oysteikt
475f6a8c9b
bekkalokk/vaultwarden: add rsa key to sops
Eval nix flake / evals (push) Successful in 4m25s
2026-05-22 17:49:31 +09:00
oysteikt
0f53bcd731
bekkalokk/roundcube: add des_key to sops
2026-05-22 17:08:31 +09:00
vegardbm
9c93f15569
change agekey for ildkule and update keys
...
Build topology graph / evals (push) Successful in 2m31s
Eval nix flake / evals (push) Successful in 5m8s
update keys
2026-05-21 17:27:11 +02:00
felixalb
d8115c4031
bakke: add shading
2026-05-08 03:06:06 +02:00
danio
45f10be9b4
secrets: delete skrott
Build topology graph / evals (push) Successful in 3m53s
Eval nix flake / evals (push) Successful in 4m26s
2026-05-08 03:01:11 +02:00
oysteikt
683e4b2dbc
lupine-3: update sops key
2026-04-19 01:26:12 +09:00
oysteikt
8a9e92c706
lupine-5: update sops key
2026-04-19 00:38:24 +09:00
oysteikt
a399f23785
lupine-{1,2,4}: update sops keys
2026-04-18 23:58:43 +09:00
vegardbm
b5fecc94a7
hosts: add skrot
...
Build topology graph / evals (push) Successful in 3m31s
Eval nix flake / evals (push) Successful in 10m10s
Co-authored-by: System administrator <root@skrot.pvv.ntnu.no >
Reviewed-on: #124
Co-authored-by: Vegard Bieker Matthey <VegardMatthey@protonmail.com >
Co-committed-by: Vegard Bieker Matthey <VegardMatthey@protonmail.com >
2026-02-14 18:53:54 +01:00
vegardbm
35907be4f2
update sops keys for skrott
Build topology graph / evals (push) Successful in 4m2s
Eval nix flake / evals (push) Successful in 8m37s
2026-02-07 22:17:09 +01:00
oysteikt
210f74dc59
secrets: sops updatekeys
Build topology graph / evals (push) Successful in 5m52s
Eval nix flake / evals (push) Successful in 8m46s
2026-02-08 05:19:26 +09:00
oysteikt
c3c98392ad
bicep/hookshot: add passkey to sops
Build topology graph / evals (push) Successful in 3m23s
Eval nix flake / evals (push) Successful in 8m31s
2026-01-26 21:52:58 +09:00
oysteikt
e01fd902eb
bekkalokk/mediawiki: move secret.key to sops
Build topology graph / evals (push) Successful in 5m50s
Eval nix flake / evals (push) Successful in 8m39s
2026-01-26 17:55:55 +09:00
oysteikt
f50372fabd
.sops.yaml: remove yet more remains of jokum
Build topology graph / evals (push) Successful in 3m23s
Eval nix flake / evals (push) Successful in 7m20s
2026-01-26 13:53:30 +09:00
oysteikt
0f355046de
.sops.yaml: add skrott
2026-01-26 13:53:16 +09:00
oysteikt
034f6540d9
secrets/skrott: add database password
2026-01-25 23:30:41 +09:00
oysteikt
52ac4ca775
skrott: update dibbler + config
Build topology graph / evals (push) Successful in 5m8s
Eval nix flake / evals (push) Successful in 8m2s
2026-01-25 20:56:33 +09:00
oysteikt
0f11cca8ec
bicep/matrix: use sops templates to render structured files
Build topology graph / evals (push) Successful in 6m25s
Eval nix flake / evals (push) Has been cancelled
2026-01-21 11:08:26 +09:00
oysteikt
e5dd5b6325
bicep/matrix: attempt to set up livekit
Build topology graph / evals (push) Successful in 3m30s
Eval nix flake / evals (push) Successful in 7m46s
2026-01-21 10:14:08 +09:00
oysteikt
1080589aef
secrets/*/*: update keys
Build topology graph / evals (push) Failing after 1m23s
Eval nix flake / evals (push) Has been cancelled
2026-01-16 07:36:43 +01:00
oysteikt
5e18855c7c
skrott: register sops with dibbler db url
2026-01-12 02:32:21 +09:00
oysteikt
cedaf2a517
kommode/gitea: declarative pubkey
Eval nix flake / evals (push) Has been cancelled
2025-12-22 15:35:54 +09:00
oysteikt
9b22b53e95
secrets/bakke: update keys
Eval nix flake / evals (push) Successful in 5m37s
2025-12-22 15:10:22 +09:00
oysteikt
0a6e50e04c
secrets/kommode: update gitea signing key
2025-12-22 15:08:53 +09:00
felixalb
0491df32f7
Init bakke ( !87 )
...
Eval nix flake / evals (push) Successful in 5m18s
New backup server just dropped!
This server is awfully slow, and the mdraid setup is awfully slow, and I doubt that this will be a good experience, but we now have a backup server again?
