- firewall.nix: allow DNS (UDP/TCP 53) from all podman bridge networks (10.89.0.0/16); NixOS only auto-adds a rule for podman0 but docker-compose arion stacks land on podman1/2/3 where container DNS was silently blocked - vnc-desktop/start.sh: rm stale /tmp/.X1-lock on container start so container restarts don't leave Xvnc unable to bind display :1 - linux.nix: TasksMax=infinity on arion-vnc-desktop so the systemd cgroup doesn't cap KDE Plasma's thread count below the container pids limit - arion-riverside/arion-compose.nix: add ADMIN_PASS env var required by the riverside entrypoint Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> |
||
|---|---|---|
| nixos | ||
| terraform | ||
| .gitignore | ||
| bump-riverside.sh | ||
| README.md | ||
| refresh.sh | ||
This is the Nix server infrastructure for Quine Global. You will find it contains some Nginx configuration, some shell and terminal configuration, and system config.
Of particular note is the web deployment system with Nginx. This is a homebrew system to easily deploy web applications. You can mount an application as a Docker container, or using pullomatic, a service that automatically pulls from Github every so often.
There is some overlap between this repo's use for Quine and Philip Peterson's personal use. As such, there will be some reference to Philip Peterson's personal projects or usernames.
The goal is to remove these references and have the repository be more of a single concern, which is to support QUINE's mission to improve the world through open-source technology and environmental pollution research.
However, the research required to create this separation is still pending, so for now, the two concerns are mixed intentionally.
If you are interested in Quine's mission, please open an issue. We'd love to hear from you!