Replace Google DNS fallback with Quad9 (9.9.9.9, 149.112.112.112)
for better privacy consistency. Users choosing Cloudflare likely
value privacy, so Quad9 is a more appropriate fallback than Google.
As discussed in #752 and approved by @dhh in #1043.
Implements DHH's requirement to ensure wlan0 and ethernet interfaces
respect the DNS configuration while excluding docker/loop interfaces.
When using Cloudflare or Custom DNS:
- Sets UseDNS=no in DHCPv4 sections
- Sets UseDNS=no in IPv6AcceptRA sections
- Only configures primary interfaces (en*, eth*, wl*)
- Restarts both systemd-networkd and systemd-resolved
When using DHCP:
- Removes UseDNS=no to allow DHCP provided DNS
- Restores default behavior for all interfaces
Script size increased from 58 to 89 lines to properly handle all
network interfaces as requested.
* Add omarchy-setup-cloudflare-dns script
Addresses issue #745 by providing user choice for DNS configuration.
Features:
- Makes Cloudflare DNS opt-in instead of forced default
- Preserves local development environments with DHCP option
- Includes custom DNS configuration support
- Provides backup/restore functionality
- Follows Omarchy naming conventions
Fixes#745
* Address DHH feedback on DNS configuration script
Changes based on maintainer review:
- Rename script to omarchy-setup-dns (more generic name)
- Remove /usr/local/bin installation (use PATH instead)
- Add migration to reset automatic Cloudflare DNS to DHCP
- Force DNS on physical interfaces only using systemd-networkd
- Exclude docker/virtual interfaces from forced DNS
Fixes local development environment issues while making Cloudflare DNS opt-in.
* Use timestamped backups and remove restore function
Follow Omarchy backup standards by using timestamped backup files
instead of fixed names. Remove restore function since backups now
have unpredictable names - users can manually restore if needed.
This matches the pattern used in omarchy-refresh-config.
* Add DNS over TLS support for enhanced security
Enable opportunistic DNS over TLS when using Cloudflare DNS. This
encrypts DNS queries when possible while falling back to regular DNS
if TLS isn't available, providing security without breaking compatibility.
Thanks to the suggestion in #696 for highlighting this improvement.
* Add certificate validation for DNS over TLS
The DNS servers now include their proper hostnames for certificate
validation (cloudflare-dns.com and dns.google). This ensures we're
actually talking to the real DNS servers when using encrypted DNS,
not some imposter.
Completes the implementation suggested in #696.
* Prevent backup file accumulation
Clean up old backup files before creating new ones to prevent the
accumulation of .bak.* files over time. Keeps only the most recent
backup while maintaining the timestamped naming pattern.
This ensures the system doesn't get cluttered with countless backup
files from repeated script runs.
* Simplify DNS setup script per review feedback
Reduced script complexity from 227 to 58 lines while maintaining core functionality.
Removed unnecessary backup system and systemd-networkd configuration.
Kept essential features: Cloudflare DNS with TLS, DHCP mode, and custom DNS option.
Script now follows established Omarchy conventions for simplicity and size.
* Allow setup from omarchy-menu
* Integrate into Omarchy Menu
* Align parameter
---------
Co-authored-by: David Heinemeier Hansson <david@hey.com>
* Abstract default browser to omarchy-browser (a wrapper)
* Fix the omarchy-browser command as it used to loop. Extract info from the browser .desktop files.
* Clean up and fix bugs
* Cleanup unused change
* Fix indentation
* Separate out omarchy-browser from omarchy-webapp so that we don't break webapps for browsers other than Chromium or Google Chrome.
* Fix incorrect function call
* Add a migration script
* Migration script fixes
* Simplify the browser and webapp commands. Rename commands to align with launch terminology.
* Add support for Microsoft Edge, Opera and Vivaldi
* Fix errors
* Remove --name and --class -- They're not respected when --app is defined
* We don't ship with Chrome
* Simplify launchers
* Use launch commands everywhere
---------
Co-authored-by: Ryan Hughes <ryan@heyoodle.com>
* Persist urgent notifications
* Create omarchy-snapshot
* Create snapshot before pulling
* Extract alternative bootloader configs
* Add limine-snapper config
* Fix check
* Update login scripts
* Make chroot friendly
* Extract cmdline instead of using blkid due to error
* Add restore command
* Export $TERMINAL so we get clickable restore notifications
* Remove sync -- causes errors...we have nothing to sync yet
* Executable
* Minor cleanup and compatibility for non-ISO
* Give login its own section
* Give no-arg guard and inline commands
---------
Co-authored-by: David Heinemeier Hansson <david@hey.com>
* feat: Add notification status indicator to waybar
Adds a visual indicator in the waybar to show when notifications are silenced (do-not-disturb mode).
- Shows a red dot when notifications are disabled
- Shows a dimmed dot when notifications are enabled
- Clicking the indicator toggles do-not-disturb mode
- Syncs with the existing SUPER+CTRL+, keyboard shortcut
This provides immediate visual feedback about notification status, making it easier for users to know when they've silenced notifications.
* feat: Convert to unified status cluster that only shows active states
- Only displays indicators when states are actually active
- Supports multiple status types: DND, night light, screen recording, idle lock
- Uses distinct symbols: • for DND, ◐ for night light, ● for recording, ◯ for idle lock
- Completely hides module when no states are active (no visual clutter)
- Extensible design for future status indicators
- Improved performance with better error handling
* Implement lightweight hybrid status monitoring
* Enhance notification status cluster with modular design
* Add waybar configuration for status cluster
* Add recording click handler and fix process detection
- Add wl-screenrec detection for non-nvidia systems
- Add click handler to start/stop recording
- Fix idle lock toggle functionality
* minor alignment tweaks
* improved recording detection to be more specific
* Rely on Omarchy bin in PATH and lower interval to feel more snappy
* Seperate out screencording stop so it doesn't start when trying to stop OBS
* Add migration to add the status notifications
---------
Co-authored-by: David Heinemeier Hansson <david@hey.com>
* Add omarchy icon to fastfetch config
* Add migration file for fastfetch update
* Use consistent branding placement for spots you can change
* Allow editing the about icon
---------
Co-authored-by: David Heinemeier Hansson <david@hey.com>
