diff --git a/hosts/configuration.nix b/hosts/configuration.nix
index 4dcc28f..45e2d31 100644
--- a/hosts/configuration.nix
+++ b/hosts/configuration.nix
@@ -16,7 +16,6 @@
   };
 
   nixpkgs.config.allowUnfree = true;
-  programs.git.enable = true;
 
   nix = {
     package = pkgs.nixVersions.stable; # flakes
@@ -25,13 +24,8 @@
 
   networking = {
     networkmanager.enable = true;
-    # networking.nameservers doesn't apply to resolvconf
-    # nameservers = [ "9.9.9.9" "1.1.1.1" ];
-    resolvconf.extraConfig = "name_servers=\"9.9.9.9 1.1.1.1\"";
-    # Temporary since MagicDNS is broken
-    hosts = {
-      "192.168.1.168" = [ "elnuhub.local" ];
-    };
+    resolvconf.enable = true;
+    # DNS servers managed by tailscale
   };
 
   # This value determines the NixOS release from which the default
diff --git a/hosts/elnudrop/default.nix b/hosts/elnudrop/default.nix
index e498e5b..bd67b40 100644
--- a/hosts/elnudrop/default.nix
+++ b/hosts/elnudrop/default.nix
@@ -1,4 +1,4 @@
-{ lib, modulesPath, user, ... }:
+{ lib, modulesPath, enableSSL, user, pkgs, ... }:
 
 {
   imports = lib.optional (builtins.pathExists ./do-userdata.nix) ./do-userdata.nix ++ [
@@ -16,9 +16,15 @@
     ./hosts/git.elnu.com
     #./hosts/jichan.org
     #./hosts/tegakituesday.com
+    ./hosts/atlantapaversinc.com
   ];
   fileSystems."/mnt/data" = { device = "/dev/sda"; fsType = "ext4"; };
 
+  programs.git.enable = true;
+  environment.systemPackages = with pkgs; [
+    hugo
+  ];
+
   networking = {
     # May cause some issues
     #networkmanager.enable = lib.mkForce false;
@@ -35,14 +41,14 @@
 
   services.nginx = {
     enable = true;
-    /*
+    user = "forgejo"; # prevent 403 Forbidden error
     virtualHosts."default" = {
       default = true;
+      rejectSSL = true;
       serverName = null;
       # https://stackoverflow.com/a/42802777
       locations."/".return = "444";
     };
-    */
   };
 
   #services.do-agent.enable = true;
diff --git a/hosts/elnudrop/hosts/atlantapaversinc.com/default.nix b/hosts/elnudrop/hosts/atlantapaversinc.com/default.nix
new file mode 100644
index 0000000..816b67f
--- /dev/null
+++ b/hosts/elnudrop/hosts/atlantapaversinc.com/default.nix
@@ -0,0 +1,18 @@
+{ config, pkgs, lib, enableSSL, ... }:
+
+let
+  host = "atlantapaversinc.com";
+in {
+  services.nginx.virtualHosts."www.${host}" = {
+    forceSSL = enableSSL;
+    enableACME = enableSSL;
+    globalRedirect = host;
+  };
+  services.nginx.virtualHosts."${host}" = {
+    forceSSL = enableSSL;
+    enableACME = enableSSL;
+    locations = {
+      "/".root = "/mnt/data/forgejo/sites/atlantapaversinc.com/public";
+    };
+  };
+}
\ No newline at end of file
diff --git a/hosts/elnudrop/hosts/git.elnu.com/default.nix b/hosts/elnudrop/hosts/git.elnu.com/default.nix
index cfa7768..12c6cdf 100644
--- a/hosts/elnudrop/hosts/git.elnu.com/default.nix
+++ b/hosts/elnudrop/hosts/git.elnu.com/default.nix
@@ -22,12 +22,18 @@ in {
       service = {
         DISABLE_REGISTRATION = true;
       };
+      security = {
+        DISABLE_GIT_HOOKS = false;
+      };
+      git = {
+        # https://github.com/go-gitea/gitea/issues/10103#issuecomment-622222129
+        GC_ARGS = "--aggressive --auto";
+      };
     };
   };
   services.nginx.virtualHosts."${host}" = {
     forceSSL = enableSSL;
     enableACME = enableSSL;
-    default = true;
     locations = {
       "/".proxyPass = "http://localhost:${builtins.toString port}";
     };