Pascal Bach
a6968ad43c
installing: document how to activate SSH during installation
2017-01-25 21:09:31 +01:00
Pascal Bach
01fd86723c
install-device: correct command to start sshd
2017-01-25 21:09:31 +01:00
Pascal Bach
03ef04f0a4
install-device: permit root login with password
...
Allow password login to the installation this allows doing remote installation
via SSH. All that need to be done on the local machine is:
1. Boot from the installation media
2. Set a password with passwd
3. Enable SSH with systemctl start sshd
It is safe as root doesn't have a password by default
and SSH is disabled by default.
Fixes #20718
2017-01-25 21:09:31 +01:00
Franz Pletz
516760a6fb
nixos/acme: add random delay to timer
...
This way we behave like good citizens and won't overload Let's Encrypt
with lots of cert renewal requests at the same time.
2017-01-25 19:15:04 +01:00
Vladimír Čunát
278bbe3b33
add kresd service with basic options
...
Still celebrating today's 1.2.0 release!
2017-01-25 18:46:28 +01:00
Robin Gloster
b79fa22b7a
tests.installer: rely on swap.target in tests
...
fixes #5258
2017-01-25 17:00:13 +01:00
Bob van der Linden
d9987f360a
nginx: added serverName option for virtualHosts
...
This allows overriding the `server_name` attribute of virtual
hosts. By doing so it is possible to have multiple virtualHost
definitions that share the same `server_name`. This is useful in
particular when you need a HTTP as well as a HTTPS virtualhost: same
server_name, different port.
2017-01-25 14:55:55 +01:00
Franz Pletz
b9b95aa4d4
Merge pull request #22034 from mayflower/conntrack-helpers
...
Disable conntrack helper autoloading by default
2017-01-25 14:18:41 +01:00
Daniel Peebles
95add2c2f7
Merge pull request #22103 from copumpkin/automatic-kafka-broker-id
...
apache-kafka service: change default brokerId to -1
2017-01-24 22:17:03 -05:00
Franz Pletz
8d5a4c53b8
nixos/release-notes: document conntrack helper changes
2017-01-25 01:14:05 +01:00
Franz Pletz
2d9152d509
nixos/tests/nat: add test for conntrack helper autoloading
2017-01-25 01:14:05 +01:00
Franz Pletz
8322a12ef2
firewall: disable conntrack helper autoloading by default
...
This was disabled in the Linux kernel since 4.7 and poses a security risk
if not configured properly.
https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=486dcf43da7815baa615822f3e46883ccca5400f
2017-01-25 01:14:04 +01:00
Franz Pletz
403fdd737e
linux: remove canDisableNetfilterConntrackHelpers feature
...
This feature is available in all kernels in nixpkgs.
2017-01-25 00:28:55 +01:00
John Ericson
5ad696b067
Merge pull request #22107 from Ericson2314/cross-tepid
...
Somewhat saner cross-compiling through bootstrapping
2017-01-24 15:09:56 -05:00
Thomas Tuegel
54df142672
nixos/kde5: use kimpanel with IBus by default
2017-01-24 12:55:06 -06:00
Thomas Tuegel
e38970c60b
nixos/ibus: fix custom panel example
...
The example was missing a `''`, so it did not appear correctly in the
manual. This also caused the manual to retain references inappropriately.
2017-01-24 12:52:39 -06:00
Michael Raskin
ae4f2fd145
Merge pull request #22066 from mbrgm/journalbeat
...
journalbeat service: init at 5.1.2
2017-01-24 17:56:48 +00:00
Michael Raskin
7516dbe35e
Merge pull request #22045 from rnhmjoj/recursor
...
PowerDNS Recursor: add package and service
2017-01-24 17:54:47 +00:00
Michael Raskin
47661c831e
Merge pull request #22028 from MostAwesomeDude/tahoe
...
Tahoe-LAFS version bump
2017-01-24 17:49:00 +00:00
Dan Peebles
eebee95176
apache-kafka service: change default brokerId to -1
...
A default of 0 means that if you deploy two NixOS boxes with the default
configuration, the second will fail because the brokerId was already in
use. Using -1 instead tells it to pick one automatically at first start.
2017-01-24 12:32:22 -05:00
John Ericson
7dc4e43837
nixos doc: Mention cross overhaul in 17.03 release notes
2017-01-24 11:37:56 -05:00
Kai
25d86bdd10
vnstat service: init ( #19809 )
2017-01-24 14:45:01 +01:00
Tristan Helmich
b3b300b6ff
smokeping: setuid for fping6
2017-01-24 12:40:21 +01:00
Vladimír Čunát
fd26ad6f76
nixos programs.man.enable: improve description
2017-01-24 09:59:54 +01:00
Corbin
de4c9e0d15
nixos/services/tahoe: Work around awkward command.
2017-01-23 17:55:41 -08:00
Tuomas Tynkkynen
b63f97c6e6
installer: Include stdenvNoCC
...
And don't include ArchiveCpio as that one is no longer needed after
5a8147479
("make-initrd: create reproducible initrds").
2017-01-23 23:49:18 +02:00
Marius Bergmann
00444cbf25
journalbeat service: init at 5.1.2
...
