Commit Graph

2638 Commits

Author SHA1 Message Date
a15ff2e5dc
more hosts-mikaela.txt updates
* add invictus, it's not mine, but neither are roubaix (dnscrypt-proxy
dislikes dashes?) and this file is meant for just my use, so does it
matter what it contains?
2018-10-30 23:39:41 +02:00
f27ce8fd82
hosts-mikaela: add roubaix-fr 2018-10-30 16:19:26 +02:00
c7ffb18523
hosts-mikaela: add rbtpzn 2018-10-30 09:12:33 +02:00
e7d2b312ef
hosts-mikaela: add zaldaryn
TODO: add to DNS
2018-10-29 21:40:31 +02:00
a83e8dce36
etc/resolv.conf: add dnscrypt-proxy & searches
mikaela.internal that I have adopted and I have no idea if I am allowed
to use TLDs here, but I am putting local there anyway.
2018-10-26 22:48:38 +03:00
859cc89436
dnscrypt/hosts: adopt .internal
At the moment I am having problem with mikaela.info being in HSTS
preload list and when I begun this list, I was hoping to use something
conflict free and thought that mikaela.info would be the least bad
choice while reading the reserver domains.

Now I have searched on the issues more and encountered .internal TLD
that seems to be what I am after and I hope it will become official.

https://github.com/wkumari/draft-wkumari-dnsop-internal

I think I can change these addresses safely as I am not using them
anywhere as I worry about accidentally sending them to the internet and
that opening new problems. This will mainly benefit me with web
browsers, I hope.

I will still have to link other people to direct IPv6 addresses that
won't change with the platforms I use or mikaela.info will not be in the
HSTS preload lists at time I need it. I wouldn't memorize IPv4 addresses
though or start telling them someone in quick chat.
2018-10-26 22:38:59 +03:00
5ac7dc9670
hosts-mikaela: add y.silta.piraatit.fi 2018-10-23 11:32:20 +03:00
3d6dccbfc0
hosts-mikaela.txt: add y.vietnam.mikaela.info 2018-10-22 18:43:50 +03:00
87f4305e71
etc/dnscrypt-proxy: add hosts-mikaela.txt
Closes #93
2018-10-18 19:57:00 +03:00
9548e7a21b
Xresources: disable fading 2018-10-13 17:19:49 +03:00
534f34a5bc
add override.conf for tor.service for allowing binding to 80/443
It took me some time a few days ago to figure out this (and notice that
port 80 was already used by automatically installed Apache that was
doing nothing).

I have understood that ports 443 (Orport) and 80 (Dirport) are the best
for users behind strict firewalls especially if they aren't needed for
anything else on the system running Tor relay.
2018-10-12 23:10:48 +03:00
77261eb5a9
install: create the directory for sockets
Issue introduced by b8bda9cf49
2018-10-11 13:47:18 +03:00
492cac7158
Revert "ssh_config: controlpersist auto instead of on"
This reverts commit 330e8a80ad.

I got complaining about bad value
2018-10-11 13:45:31 +03:00
542c4109eb
Heavily touch vimrc, add init.vim for Neovim 2018-10-11 13:11:06 +03:00
b19551e8b4
zshrc: elite2 green for user, elite2 red for root 2018-10-11 12:56:34 +03:00
b4787fb7c0
Xresources: use Solarized colours
I don't think I like this very much, but it's supposed to be easier on
eyes and maybe I will get used to it especially after some migraine
light sensitivity attacks...
2018-10-11 12:30:54 +03:00
6f923c9175
Xresources: copy Linux color theme from Gentoo wiki 2018-10-11 12:07:05 +03:00
e795024570
tmux.conf: lower escape-delay to 300 for NVim's :checkhealth
I am not sure what it does, so I am not using their adviced 10, but
instead 300 which is the maximum the :checkhealth doesn't complain
about.
2018-10-11 11:24:46 +03:00
fa007ee830
dnscrypt-proxy: add quad9 nofilters, lb ph
See that #92
2018-10-09 14:08:38 +03:00
5d2b138b3e
dnscrypt-proxy: more thinking for #92
* Comment that the fastest server is automatically picked.
* Explicitly don't filter AAAA requests.
* Require provider to not do filtering
    * which is implied by DNSSEC which would get broken.
* Use Google DNS B as fallback resolver and explain what it does in
  comment.
* Add commented options for using Tor.
2018-10-08 20:43:30 +03:00
4e52673b7d
etc: rm -r polipo/
Polipo is no longer maintained and it seems that I am doing the same
thing with Privoxy except censoring accept-language which I need to
investigate. I think Privoxy warned about changing headers possibly
making ones fingerprint more unique and thus trackable? But aren't those
also going inside https so maybe there is no point?
2018-10-08 20:27:17 +03:00
d1151aaf8c
etc/systemd: rm -r dnscrypt/
Dnscrypt-proxy appears to handle multiple servers by itself nowadays and
does it in the config file. The servers listed may also be down.

