YunoHost/yunohost
1
0
Fork 0
mirror of https://github.com/YunoHost/yunohost.git synced 2024-09-03 20:06:10 +02:00
Code Issues Projects Releases Packages Wiki Activity
6785 commits 33 branches 409 tags 24 MiB
Commit graph

424 commits

Author SHA1 Message Date
Alexandre Aubin
ba884d5b6d Get rid of yunohost.local in main domain nginx conf ... because this interfer with using yunohost.local for postinstall. Just let it be handled by the default vhost 2020-10-03 16:32:31 +02:00
Alexandre Aubin
2c6736df29 These fail2ban jails do not exists anymore (since buster I guess ?) 2020-10-03 11:19:44 +02:00
Alexandre Aubin
a7d105ace6 Merge branch 'dev' into permission_protection 2020-09-30 18:48:26 +02:00
Alexandre Aubin
6e69df3768 Add configuration tests for dnsmasq, fail2ban, slapd 2020-09-29 16:24:30 +02:00
ljf (zamentur)
5923114b20
[fix] Reduce right given to ynh users with ssh (#1050) 
* [fix] Avoid ynh user to be able to use X11 forwarding

* [fix] Avoid some bad situations

* [fix] Remove chroot restrictions and x11 authorization

* Update comments

Co-authored-by: Alexandre Aubin <alex.aubin@mailoo.org>
 2020-09-11 20:27:40 +02:00
Alexandre Aubin
0ad014ad1f
Merge branch 'dev' into enh-relay-smtp 2020-09-10 17:50:10 +02:00
ljf (zamentur)
bc2de62c7b
[fix] Typo in setting name 2020-09-10 03:29:09 +02:00
ljf (zamentur)
ce9689e0ef
[enh] Force encrypt if we are using an smtp relay 
Thanks to @khimaros for this suggestion
 2020-09-10 03:27:13 +02:00
Alexandre Aubin
83585b2375
Merge branch 'dev' into permission_protection 2020-09-08 17:06:49 +02:00
Alexandre Aubin
cc4db7a6f6
Add a comment explaining why the location is empty 2020-09-03 23:47:24 +02:00
ljf
f92b84bd94 [fix] SSO unavailable 2020-09-03 22:27:46 +02:00
Alexandre Aubin
f46e318374 [fix] Stupid syntax issue in dovecot conf 2020-09-01 01:59:49 +02:00
Alexandre Aubin
503e08b58b Add xmpp-upload stuff in dnsmasq conf 2020-08-31 16:41:54 +02:00
Alexandre Aubin
bc7344b636 Use proper templating for dnsmasq conf 2020-08-31 16:41:31 +02:00
Alexandre Aubin
ed528d43bf Fix stupid typo in postfix conf T_T 2020-08-28 17:55:02 +02:00
Alexandre Aubin
e5e26c2b81 Typo in postfix's conf template 2020-08-25 16:46:02 +02:00
Josué Tille
e6da35abd1
Merge branch 'dev' into permission_protection 2020-08-23 21:48:18 +02:00
Alexandre Aubin
2d661737b3 Update dovecot configuration now that we have a DH param 2020-08-18 13:29:02 +02:00
Alexandre Aubin
89bcf1ba6d Update postfix configuration now that we're on Buster + we have DH param 2020-08-18 13:25:38 +02:00
Alexandre Aubin
f3a4334a13 Upgrade nginx configuration according to Mozilla guidelines now that we're on Buster 2020-08-14 14:50:54 +02:00
Josué Tille
7c10ea6b93 Fix index config 2020-07-27 19:26:18 +02:00
Alexandre Aubin
4eb93d62e9 Improve comment about editing slapd.ldif 2020-07-27 19:26:18 +02:00
Josué Tille
d73a71fa61 Rewrite LDAP configuration in LDIF format 2020-07-27 19:26:18 +02:00
Josué Tille
7099750323 Change file type of LDAP schema from 'schema' to ldif 2020-07-27 19:26:18 +02:00
Alexandre Aubin
57ce323cab [conf] Update nslcd and nsswitch stuff using new Buster's default configs + get rid of nslcd service, only keep the regen-conf part 2020-07-27 19:23:07 +02:00
Alexandre Aubin
01ccd5dd8c [conf] Small tweak in dovecot conf (deprecated settings) 2020-07-27 19:23:07 +02:00
Alexandre Aubin
16ce8bf693 [conf] Remove deprecated option in sshd conf, c.f. https://patchwork.openembedded.org/patch/139981/ 2020-07-27 19:23:07 +02:00
Alexandre Aubin
06c5f23c2b [cleanup] These arent used anywhere 2020-07-27 19:22:21 +02:00
Alexandre Aubin
8911499bf3
Merge pull request #1026 from YunoHost/remove-useless-robots-protection 
Remove useless robot protection code
 2020-07-05 02:52:23 +02:00
Alexandre Aubin
ac9182d69f Move redirect to /yunohost/admin to a separate nginx conf file to allow customizing it more easily 2020-06-25 21:42:46 +02:00
Alexandre Aubin
f1bfc521ae Allow to extend the nginx default_server configuration 2020-06-25 20:04:11 +02:00
Alexandre Aubin
74ef4d1cf7
Remove useless robot protection code 2020-06-25 19:46:22 +02:00
Alexandre Aubin
ecb27ed124
Merge pull request #988 from taziden/patch-1 
[fix] postfix per-domain destination concurrency
 2020-06-17 21:10:03 +02:00
Alexandre Aubin
203bc01e0c
Merge pull request #1007 from SohKa/add-predefined-dh-group 
Add pre-defined DHE group and set up Nginx to use it
 2020-06-04 18:51:53 +02:00
Alexandre Aubin
1cfa815aaa
Propagate location change for ffdhe2048.pem 2020-06-04 18:44:02 +02:00
Alexandre Aubin
9906617aa1
Add comments about where the DH param comes from 2020-06-04 18:41:05 +02:00
Josué Tille
ff396d2729
Merge remote-tracking branch 'upstream/stretch-unstable' into permission_protection 2020-06-03 15:04:59 +02:00
Alexandre Aubin
5e4484ddcc
Merge pull request #1008 from larchange/stretch-unstable 
Add logging and persistent as default config for new muc room
 2020-05-27 23:54:43 +02:00
Alexandre Aubin
b3db4d92fc Bump server_names_hash_bucket_size to 128 to avoid nginx exploding for stupid reasons 2020-05-27 17:10:39 +02:00
Gabriel
a2b85b7523 Add logging and persistent as default config for new muc room 2020-05-26 19:07:09 +01:00
SohKa
d4bea7dd34 Add pre-defined DHE group and set up Nginx to use it 2020-05-26 19:17:03 +02:00
Josué Tille
226bd15c55
Merge remote-tracking branch 'upstream/stretch-unstable' into permission_protection 2020-05-22 15:12:32 +02:00
Julien Rabier
7ccd6e1348
fix destination concurrency 
Hi,
Postfix has this very peculiar behavior where the target of some config keys changes depending on the value. 
Here, if `smtp_destination_concurrency_limit` is set to 1, then according to http://www.postfix.org/postconf.5.html#default_destination_concurrency_limit it doesn't mean "1 concurrent mail per domain, but per recipiend address".