Journalbeat is a log shipper from systemd/journald to
Logstash/Elasticsearch. I added a package as well as a NixOS service
module for it.
2017-01-23 18:28:55 +01:00
rnhmjoj
6bcf89f217
pdns-recursor: add service
2017-01-23 17:57:48 +01:00
Jaka Hudoklin
90e0ed32ef
Merge pull request #22043 from rnhmjoj/dnscrypt-wrapper
...
dnscrypt-wrapper: add service
2017-01-23 11:23:28 +01:00
rnhmjoj
9f2bb2ed42
dnscrypt-wrapper: add service
2017-01-23 07:06:07 +01:00
Robert Helgesson
cd9f709582
flannel service: fix enable expression
...
Need to surround the equality check in parentheses.
2017-01-22 21:58:39 +01:00
Franz Pletz
df0301f59b
nixos/networkmanager: trigger assertion instead of error
2017-01-22 20:32:24 +01:00
Charles Strahan
d298a961f1
Merge pull request #21416 from cstrahan/mesos-1.1.0
...
mesos: 1.0.1 -> 1.1.0
2017-01-21 19:05:18 -05:00
Charles Strahan
5b1b089de3
Merge pull request #8642 from cstrahan/slim-console-cmd
...
nixos: provide default console_cmd for slim
2017-01-21 19:01:02 -05:00
Charles Strahan
71f92bc8a3
nixos: provide default console_cmd for slim
...
This provides a default console_cmd for the slim display-manager.
When the user enters "console" as the user name, slim will run this
command.
Having a default is rather important; the virtual terminals don't work
with some display drivers, so having a broken X session can leave you
locked out of your machine.
2017-01-21 18:59:28 -05:00
Franz Pletz
ab90eac835
networking: fix typo in resolvconf option edns0
2017-01-21 20:41:11 +01:00
Daiderd Jordan
1aa77d0519
Merge pull request #19363 from schneefux/gogs-module
...
gogs: init module
2017-01-21 16:25:16 +01:00
Franz Pletz
068dad3a21
systemd-boot: fix evaluation
2017-01-21 14:42:10 +01:00
Linus Heckemann
98bd722d1d
systemd-boot: allow setting editor security option ( #21853 )
2017-01-21 14:24:26 +01:00
schneefux
67c4512060
gogs service: init
2017-01-21 13:38:24 +01:00
Thomas Tuegel
1e266dac0d
ibus: make panel configurable
2017-01-20 18:51:29 -06:00
Daiderd Jordan
2b2b0b566d
Merge pull request #20183 from womfoo/init/netdata-service
...
netdata service: init
2017-01-20 21:05:10 +01:00
Nikolay Amiantov
d75a3cfb29
Merge pull request #21995 from abbradar/opencl
...
Fix OpenCL support
2017-01-20 12:09:17 +03:00
Graham Christensen
c0f3b8d629
wordpress: 4.6.1 -> 4.7.1 for multiple CVEs
...
CVE-2017-5487 CVE-2017-5488 CVE-2017-5489 CVE-2017-5490 CVE-2017-5491 CVE-2017-5492 CVE-2017-5493
2017-01-19 22:53:49 -05:00
Nikolay Amiantov
221685aee9
opengl service: mention that you can add OpenCL drivers
2017-01-20 03:37:51 +03:00
Bjørn Forsman
6a52a130de
nixos/kde5: enable system-config-printer dbus service
...
Without it, the following error is shown in the "Add Printer" window:
Failed to group devices: 'The name org.fedoraproject.Config.Printing was not provided by any .service files'
2017-01-18 20:39:17 +01:00
Robin Gloster
f4f4200d9a
install-devices: add vim
...
This moves vim to the install-device profile to add vim to netboot, too.
Fixes #20013 (see discussion there for further information)
2017-01-18 17:57:31 +01:00
Michael Weiss
460b43dbfe
firewall: Improve the comments (documentation) ( #21862 )
...
* Fix the FW names
FW_REFUSE was removed and nixos-fw-input was renamed to nixos-fw.
* Update the comment (documentation) at the top
Order the chains of the main table alphabetically (like in the rest of
the file) and add nixos-fw-rpfilter (from the raw table) and nixos-drop
(used while reloading the firewall).
* Refactor the module (mainly comments)
- Move some attributes to the top for better visibility (that should
hopefully make it easier to read and understand this module without
jumping around too much).
- Add some missing examples and improve some descriptions.
- Reorder the mkOption attributes for consistency.
- Wrap lines at 72 characters.
- Use two spaces between sentences.
2017-01-18 17:18:11 +01:00
Eelco Dolstra
42a7d906d9
EC2 AMIs: 16.09.666.3738950 -> 16.09.1508.3909827
...
In particular, this includes a fix for using ephemeral disks for /tmp,
and adds AMIs for the new eu-west-2 (London) and us-east-2 (Ohio)
regions.
2017-01-18 12:42:39 +01:00
gnidorah
4a662e5206
nano: add nix syntax hightlight, nano module: provide default ( #21912 )
...
this is awesome! thanks.
2017-01-18 12:05:30 +01:00