- Tried Disko and nixos-anywhere
- Tried using mdraid
- Found that md is ancient and bad
- Found that disko is 100% extra steps, and a lot more complicated and noisy than just formatting your disks yourself
- Found that systemd-boot doesn't support mdraid
- Found that we probably don't need to mirror the boot partition :)
- Found that old hardware is slow
- Found that old hardware can have poor support for iPXE with UEFI, and might do weird BIOS stuff on you when you least expect it
- Reaffirmed that zfs is love
Current disk layout:
- mdraid for boot/root disk
- 4TB WD Red with 500MiB ESP with systemd-boot, Remaining mdraid - Old?
- 4TB WD Red with 500MiB Unused partition, Remaining mdraid - Old?
- zfs pool "tank" for the actual backup data
- 8TB Toshiba MG08 - New
- 8TB Exos 7E10 - New
TODO:
- Document the death of Toriel on the wiki
- Document Bakke on the wiki
- ... describing the poco loco disk layout
- Start backing stuff up
- Restic? Borg? Rsync?
- Make backup retention policy and zfs snapshot system
- Document backup procedures
Reviewed-on: #87
Co-authored-by: Felix Albrigtsen <felix@albrigtsen.it >
Co-committed-by: Felix Albrigtsen <felix@albrigtsen.it >
2025-12-22 04:08:30 +01:00
oysteikt
c2bc84dc6f
lupine: rotate gitea registration key
Eval nix flake / evals (push) Successful in 6m7s
2025-12-04 15:07:21 +09:00
danio
938e916025
update bicep key
Eval nix flake / evals (push) Has been cancelled
2025-12-02 01:51:40 +01:00
danio
d9a9fcfef1
danio has a new sops key
Eval nix flake / evals (push) Has been cancelled
2025-12-02 01:40:54 +01:00
oysteikt
9e68287f1b
bicep/minecraft-heatmap: change postgres password, add to sops
Eval nix flake / evals (push) Failing after 26s
2025-08-25 14:38:25 +02:00
oysteikt
b821d36f40
bicep/minecraft-heatmap: init
Eval nix flake / evals (push) Failing after 1m19s
2025-08-25 14:26:37 +02:00
oysteikt
234a7030f0
kommode/gitea: make secrets declarative
Eval nix flake / evals (push) Failing after 0s
2025-08-03 03:39:18 +02:00
albertba
043099eb37
hosts/lupine: init
...
Eval nix flake / evals (push) Failing after 1m20s
Co-authored-by: h7x4 <h7x4@nani.wtf >
2025-07-30 20:30:28 +02:00
oysteikt
4fa544b430
WIP: bicep/ooye: init
Eval nix flake / evals (push) Failing after 25s
2025-06-22 00:59:23 +02:00
oysteikt
20ade0d619
bicep: add git-mirroring service
Eval nix flake / evals (push) Has been cancelled
2025-05-08 23:41:43 +02:00
oysteikt
b7fca76ea5
ildkule/mysqld_exporter: use nix-sops template for config
Eval nix flake / evals (push) Waiting to run
2025-03-16 21:09:12 +01:00
oysteikt
08b010cb93
kommode/sops: init
Eval nix flake / evals (push) Waiting to run
2025-03-16 14:04:09 +01:00
oysteikt
edb448f7a0
ustetind/gitea-runners: update docker image, update registration keys
Eval nix flake / evals (push) Successful in 4m22s
2024-12-22 23:17:41 +01:00
oysteikt
1f85208587
hosts/ustetind: set up gitea-runners
2024-12-09 22:24:54 +01:00
oysteikt
5242d99260
bekkalokk/gitea: add gpg signing key
2024-11-24 03:23:54 +01:00
danio
47ed79986c
bicep/matrix: use sops templates for appservice registrations
2024-10-14 15:46:58 +02:00
danio
2c86a2d812
bicep/matrix/hookshot: More configuration
2024-10-14 00:13:15 +02:00
danio
d4fd3f8332
bicep/matrix/hookshot: add nginx
2024-10-13 06:03:26 +02:00
oysteikt
f5c16f46f1
Merge pull request 'disable-postgres-on-bekkalokk' ( !85 ) from disable-postgres-on-bekkalokk into main
...
Reviewed-on: #85
Reviewed-by: Daniel Lovbrotte Olsen <danio@pvv.ntnu.no >
2024-10-13 02:34:45 +02:00
oysteikt
aa71d497f1
bekkalokk/roundcube: add postgres password
2024-10-12 23:57:27 +02:00
danio
c56d157c3f
add registration secret
2024-10-12 23:49:10 +02:00
danio
cd23e35aac
bicep/matrix: update module and remove deprecated options
2024-09-27 06:38:12 +02:00
danio
201784fa21
bluemap on bekkalokk 💀
2024-09-02 15:11:32 +02:00
oysteikt
bd42412b94
bekkalokk/gitea/import-users: refactor + add members to groups
2024-08-27 22:07:29 +02:00
oysteikt
b0f555667c
bekkalokk/gitea: set up gitea-web sync units
2024-08-26 20:36:03 +02:00
oysteikt
f5c99b58c8
bicep/calendar-bot: reactivate
2024-08-15 23:22:50 +02:00
oysteikt
vegardbm
felixalb
danio
albertba