├── .github └── FUNDING.yml ├── .gitignore ├── LICENSE ├── README.md ├── boot └── loader │ ├── entries │ ├── arch-lts-fallback.conf │ └── arch-lts.conf │ └── loader.conf ├── certbot-replicate ├── certbot ├── attestation.app ├── discuss.grapheneos.org ├── grapheneos.social ├── mail.grapheneos.org ├── matrix.grapheneos.org ├── mia.releases.grapheneos.org ├── ns1.staging.grapheneos.org ├── nyc.grapheneos.org ├── nyc.ns1.grapheneos.org ├── nyc.ns2.grapheneos.org ├── staging.attestation.app └── staging.grapheneos.org ├── check-reverse-dns ├── connection-stats ├── count ├── deploy-bootloader ├── deploy-certbot ├── deploy-hostname ├── deploy-initial-vps ├── deploy-journald ├── deploy-nftables ├── deploy-primary ├── deploy-secondary ├── deploy-web ├── disconnect ├── dns-stats ├── etc ├── chrony.conf ├── crypttab ├── default │ ├── cpupower.amd │ ├── cpupower.intel │ └── grub ├── fstab.mdraid ├── fstab.virtual ├── locale.conf ├── logrotate.conf ├── logrotate.d │ ├── letsencrypt │ └── nginx ├── mkinitcpio.conf.mdraid ├── mkinitcpio.conf.simple ├── mkinitcpio.d │ └── linux-lts.preset ├── modprobe.d │ └── local.conf ├── modules-load.d │ ├── 60-local.conf │ └── 60-softdog.conf ├── nftables │ ├── nftables-attestation-fq.conf │ ├── nftables-attestation.conf │ ├── nftables-discuss.conf │ ├── nftables-mail.conf │ ├── nftables-matrix.conf │ ├── nftables-network.conf │ ├── nftables-ns1.conf │ ├── nftables-ns2.conf │ ├── nftables-social.conf │ └── nftables-web.conf ├── pacman.conf ├── pacman.d │ └── mirrorlist ├── pacreport.conf ├── resolv.conf ├── ssh │ ├── ssh_config │ └── sshd_config ├── sysconfig │ └── chronyd ├── sysctl.d │ ├── 60-local.conf │ ├── 60-mdraid.conf │ └── 60-tcp_fastopen.conf ├── syslog-ng │ ├── conf.d │ │ └── nginx.conf │ └── syslog-ng.conf ├── systemd │ ├── journald.conf │ ├── network │ │ ├── attestation.app.link │ │ ├── attestation.app.network │ │ ├── bom.ns1.grapheneos.org.link │ │ ├── bom.ns1.grapheneos.org.network │ │ ├── brn.grapheneos.org.link │ │ ├── brn.grapheneos.org.network │ │ ├── brn.ns2.grapheneos.org.link │ │ ├── brn.ns2.grapheneos.org.network │ │ ├── discuss.grapheneos.org.link │ │ ├── discuss.grapheneos.org.network │ │ ├── fra.ns1.grapheneos.org.link │ │ ├── fra.ns1.grapheneos.org.network │ │ ├── grapheneos.social.link │ │ ├── grapheneos.social.network │ │ ├── las.grapheneos.org.link │ │ ├── las.grapheneos.org.network │ │ ├── las.ns2.grapheneos.org.link │ │ ├── las.ns2.grapheneos.org.network │ │ ├── lax.ns1.grapheneos.org.link │ │ ├── lax.ns1.grapheneos.org.network │ │ ├── lax.releases.grapheneos.org.link │ │ ├── lax.releases.grapheneos.org.network │ │ ├── lon.ns1.grapheneos.org.link │ │ ├── lon.ns1.grapheneos.org.network │ │ ├── lon.releases.grapheneos.org.link │ │ ├── lon.releases.grapheneos.org.network │ │ ├── mail.grapheneos.org.link │ │ ├── mail.grapheneos.org.network │ │ ├── matrix.grapheneos.org.link │ │ ├── matrix.grapheneos.org.network │ │ ├── mia.grapheneos.org.link │ │ ├── mia.grapheneos.org.network │ │ ├── mia.ns1.grapheneos.org.link │ │ ├── mia.ns1.grapheneos.org.network │ │ ├── mia.ns2.grapheneos.org.link │ │ ├── mia.ns2.grapheneos.org.network │ │ ├── mia.releases.grapheneos.org.link │ │ ├── mia.releases.grapheneos.org.network │ │ ├── ns1.staging.grapheneos.org.link │ │ ├── ns1.staging.grapheneos.org.network │ │ ├── nyc.grapheneos.org.link │ │ ├── nyc.grapheneos.org.network │ │ ├── nyc.ns1.grapheneos.org.link │ │ ├── nyc.ns1.grapheneos.org.network │ │ ├── nyc.ns2.grapheneos.org.link │ │ ├── nyc.ns2.grapheneos.org.network │ │ ├── sao.ns1.grapheneos.org.link │ │ ├── sao.ns1.grapheneos.org.network │ │ ├── sea.grapheneos.org.link │ │ ├── sea.grapheneos.org.network │ │ ├── sea.ns1.grapheneos.org.link │ │ ├── sea.ns1.grapheneos.org.network │ │ ├── sin.grapheneos.org.link │ │ ├── sin.grapheneos.org.network │ │ ├── sin.ns1.grapheneos.org.link │ │ ├── sin.ns1.grapheneos.org.network │ │ ├── staging.attestation.app.link │ │ ├── staging.attestation.app.network │ │ ├── staging.grapheneos.org.link │ │ ├── staging.grapheneos.org.network │ │ ├── syd.grapheneos.org.link │ │ ├── syd.grapheneos.org.network │ │ ├── syd.ns1.grapheneos.org.link │ │ ├── syd.ns1.grapheneos.org.network │ │ ├── tyo.ns1.grapheneos.org.link │ │ └── tyo.ns1.grapheneos.org.network │ ├── networkd.conf │ ├── sleep.conf │ ├── system.conf │ └── system │ │ ├── -.slice.d │ │ └── override.conf │ │ ├── attestation.service.d │ │ └── override.conf │ │ ├── certbot-renew.service.d │ │ ├── override.conf │ │ └── replicate.conf │ │ ├── chronyd.service.d │ │ └── override.conf │ │ ├── fstrim.service.d │ │ └── override.conf │ │ ├── fstrim.timer.d │ │ └── override.conf │ │ ├── lax.releases.grapheneos.org.fq.service │ │ ├── logrotate.timer.d │ │ └── override.conf │ │ ├── lon.releases.grapheneos.org.fq.service │ │ ├── mdmonitor.service.d │ │ └── override.conf │ │ ├── mia.releases.grapheneos.org.fq.service │ │ ├── nginx.service.d │ │ └── override.conf │ │ ├── plocate-updatedb.service.d │ │ └── override.conf │ │ ├── session-ticket-keys-create.service │ │ ├── session-ticket-keys-rotate.service │ │ ├── session-ticket-keys-rotate.timer │ │ ├── session-ticket-keys-sync.service │ │ ├── session-ticket-keys-sync.timer │ │ ├── single.fq.service │ │ ├── sshd.service.d │ │ └── override.conf │ │ ├── sysstat-collect.timer.d │ │ └── override.conf │ │ ├── system.slice.d │ │ └── override.conf │ │ ├── systemd-boot-update.service.d │ │ └── local.conf │ │ ├── systemd-cryptsetup@.service.d │ │ └── override.conf │ │ ├── tcp-fastopen-rotate-keys.service │ │ ├── tcp-fastopen-rotate-keys.timer │ │ ├── unbound.service.d │ │ └── override.conf │ │ └── xfs_fsr.service ├── tmpfiles.d │ └── chrony.conf └── unbound │ └── unbound.conf ├── fetch-info ├── for ├── guide ├── dane.txt └── samsung-opal.txt ├── home └── .config │ ├── fish │ ├── config.fish │ └── functions │ │ └── fish_title.fish │ ├── inputrc │ ├── lesskey │ ├── nvim │ ├── autoload │ │ └── gruvbox.vim │ ├── colors │ │ └── gruvbox.vim │ └── init.vim │ └── user-tmpfiles.d │ └── vim.conf ├── hosts.sh ├── nginx-stats ├── ovh-mitigation ├── ovh-mitigation.py ├── packages ├── attestation.app ├── bom.ns1.grapheneos.org ├── brn.grapheneos.org ├── brn.ns2.grapheneos.org ├── discuss.grapheneos.org ├── fra.ns1.grapheneos.org ├── grapheneos.social ├── las.grapheneos.org ├── las.ns2.grapheneos.org ├── lax.ns1.grapheneos.org ├── lax.releases.grapheneos.org ├── lon.ns1.grapheneos.org ├── lon.releases.grapheneos.org ├── mail.grapheneos.org ├── matrix.grapheneos.org ├── mia.grapheneos.org ├── mia.ns1.grapheneos.org ├── mia.ns2.grapheneos.org ├── mia.releases.grapheneos.org ├── ns1.staging.grapheneos.org ├── nyc.grapheneos.org ├── nyc.ns1.grapheneos.org ├── nyc.ns2.grapheneos.org ├── sao.ns1.grapheneos.org ├── sea.grapheneos.org ├── sea.ns1.grapheneos.org ├── sin.grapheneos.org ├── sin.ns1.grapheneos.org ├── staging.attestation.app ├── staging.grapheneos.org ├── syd.grapheneos.org ├── syd.ns1.grapheneos.org └── tyo.ns1.grapheneos.org ├── reboot ├── requirements.in ├── requirements.txt ├── session-ticket-keys-create ├── session-ticket-keys-rotate ├── session-ticket-keys-sync ├── session-ticket-keys-sync-deploy ├── setup ├── shared.sh └── tcp-fastopen-rotate-keys /.github/FUNDING.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/.github/FUNDING.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/.gitignore -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/README.md -------------------------------------------------------------------------------- /boot/loader/entries/arch-lts-fallback.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/boot/loader/entries/arch-lts-fallback.conf -------------------------------------------------------------------------------- /boot/loader/entries/arch-lts.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/boot/loader/entries/arch-lts.conf -------------------------------------------------------------------------------- /boot/loader/loader.conf: -------------------------------------------------------------------------------- 1 | default arch-lts.conf 2 | -------------------------------------------------------------------------------- /certbot-replicate: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/certbot-replicate -------------------------------------------------------------------------------- /certbot/attestation.app: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/certbot/attestation.app -------------------------------------------------------------------------------- /certbot/discuss.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/certbot/discuss.grapheneos.org -------------------------------------------------------------------------------- /certbot/grapheneos.social: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/certbot/grapheneos.social -------------------------------------------------------------------------------- /certbot/mail.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/certbot/mail.grapheneos.org -------------------------------------------------------------------------------- /certbot/matrix.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/certbot/matrix.grapheneos.org -------------------------------------------------------------------------------- /certbot/mia.releases.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/certbot/mia.releases.grapheneos.org -------------------------------------------------------------------------------- /certbot/ns1.staging.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/certbot/ns1.staging.grapheneos.org -------------------------------------------------------------------------------- /certbot/nyc.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/certbot/nyc.grapheneos.org -------------------------------------------------------------------------------- /certbot/nyc.ns1.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/certbot/nyc.ns1.grapheneos.org -------------------------------------------------------------------------------- /certbot/nyc.ns2.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/certbot/nyc.ns2.grapheneos.org -------------------------------------------------------------------------------- /certbot/staging.attestation.app: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/certbot/staging.attestation.app -------------------------------------------------------------------------------- /certbot/staging.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/certbot/staging.grapheneos.org -------------------------------------------------------------------------------- /check-reverse-dns: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/check-reverse-dns -------------------------------------------------------------------------------- /connection-stats: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/connection-stats -------------------------------------------------------------------------------- /count: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/count -------------------------------------------------------------------------------- /deploy-bootloader: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/deploy-bootloader -------------------------------------------------------------------------------- /deploy-certbot: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/deploy-certbot -------------------------------------------------------------------------------- /deploy-hostname: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/deploy-hostname -------------------------------------------------------------------------------- /deploy-initial-vps: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/deploy-initial-vps -------------------------------------------------------------------------------- /deploy-journald: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/deploy-journald -------------------------------------------------------------------------------- /deploy-nftables: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/deploy-nftables -------------------------------------------------------------------------------- /deploy-primary: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/deploy-primary -------------------------------------------------------------------------------- /deploy-secondary: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/deploy-secondary -------------------------------------------------------------------------------- /deploy-web: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/deploy-web -------------------------------------------------------------------------------- /disconnect: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/disconnect -------------------------------------------------------------------------------- /dns-stats: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/dns-stats -------------------------------------------------------------------------------- /etc/chrony.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/chrony.conf -------------------------------------------------------------------------------- /etc/crypttab: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/crypttab -------------------------------------------------------------------------------- /etc/default/cpupower.amd: -------------------------------------------------------------------------------- 1 | governor=performance 2 | -------------------------------------------------------------------------------- /etc/default/cpupower.intel: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/default/cpupower.intel -------------------------------------------------------------------------------- /etc/default/grub: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/default/grub -------------------------------------------------------------------------------- /etc/fstab.mdraid: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/fstab.mdraid -------------------------------------------------------------------------------- /etc/fstab.virtual: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/fstab.virtual -------------------------------------------------------------------------------- /etc/locale.conf: -------------------------------------------------------------------------------- 1 | LANG=C.UTF-8 2 | -------------------------------------------------------------------------------- /etc/logrotate.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/logrotate.conf -------------------------------------------------------------------------------- /etc/logrotate.d/letsencrypt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/logrotate.d/letsencrypt -------------------------------------------------------------------------------- /etc/logrotate.d/nginx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/logrotate.d/nginx -------------------------------------------------------------------------------- /etc/mkinitcpio.conf.mdraid: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/mkinitcpio.conf.mdraid -------------------------------------------------------------------------------- /etc/mkinitcpio.conf.simple: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/mkinitcpio.conf.simple -------------------------------------------------------------------------------- /etc/mkinitcpio.d/linux-lts.preset: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/mkinitcpio.d/linux-lts.preset -------------------------------------------------------------------------------- /etc/modprobe.d/local.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/modprobe.d/local.conf -------------------------------------------------------------------------------- /etc/modules-load.d/60-local.conf: -------------------------------------------------------------------------------- 1 | nf_conntrack 2 | -------------------------------------------------------------------------------- /etc/modules-load.d/60-softdog.conf: -------------------------------------------------------------------------------- 1 | softdog 2 | -------------------------------------------------------------------------------- /etc/nftables/nftables-attestation-fq.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/nftables/nftables-attestation-fq.conf -------------------------------------------------------------------------------- /etc/nftables/nftables-attestation.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/nftables/nftables-attestation.conf -------------------------------------------------------------------------------- /etc/nftables/nftables-discuss.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/nftables/nftables-discuss.conf -------------------------------------------------------------------------------- /etc/nftables/nftables-mail.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/nftables/nftables-mail.conf -------------------------------------------------------------------------------- /etc/nftables/nftables-matrix.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/nftables/nftables-matrix.conf -------------------------------------------------------------------------------- /etc/nftables/nftables-network.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/nftables/nftables-network.conf -------------------------------------------------------------------------------- /etc/nftables/nftables-ns1.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/nftables/nftables-ns1.conf -------------------------------------------------------------------------------- /etc/nftables/nftables-ns2.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/nftables/nftables-ns2.conf -------------------------------------------------------------------------------- /etc/nftables/nftables-social.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/nftables/nftables-social.conf -------------------------------------------------------------------------------- /etc/nftables/nftables-web.