|
83d53b8c17
|
systemd-resolved/10-dot-cloudflare.conf: add malicious domain filtering and alternative SNI
|
2024-05-15 20:38:49 +03:00 |
|
|
ef7584566f
|
systemd/resolved/10-dot-{443,adguard,dns0}.conf: fix server order
|
2024-05-15 20:33:23 +03:00 |
|
|
7f918cc797
|
systemd/resolved.conf.d/README: note my scripts existing
|
2024-05-15 20:29:59 +03:00 |
|
|
cb3c944d47
|
systemd-resolved: note server priority
|
2024-05-15 20:23:27 +03:00 |
|
|
5672e14c89
|
Revert "Stop pretending issues of ECS weight more than pros of it after GApple upgrades delayed my going to bed."
This reverts commit afe50117fe .
|
2024-05-14 14:47:09 +03:00 |
|
|
afe50117fe
|
Stop pretending issues of ECS weight more than pros of it after GApple upgrades delayed my going to bed.
|
2024-05-14 11:06:01 +03:00 |
|
|
252f77ab0c
|
systemd-resolved & unbound: comment ECS servers again.
This partially reverts 85c7fedcb2 and will be explained at https://aminda.eu/n/dns soon
|
2024-05-03 18:07:51 +03:00 |
|
|
85c7fedcb2
|
systemd-resolved, unbound: only ECS IPv6
|
2024-05-03 06:23:37 +03:00 |
|
|
1aca183f92
|
aminda-nocron-reboot.service: fix conflict with systemd-zram-setup@zram0.service
|
2024-05-01 10:38:54 +03:00 |
|
|
6e0f72c7b1
|
aminda-nocron-reboot.service: split duperemove and sysctl -p --system to aminda-duperemove.service & sysctl-p--system.service
|
2024-05-01 10:22:57 +03:00 |
|
|
aa6aad28ba
|
resolv: follow the same order as man resolv.conf
|
2024-05-01 10:13:30 +03:00 |
|
|
ba298f94a5
|
resolv: increase timeout to 2 (match unbound/RFC 8767), decrease attempts to 2, rotate
|
2024-05-01 09:54:07 +03:00 |
|
|
78136f7437
|
systemd/timesyncd.conf.d: don't only use ntp pool as a fallback
|
2024-04-30 21:01:46 +03:00 |
|
|
fa5462212d
|
aminda-nocron-reboot.service: add zram-generator just in case
|
2024-04-30 19:10:28 +03:00 |
|
|
d64b4f2001
|
systemd-resolved: add DNA/Moi & Elisa DNS servers
I was unable to find authoritative source for what is Telia's DNS
|
2024-04-28 16:14:30 +03:00 |
|
|
55dcb2f2cd
|
systemd-resolved/98-local-resolver.conf: fix comment talking about alphabet while everything is now numerals
|
2024-04-28 09:17:07 +03:00 |
|
|
35b99a6bc0
|
systemd-resolved: add 99-lan-resolver.conf.sample for trusted LANs
|
2024-04-28 09:13:46 +03:00 |
|
|
5ab33c154e
|
systemd-resolved: rename conf files to have a number prefix
|
2024-04-28 09:13:20 +03:00 |
|
|
813878a4de
|
systemd/{iwd,systemd-networkd}.service.d: add appropiate symlinks
|
2024-04-27 12:25:00 +03:00 |
|
|
b76b7cac5c
|
systemd/user: review vpn wants, rm transmission-daemon copy-paste
|
2024-04-27 08:34:46 +03:00 |
|
|
61dc3706ab
|
systemd/{chrony,i2pd,yggdrasil}.service.d/mullvad-exclude.conf: fix mistakes and Requires=
|
2024-04-26 17:43:37 +03:00 |
|
|
1b64bc5e13
|
systemd/service.d: fix typo & use Requires= where appropiate
|
2024-04-26 17:38:33 +03:00 |
|
|
db7de1c3e4
|
systemd/service.d/unbound-wanted.conf: break circular skipping by removing After=
|
2024-04-26 17:35:31 +03:00 |
|
|
7f410148e3
|
aminda-nocron-rebootish.service: repeat that dns should be running
|
2024-04-26 16:13:39 +03:00 |
|
|
2f585209e7
|
matterbridge-cleanup.timer: use more human friendly term minutely on OnCalendar=
|
2024-04-26 13:21:20 +03:00 |
|
|
65f58dc224
|
systemd: aminda-nocron-rebootish.{service,timer} is a delayed variant of -ish
|
2024-04-26 13:16:33 +03:00 |
|
|
c55b20a89a
|
move systemd user units from conf/systemd/user to etc/systemd/user
symlink remains to show what is the correct location
|
2024-04-26 13:05:08 +03:00 |
|
|
b36fe67bc3
|
systemd/user: attempt to flatpak-update-user.{service,timer}
|
2024-04-26 13:03:05 +03:00 |
|
|
b8f720fa7f
|
aminda-nocron-reboot.timer: fix typo in comment
|
2024-04-26 12:48:47 +03:00 |
|
|
9e38fdf223
|
aminda-nocron-reboot.timer: add RemainAfterElapse=false
|
2024-04-26 12:37:55 +03:00 |
|
|
90b64c9543
|
systemd: rename aminda-nocron -> aminda-nocron-reboot for clarity
also opens up aminda-nocron-hourly etc.
