From 35cfdb10f8aa81c76b221e2bdc9040c3e71db6b5 Mon Sep 17 00:00:00 2001 From: Joey Hess Date: Sun, 22 Mar 2020 20:02:41 -0400 Subject: propellor spin --- joeyconfig.hs | 25 +++++++++++++++++++++++++ 1 file changed, 25 insertions(+) (limited to 'joeyconfig.hs') diff --git a/joeyconfig.hs b/joeyconfig.hs index 658c02d6..e8dc4954 100644 --- a/joeyconfig.hs +++ b/joeyconfig.hs @@ -59,6 +59,7 @@ hosts = -- (o) ` , peregrine , pell , keysafe + , quarantimer ] ++ monsters darkstar :: Host @@ -329,6 +330,7 @@ kite = host "kite.kitenet.net" $ props & myDnsPrimary "olduse.net" [ (RelDomain "article", CNAME $ AbsDomain "virgil.koldfront.dk") ] + & myDnsPrimary "quarantimer.app" [] & alias "ns4.branchable.com" & branchableSecondary & Dns.secondaryFor ["animx"] hosts "animx.eu.org" @@ -461,6 +463,28 @@ keysafe = host "keysafe.joeyh.name" $ props , "&& rsync -a --delete --max-delete 3 ", backupdir , rsyncnetbackup ] +quarantimer :: Host +quarantimer = host "quarantimer.app" $ props + & ipv4 "45.33.73.207" + & Hostname.sane + & Hostname.mailname + & osDebian (Stable "buster") X86_64 + & Apt.stdSourcesList `onChange` Apt.upgrade + & Apt.unattendedUpgrades + & Cron.runPropellor (Cron.Times "30 * * * *") + & Apt.installed ["etckeeper", "sudo"] + & JoeySites.noExim + + & User.hasSomePassword (User "root") + & User.accountFor (User "joey") + & User.hasSomePassword (User "joey") + & Sudo.enabledFor (User "joey") + & Ssh.installed + & Ssh.randomHostKeys + & User "root" `Ssh.authorizedKeysFrom` (User "joey", darkstar) + & User "joey" `Ssh.authorizedKeysFrom` (User "joey", darkstar) + & Ssh.noPasswords + --' __|II| ,. ---- __|II|II|__ ( \_,/\ --'-------'\o/-'-.-'-.-'-.- __|II|II|II|II|___/ __/ -'-.-'-.-'-.-'-.-'-.-'- @@ -548,6 +572,7 @@ myDnsSecondary = propertyList "dns secondary for all my domains" $ props & Dns.secondary hosts "joeyh.name" & Dns.secondary hosts "ikiwiki.info" & Dns.secondary hosts "olduse.net" + & Dns.secondary hosts "quarantimer.app" branchableSecondary :: RevertableProperty (HasInfo + DebianLike) DebianLike branchableSecondary = Dns.secondaryFor ["branchable.com"] hosts "branchable.com" -- cgit v1.2.3