Commit graph

696 commits

Author SHA1 Message Date
Eelco Dolstra 3b1c741f3f * Xfce 4.8 doesn't need HAL anymore.
svn path=/nixos/trunk/; revision=28762
2011-08-22 22:52:13 +00:00
Eelco Dolstra ecbfe0d9c0 * Cause KDE's Polkit authentication agent to be started at login.
You now get a nice popup window asking for the appropriate password
  if you try to do something that requires administrative privilege
  (e.g. "pkexec ls" in a terminal, unmounting devices that don't
  belong to you in Dolphin, or killing other people's processes in
  ksysguard).

svn path=/nixos/trunk/; revision=28735
2011-08-22 11:51:03 +00:00
Eelco Dolstra 13a2563d02 * Create /var/lib/udisks because that's where udisks keeps its mtab
file.  Without this, users are not able to unmount their own
  devices (because udisks doesn't remember who mounted them).

svn path=/nixos/trunk/; revision=28730
2011-08-21 21:03:02 +00:00
Peter Simons a84ada1d92 modules/services/monitoring/smartd.nix: pass TZ variable to smartd to ensure that notification e-mails have a proper time zone
svn path=/nixos/trunk/; revision=28702
2011-08-19 20:44:12 +00:00
Yury G. Kudryashov 9177fc455d Adjust nixos to latest changes in kde-4.7 in nixpkgs
svn path=/nixos/trunk/; revision=28598
2011-08-15 18:08:12 +00:00
Eelco Dolstra 4790c147bf * Revert r28400 because ConsoleKit got reverted to 0.4.1.
svn path=/nixos/trunk/; revision=28587
2011-08-15 14:48:32 +00:00
Eelco Dolstra 7e2ea4df32 * Xsession script: set the current directory to $HOME.
svn path=/nixos/trunk/; revision=28511
2011-08-12 10:04:43 +00:00
Shea Levy 38cab9070f synaptics module: By default, disable edge drag scrolling if two finger scrolling is enabled
svn path=/nixos/trunk/; revision=28472
2011-08-10 22:14:46 +00:00
David Guibert 96304c9afc make the virtualbox guest module loadable by modprobe.
svn path=/nixos/trunk/; revision=28436
2011-08-09 19:53:01 +00:00
Eelco Dolstra d75efe4aa1 * For security, don't mount the entire host filesystem.
svn path=/nixos/trunk/; revision=28429
2011-08-09 14:07:44 +00:00
Eelco Dolstra 45d8c418b5 * Some hackery to get ConsoleKit to work with the SLIM and "auto"
display managers.  This was broken due to a change in ConsoleKit
  0.4.2:

    https://bugs.freedesktop.org/show_bug.cgi?id=28377

  Using ConsoleKit's pam-ck-connector helps in that it creates local
  sessions; however, they're not marked as active because the
  x11-display-device property is not set.  As a workaround, calling
  ck-launch-session seems to work.

  More details:

    https://bugs.gentoo.org/show_bug.cgi?id=336634
    http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598150
    https://bugzilla.redhat.com/show_bug.cgi?id=585952

svn path=/nixos/trunk/; revision=28400
2011-08-08 19:28:17 +00:00
Eelco Dolstra 8b30a8f23f * In the VM tests, add "-m 0" to syslogd to kill the "-- MARK --"
messages.  These prevent hanging tests from being killed after 1
  hour of silence.

