Sven Neuhaus
ab614fd70a
Added rules for dealing with old virtualhost files in
/etc/apache2/sites-available and old (dangling) symlinks in
/etc/apaches/sites-enabled.
Also, remove unnecessary apache2 restart after creating a new
virtualhost but not yet enabling it.
vor 10 Jahren
Sven Neuhaus
779d6c6bb9
Ubuntu Trusty fix for Dovecot (postgresql 9.3 instead of 9.1)
vor 10 Jahren
Sven Neuhaus
0ebda3b32e
Fixes for Ubuntu 14.04 LTS 'trusty'
* Postfix: Trusty comes with postgresql 9.3, not 9.1
* owncloud 6.0.1 is part of the distribution, doesn't require opensuse repository
* owncloud requires libapache2-mod-php5
* uses prosody repository that matches the ansible_distribution_release (trusty, wheezy, etc)
vor 10 Jahren
Sven Neuhaus
0f6dfdc6ca
More apache fixes.
The virtual site files must be owned by root (serious security issue)
and they must have the .conf filename suffix for a2ensite on
Ubuntu 14.04LTS (apache 2.4.7).
vor 10 Jahren
Sven Neuhaus
22f6228758
Make the .conf change backward compatible
I guess the .conf appendix is a change introduced in apache 2.4.
This change should make it backward compatible with apache 2.2.
vor 10 Jahren
Sven Neuhaus
67a9ce43bd
apache roundcube: Wrong ownership and filename
On Ubuntu 14.04 LTS, a2ensite automatically appends ".conf" to the filename it looks for in /etc/apache2/sites-available/
Therefore, the file "/etc/apache2/sites-available/roundcube" must be renamed to
"/etc/apache2/sites-available/roundcube.conf".
Security issue:
This file must be owned by root, otherwise it is a huge security issue (User www-data could modify the file and get root at next restart of apache).
vor 10 Jahren
Alex Payne
b5d87cf495
Merge pull request #227 from jplock/jp-readlater
Merge pull request #227
vor 10 Jahren
Justin Plock
8bd44ef965
Merge remote-tracking branch 'upstream/master' into jp-readlater
Conflicts:
README.textile
site.yml
vars/defaults.yml
vor 10 Jahren
Alex Payne
f7874004e5
Merge pull request #239 from gelnior/master
Merge pull request #239
vor 10 Jahren
Alex Payne
dfd6e8dd79
Merge pull request #238 from jplock/jp-ufw
Merge pull request #238
vor 10 Jahren
Gelnior
7995bac36c
put back enc.fs (removed by mistake)
vor 10 Jahren
Gelnior
bd57edd5a5
newebe config: fix Newebe config file task
vor 10 Jahren
Gelnior
e4021dda88
newebe config: use template instead of file
+ make lines < 80 chars
vor 10 Jahren
Gelnior
89b6a8d7a4
turn newebe config.yaml into a template
vor 10 Jahren
Gelnior
fdd87c9d30
add newebe to the role list in the site.yml file
vor 10 Jahren
Gelnior
5a30943955
add newebe playbooks and config files/templates
vor 10 Jahren
Gelnior
e3908b7c52
add Newebe to the list of projects in the README
vor 10 Jahren
Justin Plock
1d7986fd96
Enable UFW and deny everything by default
Removed unused status checks on UFW
vor 10 Jahren
Justin Plock
ea0b288818
Moved ufw firewall rules into individual roles
vor 10 Jahren
Luke Cyca
805e428124
Merge pull request #237 from thomwiggers/remove_ahbl
Remove ahbl as it's being winded down
vor 10 Jahren
Thom Wiggers
6312286b64
Remove ahbl as it's being winded down
http://ahbl.org/content/changes-ahbl
Fixes #232
vor 10 Jahren
Luke Cyca
4f2321051d
Merge pull request #230 from Alkpone/master
cgit dependency missing
vor 10 Jahren
Alban Seurat
c22d179e83
cgit dependency missing
vor 10 Jahren
Justin Plock
d1073d042d
Added read-it-later functionality from Wallabag
vor 10 Jahren
Luke Cyca
9b8e017533
Merge pull request #224 from nstanke/patch-2
fixes #156
vor 10 Jahren
Norman S.
