RGBCube/ncc
1
Fork 0
mirror of https://github.com/RGBCube/ncc synced 2025-07-31 12:07:48 +00:00
Code Issues Activity

Use dmarc messaging

Browse source
This commit is contained in:
RGBCube 2024-01-12 15:22:36 +03:00
parent fa4520cb2c
commit 1e90277f19
No known key found for this signature in database
2 changed files with 21 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

8
hosts/cube/acme.nix
View file

@ -1,6 +1,8 @@
{ config, ulib, ... }: with ulib; { config, ulib, ... }: with ulib;
serverSystemConfiguration { let
inherit (config.networking) domain;
in serverSystemConfiguration {
security.acme = { security.acme = {
acceptTerms = true; acceptTerms = true;
@ -11,8 +13,8 @@ serverSystemConfiguration {
email = "security@rgbcu.be"; email = "security@rgbcu.be";
}; };
certs.${config.networking.domain} = { certs.${domain} = {
extraDomainNames = [ "*.${config.networking.domain}" ]; extraDomainNames = [ "*.${domain}" ];
group = "nginx"; group = "nginx";
}; };
}; };

21
hosts/cube/mail.nix
View file

@ -1,17 +1,28 @@
{ config, ulib, ... }: with ulib; { config, ulib, ... }: with ulib;
serverSystemConfiguration { let
inherit (config.networking) domain;
fqdn = "mail.${domain}";
in serverSystemConfiguration {
mailserver = enabled { mailserver = enabled {
domains = [ config.networking.domain ]; inherit fqdn;
fqdn = "mail.${config.networking.domain}";
domains = [ domain ];
certificateScheme = "acme"; certificateScheme = "acme";
hierarchySeparator = "/"; hierarchySeparator = "/";
useFsLayout = true; useFsLayout = true;
loginAccounts."contact@${config.networking.domain}" = { dmarcReporting = enabled {
aliases = [ "@${config.networking.domain}" ]; inherit domain;
organizationName = "Doofemshmirtz Evil Inc.";
};
loginAccounts."contact@${domain}" = {
aliases = [ "@${domain}" ];
hashedPasswordFile = config.age.secrets."cube.mail.password.hash".path; hashedPasswordFile = config.age.secrets."cube.mail.password.hash".path;
}; };