forbytten
32e58e122f
Passphrase now passed to gpg from stdin via the --passphrase-fd 0 option instead of via the --passphrase option. The latter exposes the passphrase to observation by other processes on the system and the gpg man page includes a disclaimer for it: Don't use this option if you can avoid it. Although the README recommends a single user, ephemeral Debian Live environment, users may choose to ignore that recommendation so it seems best to protect them from themselves where possible.
2024-10-26 02:51:35 +00:00
drduh
e218607c1f
Merge pull request #458 from drduh/18aug24
...
use printf, export keyid, fix link
2024-08-18 19:00:22 +00:00
drduh
d0928bc007
consolidate agent commands
2024-08-18 11:59:50 -07:00
drduh
c110bb8ec0
use printf, export keyid, fix link
2024-08-18 11:47:11 -07:00
drduh
59caacc134
Merge pull request #457 from snqk/docs/thunderbird
...
mail/thunderbird: add instructions & warnings
2024-08-18 18:32:47 +00:00
snqk
5f91bfe10c
mail/thunderbird: fix typo
...
Signed-off-by: snqk <me@snqk.dev>
2024-08-17 21:23:20 +01:00
snqk
ceab1ab58b
mail/thunderbird: add instructions & warnings
...
- add instructions to configure the thunderbird client with this setup
- add warning for commonly encountered issues when decrypting emails (Resolves #448 )
Signed-off-by: snqk <me@snqk.dev>
2024-08-17 21:19:18 +01:00
drduh
d9af1dea50
Merge pull request #453 from jwpconsulting/update-nix
...
Update flake.lock, system.stateVersion and migrate displayManager setting
2024-07-21 21:01:37 +00:00
drduh
82366dfcd8
Merge pull request #452 from jwpconsulting/cosmetic-fixes
...
Add instructions how to run NixOS YubiKey live image with QEMU
2024-07-21 21:01:10 +00:00
Justus Perlwitz
e4fb29ca24
Rename displayManager.autoLogin setting
...
This is based on a warning encountered when running the build with
nix build .#nixosConfigurations.yubikeyLive.x86_64-linux.config.system.build.isoImage
The message encountered was:
> trace: warning: The option `services.xserver.displayManager.autoLogin' defined in `/nix/store/sj9yrq21wbbfr5715hys3laa2qd6x471-source/flake.nix' has been renamed to `services.displayManager.autoLogin'.
2024-07-20 22:03:57 +09:00
Justus Perlwitz
8a286bb341
Remove trailing whitespace in README.md
2024-07-20 22:03:12 +09:00
Justus Perlwitz
2ca7dbb5b0
Document how to test NixOS build with QEMU
2024-07-20 22:03:12 +09:00
Justus Perlwitz
967456100c
Update system.stateVersion to 24.05
2024-07-20 22:01:28 +09:00
Justus Perlwitz
5ea481a79a
flake.lock: Update
...
Flake lock file updates:
• Updated input 'nixpkgs':
'github:NixOS/nixpkgs/c0d0be00d4ecc4b51d2d6948e37466194c1e6c51' (2024-07-04)
→ 'github:NixOS/nixpkgs/c716603a63aca44f39bef1986c13402167450e0a' (2024-07-17)
2024-07-20 18:29:49 +09:00
drduh
a46409e2e8
Merge pull request #450 from motiejus/nixos-24.05
...
NixOS: bump to 24.05
2024-07-08 02:12:58 +00:00
drduh
a7155c7995
Merge pull request #449 from denis-roy/master
...
Corrected small typo in README.md
2024-07-08 02:12:40 +00:00
Motiejus Jakštys
d5ef6565ed
flake.lock: Update
...
Flake lock file updates:
• Updated input 'drduhConfig':
'github:drduh/config/8c21617100795fea2313656abdf25f93b98fdc30' (2023-10-16)
→ 'github:drduh/config/4eca229664d056737f1a097cdbdb10e5f247b0bc' (2024-06-30)
2024-07-07 11:25:10 +03:00
Motiejus Jakštys
d7b2a034aa
NixOS: bump to 24.05
...
- remove hopenpgp-tools (as per README)
- add dirmgr
- add rng-tools
2024-07-07 11:19:21 +03:00
denis-roy
5f55f780d7
Corrected small typo in README.md
...
maintenace -> maintenance
2024-07-06 16:55:40 -04:00
drduh
d30f93ac32
Merge pull request #447 from drduh/wip-30jun24
...