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/nftables/nftables-web.conf -------------------------------------------------------------------------------- /etc/pacman.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/pacman.conf -------------------------------------------------------------------------------- /etc/pacman.d/mirrorlist: -------------------------------------------------------------------------------- 1 | Server = https://geo.mirror.pkgbuild.com/$repo/os/$arch 2 | -------------------------------------------------------------------------------- /etc/pacreport.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/pacreport.conf -------------------------------------------------------------------------------- /etc/resolv.conf: -------------------------------------------------------------------------------- 1 | nameserver ::1 2 | options edns0 trust-ad 3 | -------------------------------------------------------------------------------- /etc/ssh/ssh_config: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/ssh/ssh_config -------------------------------------------------------------------------------- /etc/ssh/sshd_config: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/ssh/sshd_config -------------------------------------------------------------------------------- /etc/sysconfig/chronyd: -------------------------------------------------------------------------------- 1 | OPTIONS=-F1 -r 2 | -------------------------------------------------------------------------------- /etc/sysctl.d/60-local.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/sysctl.d/60-local.conf -------------------------------------------------------------------------------- /etc/sysctl.d/60-mdraid.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/sysctl.d/60-mdraid.conf -------------------------------------------------------------------------------- /etc/sysctl.d/60-tcp_fastopen.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/sysctl.d/60-tcp_fastopen.conf -------------------------------------------------------------------------------- /etc/syslog-ng/conf.d/nginx.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/syslog-ng/conf.d/nginx.conf -------------------------------------------------------------------------------- /etc/syslog-ng/syslog-ng.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/syslog-ng/syslog-ng.conf -------------------------------------------------------------------------------- /etc/systemd/journald.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/journald.conf -------------------------------------------------------------------------------- /etc/systemd/network/attestation.app.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=fa:16:3e:03:e1:1a 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/attestation.app.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/attestation.app.network -------------------------------------------------------------------------------- /etc/systemd/network/bom.ns1.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=56:00:05:c5:d5:03 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/bom.ns1.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/bom.ns1.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/brn.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=00:16:05:7b:bf:4e 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/brn.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/brn.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/brn.ns2.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=00:16:0b:de:a3:3b 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/brn.ns2.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/brn.ns2.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/discuss.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=fa:16:3e:19:92:33 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/discuss.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/discuss.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/fra.ns1.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=56:00:05:c2:23:a1 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/fra.ns1.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/fra.ns1.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/grapheneos.social.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=fa:16:3e:45:3b:9c 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/grapheneos.social.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/grapheneos.social.network -------------------------------------------------------------------------------- /etc/systemd/network/las.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=00:16:ed:7b:89:9b 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/las.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/las.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/las.ns2.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=00:16:bf:aa:e3:77 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/las.ns2.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/las.ns2.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/lax.ns1.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=56:00:05:c1:97:db 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/lax.ns1.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/lax.ns1.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/lax.releases.grapheneos.org.link: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/lax.releases.grapheneos.org.link -------------------------------------------------------------------------------- /etc/systemd/network/lax.releases.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/lax.releases.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/lon.ns1.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=56:00:05:c3:f3:f8 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/lon.ns1.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/lon.ns1.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/lon.releases.