From a1369e5818cd0bf26ae7dfd5970b81e81272d682 Mon Sep 17 00:00:00 2001
From: William <baduhai@proton.me>
Date: Sat, 8 Nov 2025 20:46:38 -0300
Subject: [PATCH] rekeyd secrets

---
 hosts/alexandria/firewall.nix      |  11 -----------
 secrets/cloudflare.age             |  18 ++++++++++--------
 secrets/nextcloud-adminpass.age    | Bin 465 -> 465 bytes
 secrets/nextcloud-secrets.json.age | Bin 537 -> 537 bytes
 secrets/secrets.nix                |   3 ++-
 5 files changed, 12 insertions(+), 20 deletions(-)
 delete mode 100644 hosts/alexandria/firewall.nix
diff --git a/hosts/alexandria/firewall.nix b/hosts/alexandria/firewall.nix
deleted file mode 100644
index f6fded2..0000000
--- a/hosts/alexandria/firewall.nix
+++ /dev/null
@@ -1,11 +0,0 @@
-{ ... }:
-
-{
-  networking.firewall = {
-    allowedTCPPorts = [
-      80
-      443
-    ];
-    allowedUDPPorts = [ ];
-  };
-}
diff --git a/secrets/cloudflare.age b/secrets/cloudflare.age
index 9e989ec..028e964 100644
--- a/secrets/cloudflare.age
+++ b/secrets/cloudflare.age
@@ -1,9 +1,11 @@
 age-encryption.org/v1
--> ssh-ed25519 Kfdnog gEZvRtLBhGslmS97VaRqoucgExvOopsHAAne4lCmEEY
-NkIeFYuQFntDOBqd3k0/OVYMcM7h73uO0jPXaHzEcZc
--> ssh-ed25519 8YSAiw bVV4jIDbBKxsr6mQ4Tv0rP6ylrAEOJWkqjpyvXjnQRU
-6kUe5Syw7sd+aF2QEgr6Yj+fOPL5zSJN1PJvY9Kdhlg
--> ssh-ed25519 J6tVTA 4JMlJmhHAYUgjiWwB1Q278TSjJypwecALmfnosxan0s
-WIubcIFrjMV0GpyU1ZGc48YwrqOtSmJxweonw1KnR+U
---- 78A7re4LLB/0n5AXLRlVqiMNFMAQ2ZvjjK21YGRveRE
-ú_‘4pkVCKmÈÊ#~kIô8Em3ôkºp|Ó0^÷tSkÉs¬/øÃõÎ…?= lÔ,„‚Žì²7âã~Í„¶cû{ãÈž¨AªÝ­ø‹Œ>Zã’Èl¬§—GTJs²GYŠ´—/Ëö/×B4ÃeŠÑ'óðIIÐãcÿ,"‡<Ÿ
\ No newline at end of file
+-> ssh-ed25519 Kfdnog IHXv4c5we36dCUsB1v8uEF23tIRlDQ/8WR1hX4GQ+Uc
+Cwccw64BYBdSZUdkSqKESIU7E17cLNtiAZZ3Y1xV87A
+-> ssh-ed25519 8YSAiw Ce3vdMG111ubjcFgd3+q2Qw2+7dsoUz7SiudtuLDr0Y
+JUodwFsKfOTZXxFyRrEk/4gxJ4goPkwvYeThi893M0U
+-> ssh-ed25519 J6tVTA bExFuITTGXkTvhW25nushN7zT/PJGDoezsqu7fLKemI
+4a90v0F4wgcZeqWBQ/EpqOZ9OCgT7qruwVvlGZeFmN8
+-> ssh-ed25519 Qt3Q+A j1oo46pNh1+yPEtxpgj+QPQPf5m82jL0DHGMacY8UFA
+vy52Hl1WLTdKNA8+4p7A48Sg9+QkMXbECf/uxVMCLYk
+--- 429vzgFnmFbEqDMwdvC0/EYDJlKU64YEGgE0AqPqlBs
+èï›¬˜÷€b‰/!8Oèô3Df®/¾&kNQhuùr“t¤%&]³²ÎÕÒÖucÚjÙHÆ]¯_³ž¨ë5‚@D$ˆ>éN8Ï¦	>9:®CvÐÑ¦69W'X·]X^çÛÆ»$§}|cš÷ã/žß¸={¾uÉ³s
\ No newline at end of file
diff --git a/secrets/nextcloud-adminpass.age b/secrets/nextcloud-adminpass.age
index 3b6ff2affb50a87f4b2cf91edf585c73272a134f..b4a29fa2568f59e840bde1dbd55ace544626f3b8 100644
GIT binary patch
delta 411
zcmcb}e35yAPJLc}VR4C}dq`<Tcx7=&SiYrKprM6!rb$LYVrqbqNnT`FL5^i=Np^r+
zBv)msQ;LU4n5%!3UwM$FTZW67d3HvqPo|}@Nr;nWcvL}1uu)~Gi(8suHkYoQLUD11
zZfc5=si~o*f<<JoV`jNRZdRzHf4WbUUw)ujq-lY<wp&qYSXREdi)lcJpSOoWVtQq9
zQkrL}c9@4NS5j0)Se9>2WO`Myv3IVvL6L8scd>U?K~-UTm4BX#r?<C%KuUIamWxaF
z#E;_j8K#w9DP|s7<pIgzDM9X4X2tr6rd5_6NhMWYiG|*QQTh6*0e*oVCQgxDdEOSr
z&dvtG1%^JBdBs)X<!;(8#@Q~W`cAp|c{xdbq2;9k0p=E|2A(Edy1Kdw`iB0_q3Ons
zQDyqUQR%5}iTODxxkUvY`B|okd9IHB1?EOxP9a%kC6)QbTpeHJ>KG0mcUv|0t$UXy
zYw%v)XTN@Qb=HR#cxf*wE0#>Rwz7U4vS89VhUCO=pI6L?lj>d;)?c@4p5y5@N3J!G
G_5lEIGm+c?

