shell-things

Commit Graph

Author	SHA1	Message	Date
Aminda Suomalainen	4de337722e	etc/apt/preferences.d: add testing-debug & rename stable.donotuse Resolves: #124 (see comment)	2019-07-30 01:08:09 +03:00
Aminda Suomalainen	2112575a98	etc/apt/preferences.d: commit dark magic that shouldn't exist	2019-07-30 00:52:32 +03:00
Aminda Suomalainen	a01e53171e	grub.d/sedric.cfg: comment that acpi_osi=Linux doesn't work	2019-07-28 10:45:04 +03:00
Aminda Suomalainen	100d9a7433	dnscrypt-proxy.toml: move cache above & add comments & min cache TTL 300	2019-07-23 16:13:22 +03:00
Aminda Suomalainen	55050ec0e5	cache.conf: increase NXDOMAIN cache size and set min TTL to 300	2019-07-23 15:09:34 +03:00
Aminda Suomalainen	2b8a460b63	etc/unbound: add cache.conf	2019-07-23 12:30:53 +03:00
Aminda Suomalainen	93fa7a003c	etc/default/grub.d: add beep.cfg & sedric.cfg beep.cfg is the default example on getting a beep on grub startup, sedric.cfg just contains `acpi_osi=` which fixes the hardware keys for some reason.	2019-07-22 18:56:38 +03:00
Aminda Suomalainen	97006ddf9b	unbound.conf.d/logging.conf: quote the fine manual for unbound.conf	2019-07-22 17:18:53 +03:00
Aminda Suomalainen	222a030cee	unbound/dns-over-tls: note version requirement 1.7.3 Debian 9 has 1.6.0 with which I am stuck for now. Debian 10 has 1.9.0	2019-07-22 16:52:07 +03:00
Aminda Suomalainen	29eae6f89a	etc/dnscrypt-proxy: note I run Unbound in front of it	2019-07-22 16:25:21 +03:00
Aminda Suomalainen	eb6315d92f	resolv.conf: add Quad9 and note I am not sure what it tries to be Public DNS resolver with easy address list for emergency?	2019-07-22 16:22:55 +03:00
Aminda Suomalainen	430b9b7bfc	resolv.conf: note local resolver separately from dnscrypt-proxy	2019-07-22 16:17:27 +03:00
Aminda Suomalainen	7b83f84633	unbound/dns-over-tls.conf: add AdGuard DNS I am surprised it actually works with DNSSEC validation enabled	2019-07-22 16:12:09 +03:00
Aminda Suomalainen	ffbbe9e522	unbound: replace forwards.conf with dns-over-tls.conf Simultaneously rm puntcat, their DNS appears to be down at the moment and I didn't find their own homepage.	2019-07-22 16:05:05 +03:00
Aminda Suomalainen	6ed44de3d1	unbound.conf.d: clarify logging.conf in a comment	2019-07-22 15:27:27 +03:00
Aminda Suomalainen	bb14632b9a	unbound: add another Debian default	2019-07-22 15:16:34 +03:00
Aminda Suomalainen	3b9acff361	etc/unbound add unbound.conf & unbound-control.conf copy-pastes from Debian & Arch Wiki, however unbound-control in status no as I guess it can be a hole most of time.	2019-07-22 15:14:11 +03:00
Aminda Suomalainen	5569a1129c	unbound.conf.d/dnscrypt-proxy.conf: update for dnscrypt-proxy v2 Closes #121	2019-07-22 15:12:49 +03:00
Aminda Suomalainen	fc5fb4d7bd	b6a511d6a63b6b6bb5fc918eae221d3ff062d89f: add comments	2019-07-20 11:37:28 +03:00
Aminda Suomalainen	b6a511d6a6	etc: backup some apt.conf.d & preferences.d files	2019-07-20 11:09:42 +03:00
Aminda Suomalainen	41f44924be	dnscrypt-proxy.toml: note 2.0.24 fastest -> first	2019-07-14 18:36:31 +03:00
Aminda Suomalainen	117801ec9d	dnscrypt-proxy: fix comments Resolves: #120	2019-07-14 18:15:35 +03:00
Aminda Suomalainen	646956b4e0	dnscrypt-proxy.toml: restore Quad9 examples Rbtpzn was using them for some reason and was hitting less errors than Zaldaryn in as basic test as "apt update", so I guess it's worth having it included. I think I am mainly leaving it for family devices.	2019-07-14 13:30:29 +03:00
Aminda Suomalainen	a5868f6395	etc/sources.list: update testing for bullseye & add note to stable for it > over the last years we had people getting confused over <suite>-updates > (recommended updates) and <suite>/updates (security updates). Starting > with Debian 11 "bullseye" we have therefore renamed the suite including > the security updates to <suite>-security. https://lists.debian.org/debian-devel-announce/2019/07/msg00004.html	2019-07-14 12:40:56 +03:00
Aminda Suomalainen	2fe92afa26	etc/apt/sources.list: change keyserver Ref: #119 I am not sure I would advice running that even if it happened to exist.	2019-07-01 11:50:26 +03:00
