sovereign

Graphique des révisions

Auteur	SHA1	Message	Date
Alex Payne	0579cf1ba9	Use same Apache server name configuration across distros	il y a 9 ans
Alex Payne	290a3b4312	Remove wheezy-specific Apache SSL config omission	il y a 9 ans
Alex Payne	474c1d5f92	No longer need `fuse` group in Jessie.	il y a 9 ans
Alex Payne	ecaa4c2330	Partially working Rspamd replacement for dspam	il y a 9 ans
Alex Payne	d998640087	formatting	il y a 9 ans
Alex Payne	cea968d5ae	Only install Roundcube on Trusty for now, since there's no Jessie package. Not awesome. We need a better alternative, ideally one with a better security stance.	il y a 9 ans
Alex Payne	d010a0cda5	Formatting.	il y a 9 ans
Alex Payne	76050eda6b	Newest Tarsnap. Formatting the task names.	il y a 9 ans
Alex Payne	ebe3562921	Clean up ownCloud for Jessie and Trusty	il y a 9 ans
Alex Payne	8f73d8a3eb	Pin Selfoss version to an actual release	il y a 9 ans
Alex Payne	d2483d0435	Install collectd from package. Use newer native "write HTTP" plugin to send metrics to Librato, if configured.	il y a 9 ans
Alex Payne	85be39c073	Makes more sense to put ZNC config file into place first	il y a 9 ans
Alex Payne	65bc7da608	Newebe hasn't been updated in over a year. Removing it.	il y a 9 ans
Alex Payne	123dc51517	Use packaged ZNC	il y a 9 ans
Alex Payne	9247cc62db	Jessie can use gitolite3 package as well	il y a 9 ans
Alex Payne	b674035d21	formatting	il y a 9 ans
Alex Payne	6906412f63	Remove wheezy-specific ufw task.	il y a 9 ans
Alex Payne	6d1eebb9d2	Use Ansible task names, not comments.	il y a 9 ans
Alex Payne	c9b32cd2e2	Same Google auth install should work for both Jessie and Trusty. Move Apache task to their own file.	il y a 9 ans
Alex Payne	006f8e9b82	Just plain Ruby	il y a 9 ans
Florian Anderiasch	076b6d2452	Fix typo in tarsnap.yml	il y a 9 ans
Alex Payne	58a4532fe7	Better permission handling for OpenDMARC. Resolves #400.	il y a 9 ans
Alex Payne	417403f534	Use {{ mail_server_hostname }} over mail.servername Resolves #402.	il y a 9 ans
Alex Payne	7bb62ca678	Explicitly require MySQL server as part of OpenDMARC isntall. Resolves #410.	il y a 9 ans
Miloš Hadžić	d823ed0848	Use lmtp instead of lda for delivery.	il y a 9 ans
Pavel Karoukin	a86e43d5b4	Couple issues with OpenDMARC on Debian 7: * fix mail_db_opendmarc_username/mail_db_opendmarc_password variable not found. * python-mysqldb package is required. Add it to opendmarc task.	il y a 9 ans
Laurent Arnoud	21e0110684	Ignore copy tasks	il y a 9 ans
Laurent Arnoud	ad22aed4cc	rm used in place of argument state=absent to file module	il y a 9 ans
Laurent Arnoud	343db8edea	Git checkouts must contain explicit version	il y a 9 ans
Laurent Arnoud	a09e2e71c1	tar used in place of unarchive module	il y a 9 ans
Laurent Arnoud	0730284671	curl used in place of get_url module	il y a 9 ans
Laurent Arnoud	311fae7e11	Trailing whitespace	il y a 9 ans
Laurent Arnoud	3b8f15b745	Added whois for fail2ban report Report will print: "missing whois program"	il y a 9 ans
Will McCutchen	1be1afe1ff	Disable SSL stapling on wheezy	il y a 9 ans
Will McCutchen	16b66cc849	Define apache SSL config in one place	il y a 9 ans
Alex Payne	26d61c68a8	Implement OpenDMARC. Resolves #369.	il y a 9 ans
Manfred Touron	16c93ea486	Using more verbose 'dependencies' tag (#393)	il y a 9 ans
Manfred Touron	b49f3a6586	Tagged 'deps' aptitude tasks	il y a 9 ans
John Rogerson	f72e1d2350	Update dovecot version from wheezy backports For correct implementation of the fix for logjam attack (https://github.com/sovereign/sovereign/pull/372), state=latest is needed to grab sufficient version of Dovecot. If not then 37aa7e2cb5 doesn't work.	il y a 9 ans
Sven Neuhaus	a088d9c456	Use "modern" SSLCipherSuite per Mozilla recommendations. See https://wiki.mozilla.org/Security/Server_Side_TLS for details. Removes RC4 cipher. Fixes issue #341. Also explicitly disabled SSLCompression and enables OCSP stapling. We should put all these settings in /etc/apache2/mods-enabled/ssl.conf to avoid duplication...	il y a 9 ans
Sven Neuhaus	c898aa98d6	Install postgresql 9.4, 9.3 or 9.1 if available (on Debian Jessie, Ubuntu Trusty or older distributions such as Debian Wheezy and Ubuntu Precise).	il y a 9 ans
Sven Neuhaus	edf65c530a	Install lua-sec-prosody package on Debian Wheezy and Ubuntu Precise This is the updated version from the prosody repository because these distributions have an old version of the lua-sec package that lacks PFS and other features. Second commit for issue #285.	il y a 9 ans
Sven Neuhaus	570bebac70	wheezy: need librrd2-dev from backports to be compatible with dovecot	il y a 9 ans
Sven Neuhaus	a849a49f37	Fix: Files shouldn't be owned or writeable by httpd unless necessary.	il y a 9 ans
Sven Neuhaus	8b5ed21e38	use wheezy-backports for dspam and solr packages on wheezy relates to pull request #372	il y a 9 ans
Laurent Arnoud	353e69d299	Remove duplication with items unattended upgrades	il y a 9 ans
Alex Payne	34448d5d34	install Dovecot from wheezy-backports on wheezy, specifying default_release	il y a 9 ans
Alex Payne	5222776e34	install Dovecot from wheezy-backports on wheezy, specifying default_release	il y a 9 ans
Alex Payne	c3afbc3b46	install Dovecot from wheezy-backports on wheezy. resolves #372	il y a 9 ans
Laurent Arnoud	89d47731ff	Add molly-guard and unattended-upgrades as common pkgs	il y a 9 ans

Première Page Précédente 1 2 3 4 5 ... Page Suivante Dernière

355 Révisions (0579cf1ba991538d88ff0d38dbde252040ac6c15)