feat: information leak

fix: cmb
2024-01-30 10:50:41 +01:00 · 2024-01-30 10:48:48 +01:00
3 changed files with 20 additions and 14 deletions
--- a/hosts/patricknix/net.nix
+++ b/hosts/patricknix/net.nix
@ -37,8 +37,7 @@

  systemd.network.networks = {
    "01-lan1" = {
-      address = ["192.168.178.31/24"];
-      gateway = ["192.168.178.1"];
+      DHCP = "yes";
      matchConfig.MACAddress = config.secrets.secrets.local.networking.lan1.mac;
      networkConfig = {
        IPv6PrivacyExtensions = "yes";
@ -60,9 +59,7 @@
      dhcpV6Config.RouteMetric = 10;
    };
    "01-wlan1" = {
-      DHCP = "no";
-      address = ["192.168.1.6/24"];
-      gateway = ["192.168.1.2"];
+      DHCP = "yes";
      matchConfig.MACAddress = config.secrets.secrets.local.networking.wlan1.mac;
      networkConfig = {
        IPv6PrivacyExtensions = "yes";
--- a/modules/services/maddy.nix
+++ b/modules/services/maddy.nix
@ -1,6 +1,5 @@
 # TODO
 # autoconfig
-# service sending
 {
  config,
  pkgs,
@ -284,17 +283,32 @@ in {
  };
  services.nginx = {
    enable = true;
-    virtualHosts."mta-sts.pgrossmann.org".extraConfig = ''
+    virtualHosts."mta-sts.${priv_domain}".extraConfig = ''
      encode gzip
      file_server
      root * ${
-        pkgs.runCommand "testdir" {} ''
+        pkgs.runCommand "priv_domain" {} ''
          mkdir -p "$out/.well-known"
          echo "
            version: STSv1
            mode: enforce
            max_age: 604800
-            mx: mx1.pgrossmann.org
+            mx: mx1.${priv_domain}
+          " > "$out/.well-known/mta-sts.txt"
+        ''
+      } ;
+    '';
+    virtualHosts."mta-sts.${domain}".extraConfig = ''
+      encode gzip
+      file_server
+      root * ${
+        pkgs.runCommand "domain" {} ''
+          mkdir -p "$out/.well-known"
+          echo "
+            version: STSv1
+            mode: enforce
+            max_age: 604800
+            mx: mx1.${domain}
          " > "$out/.well-known/mta-sts.txt"
        ''
      } ;
--- a/users/patrick/ssh.nix
+++ b/users/patrick/ssh.nix
@ -42,11 +42,6 @@
        hostname = "desktopnix.local";
        user = "root";
      };
-
-      "valhalla" = {
-        hostname = "valhalla.fs.tum.de";
-        user = "grossmann";
-      };
      "binex" = {
        hostname = "praksrv.sec.in.tum.de";
        user = "team402";
Author	SHA1	Message	Date
Patrick Großmann	700889cf0a	feat: information leak	2024-01-30 10:50:41 +01:00
Patrick Großmann	99db0c70cc	fix: cmb	2024-01-30 10:48:48 +01:00