YunoHost/yunohost
1
0
Fork 0
mirror of https://github.com/YunoHost/yunohost.git synced 2024-09-03 20:06:10 +02:00
Code Issues Projects Releases Packages Wiki Activity
4662 commits 33 branches 409 tags 24 MiB
Commit graph

309 commits

Author SHA1 Message Date
Alexandre Aubin
8e46b536dc Somewhat cleaner hack to check the status of those damn services that aren't the real services... 2020-04-17 03:20:40 +02:00
Alexandre Aubin
1e6da91c78 Add automail conf for https, + increase priority for automail conf and diagnosis 2020-04-11 00:29:49 +02:00
Kayou
887304919e
Merge pull request #917 from YunoHost/fix-acme-challenge-snippet 
Get rid of domain-specific acme-challenge snippet, use a single snippet included in every conf
 2020-04-09 21:07:50 +02:00
Kayou
a9af94b960
Merge pull request #913 from YunoHost/update-nginx-ciphers 
Update nginx SSL conf with new Mozilla recommendation
 2020-04-09 21:07:29 +02:00
Kayou
4b7abd3cde
Merge pull request #914 from YunoHost/update-mailstack-ciphers 
Update mailstack ciphers
 2020-04-09 21:07:16 +02:00
Alexandre Aubin
c06fe42078 Hmgn don't change the value for the session cache size otherwise that break test for restore from old version for stupid reasons -.- 2020-04-08 21:33:34 +02:00
Alexandre Aubin
71cc4fde97 We in fact only have ssl 1.1.0l, not 1.1.1l on Stretch. 2020-04-08 19:59:27 +02:00
Alexandre Aubin
f390f02077 Update nginx security.conf.inc with new Mozilla recommendation 2020-04-08 19:59:27 +02:00
Alexandre Aubin
3a7b93d8aa Get rid of domain-specific acme-challenge snippet, use a single snippet including in every conf 2020-04-06 18:09:14 +02:00
Alexandre Aubin
22b9565eb7 Forgot to check that these headers are different from the default in security.conf ... maybe we want to keep them as is? Not clear why they have different values tan the domain configs... 2020-04-06 16:56:53 +02:00
Alexandre Aubin
4d99cbe870 Add ref for security headers 2020-04-06 16:55:20 +02:00
Alexandre Aubin
151d9d3c6f
We in fact only have ssl 1.1.0l, not 1.1.1l on Stretch. 2020-04-05 18:31:33 +02:00
Alexandre Aubin
f7ac93b0b7
We in fact only have ssl 1.1.0l, not 1.1.1l on Stretch. 2020-04-05 18:31:16 +02:00
Alexandre Aubin
aaa5365fa6 Update postfix SSL conf according to Moz^Cla recommentation 2020-04-03 03:41:52 +02:00
Alexandre Aubin
23617a9386 Update dovecot SSL conf according to Mozilla recommentation 2020-04-03 03:41:37 +02:00
Alexandre Aubin
128577686a Forgot to make yunohost_admin.conf to also use the common securit.conf.inc 2020-04-03 03:09:46 +02:00
Alexandre Aubin
14ff4c6725
Merge pull request #831 from pitchum/xmpp-http-upload 
XMPP http upload
 2020-03-30 20:53:11 +02:00
pitchum
5e6e53142b Improve nginx config for xmpp-upload subdomain. 2020-03-25 12:09:53 +01:00
pitchum
1f09abfa51 Rationalize some nginx config into security.conf.inc. 2020-03-25 11:51:57 +01:00
Alexandre Aubin
6ed3ba97ce Add permission to stuff to be indexed by slapd to avoid it flooding complains in syslog 2020-03-24 20:22:47 +01:00
Alexandre Aubin
af415e38e6 Factorize ciphers and headers configuration into a common file for all vhosts 2020-03-23 22:43:29 +01:00
Alexandre Aubin
27f6899b65 /var/www/xmpp-upload.{domain} -> /var/xmpp-upload/{domain} 2020-03-23 22:15:03 +01:00
pitchum
994f0ca1ef nginx + metronome config for http_upload 2020-03-22 08:36:33 +01:00
pitchum
c6e8bb5d26 Always expect subdomain xmpp-upload.domain.net. 
