c3d2/nix-config
c3d2
/
nix-config
24
7
Fork 3
Code Issues 12 Pull Requests 2 Releases Wiki Activity

nginx config for wkd #31

Merged
astro merged 5 commits from nginx-wkd into master 2022-05-05 21:28:18 +02:00
Conversation 2 Commits 5 Files Changed 1 +10 -1
vv01f commented 2022-04-25 11:13:44 +02:00
Owner
Copy Link
  • enable subdomain openpgpkey
    • DNS record
  • for files in /.well-known/openpgpkey/ and subderiectories
    • type octetstream
    • set allow header
* [ ] enable subdomain openpgpkey * [x] DNS record * for files in /.well-known/openpgpkey/ and subderiectories + [x] type octetstream + [ ] set allow header
vv01f added 2 commits 2022-04-25 11:13:47 +02:00
sandro reviewed 2022-04-25 11:18:50 +02:00
hosts/containers/c3d2-web/default.nix Outdated
@ -39,3 +39,4 @@
"cccdd.de" "www.cccdd.de"
"dresden.ccc.de" "www.dresden.ccc.de"
"netzbiotop.org" "www.netzbiotop.org"
"netzbiotop.org" "www.netzbiotop.org"
sandro commented 2022-04-25 11:18:30 +02:00
Owner
Copy Link

ist das nicht schone eine zeile darüber?

ist das nicht schone eine zeile darüber?
👀 1
vv01f marked this conversation as resolved
vv01f added 1 commit 2022-04-25 11:20:43 +02:00
vv01f commented 2022-04-25 21:35:32 +02:00
Author
Owner
Copy Link

testmöglichkeit: https://metacode.biz/openpgp/web-key-directory

testmöglichkeit: https://metacode.biz/openpgp/web-key-directory
revol-xut added 1 commit 2022-04-28 13:53:09 +02:00
vv01f added 1 commit 2022-04-28 13:56:09 +02:00
vv01f commented 2022-05-05 20:12:58 +02:00
Author
Owner
Copy Link

@astro
DNS record in branch wkd-record auf repo c3d2-dns (im gitolite)
… aber offenbar liegt das inzwischen auch woanders:

$ git push                                                         
Gesamt 0 (Delta 0), Wiederverwendet 0 (Delta 0), Pack wiederverwendet 0                         
remote: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@                             
remote: @       WARNING: POSSIBLE DNS SPOOFING DETECTED!          @                                                                                                                              
remote: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@                             
remote: The ED25519 host key for ns.c3d2.de has changed,                                        
remote: and the key for the corresponding IP address 2a00:8180:2c00:282:cd7:56ff:fe69:6366      
remote: is unknown. This could either mean that                                                 
remote: DNS SPOOFING is happening or the IP address for the host                                
remote: and its host key have changed at the same time.                                         
remote: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@                             
remote: @    WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!     @                             
remote: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@                             
remote: IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!                                   
remote: Someone could be eavesdropping on you right now (man-in-the-middle attack)!             
remote: It is also possible that a host key has just been changed.                              
remote: The fingerprint for the ED25519 key sent by the remote host is                          
remote: 07:67:c0:d9:9d:f7:53:91:13:86:a7:ff:e0:8a:b9:31.                                        
remote: Please contact your system administrator.                                               
remote: Add correct host key in /home/gitolite/.ssh/known_hosts to get rid of this message.     
remote: Offending ECDSA key in /home/gitolite/.ssh/known_hosts:5                                
remote:   remove with: ssh-keygen -f "/home/gitolite/.ssh/known_hosts" -R ns.c3d2.de            
remote: ED25519 host key for ns.c3d2.de has changed and you have requested strict checking.     
remote: Host key verification failed.                                                                                                                                                            
To git.c3d2.de:c3d2-dns.git                                                                     
   d01d30f..2aee882  master -> master
@astro DNS record in branch `wkd-record` auf repo [`c3d2-dns` (im gitolite)](https://gitea.c3d2.de/c3d2-admins/c3d2-dns) … aber offenbar liegt das inzwischen auch woanders: ``` $ git push Gesamt 0 (Delta 0), Wiederverwendet 0 (Delta 0), Pack wiederverwendet 0 remote: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ remote: @ WARNING: POSSIBLE DNS SPOOFING DETECTED! @ remote: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ remote: The ED25519 host key for ns.c3d2.de has changed, remote: and the key for the corresponding IP address 2a00:8180:2c00:282:cd7:56ff:fe69:6366 remote: is unknown. This could either mean that remote: DNS SPOOFING is happening or the IP address for the host remote: and its host key have changed at the same time. remote: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ remote: @ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @ remote: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ remote: IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY! remote: Someone could be eavesdropping on you right now (man-in-the-middle attack)! remote: It is also possible that a host key has just been changed. remote: The fingerprint for the ED25519 key sent by the remote host is remote: 07:67:c0:d9:9d:f7:53:91:13:86:a7:ff:e0:8a:b9:31. remote: Please contact your system administrator. remote: Add correct host key in /home/gitolite/.ssh/known_hosts to get rid of this message. remote: Offending ECDSA key in /home/gitolite/.ssh/known_hosts:5 remote: remove with: ssh-keygen -f "/home/gitolite/.ssh/known_hosts" -R ns.c3d2.de remote: ED25519 host key for ns.c3d2.de has changed and you have requested strict checking. remote: Host key verification failed. To git.c3d2.de:c3d2-dns.git d01d30f..2aee882 master -> master ```
astro merged commit 859cca93df into master 2022-05-05 21:28:18 +02:00
vv01f reviewed 2022-05-31 15:30:53 +02:00
hosts/containers/c3d2-web/default.nix
@ -53,0 +56,4 @@
extraConfig = ''
autoindex off;
default_type "application/octet-stream";
add_header Access-Control-Allow-Origin * always;
vv01f commented 2022-05-31 15:30:53 +02:00
Author
Owner
Copy Link

test (via https://metacode.biz/openpgp/web-key-directory) fails:

Access-Control-Allow-Origin: * header is missing

test (via https://metacode.biz/openpgp/web-key-directory) fails: > `Access-Control-Allow-Origin: *` header is missing
vv01f reviewed 2022-05-31 15:51:21 +02:00
hosts/containers/c3d2-web/default.nix
@ -36,3 +36,3 @@
serverAliases = [
"c3d2.de"
"c3dd.de" "www.c3dd.de"
"c3dd.de" "www.c3dd.de" "openpgpkey.c3d2.de"
vv01f commented 2022-05-31 15:51:21 +02:00
Author
Owner
Copy Link

openpgpkey doesnt resolve

openpgpkey doesnt resolve
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels
No items
No Label
Milestone
Clear milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
3 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: c3d2/nix-config#31
No description provided.
Delete Branch "nginx-wkd"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?