53010bed89
fixes #156
fixes #156 by adding the -L flag, as suggested by @ventolin
vor 10 Jahren
Luke Cyca
cb0ad7e3b7
Merge pull request #223 from alexdunae/conditional-tarsnap-install
Only install Tarsnap when requested version is missing
vor 10 Jahren
Luke Cyca
dee5c9321f
Merge pull request #222 from yourcelf/patch-1
Fix README to reflect changes in #176
vor 10 Jahren
Luke Cyca
0b516d484f
Merge pull request #215 from squarepegsys/master
add cgi module for cgit
vor 10 Jahren
Alex Dunae
b44972ab87
Only install Tarsnap when version is missing
Checks if the exact version of Tarsnap is already installed and, if so,
skips the download and build steps.
vor 10 Jahren
Charlie DeTar
73ca531f74
Fix README to reflect changes in #176
Change instructions for creating the tarsnap key to generate it at "decrypted_tarsnap.key".
vor 10 Jahren
Justin Plock
79fd923668
Initial work to support wallabag
vor 10 Jahren
Mike Hostetler
8ec36ca875
add cgi module for cgit
vor 10 Jahren
Luke Cyca
4349e03dfc
Merge pull request #213 from thomwiggers/patch-1
Make sure that only ZNC can read its certificate
vor 10 Jahren
Thom Wiggers
8578f49e21
Make sure that only ZNC can read its certificate
To bring this certificate in line with how those in ssl.yml are managed.
vor 10 Jahren
Luke Cyca
18ea566cee
Merge pull request #210 from jlund/ovpn-enhancements
Update OpenVPN role to generate self-contained "unified" .ovpn profiles
vor 10 Jahren
Joshua Lund
64883159e9
* Update OpenVPN role to generate self-contained "unified" .ovpn
profiles
* The role now generates .ovpn profiles with embedded CA, certificate,
key, and HMAC firewall key information. These .ovpn profiles are
compatible with OpenVPN for iOS and Android, and only a single file
needs to be transferred to your mobile device.
* Added explicit route information to the .ovpn profile
vor 10 Jahren
Luke Cyca
8a271d748d
Merge pull request #192 from larryfox/cgit
Add git hosting
vor 10 Jahren
Larry Fox
22a71efc24
add short blurb about git hosting
vor 10 Jahren
Luke Cyca
a88b465aff
Merge pull request #207 from jplock/jp-fix-libpam-dev
Use libpam0g-dev instead of libpam-dev
vor 10 Jahren
Luke Cyca
5cca325d83
Merge pull request #206 from jplock/jp-2fa-openvpn
OpenVPN 2FA support
vor 10 Jahren
Luke Cyca
bd9e2e4122
Merge pull request #209 from chid/patch-1
Update README.textile
vor 10 Jahren
Charley Peng
9f34d8c9d5
Update README.textile
fix broken link to getting ansible
vor 10 Jahren
Luke Cyca
c9bb3dc2c4
Merge pull request #205 from jplock/jp-fix-2fa-vagrant
Skip the google authenticator generation if we're running as vagrant
vor 10 Jahren
Luke Cyca
d5951797e1
Merge pull request #204 from jplock/jp-2fa-webmail
Add a 2FA plugin for Roundcube (fixes #201 )
vor 10 Jahren
Justin Plock
ed75c9469b
libpam-dev didn't exist for some people so switching to libpam0g-dev instead
vor 10 Jahren
Justin Plock
921ae6957e
Optional 2FA support for OpenVPN (requires uncommenting on the server and pushing new client configs)
vor 10 Jahren
Justin Plock
e88fb57cba
Skip the google authenticator generation if we're running as vagrant. Vagrant can't sudo to the sovereign test user so this won't work.
vor 10 Jahren
Justin Plock
408d83341f
Add a 2FA plugin for Roundcube (fixes #201 )
vor 10 Jahren
Luke Cyca
3ea5e23c9e
Merge pull request #203 from jplock/jp-fix-google-auth-generation
Fix Google Authenticator file generation
vor 10 Jahren