Thomas Buck
e6bd74153d
creating domain list for letsencrypt dynamically. some other small fixes.
3 gadus atpakaļ
Thomas Buck
c2f9a9da97
update commento and gitea to current version
3 gadus atpakaļ
Thomas Buck
b37d78c1f9
more fixes to support debian 10
3 gadus atpakaļ
Thomas Buck
efc165f792
Support custom 404 pages in blog
5 gadus atpakaļ
Thomas Buck
08a0e8efd7
Disable account registration for gitea and commento
5 gadus atpakaļ
Thomas Buck
df70d73549
Rename fathom subdomain to stats and make it a variable.
5 gadus atpakaļ
Thomas Buck
e74015eadf
Also redirect normal web access to www domain.
5 gadus atpakaļ
Thomas Buck
d023141dc0
Allow short open tags in PHP code and enable for blog hosting.
5 gadus atpakaļ
Thomas Buck
2d359819a2
Similar log settings for all apache virtual hosts
5 gadus atpakaļ
Thomas Buck
30832be156
Add Commento to blog task and add example index page for webhosting.
5 gadus atpakaļ
Thomas Buck
96696af9bc
Tweak fathom task
5 gadus atpakaļ
Thomas Buck
7b8f15528d
Fix a bunch of broken http->https redirects and make them always temporary
5 gadus atpakaļ
Thomas Buck
cce03e9f94
Add well-known directory to all hosts served by Apache
5 gadus atpakaļ
Thomas Buck
04ba7ad539
Added Fathom statistics tracker to blog task
5 gadus atpakaļ
Thomas Buck
3c51ebedd4
Apache now configurable for multiple virtual domains.
5 gadus atpakaļ
Mike Ashley
d3abc02f84
Clean up Apache SSL configuration
Avoid using the Include directive. Move most of the SSL configuration
to the global configuration and leave enabling the SSL engine to each
virtual host that wants to use it.
8 gadus atpakaļ
Will McCutchen
16b66cc849
Define apache SSL config in one place
9 gadus atpakaļ
Sven Neuhaus
a088d9c456
Use "modern" SSLCipherSuite per Mozilla recommendations.
See https://wiki.mozilla.org/Security/Server_Side_TLS for details.
Removes RC4 cipher. Fixes issue #341 .
Also explicitly disabled SSLCompression and enables OCSP stapling.
We should put all these settings in
/etc/apache2/mods-enabled/ssl.conf
to avoid duplication...
9 gadus atpakaļ
Patrick O'Doherty
6f6fc6a90f
Disable SSLv3 in all Apache vhosts
10 gadus atpakaļ
James Ravn
e3825cf6dd
Revert "Redirects naked domain to www"
This reverts commit 703d356492 .
10 gadus atpakaļ
James Ravn
703d356492
Redirects naked domain to www
Properly behaving websites should 301 redirect the naked domain.
10 gadus atpakaļ
Luke Cyca
37a0400c22
Standardize apache’s 301 redirect to https, and enable HSTS
11 gadus atpakaļ
Luke Cyca
93e7b3e3bd
Use common domain variable instead of blog_domain
11 gadus atpakaļ
Luke Cyca
c697e135e9
Move NameVirtualHost directives to ports.conf
11 gadus atpakaļ
Luke Cyca
d5b2d7ade0
Improved apache SSL config, and disabled directory index
11 gadus atpakaļ
Alex Payne
080d38986c
first commit
11 gadus atpakaļ