nix-config

History

jasmine 85dc419349 refactor(ssh): decentralize SSH configuration to per-host services Restructures SSH trust relationships from global to host-specific configuration for better locality of concern and principle of least privilege. Changes: - Collapse nixos/common/global/ssh/ back to ssh.nix (single-file module) - Move internal host trust (fuchsia/viridian) to per-host services/ssh/ - Split BorgBase known hosts by repository (li9kg944 for fuchsia, r7ag7x1w for viridian) - Add viridian SSH server config to accept backup connections from fuchsia - Add fuchsia borgbackup passphrase for offsite backups - Configure viridian to create /srv/borg-repo/fuchsia for remote backups This enables the 3-2-1 backup strategy with fuchsia backing up to both viridian (onsite) and BorgBase (offsite) with proper SSH authentication.		2025-10-07 22:33:20 +08:00
..
borgbackup	WIP: SSH configuration restructure	2025-10-07 20:58:09 +08:00
crowdsec	remove allowlist	2025-05-30 15:46:35 +08:00
forgejo	refactor(viridian): migrate service data to dedicated BTRFS subvolumes	2025-10-06 13:07:46 +08:00
inspircd	setup irc network	2025-06-06 18:31:08 +08:00
lighttpd	refactor(viridian): migrate service data to dedicated BTRFS subvolumes	2025-10-06 13:07:46 +08:00
minecraft	refactor(viridian): migrate service data to dedicated BTRFS subvolumes	2025-10-06 13:07:46 +08:00
mpd	fix: Update NFS export IP address format	2025-02-18 21:56:49 +08:00
murmur	install murmur	2025-06-04 23:38:48 +08:00
opengist	refactor(viridian): migrate service data to dedicated BTRFS subvolumes	2025-10-06 13:07:46 +08:00
snapper	fix(viridian): resolve backup system initialization issues	2025-10-07 09:38:07 +08:00
ssh	refactor(ssh): decentralize SSH configuration to per-host services	2025-10-07 22:33:20 +08:00
traefik	remove ollama service from fuchsia host	2025-09-29 18:30:59 +08:00
default.nix	refactor(ssh): decentralize SSH configuration to per-host services	2025-10-07 22:33:20 +08:00