| Age | Commit message (Collapse) | Author |
|---|
|
This just fixes my lint errors for me which is awesome. Very useful.
|
|
Introduce a new systemd service that pulls the latest open-webui
Docker image and restarts the associated container. This ensures that
the application is always running the most recent version. Additionally,
a timer is added to schedule this update process to occur every Sunday
at 3 AM, automating the maintenance of the service without manual
intervention. This change enhances the reliability and freshness of
the application deployment.
|
|
This domain is not actually useful.
|
|
I had to update nixos-unstable-small and nixos-24_11 and disable a bunch of
tests, and then re-compile like the whole world, but aider is actually working,
finally.
|
|
Introduce a new container definition for the Open Web UI AI Chat service
in `OpenWebui.nix`, specifying its Docker image, volume, and environment
variables. This change includes the addition of a new port in `Ports.nix`
to facilitate communication with the service.
Furthermore, configure Nginx to serve the AI Chat application by adding
a new virtual host entry in `Web.nix`, ensuring SSL is enforced and
websocket support is enabled. This setup allows for a seamless
integration of the AI Chat service into the existing infrastructure,
improving accessibility and security.
|
|
This change removes "mail.bensima.com" from the list of allowed hosts
in the Web.nix configuration. The removal is likely due to a decision
to restrict access or because the mail service is no longer in use.
This helps to tighten security and ensure that only necessary hosts
are permitted.
|
|
This was the old username.
|
|
Not sure if this will help but I figure one more substituter can't hurt.
|
|
Basically every time I try to run CI it times out, so just disable timeout on CI
jobs for now.
|
|
Also improves the Example.py a bit with a real test case and example of how to
use Omni.Test.
|
|
I have this script I have to run on startup that sets these interactively, which
is fine, but I haven't changed this script in like 3 years so lets just make it
permanent at this point.
|
|
obs-do is a command line tool fro controlling obs over a socket, I plan to use
it for keyboard-driven automations. Helvum is just not necessary, qpwgraph is
better anyway.
|
|
I think this was causing feedback from my microphone.
|
|
This does all of the audio routing stuff that I need to combine my mic audio
with application audio into a virtual source that meeting software or OBS can
select as an input source. This way I can share what I'm listening to or
watching in a meeting.
I think the routes are not quite correct, and I'm not sure that the
`context.exec` is even a reliable way to setup the routes. I've also been using
`qpwgraph` to visually setup the routes, and that's helpful. I'll tweak this as
needed over time.
|
|
This is needed to use the OBS virtual camera thing.
|
|
Pydantic-ai is an agent framework that seems simple and good: well-typed with
pydantic, tool usage is just an `@tool` decorator on a function, and so
on. While building these I realized there were some deps they needed that were
already in nixpkgs unstable, so I just switched to that instead of trying to
backport all the versions and stuff.
|
|
This adds a kernel module that allows the virtual camera to work.
https://nixos.wiki/wiki/OBS_Studio
|
|
I need this to make my yubikey work.
|
|
Trying to learn about dmarc and improve my mail setup some more, I also added
the `rua` to my DNS entry so hopefully I get some reports.
|
|
I guess GPT-4 or whatever assistant I used got the wrong syntax the first time.
|
|
This moves syncthing from the cloud only, and onto Beryllium as well. Also it
gets rid of the nginx config because I don't really need access to it remotely
like that.
|
|
I'm honestly not sure what the correct call is here, I guess what I had was
Python 2 syntax? And Python 3 doesn't need arguments? Anyway this broke during
one of the nixpkgs updates and this seems to have fixed it.
|
|
This commit configures Nginx as a reverse proxy for the Syncthing web
interface, making it accessible via syncthing.bensima.com with SSL
encryption. The configuration includes proper header forwarding and
WebSocket support for the Syncthing GUI.
Additionally, this commit explicitly opens the required firewall ports
for Syncthing's operation, including the GUI port, sync port (22000),
and discovery broadcast port (21027).
|
|
Moved Syncthing configuration from Lithium's configuration file to a
dedicated module in Cloud directory. This change improves organization
by placing the service with other cloud-related configurations.
The new module includes comprehensive Syncthing setup with proper user
configuration, firewall rules, and default settings. It's now imported
in Cloud.nix to make it available to the cloud infrastructure.
|
|
Having this in its own file makes it easier to work on. Then I was able to
figure out (with lots of debugging and trial+error with Claude) the actual
permissions settings that result in a shared calendar. It's very fiddly because
it is matching on usernames and directories using regex, and I think it's
order-dependent as well.
|
|
This does the full transition: web server, mail server, xmpp. I expect some
disruption, but hopefully this is everything and it just switches over without
any problem.
|
|
I prefer et over mosh, so I tend to reach for it. Might as well just enable it
everywhere, at the Os/Base.nix level rather than individual systems.
|
|
Added header checks for optaltechtld.com domain to block incoming spam
emails claiming to be from MetaMask. The configuration includes checks
for Received, From, Return-Path, and Sender headers containing this
domain, rejecting any matching messages at the mail server level.
|
|
These are broken in upstream nixpkgs. Updating didn't fix them, so I'm just
gonna disable them for now. I'm using pipx to install aider anyway.