Aminda Suomalainen	128f1781f3	torrc-client: add MapAddress for PirateIRC & freenode Closes #118	2019-06-30 14:27:20 +03:00
Aminda Suomalainen	a915db9f8a	etc/systemd: tor-services: add ExecReload I am running `systemctl restart tor-client` too often to be comfortable.	2019-06-30 14:11:34 +03:00
Aminda Suomalainen	bf3b91d93a	torrc-client: update from running config Preparation to #118	2019-06-30 13:31:16 +03:00
Aminda Suomalainen	5128e8646a	ipfs.service: use dht routing instead of dhtclient routing	2019-06-11 01:17:22 +03:00
Aminda Suomalainen	85bd70f382	etc/systemd/system/ipfs: important notice for VPS/dedi/etc.	2019-06-11 01:12:28 +03:00
Aminda Suomalainen	6ce553f84e	dnscrypt-proxy: fix cloudflare excluding	2019-06-02 22:30:49 +03:00
Aminda Suomalainen	540798ed17	dnscrypt-proxy: use Socks Authentication	2019-05-22 12:01:34 +03:00
Aminda Suomalainen	b96eb372d0	torrc-client: ensure IsolateSOCKSAuth & add HTTPTunnelPort	2019-05-22 11:58:05 +03:00
Aminda Suomalainen	3eefbaf296	etc/tor/torrc-onehoponion: CookieAuthFile 0	2019-05-17 18:54:34 +03:00
Aminda Suomalainen	7dbafe4a54	resolv.conf: more comments	2019-05-16 15:28:15 +03:00
Aminda Suomalainen	21adba9a02	dnscrypt-proxy.toml: update ~~stories~~ comments	2019-05-15 10:48:11 +03:00
Aminda Suomalainen	e972a47d4a	torrc-client: add SocksPorts and comment on two guards I need unisolated port for dnscrypt-proxy which I fear would otherwise generate too many circuits which wouldn't even be used and I guess there is no harm in sending Yggdrasil to a separate port that only has access to onions which is a port I may sometimes wish I have otherwise too.	2019-05-15 10:31:47 +03:00
Aminda Suomalainen	95bcf095df	VerifyHostKeyByDNS is supposed to be yes fix previous commit, I imagine I changed it by accident.	2019-05-11 00:58:00 +03:00
Aminda Suomalainen	e634ee8863	ssh_config: update comment for VerifyHostKeyDNS OpenSSH is evil and gives you three not-optimal options to this: A) trust DNSSEC and don't write known_hosts B) ask whether to trust DNS, but don't bother telling me if it's signed C) don't even check SSHFP I see A) as the least evil, but I wish known_hosts was written. Alternatively B) should tell me whether there is DNSSEC or not, not only "matching keys found from DNS" or whatever it says always.	2019-05-09 18:44:36 +03:00
Aminda Suomalainen	9e03598e3f	etc/apt/sources.list: add missing tor+ for Debian	2019-05-09 14:05:54 +03:00
Aminda Suomalainen	0ce3c5f47a	dnscrypt-proxy: adjust sources, add prefixes	2019-05-07 00:55:07 +03:00
Aminda Suomalainen	f978853d11	dnscrypt-proxy.toml: add onion resolvers	2019-05-07 00:23:51 +03:00
Aminda Suomalainen	d2bd2be652	systemd/zeronet.service: use Python 3 & always use Tor	2019-05-05 20:28:14 +03:00
Aminda Suomalainen	d8ba42bdd1	etc/tor: disable control, document enabling for client	2019-05-04 20:41:18 +03:00
Aminda Suomalainen	8e01a42c62	etc: systemd & tor: add tor-onehoponion (and torrc-relay)	2019-05-04 17:26:57 +03:00
Aminda Suomalainen	c726daa62c	etc/tor/torrc-client: add comments	2019-05-04 16:55:08 +03:00
Aminda Suomalainen	b0ef3a18f6	torrc-client: remove deprecated ClientPreferIPv6DirPort comment > The ClientPreferIPv6DirPort option is deprecated, and will most likely be removed in a future version of Tor. It has no effect on relays, and has had no effect on clients since 0.2.8. (If you think this is a mistake, please let us know!)	2019-05-04 16:28:58 +03:00
Aminda Suomalainen	9c8cf613cd	etc/systemd: add tor-client.service & tor: add torrc-client	2019-05-03 12:31:33 +03:00
Aminda Suomalainen	4c2b21bbfa	ipfs.service: add routing note	2019-05-01 23:30:12 +03:00
Aminda Suomalainen	ce84c26bcd	ipfs.service: adapt lowpower profile & mention badgerds If the lowpower option uses values 40 and 20 which are a lot higher than mine were and considered suitable for laptops and smartphones, I guess they are the best for me to use and I find content faster.	2019-04-23 13:51:18 +03:00

1 2 3 4 5 ...

293 Commits