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=d0:50:99:fd:d2:9a 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/lon.releases.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/lon.releases.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/mail.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=fa:16:3e:ee:8b:bc 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/mail.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/mail.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/matrix.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=fa:16:3e:67:24:cc 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/matrix.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/matrix.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/mia.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=00:16:a9:79:3b:c8 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/mia.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/mia.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/mia.ns1.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=56:00:05:c1:65:c4 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/mia.ns1.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/mia.ns1.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/mia.ns2.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=00:16:e1:c0:d9:dc 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/mia.ns2.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/mia.ns2.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/mia.releases.grapheneos.org.link: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/mia.releases.grapheneos.org.link -------------------------------------------------------------------------------- /etc/systemd/network/mia.releases.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/mia.releases.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/ns1.staging.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=00:16:27:1c:de:4c 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/ns1.staging.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/ns1.staging.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/nyc.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=00:16:52:d3:b6:74 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/nyc.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/nyc.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/nyc.ns1.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=56:00:05:c1:7c:21 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/nyc.ns1.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/nyc.ns1.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/nyc.ns2.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=00:16:54:9a:90:82 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/nyc.ns2.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/nyc.ns2.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/sao.ns1.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=56:00:05:ca:f1:36 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/sao.ns1.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/sao.ns1.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/sea.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=56:00:05:c8:41:39 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/sea.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/sea.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/sea.ns1.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=56:00:05:c1:9d:bd 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/sea.ns1.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/sea.ns1.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/sin.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=56:00:05:c7:4c:dc 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/sin.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/sin.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/sin.ns1.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=56:00:05:c2:23:b0 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/sin.ns1.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/sin.ns1.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/staging.attestation.app.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=00:16:a6:ef:f0:28 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/staging.attestation.app.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/staging.attestation.app.network -------------------------------------------------------------------------------- /etc/systemd/network/staging.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=00:16:54:aa:09:82 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/staging.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/staging.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/syd.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=56:00:05:c7:c9:02 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/syd.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/syd.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/syd.ns1.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=56:00:05:c5:d4:1b 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/syd.ns1.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/syd.ns1.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/network/tyo.ns1.grapheneos.org.link: -------------------------------------------------------------------------------- 1 | [Match] 2 | MACAddress=56:00:05:c4:e3:94 3 | 4 | [Link] 5 | Name=public 6 | -------------------------------------------------------------------------------- /etc/systemd/network/tyo.ns1.grapheneos.org.network: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/network/tyo.ns1.grapheneos.org.network -------------------------------------------------------------------------------- /etc/systemd/networkd.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/networkd.conf -------------------------------------------------------------------------------- /etc/systemd/sleep.