svn path=/nixos/trunk/; revision=28393
2011-08-08 14:40:16 +00:00
Shea Levy 843ccae5d5 multitouch: Use the right package name
svn path=/nixos/trunk/; revision=28375
2011-08-08 01:39:26 +00:00
Shea Levy 9464c99ce2 First attempt at a multitouch touchpad module.
Note that the Multitouch X Driver currently has no configuration beyond editing the source code, so the only option is enable or disable

svn path=/nixos/trunk/; revision=28373
2011-08-08 01:34:36 +00:00
Shea Levy 30861ecbc8 Create multitouch module based off synaptics module
svn path=/nixos/trunk/; revision=28372
2011-08-08 01:27:44 +00:00
Karn Kallio c36cf7b591 Reflect kdegraphics organization.
svn path=/nixos/trunk/; revision=28214
2011-08-07 00:52:35 +00:00
Eelco Dolstra 1df952182a * Only flush the POSTROUTING chain.
svn path=/nixos/trunk/; revision=28153
2011-08-04 15:33:40 +00:00
Eelco Dolstra d890e74d9c * Hacks to keep KDE 4.5 working. The latest D-Bus is more strict in
checking function arguments, so DBUS_FATAL_WARNINGS=0 is necessary
  to prevent KDE from aborting.  Also put the Phonon gstreamer backend
  in the environment if available.

svn path=/nixos/trunk/; revision=28113
2011-08-01 14:28:28 +00:00
Eelco Dolstra af22531d38 * Remove the hydra-mirror module from NixOS, it's too specialised.
svn path=/nixos/trunk/; revision=28024
2011-07-31 22:00:29 +00:00
Eelco Dolstra fc9f6d0395 svn path=/nixos/trunk/; revision=27991 2011-07-28 16:35:13 +00:00
Eelco Dolstra 31afd2bb2e * vsftpd: use /var/empty instead of /var/ftp/empty as the empty
chroot (the latter doesn't exist).
* vsftpd: make the anonymous user's home read-only, otherwise vsftpd
  will fail.

svn path=/nixos/trunk/; revision=27983
2011-07-28 09:42:20 +00:00
Nicolas Pierron 66ffeb3fd9 UPS: Make sure the driver pid files can be stored.
svn path=/nixos/trunk/; revision=27979
2011-07-27 20:55:39 +00:00
Nicolas Pierron e231543033 Add new services: freepops, fuppes and ups.
svn path=/nixos/trunk/; revision=27977
2011-07-27 20:55:28 +00:00
Eelco Dolstra abb2779840 * The write_cd_rules script in udev needs udev in its $PATH.
svn path=/nixos/trunk/; revision=27970
2011-07-26 21:01:36 +00:00
Eelco Dolstra d1f1cfcd41 * Don't make PulseAudio a requirement for KDE, it works fine without
it (especially now that KDE doesn't try to start PulseAudio
  automatically).

svn path=/nixos/trunk/; revision=27969
2011-07-26 18:34:59 +00:00
Eelco Dolstra 3b374ea326 * Move PulseAudio initialisation below the re-exec to prevent it from
being started twice.

svn path=/nixos/trunk/; revision=27968
2011-07-26 18:34:10 +00:00
Eelco Dolstra 3fdc209978 * Start PulseAudio from the X session script.
svn path=/nixos/trunk/; revision=27967
2011-07-26 18:16:24 +00:00
Eelco Dolstra 7bdaedb465 * Add a module to enable PulseAudio. It causes all ALSA applications
to be rerouted to PulseAudio.

  Note that this is distinct from the already existing module
  ‘services/audio/pulseaudio.nix’ that provides a system-wide
  PulseAudio daemon, which is usually not what you want.

svn path=/nixos/trunk/; revision=27958
2011-07-26 01:51:56 +00:00
Eelco Dolstra a1df35a590 * Don't enable HAL by default anymore. It's obsolete. It's still
enabled by modules that need it (KDE < 4.7, Xfce).
* Don't enable the PolicyKit module by default either, it's also
  obsolete (replaced by PolKit).  It's still enabled if HAL is
  enabled.

svn path=/nixos/trunk/; revision=27933
2011-07-25 00:52:59 +00:00
Eelco Dolstra 38fddb2243 * The X server doesn't actually depend on HAL anymore.
svn path=/nixos/trunk/; revision=27932
2011-07-25 00:50:46 +00:00
Eelco Dolstra 2e4acbcf8b * Add a NixOS module for upower.
svn path=/nixos/trunk/; revision=27931
2011-07-25 00:45:52 +00:00
Eelco Dolstra a9f599154a * Remove stupid ‘libraryPath’ entries from ~/.config/Trolltech.conf
that can randomly cause KDE to fail.

