Drift/issues
17
1
Issues 172 Wiki Activity

Add roundcube's des_key to sops #296

New Issue
Open
opened 2026-01-22 05:20:27 +01:00 by oysteikt · 0 comments
oysteikt commented 2026-01-22 05:20:27 +01:00
Owner
Copy Link

roundcube uses a des key for something with sessions, but it's currently stateful and owned by nginx:nginx in /var/lib/roundcube on bekkalokk. Maybe we should move this key to sops, and have it passed through LoadCredentials in the phpfpm systemd unit instead.

roundcube uses a des key for something with sessions, but it's currently stateful and owned by `nginx:nginx` in `/var/lib/roundcube` on `bekkalokk`. Maybe we should move this key to sops, and have it passed through `LoadCredentials` in the phpfpm systemd unit instead.
oysteikt added the securitynixosservices labels 2026-01-22 05:20:27 +01:00
oysteikt added this to the Kanban project 2026-01-22 05:20:27 +01:00
oysteikt moved this to Medium priority in Kanban on 2026-01-22 05:35:38 +01:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
dns
Involves modifications to dvask
 exploration
See the galaxy!
 gitea
mail
epost nord
 new stuff
Adds a new service / new functionality
 openstack
NUTN OpenStack, more like closed stack
 services
Everything regarding selfhosted services
 software
Everything regarding homebrewn software
art
The issue needs someone to be creative
 backup
big
No, not bug, **big** - this is gonna take a while
 blocked
This issue/PR depends on one or more other issues/PRs
 bug
Something is not working, and it's not the shield hero
 crash report
Report an oopsie
 disputed
kranglefanter
 documentation
Documentation changes required
 duplicate
This issue or pull request already exists
 enhancement
New feature
 good first issue
Get your hands dirty with a new project here
 logging
networking
TTM4100
 nixos
Requires changes to our nixos setup
 question
More information is needed
 salt
Requires changes to our salt setup
 security
Skommel
 servers n' hardware
Regards hardware, servers or VMs
 wontfix
This won't be fixed
No Label services nixos security
Milestone
No items
No Milestone
Projects
Clear projects
No project Kanban
Assignees
Clear assignees
adriangl albertba alfhj bjornoka chrisfjo chrivi danio davidk dungby eirikwit felixalb frero jonmro jovre karolds knuta krisleri larshhan olived oysteikt pederbs root torsteno vegardbm yorinad
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: Drift/issues#296
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?