Start setting up bert

2024-10-31 00:55:10 -05:00 · 2024-10-31 00:55:10 -05:00 · 40bb9b51f6
commit 40bb9b51f6
parent 52e33b951c
8 changed files with 226 additions and 0 deletions
--- a/bert/README.md
+++ b/bert/README.md
@ -0,0 +1,23 @@
+# Installation
+1. Install NixOS minimal
+2. `ssh-keygen -N "" -f /etc/secrets/initrd/ssh_host_ed25519_key`
+2. Enable SSH server and add root SSH key
+3. Deploy updated config with `make`
+4. Set up [Remote Disk Unlocking](https://nixos.wiki/wiki/Remote_disk_unlocking)
+   1. mkdir -p /etc/secrets/initrd && ssh-keygen -N "" -f /etc/secrets/initrd/ssh_host_25519_key
+5. Deploy content to web services
+
+# Notes on Caddy
+Until 2.8 is released with 24.11, Caddy has a pretty limited sense of what
+content-types should be compressed:
+
+https://github.com/caddyserver/caddy/blob/v2.7.6/modules/caddyhttp/encode/encode.go#L85-L101
+
+Specifically, this doesn't include GeoJSON, which is a bit of a shame for
+maps.chandlerswift.com. That said, I'll probably be upgrading to 24.11 as soon
+as it comes out, so in the intervening time I'm just not going to worry about
+it.
+
+The list was expanded in this PR:
+
+https://github.com/caddyserver/caddy/pull/6081