JakeHillion/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
52f0553209
nixpkgs/nixos/modules/services
History
Joachim Fasting 52f0553209 Add dnscrypt-proxy service 
The dnscrypt-proxy service relays regular DNS queries to
a DNSCrypt enabled upstream resolver.
The traffic between the client and the upstream resolver is
encrypted and authenticated, which may mitigate the risk of
MITM attacks and third-party snooping (assuming a trustworthy
upstream).

Though dnscrypt-proxy can run as a standalone DNS client,
the recommended setup is to use it as a forwarder for a
caching DNS client.
To use dnscrypt-proxy as a forwarder for dnsmasq, do

```nix
{
  # ...

  networking.nameservers = [ "127.0.0.1" ];
  networking.dhcpcd.extraConfig = "nohook resolv.conf";

  services.dnscrypt-proxy.enable = true;
  services.dnscrypt-proxy.localAddress = "127.0.0.1";
  services.dnscrypt-proxy.port = 40;

  services.dnsmasq.enable = true;
  services.dnsmasq.extraConfig = ''
    no-resolv
    server=127.0.0.1#40
    listen-address=127.0.0.1
  '';

  # ...
}
```
2014-11-11 22:47:19 +01:00
..
amqp nixos/rabbitmq: wait for start 2014-09-13 02:16:53 +02:00
audio Try fixing #4084 2014-09-21 07:04:01 +01:00
backup Merge pull request #4282 from sztupi/crashplan 2014-11-09 18:09:33 +03:00
computing/torque Added TORQUE package and nixos module 2014-09-09 18:24:46 +02:00
continuous-integration/jenkins nixos/jekins: add services.jenkins.extraGroups option 2014-09-12 15:25:15 +02:00
databases nixos/neo4j: add package option 2014-10-18 13:18:37 +02:00
desktops Move at_spi2_core and at_spi2_atk outside of the gnome3 attrset 2014-07-10 11:39:16 +02:00
games Fix some uid/gid attributes to match the actual user/group name 2014-04-29 10:51:42 +02:00
hardware thermald needs dbus config files to run 2014-11-06 15:19:33 +02:00
logging Revert "Revert "syslog-ng: Update from 3.5.6 to 3.6.1"" 2014-11-06 21:59:04 +01:00
mail Add mlmmj package and nixos module. 2014-08-23 12:30:45 +04:00
misc gitolite: add dataDir 2014-11-02 02:24:41 +03:00
monitoring nixos/graphite: fix user creation 2014-11-04 19:38:24 +01:00
network-filesystems fix eval 2014-10-15 12:00:20 +02:00
networking Add dnscrypt-proxy service 2014-11-11 22:47:19 +01:00
printing CUPS system wide client configuration. 2014-08-20 18:48:42 +02:00
scheduling nixos: Add option services.cron.cronFiles 2014-10-01 17:33:38 +02:00
search nixos/elasticsearch: wait for start 2014-09-13 02:21:31 +02:00
security nixos/fail2ban: don't use types.string (it's deprecated) 2014-09-05 22:56:30 +02:00
system Merge remote-tracking branch 'origin/master' into staging 2014-07-07 13:16:26 +02:00
torrent nixos/transmission: Start after local-fs.target 2014-11-04 18:40:13 +01:00
ttys Make console-getty only used inside container by default 2014-09-02 01:36:10 +04:00
web-servers Fixes to Apache 2.4 configuration 2014-11-06 21:58:40 +01:00
x11 xfce4-volumed: add package (close #4628) 2014-11-08 21:48:51 +01:00