some changes

2025-04-27 11:11:51 -04:00 · 2025-04-27 11:11:51 -04:00 · 825f05c50a
commit 825f05c50a
parent 2d25c605b7
45 changed files with 1826 additions and 1586 deletions
--- a/modules/nixos/services/mail/default.nix
+++ b/modules/nixos/services/mail/default.nix
@ -28,6 +28,8 @@ in {
      zach-pw.file = ./sec/zach-pw.age;
      emily-pw.file = ./sec/emily-piccat.age;

+      smtp-password.file = ./sec/smtpPassword.age;
+
      gitlab-email-pw-hashed.file = ./sec/gitlab-email-pw-hashed.age;
    };

@ -39,7 +41,7 @@ in {
      loginAccounts = {
        "zoey@zoeys.email" = {
          hashedPasswordFile = sec.webmaster-pw.path;
-          aliases = ["zoey@zoeys.cloud" "postmaster@zoeys.email" "abuse@zoeys.email"];
+          aliases = ["zoey@zoeys.cloud" "errors@zoeys.cloud" "admin@zoeys.cloud" "postmaster@zoeys.email" "abuse@zoeys.email"];
        };
        "hi@zoeys.computer" = {
          hashedPasswordFile = sec.zoeycomputer-pw.path;
@ -57,6 +59,9 @@ in {
          hashedPasswordFile = sec.gitlab-email-pw-hashed.path;
          aliases = ["noreply@zoeys.cloud"];
        };
+        "no-reply@code.zoeys.cloud" = {
+          hashedPasswordFile = sec.smtp-password.path;
+        };
      };

      certificateScheme = "acme-nginx";
--- a/modules/nixos/services/mail/sec/smtpPassword.age
+++ b/modules/nixos/services/mail/sec/smtpPassword.age
@ -0,0 +1,7 @@
+age-encryption.org/v1
+-> ssh-ed25519 CtmR6w 5VDFuttJ1VBYa4fBxMv/Ws96h3lQMtDtt4kift5TggY
+iHhoBRnhFOG7AYWAWcgEbX0ABUNgIWHHUpterkkMunc
+-> ssh-ed25519 +be3hg zpo9T3n1X5PipJjEgOqgSJSwhIZu19rLcQP3zPILWRM
+SJp+lVPB997tCMucqfGgqXOougiSoMoGMd/tozTTT0Q
+--- /uEWB/Q4G4hy0t+hEIeID0Ymqy+qGrnrK5AgwPhs82Y
+ýýI?è¢<C3A8>.þ_Q}lïÐ3/Ë³¨Û3æ<33>9› 8J	®KÔÅ™aJ:ký*–-‹Š;5Ê%Ô7£y
--- a/modules/nixos/services/vpn/default.nix
+++ b/modules/nixos/services/vpn/default.nix
@ -19,24 +19,6 @@ in {
      enable = cfg.mullvad;
      package = nixos-stable.mullvad;
    };
-    #
-    # # Create a specific network namespace for VPN traffic
-    # systemd.services.mullvad-daemon = {
-    #   serviceConfig = {
-    #     NetworkNamespacePath = "/run/netns/mullvad";
-    #   };
-    # };
-    #
-    # # Configure transmission to use Mullvad's SOCKS5 proxy
-    # # Configure transmission to use the Mullvad network namespace
-    # systemd.services.transmission = mkIf config.services.transmission.enable {
-    #   serviceConfig = {
-    #     NetworkNamespacePath = "/run/netns/mullvad";
-    #   };
-    #   # Make sure Mullvad is running before transmission starts
-    #   requires = ["mullvad-daemon.service"];
-    #   after = ["mullvad-daemon.service"];
-    # };

    services.openvpn = {
      servers = {
@ -48,22 +30,5 @@ in {
    };

    systemd.services.openvpn-work.wantedBy = lib.mkForce [];
-
-    #   # Add necessary networking tools
-    #   environment.systemPackages = with pkgs; [
-    #     iproute2 # for ip netns commands
-    #   ];
-    #
-    #   # Setup network namespace
-    #   systemd.services.setup-mullvad-netns = {
-    #     description = "Setup Mullvad Network Namespace";
-    #     before = ["mullvad-daemon.service"];
-    #     serviceConfig = {
-    #       Type = "oneshot";
-    #       RemainAfterExit = true;
-    #       ExecStart = "${pkgs.iproute2}/bin/ip netns add mullvad";
-    #       ExecStop = "${pkgs.iproute2}/bin/ip netns delete mullvad";
-    #     };
-    #   };
  };
 }