuard interfaces do not allow multiple routes for the same CIDR range.
| * | | | | | | | | | wireguard: remove "table" option from exampleevujumenuk2017-08-04
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Most users will be served well by the default "table" setting ("main").
| * | | | | | | | | | wireguard: add per-peer routing table optionevujumenuk2017-08-04
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This adds a convenient per-peer option to set the routing table that associated routes are added to. This functionality is very useful for isolating interfaces from the kernel's global routing and forcing all traffic of a virtual interface (or a group of processes, via e.g. "ip rule add uidrange 10000-10009 lookup 42") through Wireguard.
* | | | | | | | | | | Merge pull request #28089 from volth/patch-9Joachim F2017-08-11
|\ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | nixos/tinc: do not tell systemd where is pidfile
| * | | | | | | | | | | nixos/tinc: do not tell systemd where is pidfilevolth2017-08-09
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ```Tinc```'s pid file has more info than just a pid ``` # cat /run/tinc.dmz.pid 12209 7BD4A657B4A04364D268D188A0F4AA972A05247D802149246BBE1F1E689CABA1 127.0.0.1 port 656 ``` so ```systemd``` fails to parse it. It results in long (re)start times when ```systemd``` waits for a correct pid file to appear.
* | | | | | | | | | | | graylog module: adapt to Graylog version 2.3.0Tristan Helmich2017-08-11
| | | | | | | | | | | |
* | | | | | | | | | | | Merge pull request #28123 from jerith666/post-fix-upPeter Simons2017-08-11
|\ \ \ \ \ \ \ \ \ \ \ \ | |_|_|_|_|_|_|_|/ / / / |/| | | | | | | | | | | Post fix up
| * | | | | | | | | | | postfix: wakeup value should be used even if wakeupUnusedComponent is not ↵Matt McHenry2017-08-10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | defined
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-22 17:18:17 +0000