|
2024-04-26 12:30:58 +03:00 |
|
|
16d2f74135
|
systemd/aminda-nocron.service: explicitly start DNS too
|
2024-04-26 11:08:15 +03:00 |
|
|
def77bc4c3
|
systemd: add aminmda-nocron.{service,timer} for my @reboot crontabs for cronless systems (SteamOS)
|
2024-04-26 10:43:08 +03:00 |
|
|
6375d55b8f
|
systemd-resolved/mullvad: default to base for consistency with unbound
|
2024-04-25 17:27:55 +03:00 |
|
|
046b9c5f1a
|
systemd: use more descriptive drop-in name unbound-wanted.conf instead of unbound.conf
|
2024-04-25 14:10:26 +03:00 |
|
|
861b35c25f
|
systemd-resolved: add the other applied-privacy.net port too
|
2024-04-25 13:47:18 +03:00 |
|
|
342e3116a6
|
systemd-resolved: another attempt at local resolvers
|
2024-04-25 13:45:37 +03:00 |
|
|
52b0807fcb
|
systemd/yggdrasil.service.d: rename nordvpnd to restore-ipv6.conf
|
2024-04-25 12:52:30 +03:00 |
|
|
520470e3dd
|
systemd: add firewalld-icmpv6.conf as drop-in
|
2024-04-25 12:51:03 +03:00 |
|
|
b36ba70a70
|
systemd/service.d: add resolv.conf example with warnings
|
2024-04-24 07:31:10 +03:00 |
|
|
4560e776df
|
systemd-{resolved,networkd}: just break things
|
2024-04-22 15:43:50 +03:00 |
|
|
4acd22dc37
|
systemd-networkd: add untested none (Yggdrasil) & wireguard configuration
|
2024-04-22 15:17:14 +03:00 |
|
|
6ea0a570dd
|
systemd-networkd: match systemd-resolved configuration
|
2024-04-22 15:12:07 +03:00 |
|
|
dea732d15b
|
systemd-resolved: attempt to simplify configuration
|
2024-04-22 15:08:03 +03:00 |
|
|
903e38f307
|
systemd-networkd: unset other DNS
|
2024-04-22 13:32:12 +03:00 |
|
|
7be1800002
|
systemd-networkd: disable DNSSEC/DNSOverTLS by default as localhost
|
2024-04-22 13:16:14 +03:00 |
|
|
3d58aee508
|
systemd-networkd/10-ether.network: mention unmanaged/NetworkManager
|
2024-04-22 13:09:28 +03:00 |
|
|
e56e5e1909
|
systemd-networkd: remove comment I don't stand behind
|
2024-04-22 13:05:58 +03:00 |
|
|
02c434b81b
|
systemd-networkd: list local DNS resolvers
|
2024-04-22 12:59:38 +03:00 |
|
|
44b6e5b618
|
systemd-networkd: add DNSSEC & DNSOverTLS & search domains
|
2024-04-22 12:25:25 +03:00 |
|
|
945ca0462d
|
Revert "systemd-networkd: attempt to deduplicate by cutting into 10-global.network"
This reverts commit 19b6fbef3c .
