Commit Graph

1719 Commits

Author SHA1 Message Date
5d2b138b3e
dnscrypt-proxy: more thinking for #92
* Comment that the fastest server is automatically picked.
* Explicitly don't filter AAAA requests.
* Require provider to not do filtering
    * which is implied by DNSSEC which would get broken.
* Use Google DNS B as fallback resolver and explain what it does in
  comment.
* Add commented options for using Tor.
2018-10-08 20:43:30 +03:00
4e52673b7d
etc: rm -r polipo/
Polipo is no longer maintained and it seems that I am doing the same
thing with Privoxy except censoring accept-language which I need to
investigate. I think Privoxy warned about changing headers possibly
making ones fingerprint more unique and thus trackable? But aren't those
also going inside https so maybe there is no point?
2018-10-08 20:27:17 +03:00
d1151aaf8c
etc/systemd: rm -r dnscrypt/
Dnscrypt-proxy appears to handle multiple servers by itself nowadays and
does it in the config file. The servers listed may also be down.

Ref: #92 where I remembered these files still being here.
2018-10-08 20:25:09 +03:00
44cbf89582
etc/dnscrypt-proxy: prefer CF-v6, add G, fallback OpenDNS
This still needs more thinking... #92
2018-10-08 20:18:48 +03:00
44ac6ff573
resolv.conf: add single-request-reopen to options
It's in dnscrypt-proxy documentation for putting into resolv.conf
2018-10-07 21:20:41 +03:00
330e8a80ad
ssh_config: controlpersist auto instead of on
just in case that would be used for tracking and hoping that SSH is
clever enough.
2018-10-07 21:12:08 +03:00
b8bda9cf49
ssh_config: use more private ControlPath 2018-10-07 20:54:41 +03:00
ae04839807
add etc/dnscrypt-proxy.toml (WIP!) 2018-10-07 13:45:45 +03:00
63027a97a7
etc/privoxy/config: example to Torify everything 2018-10-06 16:41:20 +03:00
06d5ff55d0
etc/systemd/system: add cjdns/ 2018-10-05 13:27:35 +03:00
35f12ae35c
etc/privoxy/config: toggle 0, buffer-limit 51200 2018-10-03 16:18:27 +03:00
c2fda6d7fc
etc/privoxy: add minimalistic config 2018-10-03 13:37:52 +03:00
1acf4b9c7c
fix conf/locale.conf
It appears that I have been doing locales wrong for years and only now
something has decided to not accept the incorrect versions?
Alternatively Debian has decided to stasrt doing it somehow different
from others, but I don't think so.
2018-09-21 12:37:05 +03:00
930be20983
etc/sources.list/: use https://deb.debian.org
Apparently they have deprecated httpredir while I wasn't looking.
2018-09-20 13:39:51 +03:00
55018ef7ef
etc/sources.list: remove Debian codenames 2018-09-20 13:37:32 +03:00
b2f590f357
etc/sources.list: rm EOL distributions 2018-09-20 13:35:59 +03:00
cc39aa3a2e
gpg.conf: comment things I don't understand etc.
keyserver is not needed with GPGv2, I have no idea what some of those
options do and thus have suspect that they make my GPG more insecure and
I have used MATE for years and don't have eog available.
2018-09-18 21:37:28 +03:00
8a8a686110
also update PATH in rc/profile 2018-09-18 21:07:55 +03:00
1ab66ecbe9
rc: update PATH
Cleanup directories that I have never seen used, add Go
2018-09-18 20:57:48 +03:00
fe1d58c12f
xinitrc: exec mate-session 2018-09-06 13:26:01 +03:00
1140d75d72
profile: embrace Colemak (caps to backspace) 2018-09-06 13:25:36 +03:00
556deb069f
profile: check for existence of numlockx 2018-09-06 13:22:15 +03:00
f17b8ee1df
conf/Xresources: increase font size 2018-08-27 22:57:49 +03:00
0695c61702
conf/Xresources: enable Ctrl + Shift + C/V 2018-08-27 22:48:41 +03:00
4877b2e45b
etc/resolv.conf: add notes for nm-connection-editor 2018-08-10 17:18:33 +03:00
9f13a96513
sources.list: add 18.04 (copy from 16.04) 2018-04-30 17:25:48 +03:00
c066504a97
profile: disable gpg-agent starting
Ubuntu (MATE) 18.04 didn't seem to appreciate it.
2018-04-26 12:30:30 +03:00
446c5c14ab
sysctl: don't touch vm.swappiness
I think my distribution is more capable of choosing a reasonable value
and I am not confident in understanding it enough.
2018-04-20 12:32:46 +03:00
537fc06dd7
etc/resolv.conf: update based on note to self
I have no idea why I even have this file :(

I guess the number four has something to do with Windows as resolv.conf
actually doesn't take more than three, am I preparing for situation
where there is no network, but ISP DNS is down or something? Why? When has
that actually happened?
2018-04-19 14:46:25 +03:00
d11ff89c85 shellrc: disable apt Happy Eyeballs workaround
I think apt has fixed it and this has started being more problem than
solution.