svn path=/nixos/trunk/; revision=27925
2011-07-24 22:07:58 +00:00
Eelco Dolstra 83846d8417 * NixOS module for Udisks.
svn path=/nixos/trunk/; revision=27909
2011-07-23 01:30:36 +00:00
Peter Simons 3a1b6266e4 modules/services/monitoring/smartd.nix: added services.smartd.devices option to configure list of devices to monitor
By default -- if this option is unset --, all connected devices will be
monitored. Hard-coding the list of devices is worth-while, though, because this
will also configure smartd to send e-mail messages to 'root' when a test fails.

svn path=/nixos/trunk/; revision=27888
2011-07-21 19:32:15 +00:00
Eelco Dolstra 7c6c50a3bf * Nuke the KDE icon cache on login.
svn path=/nixos/trunk/; revision=27867
2011-07-21 11:16:46 +00:00
Lluís Batlle i Rossell 4e73287456 Adding a syslog parameter to receive log from other devices through the network.
svn path=/nixos/trunk/; revision=27866
2011-07-21 07:42:05 +00:00
Eelco Dolstra 68350e646d * Support KDE 4.7.
svn path=/nixos/trunk/; revision=27818
2011-07-18 12:37:13 +00:00
Eelco Dolstra c45356769e * /var/lib/kdm needs to be owned by ‘kdm’.
* Set KDEDIRS properly in kdm.

svn path=/nixos/trunk/; revision=27817
2011-07-18 12:36:46 +00:00
Eelco Dolstra c971f2b1ac * Shut up some udev warnings.
svn path=/nixos/trunk/; revision=27806
2011-07-17 11:01:31 +00:00
Eelco Dolstra 6490c6ba21 * Don't use /tmp/kdm as the home directory for the kdm user - sounds
insecure.
* Create /var/lib/kdm.
* In kdmrc, set BootManager to "Grub2" if we're using GRUB 2.

svn path=/nixos/trunk/; revision=27805
2011-07-17 10:52:40 +00:00
Eelco Dolstra 14636ba057 * The Powers That Be have decided that there shall be a /run to
replace /var/run and /var/lock.  For instance, udev now keeps state
  in /run/udev instead of /dev/.udev.  See

    http://lists.fedoraproject.org/pipermail/devel/2011-March/150031.html
    http://bugs.freestandards.org/show_bug.cgi?id=718

  So this patch creates /run as a tmpfs, and symlinks /var/run to /run
  and /var/lock to /run/lock.

  TODO: create /run in stage 1 and propagate it to stage 2.    

svn path=/nixos/trunk/; revision=27803
2011-07-16 19:27:45 +00:00
Eelco Dolstra 23d7a822f1 * Fix the path to mount in the rule in 50-udev-default.rules that
mounts /sys/fs/fuse/connections.

svn path=/nixos/trunk/; revision=27802
2011-07-16 18:40:08 +00:00
Peter Simons aec0ee107c modules/services/logging/syslogd.nix: change type of 'tty' option to "uniq string"
svn path=/nixos/trunk/; revision=27774
2011-07-14 11:35:03 +00:00
Sander van der Burg c630e52873 Added MySQL replication support + 2 MySQL testcases (including replication)
svn path=/nixos/trunk/; revision=27771
2011-07-13 20:58:48 +00:00
Peter Simons d7c4900420 syslogd: extended configuration options
This commit adds the option 'services.syslogd.defaultConfig', which is
the main syslog.conf file used by the daemon. Like before, That file can
be extended by means of 'services.syslogd.extraConfig'. Users who want a
completely different configuration, however, can re-define defaultConfig
to their liking.