Export variables throughout (fix #434 )
2024-07-04 22:01:59 +00:00
drduh
72eead099c
Should only have one identity loaded when renewing
2024-06-30 16:44:40 -07:00
drduh
778b292917
Renew expired subkeys, fix #442
2024-06-30 16:41:16 -07:00
drduh
b7baf0cbd0
Fix secret function
2024-06-30 16:28:39 -07:00
drduh
8458f76129
Export variables throughout
2024-06-30 15:08:49 -07:00
drduh
5bead178d8
Merge pull request #435 from straysheep-dev/patch-1
...
Add networking section to README.md
2024-06-10 00:25:07 +00:00
straysheep-dev
d64c75a45f
Move networking section to Optional hardening
2024-05-05 23:08:05 -07:00
straysheep-dev
bf1eef2c0d
Merge branch 'drduh:master' into patch-1
2024-05-05 22:37:21 -07:00
drduh
5efcddc9e7
Merge pull request #440 from manuth/fix-gnupghome-var
...
Suggest Exporting the `GNUPGHOME` Variable in the Guide
2024-05-06 01:33:25 +00:00
drduh
9d90cafe36
Merge pull request #438 from manuth/diceware-webapp
...
Add the `diceware` Web-App to the NixOS ISO
2024-05-05 19:06:30 +00:00
drduh
41f42cf059
Merge pull request #439 from manuth/markdown-viewer
...
Add a Markdown Viewer to the NixOS Image
2024-05-05 19:06:02 +00:00
drduh
999454bb05
Merge pull request #437 from manuth/screensaver
...
Disable Screensaver
2024-05-05 19:03:25 +00:00
drduh
8a99330f94
Merge pull request #436 from manuth/guide-icon
...
Fix Guide Desktop Icon
2024-05-05 19:03:07 +00:00
Manuel Thalmann
6cfb493f2b
Export the GNUPGHOME
variable
...
Merging this PR will fix #434
2024-05-03 02:23:00 +02:00
Manuel Thalmann
21eb55c899
Include the diceware web app
2024-05-03 01:59:18 +02:00
Manuel Thalmann
c4541aab99
Fix non-existent guide icon
2024-05-03 01:46:02 +02:00
Manuel Thalmann
8417855829
Disable screen saver
2024-05-03 01:43:36 +02:00
Manuel Thalmann
f7f719b153
Add okular
as a markdown viewer
2024-05-03 01:40:09 +02:00
straysheep-dev
0f316de2d8
Add networking section to README.md
2024-04-18 18:59:50 -07:00
drduh
9d2c056d2a
Merge pull request #431 from drduh/wip-29mar24
...
Minor style & format tidy, annotate passphrase templates
2024-03-30 14:00:49 +00:00
drduh
9a59d651b0
Tidy style and formatting
2024-03-29 08:17:24 -07:00
drduh
f8037a8d17
annotate passphrase templates
2024-03-29 08:15:10 -07:00
drduh
c1199cbcf8
Merge pull request #430 from wstephenson/master
...
Fix broken 'SSH agent forwarding' internal links
2024-03-25 18:09:30 +00:00
Will Stephenson
ada8ec6157
Fix broken 'SSH agent forwarding' internal links
2024-03-25 15:22:23 +01:00
drduh
c1cfd93ba1
Merge remote-tracking branch 'origin'
2024-03-24 12:04:32 -07:00
drduh
47545bb577
Merge pull request #428 from drduh/wip-24mar24
...
Optional hardening section, additional validation steps
2024-03-24 19:00:03 +00:00
drduh
db35f7622d
Replace reset PIN with date, keyid, serial fields in passphrase templates
2024-03-24 10:57:15 -07:00
drduh
197b92d098
Remove NEO (discontinued in 2018), sort troubleshooting
2024-03-24 10:08:30 -07:00
drduh
90292fe553
Update LUKS link, make commands consistent, more passphrase guidance
2024-03-24 09:47:01 -07:00
drduh
5a4884685d
Optional hardening section, additional validation steps
2024-03-24 08:11:10 -07:00
drduh
aa81e0fc80
Merge pull request #427 from wstephenson/master
...
Fix typo in date command
2024-03-20 16:33:10 +00:00