This subdomain will be part of Letsencrypt certificate so
it MUST be defined in DNS zone otherwise certificate renewal will fail.
 2020-03-22 08:35:02 +01:00
Alexandre Aubin
937d339631 Add category to services to have more meaningful messages in reports about port forwarding checks 2020-03-21 23:09:47 +01:00
ljf (zamentur)
5c2748ba85
[fix] This DNS resolver in ipv6 is unreachable 2019-12-02 22:32:59 +01:00
Alexandre Aubin
615a164c06
Merge pull request #791 from decentral1se/add-pop3-setting 
Add pop3.enabled setting
 2019-11-25 16:19:36 +01:00
Alexandre Aubin
7986f61b14 Specific shit for mysql 2019-11-17 16:59:35 +01:00
Alexandre Aubin
a7a3e7b6ba Try to keep this service list in alphabetic order or something 2019-11-17 16:39:41 +01:00
Alexandre Aubin
bb8b1b052d Using /var/log/daemon.log or /var/log/syslog is pointless, these files logs many different things. Instead, we shall always return the logs from journalctl 2019-11-17 16:39:12 +01:00
Luke Murphy
83b4be5345
Add setting to configure pop3 for dovecot 2019-11-10 20:57:46 +07:00
Alexandre Aubin
5a68250322 test-conf -> test_conf, and test-status -> test_status 2019-11-08 22:35:25 +01:00
Alexandre Aubin
a9dd701824 Improve port diagnosis by adding a relation between ports and services 2019-11-08 22:29:21 +01:00
Alexandre Aubin
e15d8e7262 Add test about configuration validity 2019-11-07 11:34:20 +01:00
Alexandre Aubin
d879d27208 Add test-status to have a custom status check for service like postfix and yunohost-firewall 2019-11-07 11:34:20 +01:00
Alexandre Aubin
5818de3a82 Remove the whole monitoring / glances stuff 2019-10-14 04:48:56 +02:00
Alexandre Aubin
f050b3c5b8 First version of http exposure diagnosis 2019-10-10 16:13:13 +02:00
Alexandre Aubin
fe8fd1b2c5 Change from #802 was only about the yunohost jail ... this should be global >.> 2019-10-08 20:04:08 +02:00
Alexandre Aubin
8533103788
Merge pull request #803 from YunoHost/burn-etckeeper 
Get rid of etckeeper
 2019-10-08 18:33:12 +02:00
Alexandre Aubin
93d383b957
Merge branch 'stretch-unstable' into improve-permission-interface 2019-09-22 18:38:15 +02:00
Alexandre Aubin
eb57a4ad9e Get rid of etckeeper 2019-09-19 19:51:27 +02:00
J. Doe
f18cff9dba change maxretry of fail2ban from 6 to 10 2019-09-19 13:01:22 +02:00
Alexandre Aubin
0f688caccd Swap 'main' in permission namespace 2019-09-13 16:31:02 +02:00
Alexandre Aubin
51171b84bf main.metronome -> main.xmpp 2019-09-13 16:31:02 +02:00
Alexandre Aubin
2dc809548b Fixing again the whole permission / cert situation for slapd ... for good this time hopefully 2019-08-13 17:32:55 +02:00
Alexandre Aubin
dde3a19350 Fix some critical permissions issues with ssl / slapd configuration 2019-08-12 01:56:24 +02:00
yalh76
ca95035f72 Adding openldap TLS support 2019-07-14 12:26:59 +02:00
Alexandre Aubin
59e2db99ba
Merge branch 'stretch-unstable' into group_permission 2019-07-05 20:59:10 +02:00
Alexandre Aubin
fbfa249ff5 Remove binding to IPv6 ::1 as it makes ipv4-only instances crash... (unable to bind to ::1) 2019-07-05 20:50:13 +02:00
Alexandre Aubin
d8b086a06a [fix] Running slapindex seems to fix the previous issues about LDAP indexing stuff 2019-06-06 19:26:49 +02:00