Compare commits
5 Commits
70ed890742
...
ba55b2c9e9
Author | SHA1 | Date |
---|---|---|
Aminda Suomalainen | ba55b2c9e9 | |
Aminda Suomalainen | c48bd12974 | |
Aminda Suomalainen | bdcd7249c3 | |
Aminda Suomalainen | 95e17d0a49 | |
Aminda Suomalainen | 425af3eabf |
|
@ -6,6 +6,7 @@
|
|||
#exec --no-startup-id lxpolkit
|
||||
# The KDE version as I tend to have it as base image (Fedora)
|
||||
exec --no-startup-id /usr/libexec/kf5/polkit-kde-authentication-agent-1
|
||||
exec --no-startup-id /usr/libexec/kf6/polkit-kde-authentication-agent-1
|
||||
# Debian
|
||||
exec --no-startup-id /usr/lib/x86_64-linux-gnu/libexec/polkit-kde-authentication-agent-1
|
||||
|
||||
|
|
|
@ -6,20 +6,24 @@
|
|||
# https://github.com/systemd/systemd/issues/10579 & https://github.com/systemd/systemd/issues/9867
|
||||
# Solution that I dislike: use both unbound & systemd-resolved! When one
|
||||
# breaks, maybe the other still works! Funnily /etc/resolv.conf is still
|
||||
# restricted to three nameservers.
|
||||
# restricted to three nameservers. However this may cause slowness unless
|
||||
# the options timeout is specified and I increase attempts to further prefer
|
||||
# unbound (which is listed twice).
|
||||
|
||||
# unbound
|
||||
# unbound or other local resolver
|
||||
nameserver ::1
|
||||
nameserver 127.0.0.1
|
||||
|
||||
# systemd-resolved. WARNING: May cause DNS leaks.
|
||||
nameserver 127.0.0.53
|
||||
# also systemd-resolved, but this is limited to three entries (others ignored)
|
||||
#nameserver 127.0.0.54
|
||||
|
||||
# rotate = randomly use all
|
||||
# edns0 = extended DNS
|
||||
# trust-ad DNSSEC answers
|
||||
#options rotate edns0 trust-ad
|
||||
options edns0 trust-ad
|
||||
# trust-ad = trust DNSSEC authenticated data
|
||||
# timeout:1 = nameserver timeout 1 s (default 5, max 30), then next
|
||||
# attempts:5 = if all nameservers fail, attempt again 5 times (def 2, max 5)
|
||||
options edns0 trust-ad timeout:1 attempts:5
|
||||
|
||||
# no sending local domain to upstream whenever NXDOMAIN happens
|
||||
search .
|
||||
|
|
|
@ -254,6 +254,12 @@ export LSCOLORS=gxBxhxDxfxhxhxhxhxcxcx
|
|||
# znc uses this variable for figuring out hostname
|
||||
#export HOSTNAME=$(hostname --fqdn)
|
||||
|
||||
# Ensure not leaking queries to upstream nameservers (resolv.conf)
|
||||
export LOCALDOMAIN=.
|
||||
# Secureish resolv.conf options (except trust-ad, but systemd also sets it
|
||||
# regardless of whether DNSSEC=true or not.
|
||||
export RES_OPTIONS="edns0 trust-ad timeout:1 attempts:5"
|
||||
|
||||
##### Aliases RJ706I #####
|
||||
|
||||
# To get sudo work with aliases.
|
||||
|
|
6
rc/zshrc
6
rc/zshrc
|
@ -213,6 +213,12 @@ export LSCOLORS=gxBxhxDxfxhxhxhxhxcxcx
|
|||
# znc uses this variable for figuring out hostname
|
||||
#export HOSTNAME=$(hostname --fqdn)
|
||||
|
||||
# Ensure not leaking queries to upstream nameservers (resolv.conf)
|
||||
export LOCALDOMAIN=.
|
||||
# Secureish resolv.conf options (except trust-ad, but systemd also sets it
|
||||
# regardless of whether DNSSEC=true or not.
|
||||
export RES_OPTIONS="edns0 trust-ad timeout:1 attempts:5"
|
||||
|
||||
##### Aliases RJ706I #####
|
||||
|
||||
# To get sudo work with aliases.
|
||||
|
|
Loading…
Reference in New Issue