diff options
| author |  sommerfeld <sommerfeld@sommerfeld.dev> | 2026-04-21 01:23:47 +0100 |
|---|---|---|
| committer | sommerfeld <sommerfeld@sommerfeld.dev> | 2026-04-21 01:23:47 +0100 |
| commit | 173a614eea1c787e10fe873ef3c334bb284368a2 (patch) | |
| tree | a51f4cb560cb86107a8ea1917536c3e7019f8160 /etc/.ignore | |
| parent | 9c60f22287dab8fe6010121ba647e3c7e3e159c9 (diff) | |
| download | dotfiles-173a614eea1c787e10fe873ef3c334bb284368a2.tar.gz dotfiles-173a614eea1c787e10fe873ef3c334bb284368a2.tar.bz2 dotfiles-173a614eea1c787e10fe873ef3c334bb284368a2.zip | |
feat(etc/.ignore): exclude wireguard .network (contains public IPs)
Diffstat (limited to 'etc/.ignore')
| -rw-r--r-- | etc/.ignore | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/etc/.ignore b/etc/.ignore index 2e2885a..e27185c 100644 --- a/etc/.ignore +++ b/etc/.ignore @@ -42,7 +42,7 @@ # sbctl signed-boot state (keys live here; never commit) /etc/secureboot/* -# WireGuard peer configs contain PrivateKey= — keep local only. -# To version these, template PrivateKey via `pass` at chezmoi apply time. -/etc/systemd/network/99-hodor.netdev -/etc/systemd/network/99-mandibles.netdev +# WireGuard peer configs — .netdev has PrivateKey=, .network has public IPs (PII). +# Keep local only. To version: template secrets via `pass` at chezmoi apply time. +/etc/systemd/network/99-hodor.* +/etc/systemd/network/99-mandibles.* |