Evgeny Egorochkin
6e6061e6b3
TOR: add obfsproxy support by default for TOR bridges
2013-06-04 13:03:37 +03:00
Mathijs Kwik
824b5b645a
openvpn: fix type error
...
either use
- optional cond "target"
or
- optionals cond ["target1" "target2"]
2013-06-04 07:45:58 +02:00
Sander van der Burg
e776c0623d
Fixed disnix service to use systemd's dependency facilities
2013-06-03 01:34:22 +02:00
Evgeny Egorochkin
e3bbf38ec9
Merge pull request #178 from bjornfor/lighttpd-cgit-subservice
...
lighttpd: add cgit sub-service
2013-06-02 14:18:21 -07:00
Evgeny Egorochkin
6ab6eeceb7
Merge pull request #179 from bjornfor/lighttpd-gitweb-improvements
...
lighttpd: gitweb: add extraConfig option
2013-06-02 14:09:23 -07:00
Bjørn Forsman
3d48da72a9
lighttpd: gitweb: add extraConfig option
...
So that we can append custom configuration text to the end of the
generated gitweb.conf file.
2013-06-02 19:26:55 +02:00
Bjørn Forsman
b1f82e428a
lighttpd: add cgit sub-service
...
(cgit is "a hyperfast web frontend for git repositories written in C")
cgit is enabled like this (assuming lighttpd is already enabled):
services.lighttpd.cgit.enable = true;
and configured verbatim like this (contents of the cgitrc file):
services.lighttpd.cgit.configText = ''
cache-size=1000
scan-path=/srv/git
'';
cgit will be available from this URL: http://yourserver/cgit
In lighttpd, I've ensured that the cache dir for cgit is created if cgit
is enabled.
2013-06-02 18:41:18 +02:00
Lluís Batlle i Rossell
70fd5422a7
Adding iw to systemPackages.
2013-06-02 14:27:39 +02:00
Peter Simons
08eba4c114
atd: don't enable at daemon by default
...
The at daemon doesn't work on NixOS [1], so enabling it by default
doesn't seem useful. I'd argue that it shouldn't be enabled by default
even if it worked, actually.
[1] http://lists.science.uu.nl/pipermail/nix-dev/2013-April/011048.html
2013-06-01 11:39:09 +02:00
Evgeny Egorochkin
3bb97667b8
Merge pull request #167 from wizeman/domain
...
Set the domain name of the machine
2013-05-30 09:14:25 -07:00
Evgeny Egorochkin
421fb9d585
Merge pull request #173 from wizeman/apparmor-service
...
Apparmor service fixes
2013-05-28 16:46:30 -07:00
Evgeny Egorochkin
a518e09ec3
Merge pull request #172 from wizeman/apparmor-ping
...
apparmor: Fix broken iputils/ping profile
2013-05-28 16:37:11 -07:00
Domen Kozar
53390a2da9
add networkmanager_openvpn to systemPackages
2013-05-29 00:38:50 +02:00
Ricardo M. Correia
531b581636
apparmor: Fix service stop
...
When stopping the apparmor service, the profile removal failed with
parsing errors due to not including the
${pkgs.apparmor}/etc/apparmor.d directory.
2013-05-28 17:49:52 +00:00
Ricardo M. Correia
84c0af80d7
apparmor: Fix loading multiple profiles
...
apparmor's systemd service wasn't working when multiple profiles were
defined, due to the ExecStart commands in the service file being
broken into multiple lines, instead of being separated by ';'.
2013-05-28 17:21:22 +00:00
Ricardo M. Correia
eb01d87b31
apparmor: Fix broken iputils/ping profile
2013-05-28 14:17:29 +00:00
Eelco Dolstra
2ec6759f5f
openvpn.nix: Use systemd.*
...
Also add an option ‘autoStart’ to configure whether an OpenVPN
instance should be started automatically. And don't log to
/var/log/openvpn-* anymore.
2013-05-28 14:39:48 +02:00
Ricardo M. Correia
7f9fc8d817
Set the domain name of the machine
...
The domain name was not being set before, even if the administrator
properly configured the networking.domain option in
/etc/nixos/configuration.nix.
2013-05-28 08:49:14 +00:00
Lluís Batlle i Rossell
f60393975f
gnunet: it was missing extraGroups
2013-05-28 10:19:59 +02:00
Peter Simons
717dc3b858
Merge pull request #169 from wizeman/chrony
...
Add chrony service
2013-05-25 02:25:57 -07:00
Ricardo M. Correia
76046850fe
atop: Add basic config option for /etc/atoprc
2013-05-23 11:14:24 +00:00
Ricardo M. Correia
6336048c58
chrony: properly set rtconutc option, and add a few more options
2013-05-23 03:00:09 +00:00
Ricardo M. Correia
02d9a8066a
Add chrony service
...
