72 Commits (60afd1a033ea5e29ea4a35aa84de3b6ab5afeb0d)

Author SHA1 Message Date
  Luke Cyca 37a0400c22 Standardize apache’s 301 redirect to https, and enable HSTS 11 years ago
  Luke Cyca 93e7b3e3bd Use common domain variable instead of blog_domain 11 years ago
  Luke Cyca f6d74de487 Provide a good initial config for znc (but leave it alone after that) 11 years ago
  Luke Cyca bdab1cd6b1 Reworked ufw logic to not use change_when keyword 11 years ago
  Paul DeBruicker 9493ebd9a5 added SHA check for tarsnap 11 years ago
  Allen Riddell 5b8ba840a4 workaround ufw bug, call ufw enable twice 11 years ago
  Allen Riddell ae0d1ca8f4 Ignore ufw error resulting from known bug on Debian 7 11 years ago
  Luke Cyca 92846aa488 Give tarsnap root-relative paths 11 years ago
  Luke Cyca 85bbbd7d02 Increase message size limit to 50MB (from default of 10MB) 11 years ago
  Luke Cyca 7043143f90 Improved idempotency and removed ip detection for checkrbl 11 years ago
  Hector Castro 2e7005eaec Fix SSL certificate for ZNC so that it begins with a private key. 11 years ago
  Allen Riddell 88705bb7fa Replace ferm with ufw 11 years ago
  Bertrand Cachet ead57335be fix(tarsnap): rotate script fails on error 11 years ago
  Joshua Lund 93ebde0d95 * Completely refactored the VPN role 11 years ago
  Bertrand Cachet f43c57e132 fix(apticron): apticron emails are sent to root 11 years ago
  Bertrand Cachet 373cb4584b add(apticron): configure email 11 years ago
  Bertrand Cachet df802919f7 add(fail2ban): Add server IP address to ignore IP 11 years ago
  Bertrand Cachet 6bfa2c991f add(tarsnap): Script to rotate backups 11 years ago
  Alex Payne a9cabad947 Update etc_ferm_ferm.conf 11 years ago
  Allen Riddell 580e3ef5c1 Don't open unused ports 11 years ago
  Benny c63c48d159 Skip a2enmod and a2ensite tasks if not required 11 years ago
  Luke Cyca ba304cb10b Cron job to make sure our server isn't on any RBLs 11 years ago
  Greg Karékinian 1e9a560ff6 Comment defaults 11 years ago
  Greg Karékinian 58dddc55d1 Remove variables from roles 11 years ago
  Luke Cyca c697e135e9 Move NameVirtualHost directives to ports.conf 11 years ago
  Luke Cyca 2ccb180e3d Use relative paths for tarsnap archives 11 years ago
  Greg Karékinian 894808b50c Fix trailing whitespace 11 years ago
  Alex Payne 26233ecb6c provide absolute path to tarsnap binary in cron job 11 years ago
  Alex Payne f27442b678 move tarsnap to its own role 11 years ago
  Luke Cyca 5497f31fb9 Set postfix origin to correctly deliver mail for local users 11 years ago
  Luke Cyca 5beacea2d2 Absolute path for tarsnap 11 years ago
  Alex Payne 450ce6676e substitute my domain for TODOs. Fixes #37 11 years ago
  Luke Cyca ca8a371320 Use combined cert for postfix, dovecot, and znc 11 years ago
  Bruno Dupuis c1ceae3e2a added rouncube webmail 11 years ago
  Bertrand Cachet fbd5deb4ea Fix Postfix TLS configuration 11 years ago
  Alex Payne 65103923ec Fix typo in firm task name 11 years ago
  Luke Cyca 7e2ce80a25 Update apt repo and upgrade safe packages 11 years ago
  Luke Cyca cf9d8350dd Fix ssh handler typo 11 years ago
  Luke Cyca 09c8fcb295 Named all tasks and made them idempotent where possible 11 years ago
  Luke Cyca ed6245a2f2 smtpd should provide full cert chain, and smtp should verify certs against known CAs 11 years ago
  Luke Cyca 6168cd68d0 Automate encfs setup and name mount point more appropriately 11 years ago
  Luke Cyca 12d42ad38a Configure sshd_config to disable PermitRootLogin and PasswordAuthentication 11 years ago
  Luke Cyca d5b2d7ade0 Improved apache SSL config, and disabled directory index 11 years ago
  Luke Cyca 921cebb41d Fix invalid service state 11 years ago
  Luke Cyca 5920b17609 Remove usergroup because debian adds it by default as the primary group 11 years ago
  sjahl a4bcb48199 Adding bits for configuring mail aliases, and a postmaster@ address as an example 11 years ago
  Luke Cyca dfe8bd1cca TODO for fail2ban ignoreip 11 years ago
  sjahl 9eecdf5c72 fixing some small dspam oddities 11 years ago
  Alex Payne 05059ac1fc Correct UID for Tomcat/Solr Monit config. Fixes #19. 11 years ago
  Henrik Hodne a844401d7c tarsnap: Only run cron job once per day. 11 years ago