166 Commits (f5a38fec63f3817a69be7a3c2bad79a2a37280fd)

Author SHA1 Message Date
  Óscar Nájera 0635815b52 Ensure en_US.UTF-8 locale is present 8 years ago
  Wolfgang Steitz 3a42d15850 setup posgres within the common role 8 years ago
  Mike Ashley fc023dfc31 Clean up merge 8 years ago
  Tomas Bedrich 3efc7ae54e Allowed SSH agent forwarding when using sudo 8 years ago
  Dosenpfand 9697cbe6b3 Silence letsencrypt cron output unless there is an error 8 years ago
  Tomas Bedrich 7a399d45ca Fix SSH connections to Github 8 years ago
  Mike Ashley 0e7adf6e3a Fix bug exposed by commit 264c232b (#572) 8 years ago
  Simon Schoeters 264c232bbf Remove duplicate when statement in Let's Encrypt task 8 years ago
  Allen Riddell 9f34027d8b Add common default vars to role 8 years ago
  Allen Riddell e95caea06c common: use password lookup to generate passwords 8 years ago
  Dosenpfand f2c14dd911 Remove unneeded/deprecated apache configuration 8 years ago
  Tomas Bedrich 899f527ca3 Updated LE renewal hook system 8 years ago
  Tomas Bedrich 9786230808 Changed LE-renew cron frequency 8 years ago
  Tomas Bedrich e08acd2deb Simplified LE renew script 8 years ago
  Carl Meyer 60855eda70 Fix typo in fail2ban config for dovecot. 8 years ago
  Mike Ashley 3d68705341 Add leading 0 to octal file permissions 8 years ago
  Mike Ashley 4a33ebecdc Add non-interactive to LE client options 8 years ago
  Carl Meyer a343509129 No need for letsencrypt.yml to ensure Apache is running. 8 years ago
  Carl Meyer 579afa68d3 Add comment into letsencrypt-gencert script clarifying why we stop Apache. 8 years ago
  Carl Meyer 0abf92734e Don't stop Apache until we have to; start it again right after. 8 years ago
  Carl Meyer a636a43948 Don't try to execute any non-executable file in LE postrenew dir. 8 years ago
  Carl Meyer a5f3ec17c1 Workaround bug with enabling SysV scripts on Jessie. 8 years ago
  Carl Meyer c3c2cbf096 Don't bounce Apache unless we actually need to. 8 years ago
  Carl Meyer cc4b3d6fef Don't request a new LE cert if we have one already. 8 years ago
  Carl Meyer 3009c9d2d3 Fix changed-reporting for LE deps installation. 8 years ago
  Carl Meyer e8796ecd28 Idempotent and independent post-certificate-renewal tasks. 8 years ago
  nodiscc d876c87e21 bash syntax cleanup 8 years ago
  Carl Meyer b93deb9411 Remove stray + prefix in sudoers file. 8 years ago
  Allen Riddell a77f9b95ad Replace deprecated sudo_user with become_user 8 years ago
  Mike Ashley 3d4987c4e2 Use a more descriptive name for cert generation script 8 years ago
  Mike Ashley a38f4e08d3 Force download of letsencrypt release 8 years ago
  Mike Ashley 5385badd49 Correct bug in SSL cert setup for test environment 8 years ago
  Mike Ashley bc5bfa4b21 Determine registered subdomains at deploy-time for LE 9 years ago
  Mike Ashley 2ad6f78e45 Address incomplete chain error 9 years ago
  Mike Ashley 58e9e7a445 Add a short introduction to Let's Encrypt 9 years ago
  Mike Ashley 86048ee397 Update prosody to use LE certs directly 9 years ago
  Mike Ashley 1746afcc3a Arrange automated tests to not use Let's Encrypt 9 years ago
  Mike Ashley 8f1b6a9ed8 Arrange for services to restart on cert renewal 9 years ago
  Mike Ashley 65729d12f8 Update xmpp role for LE certificate 9 years ago
  Mike Ashley 7bb523950e Draft design description for Let's Encrypt support 9 years ago
  Mike Ashley 8e1d473027 Use Let's Encrypt for generating site certificates 9 years ago
  Mike Ashley 7f46129a4c Remove use of wildcard certificate 9 years ago
  Mike Ashley 195d8811fc Remove references to Trusty and Wheezy 8 years ago
  Mike Ashley d3abc02f84 Clean up Apache SSL configuration 9 years ago
  fengor e63661f982 Added "UseRoaming no" to ssh.config to fix OpenSSH: client bugs CVE-2016-0777 and CVE-2016-0778 9 years ago
  Sebastian Kriems fe536873b7 ufw tasks shall have the ufw tag 9 years ago
  Dan Milon 829c8491c7 restart apache on SSL changes 9 years ago
  Dan Milon a5c6f663ce properly install changed SSL certificate 9 years ago
  Sven Neuhaus d59c5eff05 Generate 2048 DH group and add it to Postfix 9 years ago
  Dan Milon 2fb7cfa7c9 Add SSL stapling cache for apache 9 years ago