YunoHost/yunohost
1
0
Fork 0
mirror of https://github.com/YunoHost/yunohost.git synced 2024-09-03 20:06:10 +02:00
Code Issues Projects Releases Packages Wiki Activity
3101 commits 33 branches 409 tags 24 MiB
Commit graph

944 commits

Author SHA1 Message Date
Maniack Crudelis
08818757cc [enh] Do not fail on backup and restore if some missing files are not mandatory (#576) 2018-12-09 21:27:43 +01:00
Alexandre Aubin
a7dbdc3f48
Merge branch 'stretch-unstable' into fix-standardize-sshd-config 2018-12-09 21:20:50 +01:00
Alexandre Aubin
4f05cd5b2b Uh for some reason we need to return *0* explicitly 2018-12-03 16:56:28 +00:00
Alexandre Aubin
447372d07c
[enh] Clean + harden sshd config using Mozilla recommendation (#590) 
* Clean sshd_config + harden using Mozilla recommendation
* Order of keys matter, ed25519 is recommended
 2018-12-03 17:03:22 +01:00
Alexandre Aubin
0ac908326a Return instead of break, otherwise warning is shown 2018-12-03 14:02:12 +01:00
Maniack Crudelis
41c1a9ce13 Do not use a separate ini file for php pools (#548) 
Have a look to https://github.com/YunoHost-Apps/nextcloud_ynh/issues/138 for more information.
 2018-12-01 23:07:32 +01:00
Maniack Crudelis
e918836ab0 Fix multiple value for getopts (#592) 2018-12-01 16:21:31 +01:00
ljf (zamentur)
847d18293a
[enh] Add other private ip network and link local 2018-11-30 15:47:42 +01:00
Alexandre Aubin
90e542a931 Allow root login on local networks 2018-11-28 21:30:26 +00:00
Alexandre Aubin
0576b17442 Simplify code / indentation levels 2018-11-28 21:03:28 +00:00
Alexandre Aubin
4db65682eb Fix IPv6 handling in ssh regen conf script 2018-11-28 20:42:39 +00:00
Alexandre Aubin
6a812190c5 Enforce permissions for /etc/ssh/sshd_config 2018-11-28 20:27:42 +00:00
Alexandre Aubin
f295c83fd3 Order of keys matter, ed25519 is recommended 2018-11-28 19:15:21 +00:00
Alexandre Aubin
3d81f032e9 Fixes following tests (some sshd_config options do not exists or are deprecated) 2018-11-28 17:50:20 +00:00
frju365
8cb029a55e Better Configuration of nginx (#564) 
* path-traversal

* [fix] try a patch for path-traversal

* Use more_set_headers insta
 2018-11-28 01:21:28 +01:00
Alexandre Aubin
fad4ff090a Use templating for more robustness about which SSH keys are enabled 2018-11-28 00:26:25 +01:00
Alexandre Aubin
325678f541 More explicit name for setting 2018-11-28 00:04:25 +01:00
Alexandre Aubin
7b6bf6f4b8 Missing 'get' 2018-11-28 00:03:25 +01:00
ljf
8e0086d493 [fix] Allow user to trigger the moment when they remove dsa 2018-11-28 00:00:30 +01:00
ljf
c2b225d376 [fix] A lot of bug on the wip work on sshd migration 2018-11-27 23:59:36 +01:00
ljf
8598d81bb1 [wip] Standardize ssh config 2018-11-27 23:58:29 +01:00
liberodark
1906692289 Remove ECDH curve or change it ? (#579) 
Update ECDH curves recommended by Mozilla, now that we are on stretch
 2018-11-27 18:30:39 +01:00
liberodark
76121ea084 HTTP2 On (#580) 
* HTTP2 On