Also: Remove _ literal from GLOBIGNORE. I think it was causing the **/* glob to
include stuff in the cabdir, idk why.
|
|
This is just so I can run gemma3. Ollama has more than just a src hash, it needs
the godeps hash as well, so I can't simply track it with `deps` unfortunately.
|
|
This commit adds the novastells.com.es domain to our mail server's
blocklist by configuring Postfix header checks to reject messages
from this domain. The implementation checks for the domain in
multiple mail headers (Received, From, Return-Path, and Sender)
to ensure comprehensive blocking.
The commit also improves the comment above the headerChecks section
to better reflect its purpose of blocking multiple unwanted domains.
|
|
Configure Postfix to reject all emails from perfora.net by adding
header_checks rules that inspect both From and Received headers.
Implementation includes:
1. Adding header_checks configuration to Postfix
2. Creating a regexp file with rules to block the domain
3. Setting up an activation script to ensure proper file linking
This change helps prevent unwanted messages from this specific domain
while maintaining normal mail service for all other senders.
|
|
Configure Monica on Omni/Cloud. I had to setup PHP FastCGI so that nginx handles
the PHP requests properly, and setup an email address for the service.
|
|
This seems more complete than gptme so I'll test itnout for a while.
|
|
This was actually really easy to setup (with the help of Claude) and now I can
block bad sites on my tailnet. And no more ads either, haha the web is readable
again.
|
|
This changed when I setup my new router.
|
|
I really need a better way of setting this port rather than manually updating it
when I reconfigure emby.
|
|
Because tv.simatime.com is easier to type and remember than the feralhosting URL
with the port and everything.
|
|
For use with termux.
|
|
Some things got through the CI system, probably during updates. So I had more
stupid little fixes to do. I should really improve bild to the point that these
won't happen anymore and builds don't take so long.
|
|
I got this from the upstream branch jd/zx2c4-deployment, which does have the
below commit implementing dark mode. I first cherry-picked the commit to master
but it wouldn't build. Then I realized that the last cut release was v1.2.3 from
5 years ago, and that's what nixpkgs has pinned, so I cherry-picked it onto
v1.2.3 and it went cleanly and built okay. So that's what I landed on. Maybe it
would be better to use a patch instead of pushing my own fork like this, but
whatever this works just fine. I can always switch to the patch method later.
https://git.zx2c4.com/cgit/commit/?h=jd/zx2c4-deployment&id=8ed1bef90f631989c0cadc326a163b874a64e02d
|
|
I couldn't use llm-ollama because it required some package upgrades, so I
started going down that rabbit hole and ended up 1) realizing that these
packages are way out of date now, and 2) fiddling with overrides to get
everything to work. I finally figured it out, the `postPatch` in ollama-python
was throwing me off for like half a day.
Anyway, one thing to note is that these are changing fast and I need to either
move onto nixpkgs unstable for python stuff, or maintain my own builds of all of
these. Not sure which is more appropriate right now.
Oh and I had to fixup some logging stuff in Biz/Storybook.py because ruff
started complaining about something, which is weird because I don't think the
version changed? But it was easy enough to change.
|
|
This is just for conferencing for work stuff, interviews and the like, it seems
to work better as a system package than in a nix-shell or whatever.
|
|
This is a very nice web ui frontend similar to ChatGPT that can use both OpenAI
and Ollama as backends at the same time. Currently I'm just using it locally but
eventually I think I'll expose it over the internet and use it as my go-to LLM
interface.
|
|
Removed the murmur server from Lithium and started broadcasting on bensima.com
rather than simatime.com. Eventually I will move everything over there.
|
|
OBS wouldn't allow me to stream because there was something wrong with `nvenc`,
which I guess is the nvidia encoding library? Anyway searching around I found
this nvidia-patch overlay and it fixed it right away, so that's cool.
|
|
This guards against network failures that may put the system in an unusable
state. It's included in nixos-rebuild, so I should include it here in some form
too.
https://github.com/NixOS/nixpkgs/pull/258571
|
|
Supposedly, running the nix-env command before switch-to-configuration will
result in the grub entry being updated appropriately, and this is how
nixos-rebuild does it.
https://discourse.nixos.org/t/how-to-update-grub-entries-with-nixos-config-built-with-nix-build/1826/2
|
|
Contra d2edf150cf2c876971383a4a484f289ce7e7f680, this module is the one place
that I do need the stupid __main__ thing.
|
|
Like the previous commit, this matches Omni/Test.hs.
|
