From 8c4b9340b6b9dfa6ac8a627e8f6260b12d54b320 Mon Sep 17 00:00:00 2001 From: Hadi <112569860+anotherhadi@users.noreply.github.com> Date: Tue, 13 Jan 2026 20:30:49 +0100 Subject: [PATCH] add comments Signed-off-by: Hadi <112569860+anotherhadi@users.noreply.github.com> --- server-modules/cloudflared.nix | 14 ++++++-------- server-modules/cyberchef.nix | 1 + server-modules/eleakxir.nix | 1 + server-modules/fail2ban.nix | 1 + server-modules/linkding.nix | 1 + server-modules/mazanoke.nix | 1 + server-modules/stirling-pdf.nix | 1 + 7 files changed, 12 insertions(+), 8 deletions(-) diff --git a/server-modules/cloudflared.nix b/server-modules/cloudflared.nix index f7ebb8f..bc70a18 100644 --- a/server-modules/cloudflared.nix +++ b/server-modules/cloudflared.nix @@ -1,3 +1,5 @@ +# Cloudflared tunnel configuration for NixOS +# It allows exposing services securely via Cloudflare Tunnel { config, pkgs, @@ -5,9 +7,10 @@ }: { sops.secrets.cloudflared-token.mode = "0400"; - # To setup cloudflared, run - # cloudflared tunnel login - # cloudflared tunnel create JackTunnel + # To setup cloudflared, run: + # - `cloudflared tunnel login` + # - `cloudflared tunnel create YourTunnelName` + # # This will create a credentials file & give you the tunnel ID to use below. services.cloudflared = { enable = true; @@ -23,11 +26,6 @@ # At the moment (2025), for support of browser rendering of the tunnels, this line is required: services.openssh.settings.Macs = [ - # Current defaults: - "hmac-sha2-512-etm@openssh.com" - "hmac-sha2-256-etm@openssh.com" - "umac-128-etm@openssh.com" - # Added: "hmac-sha2-256" ]; } diff --git a/server-modules/cyberchef.nix b/server-modules/cyberchef.nix index cd85b36..e84ae94 100644 --- a/server-modules/cyberchef.nix +++ b/server-modules/cyberchef.nix @@ -1,3 +1,4 @@ +# Cyberchef is a web app for analyzing and decoding data. {pkgs, ...}: { services = { nginx.virtualHosts."cyberchef.local" = { diff --git a/server-modules/eleakxir.nix b/server-modules/eleakxir.nix index ed76589..c1b445d 100644 --- a/server-modules/eleakxir.nix +++ b/server-modules/eleakxir.nix @@ -1,3 +1,4 @@ +# Eleakxir is a search engine for leaked data. { config, inputs, diff --git a/server-modules/fail2ban.nix b/server-modules/fail2ban.nix index 2be9e75..dd7af51 100644 --- a/server-modules/fail2ban.nix +++ b/server-modules/fail2ban.nix @@ -1,3 +1,4 @@ +# Fail2Ban is a log-parsing application that protects Linux servers from brute-force attacks. { services.fail2ban = { enable = true; diff --git a/server-modules/linkding.nix b/server-modules/linkding.nix index 4e6dd1d..ebd9476 100644 --- a/server-modules/linkding.nix +++ b/server-modules/linkding.nix @@ -1,3 +1,4 @@ +# Linkding is a self-hosted bookmark manager {...}: let port = 9090; in { diff --git a/server-modules/mazanoke.nix b/server-modules/mazanoke.nix index f4d361b..bb0ab34 100644 --- a/server-modules/mazanoke.nix +++ b/server-modules/mazanoke.nix @@ -1,3 +1,4 @@ +# Mazanoke is a self-hosted image downgrader {pkgs, ...}: let version = "1.1.5"; mazanoke-pkg = pkgs.stdenv.mkDerivation { diff --git a/server-modules/stirling-pdf.nix b/server-modules/stirling-pdf.nix index d4dfd75..4215a37 100644 --- a/server-modules/stirling-pdf.nix +++ b/server-modules/stirling-pdf.nix @@ -1,3 +1,4 @@ +# Stirling-pdf is a high-performance PDF editor and viewer service. {config, ...}: { services.stirling-pdf = { enable = true;