summaryrefslogtreecommitdiff
path: root/roles
AgeCommit message (Collapse)Author
2025-03-02Use `homedir` variable instead of `user` in dotfilesDmitry Ilvokhin
2025-01-28Remove graphviz from the dev roleDmitry Ilvokhin
2025-01-27Add graphviz to dev roleDmitry Ilvokhin
2025-01-25Add personal global gitignore fileDmitry Ilvokhin
Usually I have tags file from ctags in root of the repo to simplify code navigation. Some repos have tags file in gitignore, but some doesn't. Create personal gitignore files to hide tags file everywhere. This is not a per repositiry setting, but personal one, so it's fine to configure it globally.
2025-01-18Add go to dev roleDmitry Ilvokhin
2025-01-15Fix certbot renewal hook script for dovecotDmitry Ilvokhin
Replace devecot -> dovecot.
2024-12-29Add `ninja` to dev roleDmitry Ilvokhin
2024-12-26Add role for irssiDmitry Ilvokhin
2024-12-21Add comment why `man-pages` is needed in dev roleDmitry Ilvokhin
2024-12-21Add `jq`, `tree` and `man-pages` to dev roleDmitry Ilvokhin
2024-12-21Add dev role to setup development environmentDmitry Ilvokhin
2024-12-08Add two more clients to `wgvpn0`Dmitry Ilvokhin
2024-11-03Replace gnu-netcat with openbsd-netcatDmitry Ilvokhin
openbsd-netcat required as dependency for cloud-init.
2024-10-05Make screenrc compatible with screen 5.0.0 versionDmitry Ilvokhin
GNU Screen does not support colors specification as letters anymore. Here is relevant quote from manpage: > The old format of specifying colors by letters (k,r,g,y,b,m,c,w) is > now deprecated. And by deprecated they mean doesn't work anymore. Unfortunately, macOS ships screen version 4.00.03 and I couldn't figure out a way to have screenrc syntax to work on both 5.0 and 4.0 versions at the same time. One more problem is `screen --version` changed return code, so even code for checking if screen is installed at all doesn't work anymore. Need to figure out a proper way forward. For now I just installed screen version 5.0.0 from homebrew to fix macOS setup and at the same time make Linux machines happy as well.
2024-09-15Extend postfix body_checks to prevent spamDmitry Ilvokhin
2024-06-30Use `delegate_to` instead of `local_action`Dmitry Ilvokhin
2024-06-30Use `ansible.builtin.shell` instead of `cmd`Dmitry Ilvokhin
2024-06-30Fix one more missing `yes` usageDmitry Ilvokhin
2024-06-30Cleanup quotes usage in YAML filesDmitry Ilvokhin
Seems quotes in YAML is a mess. Official guidelines (see explanation here [1]) are following. 1. If you can get away without quotes, do not use them. 2. Use single quotes if you need quotes. 3. Use double quotes if you can't use single quotes for some reason. Common reason for double quotes in this repository is line breaks for long lines and control characters (\n, \t) in replacement patterns. Hope, I didn't break anything. Tested with following commands, because there are no changes in others. $ ansible-playbook dotfiles.yml $ ansible-playbook master.yml [1]: https://stackoverflow.com/a/69850618/1313516
2024-06-30Migrate from `yes` to `true`Dmitry Ilvokhin
2024-06-29Add wg-quick@wgtor0 as dependency to torDmitry Ilvokhin
Otherwise tor could not bind ports on wgtor0 ip addresses as it wasn't up yet.
2024-06-23Remove trailing spacesDmitry Ilvokhin
2024-06-23Introduce sysupgrade playbookDmitry Ilvokhin
Playbook sysupgrade.yml is a attempt to do automatic full system upgrade. Currently logic is completely automated for happy path. 1. Shutdown machine. 2. Take snapshot from the machine. 3. Power on machine back. 4. Update archlinux-keyring. 5. Upgrade everything. 6. Reboot. If something is working, then we are done. Otherwise, restore from snapshot manually and try to figure out what went wrong.
2024-06-15Tor -> tor for consistencyDmitry Ilvokhin
2024-06-15WireGuard -> wireguard for consistencyDmitry Ilvokhin
2024-06-15Rename wg0 interface to wgnet0Dmitry Ilvokhin
2024-06-15Rename wg1 interface to wgvpn0Dmitry Ilvokhin
2024-06-15Rename wg2 interface to wgtor0Dmitry Ilvokhin
2024-06-14Mark gate as jumphostDmitry Ilvokhin
2024-06-14Add comment why we use reload for wgnetDmitry Ilvokhin
2024-06-14Fix wrong state restart -> restartedDmitry Ilvokhin
2024-06-14Manually create /etc/systemd/resolved.conf.d dirDmitry Ilvokhin
2024-06-09Migrate to restart instead of reload for wgvpnDmitry Ilvokhin
For the same reason restart is used in wgtor: there are `iptables` commands in `PostUp` and `PostDown` which are not running on reload.
2024-06-09Add tor roleDmitry Ilvokhin
2024-06-09Add wgtor role for Tor middleboxDmitry Ilvokhin
2024-06-01Migrate netfwd to systemd-sysctlDmitry Ilvokhin
/etc/sysctl.conf doesn't work, see [1]. Intrestingly enough, I catched it only with system upgrade and reboot. Just reboot didn't catch it for some reason, or I didn't notice. [1]: https://wiki.archlinux.org/title/sysctl
2024-05-27Remove semicolons from wgvpn configDmitry Ilvokhin
2024-05-27Add wgvpn role for WireGuard VPNDmitry Ilvokhin
2024-05-26Remove wgnet networkd filesDmitry Ilvokhin
2024-05-26Move sysctl net forwarding to separate roleDmitry Ilvokhin
2024-05-19Migrate away from networkd for wireguardDmitry Ilvokhin
Migrate due to a bug [1], which wasn't fixed for some time. [1]: https://github.com/systemd/systemd/issues/25547
2024-05-19Wireguard overlay network setupDmitry Ilvokhin
Need to migrate away from networkd, because it can't add new wireguard peers now out of the box without hacks. [1]: https://github.com/systemd/systemd/issues/25547
2024-05-06Add wireguard roleDmitry Ilvokhin
2024-05-04Push public key from another laptop to serversDmitry Ilvokhin
2024-05-03Open git.ilvokhin.com to the worldDmitry Ilvokhin
2024-05-03Init repositories as private by defaultDmitry Ilvokhin
2024-05-03Add clone URLs for repositoriesDmitry Ilvokhin
2024-05-03Do not export everything with git-daemonDmitry Ilvokhin
We should export only repositories with git-daemon-export-ok file inside.
2024-05-03Rename .htpasswd to htpasswdDmitry Ilvokhin
2024-05-03Add dots to commentsDmitry Ilvokhin
generated by cgit v1.2.3-70-g09d2 (git 2.49.0) at 2025-04-28 11:50:22 +0000