| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | git mv guix-reconfigure.sh remote-guix-reconfigure.sh | EuAndreh | 2021-01-10 | 1 | -8/+0 |
| | | |||||
| * | Remove code comments. | EuAndreh | 2020-12-09 | 1 | -1/+1 |
| | | |||||
| * | guix-reconfigure.sh: Delete from remote ~/sync/ | EuAndreh | 2020-12-05 | 1 | -1/+1 |
| | | |||||
| * | guix-reconfigure.sh: Sync remotely to sync/ | EuAndreh | 2020-12-05 | 1 | -2/+2 |
| | | |||||
| * | ci-build.sh: Remove server-specific PREFIX path of logfile | EuAndreh | 2020-11-29 | 1 | -1/+1 |
| | | |||||
| * | rsync the full folder to home instead of file by file | EuAndreh | 2020-11-16 | 1 | -1/+1 |
| | | |||||
| * | guix-reconfigure.sh: Remove un-needed (for now) envsubst call and shrink ssh ↵ | EuAndreh | 2020-11-16 | 1 | -3/+4 |
| | | | | | commands | ||||
| * | Add base Guix configuration and start switching to it | EuAndreh | 2020-11-16 | 1 | -0/+7 |
| - remove NixOS stateVersion from .envrc; - add guix-reconfigure.sh; - add vps.scm with initial Guix system configuration; - update vps.tf to use the new "base-guix" snapshot. The "base-guix" image doesn't need a password. The "andreh" users has one, but it is configured for not requiring it when running commands as "sudo". The expected minimal steps one has to go through for privilege scalation is via the SSH private key, and accessing the VPS via SSH. Since password login is disabled and root can't login via SSH either, only the private SSH key allows access to the server. After that, the attacker will be able to run commands as root. | |||||
 |
index : server | |
| Setup and configuration for VPS and other personal server | External SSH Git service user |
| aboutsummaryrefslogtreecommitdiff |