| Commit message (Collapse) | Author | Age |
| |
|
| |
|
| |
|
| |
|
|
|
|
|
| |
# Conflicts:
# nixpkgs/pkgs/top-level/all-packages.nix
|
|
|
|
|
|
|
|
|
| |
# Conflicts:
# nixpkgs/pkgs/applications/editors/emacs/elisp-packages/elpa-generated.nix
# nixpkgs/pkgs/applications/networking/mailreaders/thunderbird/default.nix
# nixpkgs/pkgs/applications/window-managers/sway/default.nix
# nixpkgs/pkgs/build-support/rust/default.nix
# nixpkgs/pkgs/development/go-modules/generic/default.nix
|
| |
|
| |
|
|
|
|
|
|
|
|
|
| |
Things will get quite broken if an /etc/passwd entry contains a
colon (which terminates a field), or a newline (which terminates a
record). I know because I just accidentally made a user whose home
directory path contained a newline!
So let's make sure that can't happen.
|
|
|
|
|
| |
public-inbox isn't in upstream Nixpkgs, but there is a PR, and that
should be treated as upstream for now.
|
|
|
|
|
|
|
|
|
|
| |
* Make it clearer what code comments apply to
* Fix the state directory (this was changed in the update)
* Add m1cr0man as a maintaner
Co-authored-by: Lucas Savva <lucas@m1cr0man.com>
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
(cherry picked from commit 912e11a468903d481c91f6413c4eb884cbc09fa4)
|
| |
|
|
|
|
|
| |
This mirrors the services.postfix.transport and
services.postfix.virtual options we already have.
|
|
|
|
| |
I want to be able to add a SECTION line to /etc/man_db.conf.
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
| |
I run Postfix on my workstation as a smarthost, where it only ever
talks to my SMTP server. Because I know it'll only ever connect to
this server, and because I know this server supports TLS, I'd like to
set smtp_tls_security_level to "encrypt" so Postfix won't fall back to
an unencrypted connection.
(cherry picked from commit 9ed5ee909beede0ea3f04bc4d14449290aebed66)
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
| |
Extracted from
b478e0043c53964c99cc9a145c155a673af3c7d8 ("nixos/mailman: refactor"),
to bring myself closer to current upstream.
|
|
|
|
|
|
| |
Extracted from
b478e0043c53964c99cc9a145c155a673af3c7d8 ("nixos/mailman: refactor"),
to bring myself closer to current upstream.
|
|
|
|
| |
I need this to be able to make my uwsgi socket group-readable.
|
|
|
|
|
|
| |
Extracted from
b478e0043c53964c99cc9a145c155a673af3c7d8 ("nixos/mailman: refactor"),
to bring myself closer to current upstream.
|
|
|
|
|
|
|
|
|
|
|
|
| |
Previously, fcgiwrap was run as root by default. This was bad because
it meant every CGI script was run as root.
Changed to set DynamicUser, so instead of having access to everything,
CGI scripts will now by default only have access to things that are
world-readable. This will probably break things for users, but since
we can't know what they want to allow their CGI scripts access to
they'll have to fix that themselves, because it would be irresponsible
to leave this defaulting to root.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
By default in Nginx, if you want to override a single fastcgi_param,
you have to override all of them. This is less of a big deal if
you're editing the Nginx configuration directly, but when you're
generating the Nginx configuration with Nix it can be very annoying to
bloat your configuration repeating the default values of FastCGI
parameters every time.
This patch adds a fastcgiParams option to Nginx locations. If any
parameters are set through this, all the default values will be
included as well, so only the ones that are changing need to be
supplied. There's no way to use fastcgiParams to actually override
all parameters if that's what you want, but I think that's a niche use
case and it's still possible using extraConfig, which up until now was
the only option
Nginx allows the fastcgi_param directive in http and server scopes as
well as location, but here I only support location. It would be
possible to support the others, but I don't think it's worth it. It
would be a possible future enhancement if somebody has a need for it.
|
|
|
|
|
|
| |
Extracted from
b478e0043c53964c99cc9a145c155a673af3c7d8 ("nixos/mailman: refactor"),
to bring myself closer to current upstream.
|
|
|
|
|
|
| |
Extracted from
b478e0043c53964c99cc9a145c155a673af3c7d8 ("nixos/mailman: refactor"),
to bring myself closer to current upstream.
|
|
|
|
|
|
| |
Extracted from
b478e0043c53964c99cc9a145c155a673af3c7d8 ("nixos/mailman: refactor"),
to bring myself closer to current upstream.
|
|
|
|
|
|
| |
Extracted from
b478e0043c53964c99cc9a145c155a673af3c7d8 ("nixos/mailman: refactor"),
to bring myself closer to current upstream.
|
|
|
|
|
|
| |
Extracted from
b478e0043c53964c99cc9a145c155a673af3c7d8 ("nixos/mailman: refactor"),
to bring myself closer to current upstream.
|
|
|
|
|
|
| |
Extracted from
b478e0043c53964c99cc9a145c155a673af3c7d8 ("nixos/mailman: refactor"),
to bring myself closer to current upstream.
|
|
|
|
|
|
| |
Extracted from
b478e0043c53964c99cc9a145c155a673af3c7d8 ("nixos/mailman: refactor"),
to bring myself closer to current upstream.
|
|
|
|
|
|
| |
Extracted from
b478e0043c53964c99cc9a145c155a673af3c7d8 ("nixos/mailman: refactor"),
to bring myself closer to current upstream.
|
|
|
|
|
|
|
|
|
| |
Adapted from
b478e0043c53964c99cc9a145c155a673af3c7d8 ("nixos/mailman: refactor"),
to bring myself closer to current upstream.
The conditional was added for the case where the directory did not yet
exist, and quotes were changed to the more robust escapeShellArg.
|
|
|
|
|
|
| |
Extracted from
b478e0043c53964c99cc9a145c155a673af3c7d8 ("nixos/mailman: refactor"),
to bring myself closer to current upstream.
|
|
|
|
|
|
| |
Extracted from
b478e0043c53964c99cc9a145c155a673af3c7d8 ("nixos/mailman: refactor"),
to bring myself closer to current upstream.
|
|
|
|
|
|
| |
Extracted from
b478e0043c53964c99cc9a145c155a673af3c7d8 ("nixos/mailman: refactor"),
to bring myself closer to current upstream.
|
|
|
|
| |
(cherry picked from commit cf7b63df5b9efdef4e8e1b3261d7040199f7e671)
|
|
|
|
| |
(cherry picked from commit c37347af7eaa0177e3a374dd94158ff546f20fdb)
|
|
|
|
| |
(cherry picked from commit 751c2ed6e4af9e525fe57b7c0f0ee8a611eab9fa)
|
|
|
|
|
|
|
|
|
| |
This option has been deprecated for a long time because is redundant
(users.users.root.initialHashedPassword exists).
Moreover, being of type string, it required to handle the special value
"!" separately, instead of using just `null`.
(cherry picked from commit a6ed7d4845f1142f36b2c461d5a721bc68eb7d48)
|
|
|
|
|
|
|
| |
SJW brigade represent. ;)
Co-authored-by: Jan Tojnar <jtojnar@gmail.com>
(cherry picked from commit 517be841352ec3e6b236e7cdfb1fbd8e26bf49cb)
|
|
|
|
|
|
| |
This is the last nixos-unstable release before 13b2903169f, which I'm a
bit nervous about. So I want the update including that one to be as
small as possible, hence going to this one first.
|
| |
|
| |
|
| |
|
| |
|