|
2024-04-22 12:21:56 +03:00 |
|
|
06787a38de
|
resolved/00-no-local-resolver.conf: comment local resolver since I break DNSSEC
|
2024-04-22 12:14:34 +03:00 |
|
|
19b6fbef3c
|
systemd-networkd: attempt to deduplicate by cutting into 10-global.network
|
2024-04-22 12:07:39 +03:00 |
|
|
4a47d14069
|
resolved.conf.d: add dot-trex.conf symlink and explaining comments like in unbound
|
2024-04-21 13:14:53 +03:00 |
|
|
eb47fac4cb
|
systemd-resolved: add vim modelines
|
2024-04-21 10:58:45 +03:00 |
|
|
f126e681a2
|
systemd-resolved: split applied-privacy#443 to its own file as resolved configs don't exclude each other
|
2024-04-21 10:57:25 +03:00 |
|
|
a0ccd790ab
|
unbound & systemd-resolved: add Quad9 alternative port
|
2024-04-21 10:54:22 +03:00 |
|
|
422ab0de4e
|
libreawoo, unbound & resolved: uncomment Quad9 default, comment ECS
|
2024-04-20 17:50:12 +03:00 |
|
|
b248392e8a
|
systemd-resolved: think more on local resolvers or not
|
2024-04-18 14:31:56 +03:00 |
|
|
9aa71de638
|
systemd-resolved/dot-quad9.conf: add commented DNS10 & DNS12
|
2024-04-18 11:08:23 +03:00 |
|
|
f10b151a3b
|
systemd: add firewalld.service.d/never-fail.conf due to failing to timeout on sedric
|
2024-04-17 11:38:43 +03:00 |
|
|
0d4c40ba16
|
systemd: mark systemd-resolved.conf to be conflicting with avahi-daemon
|
2024-04-12 10:58:15 +03:00 |
|
|
e88c2a8067
|
etc: attempt to enable mDNS/LLMNR for systemd-{networkd,resolved} & NetworkManager
Some boolean fixing slipped in as well
|
2024-04-12 09:52:32 +03:00 |
|
|
80ac65acd1
|
systemd-resolved/README.md: enable doctoc
|
2024-04-11 10:06:18 +03:00 |
|
|
cce932960e
|
systemd-resolved/README.md: mention nordvpn.conf
|
2024-04-11 10:05:18 +03:00 |
|
|
a2e36f2a3b
|
systemd-resolved/README.md: remove EOL Ubuntu, fix booleans, note my actual DNS config
|
2024-04-11 10:03:53 +03:00 |
|
|
da6eab8dfc
|
systemd-resolved: use true/false as booleans (not yes/no) & remove repeated localhost
|
2024-04-11 10:02:49 +03:00 |
|
|
3009af55a6
|
resolved.conf.d/README.md: mention 00-defaults and dot-something being supposed to be used together
|
2024-04-10 15:09:31 +03:00 |
|
|
9a210c4bba
|
systemd-resolved: further decrease repeating, comment DNS-Over-TLS since it's in 00-defaults.conf already (+ local resolver)
|
2024-04-10 15:06:14 +03:00 |
|
|
f12d0ceb8a
|
systemd-resolved: don't repeat cache
|
2024-04-10 15:02:30 +03:00 |
|
|
241405c776
|
systemd-resolved: merge unbound.conf into 00-defaults.conf
|
2024-04-10 11:59:36 +03:00 |
|
|
1d05061bb4
|
hack nordvpnd to work with yggdrasil
|
2024-03-29 07:58:44 +02:00 |
|
|
0f95863ea2
|
systemd/earlyoom.service.d: conflicts, never-fail & dynamicuser=false
|
2024-02-18 19:44:32 +02:00 |
|
|
398cf45bdf
|
add etc/systemd/oomd.conf.d/
|
2024-02-14 20:26:10 +02:00 |
|
|
c55b2a6aed
|
{systemd-resolved,unbound}: utilize unfiltered dns0 since nordvpn is unlikely to filter either
|
2024-02-11 13:37:32 +02:00 |
|
|
13a8956758
