Commit Graph

1842 Commits

Author SHA1 Message Date
f878041e2e
unbound/dns-over-tls.conf: reverse order of providers
It seems to have some (small?) relevance to where queries go to.
2020-10-29 16:24:52 +02:00
6e1f41533c
unbound/dns-over-tls.conf: comment the 443 appliedprivacy
Thinking it a bit more, it's not useful to use their resources on
devices that practically never encounter blocked port 853.
2020-10-29 13:22:19 +02:00
b03e00faaa
local/share/apps: add firejailed mirage (todo: test it) 2020-10-29 13:15:48 +02:00
c93034ba7f
unbound/dns-over-tls.conf: major cleanup 2020-10-29 13:15:23 +02:00
b43a7c68e0
i3: add pnmixer in autostart to replace pasystray 2020-10-28 11:21:31 +02:00
8b04c26065
chrony.conf: add a peer comment for LOCALMACHINE.local 2020-10-27 10:35:09 +02:00
0568975547
rc: add asoundrc && i3: mention asoundrc 2020-10-26 20:03:08 +02:00
e7dee8ee42
shellrc: alias alsamixer file if it exists 2020-10-26 19:19:18 +02:00
35c350e4b1
i3: autostart alsactl rdaemon & aplay $(mktemp)
Needs vibe check? But it works :D:
2020-10-26 18:53:04 +02:00
2730f3936d
i3: some cleaning up 2020-10-26 17:54:13 +02:00
aaafaa89c4
i3: add separating pulseaudio & alsa from depedencies as TODO 2020-10-26 17:35:04 +02:00
447b91f19d
i3: add -M to amixer for syncing with i3status & bind to alsamixer
Win+Shift+a now opens alsamixer in terminal instead of pavucontrol
2020-10-26 17:33:26 +02:00
dc2ac02412
begin depulseaudioing
https://wiki.archlinux.org/index.php/PulseAudio/Troubleshooting#No_sound_below_a_volume_cutoff_or_Clipping_on_a_particular_output_device
is too much for me. I expect to suffer this decision too though.

* i3: bind audio buttons to amixer (TODO: there are still pulse-specific
  shortcuts and no shortcut for any kind of a mixer. $TERMINAL
  alsamixer?)
* i3status: comment pulse to make it see alsa
* apt: pin pulseaudio to negative priority
2020-10-26 17:21:39 +02:00
9b197cbaed
chrony.conf: add a local server example 2020-10-26 07:34:10 +02:00
258cf72ccb
chrony.conf: mark Cloudflare as a pool of 2 2020-10-25 19:46:36 +02:00
9ae9856c0a
chrony.conf: mark Snopyta & Telia as pools with maxsources 3 2020-10-25 18:54:53 +02:00
51080f52d8
chrony.conf: add comments on allowing lan access 2020-10-25 17:43:07 +02:00
b4ca31e6c6
chrony.conf: add DNA & Telia NTP servers
Resolves: #83
2020-10-25 17:22:59 +02:00
4cebe7fbd5
chrony.conf: list NTP servers
Ref: #83
2020-10-25 12:44:53 +02:00
993759577e
Bind systemd-resolved to Unbound 2020-10-25 09:05:07 +02:00
73f273f4bb
etc/chrony: add small chrony.conf notes 2020-10-24 11:32:07 +03:00
d3e00fb1a3
xdg-applications: add firejailed appimage of chatterino 2020-10-24 09:11:14 +03:00
1e70d7d4d7
etc/systemd-resolved&unbound: add Quad9 ECS configs
Untested. The last time I saw the documentation, they didn't mention
DoT.
2020-10-21 17:09:20 +03:00
1467454284
hosts.append: prepend empty line
It makes it easier to see where this begins in the appended /etc/hosts
2020-10-21 15:18:03 +03:00
de7184794a
etc: add hosts.append for appending into hosts for systemd-resolved 2020-10-21 15:16:56 +03:00
605b8e3146
i3: add commented pulseaudio loopback 2020-10-20 18:51:40 +03:00
ca4c85b7df
etc/resolv.csv: add Quad9 ECS
The DoT address is guessed and verified to be open through nmap, as it's
not documented, I don't know surely that it's what it should.

DoH is mentioned in https://www.quad9.net/doh-quad9-dns-servers/

via https://gitlab.com/nitrohorse/ios14-encrypted-dns-mobileconfigs/-/issues/6
2020-10-18 11:11:27 +03:00
c27ce2c1cd
i3: add comment for Sedric with worse&readable resolution 2020-10-04 15:46:59 +03:00
cb5781044c
resolv.conf: add OpenDNS Family 2020-10-03 14:56:52 +03:00
5f9cf10c68
resolv.csv: add Cleanbrowsing 2020-10-03 14:07:41 +03:00
531abc1f42
resolv.csv: fix Cloudflare DoT address 2020-10-03 13:49:04 +03:00
96d19d99cb
resolv.csv: add Cloudflare family, fill CF antimalware IPv6 2020-10-03 13:46:13 +03:00
8241d0e695
resolv.csv: add AdGuard Family 2020-10-03 13:42:05 +03:00
ae533261ab
etc/resolv.csv restore Firefox addresses 2020-10-03 13:38:31 +03:00
89f42e1993
i3: autostart tmux in the autostarting terminal 2020-10-01 21:15:42 +03:00
13a03812ba
resolv.conf: move resolvers to resolv.csv 2020-09-27 15:05:53 +03:00
31a15a9abc
systemd-resolved & unbound: update AdGuard IPs
Resolves: #81
2020-09-27 14:34:54 +03:00
e280fc8413
gitconfig: make cxefa the default branch for git init 2020-09-13 17:55:34 +03:00
09d7a87dfb
fix zaldaryn-r8168? 2020-09-03 19:39:34 +03:00
6c2475676c
unbound.conf.d/dot-adguard.conf: fix SNI domain 2020-08-30 16:56:51 +03:00
edb259b1c8
unbound.conf.d: add dot-adguard.conf 2020-08-30 16:45:35 +03:00
c7892b77e7
i3: uncomment lxqt-powermanagment 2020-08-28 20:23:56 +03:00
cc965d4692
blocklist.conf: add empty line & incoming.telemetry.mozilla.org 2020-08-22 23:31:54 +03:00
d8658b7a87
.mikaela_install: ssh -> authorized_keys 2020-08-22 12:48:07 +03:00
a8217070ba
ssh: rename to authorized_keys, remove "real" SSH key
I don't remember when I previously used it to do anything else than
adding the PGP authentication subkeys somewhere.
2020-08-22 12:46:30 +03:00
263f828550
unbound blocklist: add ssl.google-analytics.com 2020-08-20 19:30:47 +03:00
94eace15e7
unbound/blocklist.conf: specify it's server clause
Introduced by e4d18d47c5
2020-08-20 18:38:37 +03:00
cabf7c570d
blocklist.conf: add [www.]google-analytics.com. 2020-08-20 18:33:51 +03:00
b5cafdeb90
unbound: the mass file is not a good idea? cut it? 2020-08-16 12:18:07 +03:00
e4d18d47c5
etc/.../unbound.conf: update for 1.11.0-1+ 2020-08-15 10:27:50 +03:00