Also, do not build and add ntp to the system unless it is enabled.
2013-05-23 02:07:49 +00:00
Rickard Nilsson
70586f03fe
systemd.sockets: Add listenStreams option for specifying several sockets
2013-05-20 16:26:24 +02:00
Domen Kozar
a29c306958
bacula: add ExecReload
2013-05-18 13:29:54 +02:00
Domen Kozar
000d5a62aa
bacula: file daemon needs to run as root
2013-05-18 12:29:14 +02:00
Eelco Dolstra
07406231e3
zabbix: Don't set the mbstring.func_overload option
...
This breaks MediaWiki running in the same web server. Zabbix no
longer seems to need it anyway.
2013-05-17 15:34:26 +02:00
Eelco Dolstra
97689f9062
mediawiki: Update to 1.20.5
2013-05-17 13:38:20 +02:00
Mathijs Kwik
0e9a963b42
kde4: use udisks2 for kde versions that support it.
...
Currently, none do, although kde 4.10 is supposed to be able to use it.
2013-05-17 09:33:00 +02:00
Mathijs Kwik
4630ad4d26
filesystems: add priority option for swap devices.
...
Useful for setting up raid0-like load balancing for swap.
By giving multiple swap devices the same prio.
2013-05-17 09:22:07 +02:00
Mathijs Kwik
085ccc8199
btrfs: btrfsck is now actually the same binary as "btrfs"
...
symlinked to save space.
2013-05-17 09:22:07 +02:00
Domen Kozar
40fb90a295
bacula: generate bconsole config
2013-05-16 21:58:24 +02:00
Evgeny Egorochkin
da7d6a4cce
Merge pull request #125 from MarcWeber/submit/when-enabling-wacom-add-xsetwacom-to-path
...
When enabling wacom put xsetwacom in PATH.
2013-05-15 09:51:17 -07:00
Rob Vermaas
3b00eca8e9
Add varnish to module-list.nix
2013-05-15 14:36:17 +02:00
Eelco Dolstra
0277126699
Return exit code 127 if a command is not found
2013-05-15 12:52:15 +02:00
Eelco Dolstra
95d02c0c40
initrd: Remove serio and atkbd
...
These modules don't exist as far as I can tell.
2013-05-15 12:52:15 +02:00
Eelco Dolstra
b3ae70ddb6
initrd: Add ehci_pci and hid_generic
...
These are required to get some (all?) USB keyboards to work in recent
kernels.
2013-05-15 12:52:14 +02:00
Eelco Dolstra
f5233bbf82
Remove tabs
2013-05-15 12:52:14 +02:00
Shea Levy
2c4db1a6cf
Don't copy libz and liblzo2 twice to the initrd
...
Signed-off-by: Shea Levy <shea@shealevy.com>
2013-05-14 23:35:10 -04:00
Shea Levy
51bc82960a
btrfsck doesn't respect any flags
...
Signed-off-by: Shea Levy <shea@shealevy.com>
2013-05-13 14:25:48 -04:00
Shea Levy
9b4991d3f4
Fix btrfs in the initrd.
...
With NixOS/nixpkgs@7761952d06 , btrfs requires libz and liblzo2
Signed-off-by: Shea Levy <shea@shealevy.com>
2013-05-13 14:16:53 -04:00
Shea Levy
7f7ada53cf
Add a basic (currently failing) sanity check for btrfsProgs-in-initrd
...
Signed-off-by: Shea Levy <shea@shealevy.com>
2013-05-13 14:07:38 -04:00
Domen Kozar
edd77af3fe
add openvpn config file to networkmanager service
2013-05-13 17:52:26 +02:00
Eelco Dolstra
4e6f6d0215
Use pam_loginuid
...
This set the loginuid property of processes for auditing.
2013-05-13 11:27:21 +02:00
roconnor
aa1289dd91
Merge pull request #159 from NixOS/nginx-fullWebDAV
...
Add options for user and group to run nginx as.
2013-05-12 15:32:59 -07:00
Rob Vermaas
0f930a00f8
Add varnish module
2013-05-12 20:32:25 +02:00
Jaka Hudoklin
b345417bc5
Fix pxe network boot
2013-05-11 19:42:19 +00:00
Domen Kozar
078130767d
add openvpn plugin to networkmanager
2013-05-11 19:25:14 +02:00
Bjørn Forsman
09a7d18cc3
transmission.service: fix ignored ExecReload setting
...
This is what currently happens (from the journal log):
[/nix/store/HASH-unit/transmission.service:27] Executable path is not absolute, ignoring: kill -HUP $MAINPID
Fix it by using absolute path to kill.
2013-05-11 12:15:35 +02:00
Evgeny Egorochkin
748ab74d1f
AppArmor profiles for SUID binaries. At this moment only for ping.
2013-05-11 08:41:36 +03:00