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/sleep.conf -------------------------------------------------------------------------------- /etc/systemd/system.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system.conf -------------------------------------------------------------------------------- /etc/systemd/system/-.slice.d/override.conf: -------------------------------------------------------------------------------- 1 | [Slice] 2 | ManagedOOMSwap=kill 3 | -------------------------------------------------------------------------------- /etc/systemd/system/attestation.service.d/override.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/attestation.service.d/override.conf -------------------------------------------------------------------------------- /etc/systemd/system/certbot-renew.service.d/override.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/certbot-renew.service.d/override.conf -------------------------------------------------------------------------------- /etc/systemd/system/certbot-renew.service.d/replicate.conf: -------------------------------------------------------------------------------- 1 | [Service] 2 | ExecStartPost=/usr/local/bin/certbot-replicate 3 | -------------------------------------------------------------------------------- /etc/systemd/system/chronyd.service.d/override.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/chronyd.service.d/override.conf -------------------------------------------------------------------------------- /etc/systemd/system/fstrim.service.d/override.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/fstrim.service.d/override.conf -------------------------------------------------------------------------------- /etc/systemd/system/fstrim.timer.d/override.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/fstrim.timer.d/override.conf -------------------------------------------------------------------------------- /etc/systemd/system/lax.releases.grapheneos.org.fq.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/lax.releases.grapheneos.org.fq.service -------------------------------------------------------------------------------- /etc/systemd/system/logrotate.timer.d/override.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/logrotate.timer.d/override.conf -------------------------------------------------------------------------------- /etc/systemd/system/lon.releases.grapheneos.org.fq.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/lon.releases.grapheneos.org.fq.service -------------------------------------------------------------------------------- /etc/systemd/system/mdmonitor.service.d/override.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/mdmonitor.service.d/override.conf -------------------------------------------------------------------------------- /etc/systemd/system/mia.releases.grapheneos.org.fq.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/mia.releases.grapheneos.org.fq.service -------------------------------------------------------------------------------- /etc/systemd/system/nginx.service.d/override.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/nginx.service.d/override.conf -------------------------------------------------------------------------------- /etc/systemd/system/plocate-updatedb.service.d/override.conf: -------------------------------------------------------------------------------- 1 | [Service] 2 | CPUSchedulingPolicy=idle 3 | -------------------------------------------------------------------------------- /etc/systemd/system/session-ticket-keys-create.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/session-ticket-keys-create.service -------------------------------------------------------------------------------- /etc/systemd/system/session-ticket-keys-rotate.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/session-ticket-keys-rotate.service -------------------------------------------------------------------------------- /etc/systemd/system/session-ticket-keys-rotate.timer: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/session-ticket-keys-rotate.timer -------------------------------------------------------------------------------- /etc/systemd/system/session-ticket-keys-sync.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/session-ticket-keys-sync.service -------------------------------------------------------------------------------- /etc/systemd/system/session-ticket-keys-sync.timer: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/session-ticket-keys-sync.timer -------------------------------------------------------------------------------- /etc/systemd/system/single.fq.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/single.fq.service -------------------------------------------------------------------------------- /etc/systemd/system/sshd.service.d/override.conf: -------------------------------------------------------------------------------- 1 | [Service] 2 | LimitNOFILE=8192 3 | ManagedOOMPreference=avoid 4 | -------------------------------------------------------------------------------- /etc/systemd/system/sysstat-collect.timer.d/override.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/sysstat-collect.timer.d/override.conf -------------------------------------------------------------------------------- /etc/systemd/system/system.slice.d/override.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/system.slice.d/override.conf -------------------------------------------------------------------------------- /etc/systemd/system/systemd-boot-update.service.d/local.conf: -------------------------------------------------------------------------------- 1 | [Service] 2 | Environment=SYSTEMD_RELAX_ESP_CHECKS=1 3 | -------------------------------------------------------------------------------- /etc/systemd/system/systemd-cryptsetup@.service.d/override.conf: -------------------------------------------------------------------------------- 1 | [Service] 2 | ExecStartPost=/usr/bin/udevadm trigger /dev/mapper/%i 3 | -------------------------------------------------------------------------------- /etc/systemd/system/tcp-fastopen-rotate-keys.