diff options
-rw-r--r-- | TODOs.org | 55 |
1 files changed, 24 insertions, 31 deletions
@@ -1,6 +1,7 @@ * Tasks - v4 -** TODO Prosody in localhost -** TODO Prosody in NixOS with NGINX +** DONE Prosody in localhost +CLOSED: [2020-08-14 ven. 09:29] +** CANCELLED Prosody in NixOS with NGINX https://www.reddit.com/r/linuxadmin/comments/7z0ahv/prosody_behind_reverse_proxy/dunbdmv/: #+BEGIN_SRC nginx server { @@ -29,6 +30,8 @@ server { } } #+END_SRC +Use Prosody as a server itself +** TODO Prosody TLS ** TODO matterbridge #+BEGIN_SRC nix matterbridge = { @@ -37,10 +40,12 @@ matterbridge = { ''; }; #+END_SRC -** TODO cgit +** DONE cgit +CLOSED: [2020-08-14 ven. 09:29] +** TODO Terraform restore from backup when provisioning +** TODO cron: borg, PostgreSQL backup and NixOS update and collect gargabe ** TODO snapshot with swap: nixos-rebuild switch takes too much memory Adding swap memory maybe be a lot slower, but allows me to stay inside the 512MB memory server plan -** TODO cron: borg, PostgreSQL backup and NixOS update and collect gargabe ** TODO Configure PostgreSQL permissions correctly ** TODO Harden the server *** TODO [#C] [[https://www.reddit.com/r/selfhosted/comments/bw8hqq/top_3_measures_to_secure_your_virtual_private/][Top 3 measures to secure your Virtual Private Server? (VPS)]] @@ -67,13 +72,25 @@ resource "vultr_block_storage" "vps_storage" { live = "yes" } #+END_SRC -** TODO EteSync? +* Tasks - v5 ** TODO Run cgit from nginx instead of using lighttpd +** TODO EteSync? +** TODO Remove extra trailing slash from =git.$TLD//= * Services - v2 -** TODO =cloud.$tld=: Nextcloud: storage, calendar, contacts, notes and talk +** DONE =cloud.$tld=: Nextcloud: storage, calendar, contacts, notes and talk +CLOSED: [2020-08-14 ven. 09:29] ** TODO =chat.$tld=: [[https://conversejs.org/][Converse]] interface to Prosody server Setup under Prosody server, and bridge it with Telegram and WhatsApp using matterbridge. -** TODO =git.$tld=: cgit server with repositories from ~/dev/libre/ +#+BEGIN_SRC nix +muc = [{ + domain = envsubstConfiguration.prosodyMUCTLD; +}]; +uploadHttp = { + domain = envsubstConfiguration.prosodyHTTPUploadTLD; +}; +#+END_SRC +** DONE =git.$tld=: cgit server with repositories from ~/dev/libre/ +CLOSED: [2020-08-14 ven. 09:29] ** TODO =mail.$tld=: postfix, dovecot, spamassasin, opendkim, etc No need for roundcube, Nextcloud has a web interface client. ** TODO =$tld=: current Jekyll blog @@ -139,27 +156,3 @@ We could use the raw Droplet IP instead of the DNS A record, but I prefer callin * Questions ** How to best handle IP changes when the server changes? How does this affect the email sending IP reputation? * Scrath - - - - - # ssl = { - # cert = "/var/lib/acme/${envsubstConfiguration.TLD}/fullchain.pem"; - # key = "/var/lib/acme/${envsubstConfiguration.TLD}/key.pem"; - # }; - # virtualHosts = { - # "${envsubstConfiguration.prosodyTLD}" = { - # enabled = true; - # domain = "${envsubstConfiguration.prosodyTLD}"; - # ssl = { - # cert = "/var/lib/acme/${envsubstConfiguration.TLD}/fullchain.pem"; - # key = "/var/lib/acme/${envsubstConfiguration.TLD}/key.pem"; - # }; - # }; - # }; - # muc = [{ - # domain = envsubstConfiguration.prosodyMUCTLD; - # }]; - # uploadHttp = { - # domain = envsubstConfiguration.prosodyHTTPUploadTLD; - # }; |