Ref: #92 where I remembered these files still being here.
2018-10-08 20:25:09 +03:00
44cbf89582
etc/dnscrypt-proxy: prefer CF-v6, add G, fallback OpenDNS
This still needs more thinking... #92
2018-10-08 20:18:48 +03:00
44ac6ff573
resolv.conf: add single-request-reopen to options
It's in dnscrypt-proxy documentation for putting into resolv.conf
2018-10-07 21:20:41 +03:00
330e8a80ad
ssh_config: controlpersist auto instead of on
just in case that would be used for tracking and hoping that SSH is
clever enough.
2018-10-07 21:12:08 +03:00
b8bda9cf49
ssh_config: use more private ControlPath 2018-10-07 20:54:41 +03:00
ae04839807
add etc/dnscrypt-proxy.toml (WIP!) 2018-10-07 13:45:45 +03:00
63027a97a7
etc/privoxy/config: example to Torify everything 2018-10-06 16:41:20 +03:00
06d5ff55d0
etc/systemd/system: add cjdns/ 2018-10-05 13:27:35 +03:00
35f12ae35c
etc/privoxy/config: toggle 0, buffer-limit 51200 2018-10-03 16:18:27 +03:00
c2fda6d7fc
etc/privoxy: add minimalistic config 2018-10-03 13:37:52 +03:00
1acf4b9c7c
fix conf/locale.conf
It appears that I have been doing locales wrong for years and only now
something has decided to not accept the incorrect versions?
Alternatively Debian has decided to stasrt doing it somehow different
from others, but I don't think so.
2018-09-21 12:37:05 +03:00
930be20983
etc/sources.list/: use https://deb.debian.org
Apparently they have deprecated httpredir while I wasn't looking.
2018-09-20 13:39:51 +03:00
55018ef7ef
etc/sources.list: remove Debian codenames 2018-09-20 13:37:32 +03:00
b2f590f357
etc/sources.list: rm EOL distributions 2018-09-20 13:35:59 +03:00
cc39aa3a2e
gpg.conf: comment things I don't understand etc.
keyserver is not needed with GPGv2, I have no idea what some of those
options do and thus have suspect that they make my GPG more insecure and
I have used MATE for years and don't have eog available.
2018-09-18 21:37:28 +03:00
8a8a686110
also update PATH in rc/profile 2018-09-18 21:07:55 +03:00
1ab66ecbe9
rc: update PATH
Cleanup directories that I have never seen used, add Go
2018-09-18 20:57:48 +03:00
fe1d58c12f
xinitrc: exec mate-session 2018-09-06 13:26:01 +03:00
1140d75d72
profile: embrace Colemak (caps to backspace) 2018-09-06 13:25:36 +03:00
556deb069f
profile: check for existence of numlockx 2018-09-06 13:22:15 +03:00
f17b8ee1df
conf/Xresources: increase font size 2018-08-27 22:57:49 +03:00
0695c61702
conf/Xresources: enable Ctrl + Shift + C/V 2018-08-27 22:48:41 +03:00
4877b2e45b
etc/resolv.conf: add notes for nm-connection-editor 2018-08-10 17:18:33 +03:00
9f13a96513
sources.list: add 18.04 (copy from 16.04) 2018-04-30 17:25:48 +03:00
c066504a97
profile: disable gpg-agent starting
Ubuntu (MATE) 18.04 didn't seem to appreciate it.
2018-04-26 12:30:30 +03:00
446c5c14ab
sysctl: don't touch vm.swappiness
I think my distribution is more capable of choosing a reasonable value
and I am not confident in understanding it enough.
2018-04-20 12:32:46 +03:00
537fc06dd7
etc/resolv.conf: update based on note to self
I have no idea why I even have this file :(

I guess the number four has something to do with Windows as resolv.conf
actually doesn't take more than three, am I preparing for situation
where there is no network, but ISP DNS is down or something? Why? When has
that actually happened?
2018-04-19 14:46:25 +03:00
d11ff89c85 shellrc: disable apt Happy Eyeballs workaround
I think apt has fixed it and this has started being more problem than
solution.

This just breaks my nice gpg signed streak :(

Signed-off-by: Mikaela Suomalainen <mikaela+git@mikaela.info>
2018-04-18 17:29:33 +03:00
17aad65fbc
Xresources: increase font size from 11px to 15px
Nowadays I am mainly on laptop which the 11px is very small and
uncomfortable to look at. I don't know if it's just that or that I have
gotten older (hah).

I hope that this doesn't look bad in other environments.
2017-10-19 11:17:14 +03:00