| Age | Commit message (Collapse) | Author | 
|---|
|  | Enable nft. Use different nft config for ns0. Host open emails port. ns0
open wireguard and qbt ports. ns0 configure wireguard. host not
configure wiregurad, so also no need ip forwarding sysctl kernel
parameters. ns0 use /etc/netns/ns0/nftables.conf that will bind mount to
ns0.
Host and ns0 both run dnsmasq for dns cache. ns0 dnsmasq I disable dbus
because it will conficts with host dnsmasq dbus. Dnsmasq use dbus for
config cahnge?
I disable systemd-resolved and switch to dnsmasq because
systemd-resolved use dbus for dns query? which is maybe easy for dns
leak, e.g., when systemd-resolved is only running on host, ns0 with
different /etc/resolv.conf still get dns from host open public ip when
run resolvectl query, although drill does not leak.
sye add enabled systemd units | 
|  |  | 
|  |  | 
|  |  | 
|  | Combine ca into ia to become new ib VPS. | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  | https://gitlab.archlinux.org/archlinux/packaging/packages/pacman/-/commit/f02d4d01cc9bcaf566e72dbb769250f8c2752e9e
https://gitlab.archlinux.org/pacman/pacman/-/commit/71764b6d4cdee1f74cfc603050ced59009950169
https://gitlab.archlinux.org/archlinux/packaging/packages/pacman/-/commit/319671cc720a31cfaa81e25354d58699a1bedf6c | 
|  | https://gitlab.archlinux.org/archlinux/packaging/packages/pacman/-/commit/f02d4d01cc9bcaf566e72dbb769250f8c2752e9e
https://gitlab.archlinux.org/pacman/pacman/-/commit/71764b6d4cdee1f74cfc603050ced59009950169
https://gitlab.archlinux.org/archlinux/packaging/packages/pacman/-/commit/319671cc720a31cfaa81e25354d58699a1bedf6c | 
|  | Commit
https://gitlab.archlinux.org/pacman/pacman/-/commit/71764b6d4cdee1f74cfc603050ced59009950169
and
https://gitlab.archlinux.org/archlinux/packaging/packages/pacman/-/commit/099295fdcb33c875d0659510dc8e82969463a7c4
migrate rustflags to /etc/makepkg.conf.d/rust.conf.
Note I also change opt-level to 3 because
https://doc.rust-lang.org/cargo/reference/profiles.html shows opt-level
3 is all optimization which I want. | 
|  | Commit
https://gitlab.archlinux.org/pacman/pacman/-/commit/71764b6d4cdee1f74cfc603050ced59009950169
and
https://gitlab.archlinux.org/archlinux/packaging/packages/pacman/-/commit/099295fdcb33c875d0659510dc8e82969463a7c4
migrate rustflags to /etc/makepkg.conf.d/rust.conf.
Note I also change opt-level to 3 because
https://doc.rust-lang.org/cargo/reference/profiles.html shows opt-level
3 is all optimization which I want. | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  | backup it so maybe keep it longer | 
|  |  | 
|  | dovecot no auto delete Junk, read junk first to determine if it is spam.
Trash only auto delete after 10 days, because consider in the future I
may only do backup weekly, 10 days can make sure it is backuped. | 
|  |  | 
|  |  | 
|  | postfix log warning "/etc/postfix/main.cf: support for parameter
"smtpd_use_tls" will be removed; instead, specify
"smtpd_tls_security_level"". I am already using
smtpd_tls_security_level, so I just removed smtpd_use_tls. Also see
https://github.com/LukeSmithxyz/emailwiz/issues/112
`man 5 postconf` has documentation about smtpd_tls_security_level | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  | thus no need"
This reverts commit 9afc357eb6480d57b71762567690ebe46d01a3ec.
Because crunchbits Arch Linux cloud init auto install deafult symlink to
Europe/London timezone which is different from UTC. I want UTC. So I
choose to always symlink timezome to prevent similar things happen again. | 
|  |  | 
|  | thus no need"
This reverts commit 9afc357eb6480d57b71762567690ebe46d01a3ec.
Because crunchbits Arch Linux cloud init auto install deafult symlink to
Europe/London timezone which is different from UTC. I want UTC. So I
choose to always symlink timezome to prevent similar things happen again. | 
|  |  | 
|  |  | 
|  | If client use alacritty, after ssh into this remote server, ls doesn't
show color. Can be workarounded by server sshd accept COLORTERM and
client sshd send env. More see my comments in alacritty.toml config. | 
|  |  |