|
{resolved,unbound}/nordvpn: add dns0 in case it helps with automatic connection issues
|
2024-02-02 08:51:52 +02:00 |
|
|
57ac0a8c7a
|
systemd: add nordvpnd.service.d
|
2024-01-27 10:20:55 +02:00 |
|
|
7c9aaef375
|
systemd/service.d: add iwd.conf & network-online.conf
|
2024-01-27 10:19:08 +02:00 |
|
|
58bc1dd726
|
systemd-networkd/wlan: comments for when iwd doesn't manage network
|
2024-01-27 10:18:18 +02:00 |
|
|
73604ae80f
|
systmed-timesyncd: add {google,facebook}.conf commented
|
2024-01-26 10:47:18 +02:00 |
|
|
cc76eb7d5c
|
timesyncd.conf.d/finland: add ntp.miuku.net
It would have NTS and this is hoping for systemd-timesyncd to support it one day
|
2024-01-26 10:44:55 +02:00 |
|
|
e3381049b5
|
systemd-timesyncd/hetzner: replace with individual servers
|
2024-01-26 10:43:07 +02:00 |
|
|
7a2b36864b
|
systemd-resolved/nordvpn.conf: add what appears to be their IPv6
|
2024-01-20 12:41:21 +02:00 |
|
|
62fc911835
|
systemd-resolved: accidentally rewrit nordvpn.conf
Now accounting for precense of unbound as a maybe fallback resolver
|
2024-01-20 12:35:23 +02:00 |
|
|
7748d64ad7
|
systemd: deduplicate qbittorrent, add qbittorrent-nox@.service overrides
|
2024-01-06 12:34:44 +02:00 |
|
|
39dffa8939
|
systemd service.d: move common explanations from never-fail.conf to README.md
|
2024-01-04 12:35:48 +02:00 |
|
|
d99566d26f
|
systemd/service.d: add nordvpn.conf
|
2024-01-04 12:31:11 +02:00 |
|
|
aa97b82e31
|
systemd-resolved: add nordvpn.conf
|
2024-01-04 12:25:53 +02:00 |
|
|
feef4cbba5
|
bluetooth.service.d: clarify comments on tested distros & ponder name
|
2023-12-28 21:30:26 +02:00 |
|
|
be618810c5
|
bluetooth.service.d: drop fedora- from experimental.conf
|
2023-12-28 21:28:27 +02:00 |
|
|
9d69584103
|
Revert "systemd/service.d: add for-network-online.conf so the service is enabled for that"
This reverts commit 0dc32a525a .
|
2023-12-25 21:26:10 +02:00 |
|
|
fc91247cd1
|
Revert "yggdrasil.service.d: also allow yggdrasil to start before network-online"
This reverts commit fbc82b81f4 .
|
2023-12-25 21:25:44 +02:00 |
|
|
68fc6be7b9
|
Revert "unbound.service.d: add the for-network-online.conf"
This reverts commit 6ba99feb58 .
|
2023-12-25 21:25:22 +02:00 |
|
|
85dbc413f0
|
systemd/system: write tlp-masker.bash instead of having symlinks to /dev/null
|
2023-12-25 17:27:30 +02:00 |
|
|
7d8fe8c1fa
|
systemd/system/README: attempt to fix formatting
|
2023-12-25 17:03:14 +02:00 |
|
|
0327162daa
|
systemd-resolved: double dnssec
|
2023-12-25 15:48:23 +02:00 |
|
|
4286b4a22f
|
systemd: add start-unbound.service
|
2023-12-25 15:39:35 +02:00 |
|
|
fbc82b81f4
|
yggdrasil.service.d: also allow yggdrasil to start before network-online
|
2023-12-25 12:41:46 +02:00 |
|
|
214966ae54
|
unbound.service.d: rm WRONG fedora-network-pre.conf
|
2023-12-25 12:40:40 +02:00 |
|
|
6ba99feb58
|
unbound.service.d: add the for-network-online.conf
|
2023-12-25 12:39:58 +02:00 |
|