delta 411
zcmcb}e35yAPJN=QslG{oagj-?Nm_<^np>o&wn1{HNuFtHy0fQcM1^l?aad@eS6ObB
zE0?EFPKckAv5Aqhk6%GbghjAxUT|KOYhhMdaF#`Ju1l7?Q(#0^pm9N1GMBEMLUD11
zZfc5=si~o*f<<JoV`jNRNoq<-uB&sRab$o&d6s`vv757(w_~V&W>r!^a)3v8o{zS6
zKu~a&lc%EzS5UTzt3_~<yJ<*9qLX)7iN9;Awr{wTp;u9rTV9}Jx`%#<mwTD9c1DQB
z#E;_j>G@Up1{UVQPR0R6-rmM3AwdPXK53yI+6Cc`X67NT9$x;r=~;%_j=_;!1t~sx
zQQ>8Q9+iHUIZ>s-CRtf!#d+>|soEjFQ3e5t>1AnUfnE__;YQ_Ly1Kdw8D0fp!J(EF
zemRNBmX={IMrN4?rQv2?<@%xe&iVeyj^!R+!J*FC28qeVT=(tk|74sxcJ}$9S=Tr|
zUC=zrvWa)yQ#P5uo^SfEFZ_L>-MeDyY#FQdRyLBIo4j}xE;xlv{`2(FH{WY-E9QK>
HX5a$=F~*Zs

