kawa_bot/kawa
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
14 Commits 1 Branch 0 Tags
0f7134e49fd3931ffc8a8bde1d7198839f2ff8b2
Commit Graph

5 Commits

Author SHA1 Message Date
Debian
46d9c852ab Security: Replace hardcoded passwords with placeholders 
- Replace kawa:kawa123@100.64.0.1:4222 with NATS placeholders
- Replace initialPassword 'kawa2026' with <INITIAL_PASSWORD>
- Update README with password placeholders
- Add security notes for default credentials

Safe for public release.
 2026-03-17 02:00:37 +00:00
Debian
9bbf657ea9 Security: Remove exposed tokens and credentials 2026-03-15 03:39:41 +00:00
Debian
b8d5b01b3a Fix Tailscale: separate systemd service for mesh connection 
Problem: extraUpFlags in services.tailscale blocks boot if network
is not ready or Headscale is unreachable.

Solution:
- services.tailscale.enable = true (installs tailscale)
- Separate kawa-mesh-connect systemd service:
  - Waits for network-online.target
  - Waits for tailscaled.service
  - Connects to mesh after boot

Commands to verify:
  systemctl status tailscaled
  systemctl status kawa-mesh-connect
  tailscale status
 2026-03-14 23:09:36 +00:00
Debian
5ca9b06420 Fix NixOS modules: pure evaluation mode, NATS options 
- Fix hostname: static value instead of /sys read (pure mode)
- Fix NATS: use settings.http_port instead of httpPort
- Add kawa-base.nix with corrected NATS options
- Update flake.nix to include all modules
- Enable SSH with PermitRootLogin for debugging
 2026-03-14 22:34:38 +00:00
Debian
501bd51e69 Add NixOS modules for physical CPU and GPU machines 
- modules/kawa-physical.nix: CPU-only configuration
- modules/kawa-gpu.nix: NVIDIA GPU configuration
- Fix hostname to avoid /sys errors
- Add Ollama, NATS, Syncthing, Tailscale config
- Update README with NixOS instructions
 2026-03-14 22:24:00 +00:00