Furthermore, the option services.syslogd.tty' is now optional: setting
its value to the empty string "" disables logging to TTY altogether.

svn path=/nixos/trunk/; revision=27769
2011-07-13 18:24:53 +00:00
Peter Simons fb1b0c0372 modules/services/monitoring/smartd.nix: added support for running smart daemon
Set "services.smartd.enable = true" to enable the service.

svn path=/nixos/trunk/; revision=27767
2011-07-13 17:47:34 +00:00
Peter Simons 0ffb794d5d modules/services/networking/ssh/sshd.nix: strip trailing whitespace
svn path=/nixos/trunk/; revision=27733
2011-07-12 10:34:30 +00:00
Peter Simons ea84edd528 modules/services/networking/ssh/sshd.nix: added new boolean options usePAM and passwordAuthentication
Setting both of these options to 'false' configures the OpenSSH daemon to
reject password authentication, i.e. users must have an appropriate key in
~/.ssh/authorized_keys in order to be able to log in.

svn path=/nixos/trunk/; revision=27732
2011-07-12 10:34:27 +00:00
Eelco Dolstra 6857a28f0e * Postfix needs TZ to be set, otherwise the generated headers are
wrong (reported by Peter Simons).

svn path=/nixos/trunk/; revision=27639
2011-07-07 19:18:40 +00:00
Eelco Dolstra 466d798b15 * Oops.
svn path=/nixos/trunk/; revision=27608
2011-07-05 12:54:50 +00:00
Eelco Dolstra 3bc3dc3940 * Put the NixOS firewall ruleset in its own chain (‘nixos-fw’). This
should make it easier to compose with packages that set their own
  firewall rules, such as Nova or Libvirt.
* Provide a chain for accepted packets (‘nixos-fw-accept’), requested
  by Nicolas Pierron.

svn path=/nixos/trunk/; revision=27607
2011-07-05 12:51:46 +00:00
Eelco Dolstra 1d09ad240a * Don't set defaultSkin to "default" because that's a horrible skin
(does it even exist?).  Use "" instead (which is really "monobook").

svn path=/nixos/trunk/; revision=27604
2011-07-04 15:51:38 +00:00
Eelco Dolstra bf00977ce1 * Add an option ‘services.postgresql.extraConfig’.
svn path=/nixos/trunk/; revision=27550
2011-06-27 10:15:26 +00:00
Joachim Schiele 1ea24769a0 added support for two custom themes and also wrote a nice looking nixos theme
svn path=/nixos/trunk/; revision=27535
2011-06-23 20:56:37 +00:00
Eelco Dolstra 6719446d4b * Some hackery to get foomatic-filters to work.
svn path=/nixos/trunk/; revision=27471
2011-06-15 12:41:15 +00:00
Eelco Dolstra c2a3aa8e79 * Open UDP port 631 in the firewall to allow CUPS to discover
printers on the network.

svn path=/nixos/trunk/; revision=27399
2011-06-08 15:55:51 +00:00
Evgeny Egorochkin c734389e90 Virtuoso: add parameters section to config
svn path=/nixos/trunk/; revision=27342
2011-06-04 10:53:07 +00:00
Evgeny Egorochkin 733917db0f Virtuoso: add dirsAllowed option, minor cleanup
svn path=/nixos/trunk/; revision=27336
2011-05-31 14:56:56 +00:00
Evgeny Egorochkin b65a4840b8 Make virtuoso drop root privileges
svn path=/nixos/trunk/; revision=27334
2011-05-31 09:56:55 +00:00
Evgeny Egorochkin 14859264a9 Virtuoso database service: packaged
svn path=/nixos/trunk/; revision=27332
2011-05-31 07:44:17 +00:00
Eelco Dolstra 4984fa1ee6 * Fix the Nixpkgs mirror script (it didn't have the necessary
modules in the Perl search path).

svn path=/nixos/trunk/; revision=27261
2011-05-16 07:46:31 +00:00
Lluís Batlle i Rossell c4fe98706b Fixing the samba daemons. "smbd -i", as we were using, handles *one request* and exit.
When it was working more or less, it was through upstart respawn.