diff --git a/secrets/nextcloud-secrets.json.age b/secrets/nextcloud-secrets.json.age
index 473f3cb97a38fcb01d2d7512306b9576963b2754..02d170dce9315c545774f3510a4f81541ea6137b 100644
GIT binary patch
delta 484
zcmbQqGLvP3PQ6z|j%%7%ieq-3zL8r*x=V;jQD#MOc$%-Lvt?CaMxuU5o>_WoWx0`K
zD3@1ZMWTClMs`7Rv1Nuum7{xPxxYtAQGS|5dUjcaafz#^OF?i-Xhm41374*&LUD11
zZfc5=si~o*f<<JoV`jNRhI^=+b4Gc3uy06WKyE=uj$4j?XtKL+M6ip#XR)(Wnuob>
zX0BmgWnNf5SDIx~g^9aSP<B9?XL7zvnUSxFX-08kx@(eIs%ch~MUKB`T4qXSpn-Yh
z#E;_jS(%QdE|DR=p&ka|240b#mBDU?;U4}eDY=%OPWh>x`V~&;o}nqJ!ByE@KHC1S
zWzH3;5ozv~mZ{oK`X(V&AucJ!kshU9Zk_>&`V}R~X+D<8hIxTpy1KdwQKd;0Ri)a#
zzMh5UMyc-Ef&OMCIjIqr&fccJk)h@Rj()!NK_%sep8f^NTp_t{KN=*=`v32=CU@f6
zb#FN=XRdnX61Z;tXEo;=u{B8>C9)d2%j>GzX8&-0mcX=iT4s;Z!JaS{UQ<WT$ViFA
zuk8`jI5n3u-+O-V-S-Jxs{2f4$w|!W*5u#Y=drIv;>VIjmu}Dg`A2*!<I%+nb7FMT
f68dYsJ_*mw=6xOTf<^q+I^)|64BL2)aF+o9`>eD>

delta 484
zcmbQqGLvP3PJO0XiLpzFzh#AQNn);vWkgQCr*S~0WqGArij$dviAk_QSZ;`iSz(S_
zI#-&0mVa7ma8X5Kv44tBiiJyNm2*jsN485=q;E!Xfu~WjWoEd0PJy<eCzr0BLUD11
zZfc5=si~o*f<<JoV`jO6QI2P3X>m@eV`;dXWol`1s#~N<o^esIPieVxj$vs|foV#C
zr+-97cy6{Umq}@5QHqJ9rLkvOX_;j}X_%2|Qi^tkQ(>8Yibt+vabaO-L10yezH4OQ
z#E;_j>DfLeVL4vq0Y<rA;T0Bn&KZftA!!zwUPcwkZl2-pep!CW`98kRRc`5A<z_{J
zp&ns*`j%my`URfmrp3Nx73HSh5&GqU*}+MLhB^KfE{O&~;mOHdy1KdwZU(`jrFms(
zQI>An`FS4cuD+&brAEGP6;8pP7J<ISh5=^vj%fjDW%_2JTpw0hs8#*3xyjS|+40@P
zd3xt9)^BCwHa)-l)jPkP2X;)KQ&M5@*dzL?$L`zD4|g)P@6i6cve1;l<JPw$m-ObQ
zJDi-o*5YXA1_cc})@d!f-tVj^pS@4}<{PIi@?Up!y8qZFQ_vHZ`!GAFdwu(B6>I(#
g=e#`y61#*wLgp)0cI;b{`b%#~@#5{@wobYM08OvE1ONa4

diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index d47309f..84b14d6 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -7,7 +7,7 @@ let
 
   alexandria = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIK95QueW+jp1ZmF299Xr3XkgHJ6dL7aZVsfWxqbOKVKA root@alexandria";
 
-  trantor = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINkGuGLZPnYJbCGY4BhJ9uTupp6ruuR1NZ7FEYEaLPA7 root@alexandria";
+  trantor = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIh/2u5pr/iPVeavlsor5hbTtsgUfP1JpzZVco2YQAo3 root@trantor";
 in
 
 {
@@ -15,6 +15,7 @@ in
     io-user
     rotterdam-user
     alexandria
+    trantor
   ];
   "nextcloud-adminpass.age".publicKeys = [
     io-user