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/tcp-fastopen-rotate-keys.service -------------------------------------------------------------------------------- /etc/systemd/system/tcp-fastopen-rotate-keys.timer: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/tcp-fastopen-rotate-keys.timer -------------------------------------------------------------------------------- /etc/systemd/system/unbound.service.d/override.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/unbound.service.d/override.conf -------------------------------------------------------------------------------- /etc/systemd/system/xfs_fsr.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/systemd/system/xfs_fsr.service -------------------------------------------------------------------------------- /etc/tmpfiles.d/chrony.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/tmpfiles.d/chrony.conf -------------------------------------------------------------------------------- /etc/unbound/unbound.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/etc/unbound/unbound.conf -------------------------------------------------------------------------------- /fetch-info: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/fetch-info -------------------------------------------------------------------------------- /for: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/for -------------------------------------------------------------------------------- /guide/dane.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/guide/dane.txt -------------------------------------------------------------------------------- /guide/samsung-opal.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/guide/samsung-opal.txt -------------------------------------------------------------------------------- /home/.config/fish/config.fish: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/home/.config/fish/config.fish -------------------------------------------------------------------------------- /home/.config/fish/functions/fish_title.fish: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/home/.config/fish/functions/fish_title.fish -------------------------------------------------------------------------------- /home/.config/inputrc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/home/.config/inputrc -------------------------------------------------------------------------------- /home/.config/lesskey: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/home/.config/lesskey -------------------------------------------------------------------------------- /home/.config/nvim/autoload/gruvbox.vim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/home/.config/nvim/autoload/gruvbox.vim -------------------------------------------------------------------------------- /home/.config/nvim/colors/gruvbox.vim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/home/.config/nvim/colors/gruvbox.vim -------------------------------------------------------------------------------- /home/.config/nvim/init.vim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/home/.config/nvim/init.vim -------------------------------------------------------------------------------- /home/.config/user-tmpfiles.d/vim.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/home/.config/user-tmpfiles.d/vim.conf -------------------------------------------------------------------------------- /hosts.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/hosts.sh -------------------------------------------------------------------------------- /nginx-stats: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/nginx-stats -------------------------------------------------------------------------------- /ovh-mitigation: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/ovh-mitigation -------------------------------------------------------------------------------- /ovh-mitigation.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/ovh-mitigation.py -------------------------------------------------------------------------------- /packages/attestation.app: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/attestation.app -------------------------------------------------------------------------------- /packages/bom.ns1.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/bom.ns1.grapheneos.org -------------------------------------------------------------------------------- /packages/brn.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/brn.grapheneos.org -------------------------------------------------------------------------------- /packages/brn.ns2.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/brn.ns2.grapheneos.org -------------------------------------------------------------------------------- /packages/discuss.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/discuss.grapheneos.org -------------------------------------------------------------------------------- /packages/fra.ns1.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/fra.ns1.grapheneos.org -------------------------------------------------------------------------------- /packages/grapheneos.social: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/grapheneos.social -------------------------------------------------------------------------------- /packages/las.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/las.grapheneos.org -------------------------------------------------------------------------------- /packages/las.ns2.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/las.ns2.grapheneos.org -------------------------------------------------------------------------------- /packages/lax.ns1.