YunoHost/yunohost
1
0
Fork 0
mirror of https://github.com/YunoHost/yunohost.git synced 2024-09-03 20:06:10 +02:00
Code Issues Projects Releases Packages Wiki Activity
2764 commits 33 branches 409 tags 24 MiB
Commit graph

194 commits

Author SHA1 Message Date
Josué Tille
ad628b7620
Use root UID to authenticate to LDAP 2019-01-17 22:15:13 +01:00
Josué Tille
c5c482c16c
Use permission for all services 2019-01-17 22:15:13 +01:00
Josué Tille
d975ed2689
Update LDAP config 2019-01-17 22:14:24 +01:00
Alexandre Aubin
a7dbdc3f48
Merge branch 'stretch-unstable' into fix-standardize-sshd-config 2018-12-09 21:20:50 +01:00
Alexandre Aubin
447372d07c
[enh] Clean + harden sshd config using Mozilla recommendation (#590) 
* Clean sshd_config + harden using Mozilla recommendation
* Order of keys matter, ed25519 is recommended
 2018-12-03 17:03:22 +01:00
ljf (zamentur)
847d18293a
[enh] Add other private ip network and link local 2018-11-30 15:47:42 +01:00
Alexandre Aubin
90e542a931 Allow root login on local networks 2018-11-28 21:30:26 +00:00
Alexandre Aubin
4db65682eb Fix IPv6 handling in ssh regen conf script 2018-11-28 20:42:39 +00:00
Alexandre Aubin
3d81f032e9 Fixes following tests (some sshd_config options do not exists or are deprecated) 2018-11-28 17:50:20 +00:00
frju365
8cb029a55e Better Configuration of nginx (#564) 
* path-traversal

* [fix] try a patch for path-traversal

* Use more_set_headers insta
 2018-11-28 01:21:28 +01:00
Alexandre Aubin
fad4ff090a Use templating for more robustness about which SSH keys are enabled 2018-11-28 00:26:25 +01:00
ljf
8e0086d493 [fix] Allow user to trigger the moment when they remove dsa 2018-11-28 00:00:30 +01:00
ljf
c2b225d376 [fix] A lot of bug on the wip work on sshd migration 2018-11-27 23:59:36 +01:00
liberodark
1906692289 Remove ECDH curve or change it ? (#579) 
Update ECDH curves recommended by Mozilla, now that we are on stretch
 2018-11-27 18:30:39 +01:00
liberodark
76121ea084 HTTP2 On (#580) 
* HTTP2 On

for better security

* Remove old lines
 2018-11-27 18:27:01 +01:00
Alexandre Aubin
b5afd0abc4 We do need to use the serial file and to generate it ourselves 2018-11-18 17:56:19 +01:00
frju365
d77b157bcc [enh] Set Path as full-path (#563) 
* [fix] Set Path as full-path
* same
* Update yunohost_admin.conf
 2018-10-27 17:47:12 +02:00
frju365
fa66a7b8c7 OCSP Stapling (#533) 
* [enh] Jinja templating
* [enh] try to enable OCSP
* typo
* [mod] use jq (json parsing)
* typo
* well escaping "" :)
* [fix] if 2d part condition
* We need to include this for ynh_render_template to be available >.> ...
* Simplify code
* Gotta export domain too...
* Remove quotes in variable itself..
* Replace previous code blocks by new code
 2018-10-27 16:38:25 +02:00
Gabriel Corona
8691017b46 Pass Host header to YunoHost API 
This is useful to validate Origin/Referer headers in order to prevent
CSRF.
 2018-10-24 19:44:24 +00:00
ljf (zamentur)
1c5b93f532 [fix] Set random serial number for CA (#557) 
[fix] Use random serial number for CA
 2018-10-24 21:15:25 +02:00
frju365
556f33f15f [fix] Add a proper conf for LDAP (Issue 1218) (#554) 
* Update ldap.conf