This just breaks my nice gpg signed streak :(

Signed-off-by: Mikaela Suomalainen <mikaela+git@mikaela.info>
2018-04-18 17:29:33 +03:00
17aad65fbc
Xresources: increase font size from 11px to 15px
Nowadays I am mainly on laptop which the 11px is very small and
uncomfortable to look at. I don't know if it's just that or that I have
gotten older (hah).

I hope that this doesn't look bad in other environments.
2017-10-19 11:17:14 +03:00
8191079790
tmux.conf: the world isn't ready for tmux-256color 2017-10-13 16:12:20 +03:00
73d3d51377
move compose key to menu (from lwin)
Closes #90
2017-09-18 22:06:11 +03:00
06820d58b9
Windows: add Mikaelaize.reg
Closes Mikaela/mikaela.github.io#103 which was in wrong repository D:
2017-08-08 18:00:29 +03:00
cb26791aaa
rc: add -y to apg-random 2017-04-30 12:34:31 +03:00
faed9737c0
ssh config: forwarding for Glowing Bear 2017-03-08 21:02:11 +02:00
9d6c1b60f6
xinitrc: Apparently my current preferred DE is LXQt 2017-02-24 16:50:16 +02:00
36b1544606
dnsmasq: I don't care about breaking OpenDNS
OpenDNS should care about breaking me.
2017-01-12 12:54:52 +02:00
954a3b7b93
update config 2017-01-12 12:42:37 +02:00
28a740415b
Windows: VerboseStatus_ShowScripts_NoLogon_Anomation.reg
The most important things when dealing with Windows.

* Don't say "Windows is doing something, don't power off computer", say
  what Windows is doing.
* Don't hide scripts that are ran on boot/login, show their output
* Same for Shutdown
* And don't show the annoying animation with its blinking colours on
  first login!
2016-12-17 19:41:41 +02:00
176269ba2c
Windows.reg.markdown: add the first line
to make it a Windows Registry Editor script.

I noticed it missing when I was creating new script (to be added)
and copied parts of it and regedit refused to take it for it not being a
Windows Registry Editor script.
2016-12-17 19:33:31 +02:00
61296f1cea
NetworkManager: mess .conf more, add .conf.arch 2016-12-14 12:04:35 +02:00
d17a1d936b
NetworkManager: add dnsmasq.d/mikaela.conf
I want DNSMasq to behave a little differently from the NetworkManager
defaults.

The default cache size of 150/400 seems a little small and 10 000 probably
won't be full soon and I am sure modern systems at least at home where I
am using dnsmasq again won't suffer from it.

By default dnsmasq started by NEtworkManager only listens on 127.0.0.1
while ::1 also exists, I want it to be also listened on in case anything
decides to try querying with it.

DNSSEC is not checked by default while I want that behaviour, but as I
am using OpenDNS I cannot make it verify unsigned zones are unsigned :(

Also add symlink to trust-anchors.conf that should ship with DNSSEC to
avoid having to deal with it manually. It should work as a reminder that
it's also needed.
2016-12-14 11:54:48 +02:00
1ba8dd4137
systemd: snapd.refresh.service override
It fails on laptops thanks to not being able to do DNS resolution thanks
to network connection not existing during boot.

Now it fails to `Download snap "ubuntu-core" (423) from channel "stable"
(cannot authenticate to snap store: Provided email/password is not
correct.)` which is process and appears to not be my issue.
2016-12-13 19:30:32 +02:00
56de53ee30
systemd: only override issues with stock units
Only oidentd.socket and miredo.service were copied instead of being
units that exist in the system and they don't need to do anything
else than fix the issue I have with the stock units.

* oidentd.socket is IPv6-only on my systems unless is BindIPv6Only=both.
  because of net.ipv6.bindv6only=1
* miredo.service is here because it starts before there is network
  connection (network-online.target) and there is never network
  connection with laptops before they are connected to WLAN even if
  NetworkManager might be up seeking/connecting to network.
2016-12-13 19:22:26 +02:00
0925e0d23e
somewhat rewrite etc/resolv.conf 2016-12-08 11:13:22 +02:00
2151d9b602
etc/resolv.conf: add commented OpenDNS just in case
And possibly helpful comments, I wish they started doing DNSSEC.
2016-11-29 10:44:25 +02:00
d44eefdb65
conf: add locale.conf anyway for catting 2016-10-22 13:10:08 +03:00
b25ba14a36
conf: locale.conf --> pam_environment 2016-10-22 13:04:43 +03:00
789b67cdb1
conf: add locale.conf 2016-10-22 12:34:12 +03:00