sovereign

Commit graph

Autor	SHA1	Nachricht	Datum
Dosenpfand	9697cbe6b3	Silence letsencrypt cron output unless there is an error	vor 7 Jahren
Tomas Bedrich	7a399d45ca	Fix SSH connections to Github	vor 8 Jahren
Mike Ashley	0e7adf6e3a	Fix bug exposed by commit 264c232b (#572) The `private_key` variable used to check for changes was never registered.	vor 8 Jahren
Simon Schoeters	264c232bbf	Remove duplicate when statement in Let's Encrypt task While adding the Let's Encrypt offline testing block in 1746afcc we accidentially duplicated a the 'when' statement. Ansible only looks at the last when statement for a given block meaning the earlier one has no use. This commit merges both lines in one.	vor 8 Jahren
Mike Ashley	97b11e3953	Eliminate need for access_compat module in Apache The directives provided by `mod_access_compat` are deprecated. This patch eliminates references to them.	vor 8 Jahren
Mike Ashley	166c57f045	Use submission port for client outgoing email Currently client email is submitted via ssmtp (port 465). This has been deprecated for years. The correct way to submit email is via submission (port 587). This patch adds port 587 as a second and the default way of submitting email for delivery. Port 465 remains open for backwards compatibility with existing clients.	vor 8 Jahren
Mike Ashley	b00b93a85b	Add missing configuration variable for ircbouncer	vor 8 Jahren
Sharif Nassar	73c30c313b	VPN - enforce TLS min version on the client	vor 8 Jahren
Allen Riddell	19ff4c5958	Add readlater/wallabag default vars to role	vor 8 Jahren
Allen Riddell	712ea7aee2	news role: add missing restart apache handler	vor 8 Jahren
Allen Riddell	4339192052	Add news/selfoss default vars to role	vor 8 Jahren
Allen Riddell	9067f4cc27	Add git role default vars to role	vor 8 Jahren
Allen Riddell	86bc3ab073	Add tarsnap default vars to role	vor 8 Jahren
Allen Riddell	ab9ebd6e5c	Add owncloud default vars to role	vor 8 Jahren
Allen Riddell	9e71d9067f	Add openvpn default vars to role	vor 8 Jahren
Allen Riddell	98cb6dd610	Add prosody/xmpp default vars to role	vor 8 Jahren
Allen Riddell	f31ac23001	Add monitoring default vars to role	vor 8 Jahren
Allen Riddell	ca6eb2d85b	Add mailserver default vars to role	vor 8 Jahren
Allen Riddell	9f34027d8b	Add common default vars to role	vor 8 Jahren
Allen Riddell	e95caea06c	common: use password lookup to generate passwords See https://docs.ansible.com/ansible/playbooks_lookups.html	vor 8 Jahren
Dosenpfand	f2c14dd911	Remove unneeded/deprecated apache configuration	vor 8 Jahren
Tomas Bedrich	899f527ca3	Updated LE renewal hook system	vor 8 Jahren
Tomas Bedrich	9786230808	Changed LE-renew cron frequency	vor 8 Jahren
Tomas Bedrich	e08acd2deb	Simplified LE renew script	vor 8 Jahren
Carl Meyer	60855eda70	Fix typo in fail2ban config for dovecot.	vor 8 Jahren
Mike Ashley	2243dd73a4	Remove unnecessary ownCloud configuration The ownCloud configuration file does not get touched. The virtual host configuration is modified by sovereign but can be updated in place and Apache restarted.	vor 8 Jahren
Mike Ashley	3d68705341	Add leading 0 to octal file permissions This is done to suppress warnings from ansible-lint.	vor 8 Jahren
Mike Ashley	4a33ebecdc	Add non-interactive to LE client options Depending on when the client is run, there are no certificates to update. By default, the client runs in interactive mode and wants to notify the user of this. This causes Ansible to hang waiting for an acknowledgement that will never come. Adding the non-interactive flag fixes this.	vor 8 Jahren
Carl Meyer	2737b16477	Use postgresql_user module for configuring PG admin user in owncloud role.	vor 8 Jahren
Carl Meyer	a343509129	No need for letsencrypt.yml to ensure Apache is running.	vor 8 Jahren
Carl Meyer	579afa68d3	Add comment into letsencrypt-gencert script clarifying why we stop Apache.	vor 8 Jahren
John Giannelos	0b62ed998b	Add directories to allow persistent znc user/modules configuration.	vor 8 Jahren
John Giannelos	66cc560281	Fix monitoring config for apache/postgresql.	vor 8 Jahren
Carl Meyer	0abf92734e	Don't stop Apache until we have to; start it again right after.	vor 8 Jahren
Carl Meyer	a636a43948	Don't try to execute any non-executable file in LE postrenew dir.	vor 8 Jahren
Carl Meyer	619eac6534	Adjust comment for clarity.	vor 8 Jahren
Carl Meyer	15cff22f14	Workaround bug with enabling SysV init scripts in Jessie, for collectd.	vor 8 Jahren
Carl Meyer	d46a9c47ef	Idempotency/changed-reporting fixes for OpenDMARC tasks.	vor 8 Jahren
Carl Meyer	7e817bfae6	Encrypt Postgres passwords, and fix change-reporting.	vor 8 Jahren
Carl Meyer	a5f3ec17c1	Workaround bug with enabling SysV scripts on Jessie.	vor 8 Jahren
Carl Meyer	c3c2cbf096	Don't bounce Apache unless we actually need to.	vor 8 Jahren
Carl Meyer	cc4b3d6fef	Don't request a new LE cert if we have one already.	vor 8 Jahren
Carl Meyer	3009c9d2d3	Fix changed-reporting for LE deps installation.	vor 8 Jahren
Carl Meyer	e8796ecd28	Idempotent and independent post-certificate-renewal tasks.	vor 8 Jahren
Laurent Arnoud	d56f0bd7ef	Use https for rpsamd key and repository	vor 8 Jahren
Yannik Sembritzki	66cb39bb46	Only add iptables rules if they don't already exist	vor 8 Jahren
Yannik Sembritzki	fd9dd1b21e	Only add iptables rules if they don't already exist	vor 8 Jahren
Carl Meyer	1a3d01f311	Complete rmilter/rspamd setup.	vor 8 Jahren
nodiscc	d876c87e21	bash syntax cleanup as per discussion in https://github.com/sovereign/sovereign/pull/504	vor 8 Jahren
Carl Meyer	d46fb1521b	Make OpenDMARC cron job email root only on error.	vor 8 Jahren

Erste Vorherige ... 3 4 5 6 7 ... Nächste Letzte

673 Commits (df70d735496403c0e28be862ed7d92e70795504b)