So, if set to 1, it means we can send any volume of e-mails concurrently (with a 5s delay) if all recipient addresses are different.
In order to avoid this, we should increase the value to restore the expected behavior (concurrency per domain, not per recipient).
 2020-05-11 21:37:17 +00:00
Bram
dbac27cc38
Merge pull request #961 from YunoHost/add-wss-to-default-src 
[enh] Real CSP headers for the webadmin
 2020-05-07 21:35:24 +02:00
ljf
fae6b3f3f4 [fix] Unrelevant obsolete config params 2020-05-04 14:45:47 +02:00
ljf
64066f85b0 [enh] Allow admin to specify an smtp relay 2020-05-04 14:45:47 +02:00
Alexandre Aubin
0fba21f924 Enforce CSP rules for real on webadmin 2020-04-29 01:07:07 +02:00
Josué Tille
73e2ede910
Merge branch 'stretch-unstable' into permission_protection 2020-04-28 14:20:25 +02:00
Alexandre Aubin
ceab9bd1b3
Merge branch 'stretch-unstable' into fix-1516-separate-xmpp-vhosts 2020-04-27 18:03:34 +02:00
Alexandre Aubin
c0c026613f Add wss: to default to get rid of angry CSP on webadmin 2020-04-27 02:15:14 +02:00