svn path=/nixos/trunk/; revision=27140
2011-05-04 12:34:26 +00:00
Michael Raskin a61015cfa1 IRCD expression needs recursive attrsets...
svn path=/nixos/trunk/; revision=27025
2011-04-28 08:23:09 +00:00
Lluís Batlle i Rossell 0af7c7bdcb Making the samba services get the timezone.
svn path=/nixos/trunk/; revision=27022
2011-04-28 08:07:17 +00:00
Eelco Dolstra 6739162d9a * Move ircd-hybrid stuff from the services tree to the nixos tree.
svn path=/nixos/trunk/; revision=27009
2011-04-27 16:27:05 +00:00
Eelco Dolstra aefa687b02 * Move the twiki module out of the NixOS tree.
svn path=/nixos/trunk/; revision=27001
2011-04-27 15:00:32 +00:00
Eelco Dolstra 56f1918e1c * Move the Subversion/Repoman module out of the NixOS tree.
svn path=/nixos/trunk/; revision=27000
2011-04-27 14:52:55 +00:00
Eelco Dolstra e3a2cd58e0 svn path=/nixos/trunk/; revision=26998 2011-04-27 14:10:33 +00:00
Eelco Dolstra 742881a0f9 svn path=/nixos/trunk/; revision=26997 2011-04-27 14:10:03 +00:00
Eelco Dolstra 257326915b * gw6c: don't depend on the services tree.
svn path=/nixos/trunk/; revision=26995
2011-04-27 14:03:46 +00:00
Eelco Dolstra e5966f96b7 * Fix the jboss module.
svn path=/nixos/trunk/; revision=26992
2011-04-27 13:33:06 +00:00
Eelco Dolstra 650d14be8d * Remove most references to the "services" tree.
svn path=/nixos/trunk/; revision=26990
2011-04-27 13:16:33 +00:00
Eelco Dolstra 76d3721a53 * `dnsmasq' shouldn't run by default.
svn path=/nixos/trunk/; revision=26890
2011-04-19 13:37:31 +00:00
Evgeny Egorochkin 23df246c9e 4Store SPARQL endpoint: packaged
svn path=/nixos/trunk/; revision=26853
2011-04-15 16:10:17 +00:00
Evgeny Egorochkin a094140655 4store database service: packaged
svn path=/nixos/trunk/; revision=26852
2011-04-15 16:10:13 +00:00
Lluís Batlle i Rossell 7a4685d28d Openldap needs a directory in /var/run to start, and it seems it's clean at every boot.
svn path=/nixos/trunk/; revision=26840
2011-04-14 09:54:46 +00:00
Lluís Batlle i Rossell d8a702f59f Making the samba daemons see the nss modules (needed for ldap-unix-pam integration)
svn path=/nixos/trunk/; revision=26830
2011-04-13 20:06:29 +00:00
Lluís Batlle i Rossell e7c9266a70 Adding a poor openldap server module.
svn path=/nixos/trunk/; revision=26822
2011-04-13 17:35:19 +00:00
Lluís Batlle i Rossell 6824866d6d Adding a dnsmasq simple module.
svn path=/nixos/trunk/; revision=26820
2011-04-13 14:09:02 +00:00
Eelco Dolstra e9b2ebcb99 * Send a TCP RST packet, rather than an ICMP port-unreachable packet,
for (apparently) open TCP connections that connection tracking 
  doesn't know about.  This prevents TCP connections to this machine
  from hanging in CLOSE_WAIT for a long time.