* [fix] Port
 2018-10-24 21:04:01 +02:00
Marco Cirillo
837d0ccd83 Revert "Update data/templates/metronome/metronome.cfg.lua" 
This reverts commit 3471eb728d.
 2018-10-18 00:14:01 +02:00
Marco Cirillo
3471eb728d Update data/templates/metronome/metronome.cfg.lua 
Comment websocket as lua-bitop is not installed by default
 2018-10-17 22:24:21 +02:00
Marco Cirillo
aa670058bd Update data/templates/metronome/metronome.cfg.lua 
Add privacy lists and simple blocking command between loaded modules
 2018-10-17 20:59:56 +02:00
Marco Cirillo
802c71b0e9 Update data/templates/metronome/metronome.cfg.lua 
Add HTTP Upload service (moul's request), and fix indenting
 2018-10-17 20:47:35 +02:00
Marco Cirillo
19120cfa60 Update data/templates/metronome/metronome.cfg.lua 
Fix whitespaces
 2018-10-13 20:45:44 +02:00
Marco Cirillo
4cff761481 Update data/templates/metronome/metronome.cfg.lua 
Add MUC avatars support
 2018-10-13 20:44:37 +02:00
Marco Cirillo
a19d914485 Update data/templates/metronome/metronome.cfg.lua 
Finish updating
 2018-10-13 20:38:10 +02:00
Marco Cirillo
8670f0a1de Update data/templates/metronome/metronome.cfg.lua 
Conform configuration file to latest v3.11 release file, Metronome v3.11.x is best package or Metronome might throw a few (non-fatal) errors on startup
 2018-10-13 20:34:56 +02:00
Alexandre Aubin
b1fdb39880 Tweaking postfix regen-conf to handle postsrsd conf 2018-07-25 19:16:14 +00:00
Alexandre Aubin
240158ffaf Link postfix to postsrsd for SRS 2018-07-25 19:16:14 +00:00
pitchum
a7e85dbbba [enh] Add MUA autoconfig. 2018-06-25 09:45:13 +02:00
Alexandre Aubin
d55c029c9b Don't open old IMAP port (465) 2018-06-11 21:58:01 +02:00
Alexandre Aubin
a4d75a2e40 Merge branch 'unstable' into stretch-unstable 2018-06-01 21:49:26 +00:00
Laurent Peuch
75b6fd8786 [mod] add mariadb as an alternates for mysql service 2018-05-29 08:54:47 +02:00
Alexandre Aubin
dd8af083b3 Merge branch 'unstable' into stretch-unstable 2018-05-20 21:43:05 +02:00
Alexandre Aubin
53dde3a6c7 We need to set status:null for yunohost pseudo-service 2018-05-19 21:59:52 +02:00
Laurent Peuch
f9044ab3a3 Merge branch 'unstable' into services_dbus 2018-05-17 04:48:25 +02:00
Alexandre Aubin
6461b3ec11
Update comment about certificates 2018-05-15 17:52:49 +02:00
ljf (zamentur)
1f6a7b2ee5
[fix] Untrusted TLS connection established to 2018-05-11 16:52:28 +02:00
Laurent Peuch
312e9bb22e [mod] respect yaml indentation 2018-05-11 04:21:53 +02:00
Laurent Peuch
d32ab073ba [mod] removes status key from /etc/yunohost/service.yml for generic approach 2018-05-11 04:21:24 +02:00
Alexandre Aubin
c75a3f1b44 Also disabling httpt2 in yunohost_admin.conf 2018-05-08 05:50:39 +02:00
Alexandre Aubin
3feae2e877 Some ecdh_curve don't work on jessie 2018-05-02 19:48:36 +02:00
Alexandre Aubin
25bd5648a7 Disabling http2 for now as it's causing weird issues with curl 2018-05-02 18:16:08 +02:00
Alexandre Aubin
c5d4ab5d79 Remove imap3 things in fail2ban conf, c.f. https://github.com/fail2ban/fail2ban/issues/1942 2018-05-02 18:07:30 +02:00
frju365
cc3c704ba8 [enh] Enable HTTP2 protocol in nginx conf (#448) 
* [Add] http2
* Update yunohost_admin.conf
 2018-05-02 18:07:30 +02:00
Alexandre Aubin
6d158aae19 master.cf : comment smtps and tweak submission 2018-05-02 18:07:30 +02:00
kitoy
f846f5b7f8 Ajout de connexion smtp over tls et STARTTLS 2018-05-02 18:07:30 +02:00
kitoy
45bc155921 Bug connu sur bug.debian.org 
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844271
 2018-05-02 18:07:30 +02:00