forked from jordanisaacs/dotfiles
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathtodo
91 lines (80 loc) · 3.37 KB
/
todo
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
[x] done, [-] in progress, [ ] todo, [!] Broken
Flake Refactors:
[-] flake.nix should only contain configuration.
[-] Switch to submodules to make nested options work better.
[ ] Refactor builder function to take global configuration
[ ] With the increased use of my private cloud need to reference other system configs.
Make every machine get passed into the module and have which machine config you want to build
[ ] Remove the builder function custom parameters and make them part of module system
Overall:
[ ] Systemd service hardening
- https://bertptrs.nl/2021/09/05/securely-passing-secrets-to-dynamicuser-systemd-services.html
[ ] Systemd stage 1 (blocked on networking support)
- Stage 1 status - https://github.com/NixOS/nixpkgs/projects/51
[!] DynamicUser=yes and reading files for systemd - breaks syncthing services
- Switch to dynamic users with systemd credentials
Private Cloud:
Network:
[ ] Switch to knot resolver
[ ] Blocklists module
[ ] Wireguard module - see wanted programs
[ ] Vector.dev topology
Gondola:
[ ] Grafana instance that pulls from vector logs
Chairlift:
[x] Public mailserver (simple-nixos-mailserver)
[x] Private recursing DNS with domains (unbound)
[-] Nginx reverse proxy
[-] Services
[x] Nginx Status Page
[x] RSS Reader - Miniflux
[x] Todo List - taskwarrior sync
[-] Budgeting - Firefly iii
[ ] Personal CRM (also todo replacement?) - monicahq/chandler
[ ] Recipes/Cooking - Tandoor recipes
[ ] Monitoring? Program TBD
[ ] Subdomains
Public Cloud:
Gondola:
[ ] nginx reverse proxy
[ ] builds.snowytrees.dev
[ ] links.snowytrees.dev (https://sr.ht/~mlb/linkhut/)
[ ] snowytrees.dev (public website)
[ ] Build system w/ buildbot
- CI - buildbot
- https://buildbot.net/
- https://github.com/Mic92/dotfiles/tree/main/nixos/eve/modules/buildbot
- Nix Distributed builds
- https://nixos.wiki/wiki/Distributed_build
- Merge Queues - bors
- https://kflansburg.com/posts/merge-queues/
- https://github.com/bors-ng/bors-ng
Chairlift:
[ ] Not currently public facing
General:
Gondola:
[ ] Get IPv6 working
Chairlift:
[ ] Re-enable broken services (syncthing-* & ankisyncd)
System:
[ ] Get waydroid running
[ ] Get windows 10 QEMU working
[x] Systemd boot & plymouth
[x] Greetd/tuigreet
[x] kernel logs and fprintd output make tuigreet go visually insane - fixed
[x] fix session configurations
[ ] Printer/wifi secrets with agenix
User:
[ ] Desktop theming
[ ] Waybar indicators, colors, etc
[ ] foot coloring
[ ] bemenu coloring & font size
[ ] SSH-Agent
[x] Working gnome-keyring
[ ] Setup auto-login bitwarden-cli using gnome-keyring
[ ] valid-before/after SSH signing file
[ ] Bitwarden ssh-agent python script
[ ] Eww widgets
Programs I want:
[ ] CLI libsecret
[ ] Wireguard NAT traversal - module for knot dns