From 0bbbabd6e8490f8b79ee21d1337e5130f7fdacf3 Mon Sep 17 00:00:00 2001
From: Noah Masur <7386960+nmasur@users.noreply.github.com>
Date: Tue, 2 Jul 2024 13:42:50 +0000
Subject: [PATCH] try to fix log rotation issues

---
 modules/nixos/services/caddy.nix  | 12 ++++++++++--
 modules/nixos/system/journald.nix |  5 ++++-
 2 files changed, 14 insertions(+), 3 deletions(-)

diff --git a/modules/nixos/services/caddy.nix b/modules/nixos/services/caddy.nix
index 5caf123..aad6bc8 100644
--- a/modules/nixos/services/caddy.nix
+++ b/modules/nixos/services/caddy.nix
@@ -91,8 +91,16 @@
       );
     };
 
-    # Allows Caddy to serve lower ports (443, 80)
-    systemd.services.caddy.serviceConfig.AmbientCapabilities = "CAP_NET_BIND_SERVICE";
+    systemd.services.caddy.serviceConfig = {
+
+      # Allows Caddy to serve lower ports (443, 80)
+      AmbientCapabilities = "CAP_NET_BIND_SERVICE";
+
+      # Prevent flooding of logs by rate-limiting
+      LogRateLimitIntervalSec = "5s"; # Limit period
+      LogRateLimitBurst = 100; # Limit threshold
+
+    };
 
     # Required for web traffic to reach this machine
     networking.firewall.allowedTCPPorts = [
diff --git a/modules/nixos/system/journald.nix b/modules/nixos/system/journald.nix
index 3855822..aa90987 100644
--- a/modules/nixos/system/journald.nix
+++ b/modules/nixos/system/journald.nix
@@ -4,7 +4,10 @@
   # How long to keep journalctl entries
   # This helps to make sure log disk usage doesn't grow too unwieldy
   services.journald.extraConfig = ''
-    SystemMaxUse=100M
+    SystemMaxUse=4G
+    SystemKeepFree=10G
+    SystemMaxFileSize=128M
+    SystemMaxFiles=500
     MaxFileSec=1month
     MaxRetentionSec=2month
   '';