svn path=/nixos/trunk/; revision=26802
2011-04-12 11:25:57 +00:00
Lluís Batlle i Rossell 82a0aa0a8f Fixing a path in the trac ldap part. Too much slashes make things go wrong.
svn path=/nixos/trunk/; revision=26786
2011-04-11 19:43:48 +00:00
Lluís Batlle i Rossell 9c492e34bb Making the trac module ldap-aware (for the authentication) and sqlite aware.
svn path=/nixos/trunk/; revision=26768
2011-04-09 16:05:36 +00:00
Eelco Dolstra c4a2eeb9f8 * Added a module for the RabbitMQ server.
svn path=/nixos/trunk/; revision=26630
2011-03-31 17:04:05 +00:00
Nicolas Pierron 96fc9379ba Convert assertion option into mkAssert.
svn path=/nixos/trunk/; revision=26614
2011-03-30 17:52:34 +00:00
Eelco Dolstra 87a2c6d9c5 * Don't enable rdnssd by default for the moment.
svn path=/nixos/trunk/; revision=26505
2011-03-25 09:29:22 +00:00
Eelco Dolstra b2d6dfecbc * Add the rdnss daemon.
* Add the ndisc6 package to the system path if IPv6 is enabled.

svn path=/nixos/trunk/; revision=26496
2011-03-24 16:23:28 +00:00
Eelco Dolstra f71bd3f93c * dhclient: ignore libvirt's network interfaces.
svn path=/nixos/trunk/; revision=26327
2011-03-15 15:30:12 +00:00
Eelco Dolstra 3cb7a54dba * Added an option `networking.bridges' to allow Ethernet bridges to be
defined.

svn path=/nixos/trunk/; revision=26325
2011-03-15 15:13:48 +00:00
Eelco Dolstra 64d871c0d9 * Enable FTP connection tracking in the firewall.
svn path=/nixos/trunk/; revision=26275
2011-03-11 13:34:17 +00:00
Eelco Dolstra 005ca15f64 * Firewall: add an option to allow extra firewall rules to be added.
* Firewall: change the policy of the INPUT chain back to ACCEPT to
  prevent a lockup when the Nix store is mounted over the network
  (i.e. in our VM tests).  This is because as soon as the policy is
  set to DROP, the iptables modules that enable access to the network
  filesystem cannot be acccessed anymore.

svn path=/nixos/trunk/; revision=26274
2011-03-11 13:04:17 +00:00
Eelco Dolstra ab0ce6734b * firewall.nix: Only flush/delete the chains created by us.
svn path=/nixos/trunk/; revision=26271
2011-03-11 11:53:18 +00:00
Eelco Dolstra f672aa71bf * RFC 4890 says that local nodes should not filter pretty much any
ICMPv6 messages (including echo requests), so don't do that.

svn path=/nixos/trunk/; revision=26270
2011-03-11 11:08:16 +00:00
Eelco Dolstra 0ea9f6611a * Add some more rules to allow ICMPv6 router/neighbour advertisements
in.  Maybe we're better off accepting all ICMPv6 messages *except*
  echo requests.

svn path=/nixos/trunk/; revision=26260
2011-03-10 16:25:08 +00:00
Eelco Dolstra 53bc6d3efa * NAT module: support active FTP.
svn path=/nixos/trunk/; revision=26247
2011-03-10 13:03:47 +00:00
Eelco Dolstra 9bf4ac079e * Add a module for doing Network Address Translation.
svn path=/nixos/trunk/; revision=26246
2011-03-10 12:08:39 +00:00
Eelco Dolstra d6424efbfb * Cleanup.
svn path=/nixos/trunk/; revision=26244
2011-03-10 09:39:17 +00:00
Eelco Dolstra e884cbed7d * Add an option for opening UDP ports.
* Accept packets destined for link-local addresses (fe80::/10).

svn path=/nixos/trunk/; revision=26236
2011-03-09 16:37:16 +00:00
Eelco Dolstra 12161f3183 * Add a firewall option to allow pings. (Maybe this should
be enabled by default.)

svn path=/nixos/trunk/; revision=26233
2011-03-09 15:28:47 +00:00
Eelco Dolstra e4051e105c * Use a separate chain for logging and rejecting.
svn path=/nixos/trunk/; revision=26232
2011-03-09 15:11:01 +00:00
Eelco Dolstra 66716f9dd5 * Firewall: support IPv6.
svn path=/nixos/trunk/; revision=26231
2011-03-09 14:41:48 +00:00