Jim Rollenhagen
a6ce849bc0
Fix local tarsnap key path in readme
Turns out it should be in the tarsnap role, not common. :)
11 years ago
Luke Cyca
e46ad018ba
Improved test suite, rewritten in python
Added friendly_networks variable to denote whitelisted networks
11 years ago
Luke Cyca
194f587f3a
dsbl.org is no longer operating
11 years ago
Luke Cyca
369b90925a
Move DNSBL to postscreen (fixes #45 )
11 years ago
Luke Cyca
af13926a85
Merge pull request #91 from ssoriche/master
Set permissions and owner on virtual mail domains
11 years ago
Shawn Sorichetti
290d59225d
Separate virtual mail directory settings into a task
Move the settings of the virtual mail directories into a separate
ansible task.
11 years ago
Shawn Sorichetti
0b1a8633e5
Set permissions and owner on virtual mail domains
Without the owner being set to vmail and dovecot, when a virtual user
tries to access their mail account, dovecot throws an error that it does
not have permission to create the mail folder for the user.
With the owner and permissions being set the user's mail directory is
created and they can successfully sign in.
11 years ago
Luke Cyca
8e12cebb0c
#89 Fix password hash for test user
11 years ago
Luke Cyca
5350a057cc
Fix conditional vars_files import
11 years ago
Luke Cyca
2da3df9cd1
Merge branch 'master' of https://github.com/perurbis/sovereign
11 years ago
Luke Cyca
69fc8b7eb0
Enable openvpn role in vagrant, plus:
* Removed unicode char from task name (ansible 1.3 doesn’t like it)
* Use ansible sysctl module instead of lineinfile
* Wait for only 5 seconds (for fully automated deploy)
11 years ago
Luke Cyca
1e5342af93
Added note on README about development environment.
11 years ago
Luke Cyca
19a9e90ce8
Merge commit 'aaa8a53633 '
11 years ago
Luke Cyca
2f145ce543
Two small apache-related fixes
11 years ago
Luke Cyca
08d6827755
New vagrant-based development environment
11 years ago
Luke Cyca
aaa8a53633
Merge pull request #88 from jlund/openvpn-expiration
Updated the OpenVPN role so certificate expiration is handled correctly
11 years ago
Joshua Lund
1b81d7a7e6
Updated the OpenVPN role so certificate expiration is handled
correctly. The number of days that a certificate will be considered
valid is now a user-controlled variable and is set to five years by
default. (Fixes Issue #87 )
11 years ago
Alex Payne
e15d746a26
Add Travis build status image
11 years ago
Alex Payne
26856d0fa9
Merge pull request #83 from lukecyca/master
Testing & CI
11 years ago
Luke Cyca
2c083c44e6
Create znc config directory
11 years ago
Luke Cyca
0877ee4a89
Fix znc download URL
This URL works for all releases, not just the latest one.
11 years ago
Luke Cyca
b1a3b8b67d
Use discovered IPv4 address
11 years ago
Luke Cyca
60afd1a033
Simplified vars with better defaults
11 years ago
Luke Cyca
37a0400c22
Standardize apache’s 301 redirect to https, and enable HSTS
11 years ago
Luke Cyca
93e7b3e3bd
Use common domain variable instead of blog_domain
11 years ago
Luke Cyca
fd268aa000
Travis CI to check ansible syntax
11 years ago
Ben Ford
588582aa25
Generate a config file for each client generated
* Add an openvpn_server variable
* Move ${openvpn_client}.{key,csr,crt} to
${openvpn_client}/client.{key,csr,crt}
* Generate ${openvpn_client}/${openvpn_server}.ovpn config file
* Copy over a self contained directory of file per client that can be
imported by networkmanager in ubuntu or run directly with `sudo
openvpn ${openvpn_server}.ovpn
11 years ago
Luke Cyca
d8e0b4ba40
Update README for generating znc password hash
11 years ago
Luke Cyca
f6d74de487
Provide a good initial config for znc (but leave it alone after that)
11 years ago
Luke Cyca
bdab1cd6b1
Reworked ufw logic to not use change_when keyword
because it's not available in a stable ansible release yet
11 years ago
Luke Cyca
165981e495
Add instruction for generating dovecot password_hash
11 years ago
Alex Payne
078e8a30c4
Merge pull request #78 from pdebruic/master
added SHA check for tarsnap
11 years ago
Paul DeBruicker
9493ebd9a5
added SHA check for tarsnap
11 years ago
Alex Payne
f64ad69950
Merge pull request #76 from ariddell/feature/ufw-error-fix
Ignore ufw error resulting from known bug on Debian 7
11 years ago
Allen Riddell
5b8ba840a4
workaround ufw bug, call ufw enable twice
11 years ago
Allen Riddell
ae0d1ca8f4
Ignore ufw error resulting from known bug on Debian 7
In order to check the version of the linux distribution we need to
set `gather_facts` to True.
Closes #73 .
11 years ago
Luke Cyca
92846aa488
Give tarsnap root-relative paths
(No more "Removing leading '/' from member names" warnings)
11 years ago
Alex Payne
c1abe3c193
Merge pull request #74 from lukecyca/fix-idem
Improved idempotency and removed ip detection
11 years ago
Alex Payne
9c4801ff3d
Merge pull request #75 from lukecyca/fix-mail-size
Increase message size limit to 50MB (from default of 10MB)
11 years ago
Luke Cyca
85bbbd7d02
Increase message size limit to 50MB (from default of 10MB)
11 years ago
Luke Cyca
7043143f90
Improved idempotency and removed ip detection for checkrbl
11 years ago
Alex Payne
59d84c1d23
Merge pull request #72 from lukecyca/fix-readme
Update README with ufw instead of ferm
11 years ago
Luke Cyca
111217184e
Update README with ufw instead of ferm
11 years ago
Alex Payne
c46c1cd1f9
Merge pull request #69 from ariddell/ufw
Replace ferm with ufw
11 years ago
Alex Payne
27789fd3f6
Merge pull request #67 from bcachet/feature/fail2ban
ref(fail2ban): add missing var to user.yml
11 years ago
Alex Payne
6eb961b559
Merge pull request #68 from bcachet/feature/tarsnap
fix(tarsnap): rotate script fails on error
11 years ago
Alex Payne
f9cc3eb3d2
Merge pull request #70 from hectcastro/hc-znc-ssl-fix
Fix SSL certificate for ZNC so that it begins with a private key
11 years ago
Hector Castro
2e7005eaec
Fix SSL certificate for ZNC so that it begins with a private key.
11 years ago
Allen Riddell
88705bb7fa
Replace ferm with ufw
11 years ago
Bertrand Cachet
ead57335be
fix(tarsnap): rotate script fails on error
Scripts used to rotate tarsnap backups exit when a command fails
Cron will catch that return code is not zero and will send message to root
No more silent failure
11 years ago