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/lax.ns1.grapheneos.org -------------------------------------------------------------------------------- /packages/lax.releases.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/lax.releases.grapheneos.org -------------------------------------------------------------------------------- /packages/lon.ns1.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/lon.ns1.grapheneos.org -------------------------------------------------------------------------------- /packages/lon.releases.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/lon.releases.grapheneos.org -------------------------------------------------------------------------------- /packages/mail.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/mail.grapheneos.org -------------------------------------------------------------------------------- /packages/matrix.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/matrix.grapheneos.org -------------------------------------------------------------------------------- /packages/mia.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/mia.grapheneos.org -------------------------------------------------------------------------------- /packages/mia.ns1.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/mia.ns1.grapheneos.org -------------------------------------------------------------------------------- /packages/mia.ns2.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/mia.ns2.grapheneos.org -------------------------------------------------------------------------------- /packages/mia.releases.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/mia.releases.grapheneos.org -------------------------------------------------------------------------------- /packages/ns1.staging.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/ns1.staging.grapheneos.org -------------------------------------------------------------------------------- /packages/nyc.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/nyc.grapheneos.org -------------------------------------------------------------------------------- /packages/nyc.ns1.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/nyc.ns1.grapheneos.org -------------------------------------------------------------------------------- /packages/nyc.ns2.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/nyc.ns2.grapheneos.org -------------------------------------------------------------------------------- /packages/sao.ns1.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/sao.ns1.grapheneos.org -------------------------------------------------------------------------------- /packages/sea.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/sea.grapheneos.org -------------------------------------------------------------------------------- /packages/sea.ns1.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/sea.ns1.grapheneos.org -------------------------------------------------------------------------------- /packages/sin.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/sin.grapheneos.org -------------------------------------------------------------------------------- /packages/sin.ns1.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/sin.ns1.grapheneos.org -------------------------------------------------------------------------------- /packages/staging.attestation.app: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/staging.attestation.app -------------------------------------------------------------------------------- /packages/staging.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/staging.grapheneos.org -------------------------------------------------------------------------------- /packages/syd.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/syd.grapheneos.org -------------------------------------------------------------------------------- /packages/syd.ns1.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/syd.ns1.grapheneos.org -------------------------------------------------------------------------------- /packages/tyo.ns1.grapheneos.org: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/packages/tyo.ns1.grapheneos.org -------------------------------------------------------------------------------- /reboot: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/reboot -------------------------------------------------------------------------------- /requirements.in: -------------------------------------------------------------------------------- 1 | ovh 2 | -------------------------------------------------------------------------------- /requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/requirements.txt -------------------------------------------------------------------------------- /session-ticket-keys-create: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/session-ticket-keys-create -------------------------------------------------------------------------------- /session-ticket-keys-rotate: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/session-ticket-keys-rotate -------------------------------------------------------------------------------- /session-ticket-keys-sync: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/session-ticket-keys-sync -------------------------------------------------------------------------------- /session-ticket-keys-sync-deploy: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/session-ticket-keys-sync-deploy -------------------------------------------------------------------------------- /setup: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/setup -------------------------------------------------------------------------------- /shared.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/shared.sh -------------------------------------------------------------------------------- /tcp-fastopen-rotate-keys: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GrapheneOS/infrastructure/HEAD/tcp-fastopen-rotate-keys --------------------------------------------------------------------------------