for better security

* Remove old lines
 2018-11-27 18:27:01 +01:00
Alexandre Aubin
a455cae3bf Typo + fixes for helper doc generation 2018-11-26 14:56:47 +00:00
Maniack Crudelis
6bfcedfe1d Do not fail on missing fail2ban config during the backup (#558) 
* Do not fail on missing file during the backup
* Fix for allow to backup without a fail2ban config file
* Tab -> space consistency
 2018-11-23 13:21:37 +01:00
Maniack Crudelis
b3c5f44518
Merge pull request #571 from YunoHost/wait_for_dpkg_lock 
[enh] Wait for dpkg lock to be free
 2018-11-20 23:47:12 +01:00
ljf (zamentur)
eb8792376c
[enh] Better name ynh_wait_dpkg_free 2018-11-20 20:47:36 +01:00
Alexandre Aubin
662666fb5a Readability improvement 2018-11-18 17:56:19 +01:00
Alexandre Aubin
b5afd0abc4 We do need to use the serial file and to generate it ourselves 2018-11-18 17:56:19 +01:00
Maniack Crudelis
b67105f04b
[enh] Wait for dpkg lock to be free 2018-11-06 01:00:57 +01:00
Maniack Crudelis
1c628c8d73
[enh] Use more blocks for dd in ynh_string_random 
200 are not enough if you try to generate a 64 characters string.
 2018-11-04 18:54:59 +01:00
Alexandre Aubin
787bfaa058
We are in Stretch and use php7 now (#566) 2018-11-04 16:14:56 +01:00
Alexandre Aubin
fb2d85b90d
Merge branch 'stretch-unstable' into migrate-pwd 2018-11-04 16:02:59 +01:00
Alexandre Aubin
fe452a6de6
Merge pull request #196 from YunoHost/cracklib 
[enh] Automatically check for weak password
 2018-11-04 15:59:21 +01:00
Alexandre Aubin
d6053f5eed This ain't used anywhere ? 2018-10-31 18:01:00 +00:00
Alexandre Aubin
f28df1348d Merge branch 'cracklib' of https://github.com/YunoHost/yunohost into cracklib 2018-10-31 00:17:52 +00:00
Alexandre Aubin
1ce20259cd Cracklib is too nazi, use a simple txt list + grep to search for password 2018-10-31 00:17:09 +00:00
frju365
d77b157bcc [enh] Set Path as full-path (#563) 
* [fix] Set Path as full-path
* same
* Update yunohost_admin.conf
 2018-10-27 17:47:12 +02:00
frju365
fa66a7b8c7 OCSP Stapling (#533) 
* [enh] Jinja templating
* [enh] try to enable OCSP
* typo
* [mod] use jq (json parsing)
* typo
* well escaping "" :)
* [fix] if 2d part condition
* We need to include this for ynh_render_template to be available >.> ...
* Simplify code
* Gotta export domain too...
* Remove quotes in variable itself..
* Replace previous code blocks by new code
 2018-10-27 16:38:25 +02:00
Alexandre Aubin
98c0745056 Add comment about good pratice for password 2018-10-26 18:45:53 +00:00
Gabriel Corona
8691017b46 Pass Host header to YunoHost API 
This is useful to validate Origin/Referer headers in order to prevent
CSRF.
 2018-10-24 19:44:24 +00:00
ljf (zamentur)
1c5b93f532 [fix] Set random serial number for CA (#557) 
[fix] Use random serial number for CA
 2018-10-24 21:15:25 +02:00
frju365
556f33f15f [fix] Add a proper conf for LDAP (Issue 1218) (#554) 
* Update ldap.conf

* [fix] Port
 2018-10-24 21:04:01 +02:00
Alexandre Aubin
62d72d6f14
Merge pull request #559 from maranda/stretch-unstable 
Update Metronome configuration file to v3.11 standard
 2018-10-24 16:55:35 +02:00
frju365
5566c404ff
[fix] Allow - between two name 2018-10-20 12:16:38 +02:00
Josue-T
428a29936f Fix http2 with curl (#547) 2018-10-19 16:08:28 +02:00
Marco Cirillo
837d0ccd83 Revert "Update data/templates/metronome/metronome.cfg.lua" 
This reverts commit 3471eb728d.
 2018-10-18 00:14:01 +02:00
Marco Cirillo
3471eb728d Update data/templates/metronome/metronome.cfg.lua 
Comment websocket as lua-bitop is not installed by default
 2018-10-17 22:24:21 +02:00
Marco Cirillo
aa670058bd Update data/templates/metronome/metronome.cfg.lua 
Add privacy lists and simple blocking command between loaded modules
 2018-10-17 20:59:56 +02:00
Marco Cirillo
802c71b0e9 Update data/templates/metronome/metronome.cfg.lua 
Add HTTP Upload service (moul's request), and fix indenting
 2018-10-17 20:47:35 +02:00