YunoHost/yunohost
1
0
Fork 0
mirror of https://github.com/YunoHost/yunohost.git synced 2024-09-03 20:06:10 +02:00
Code Issues Projects Releases Packages Wiki Activity
4662 commits 33 branches 409 tags 24 MiB
Commit graph

52 commits

Author SHA1 Message Date
Alexandre Aubin
1e6da91c78 Add automail conf for https, + increase priority for automail conf and diagnosis 2020-04-11 00:29:49 +02:00
Kayou
887304919e
Merge pull request #917 from YunoHost/fix-acme-challenge-snippet 
Get rid of domain-specific acme-challenge snippet, use a single snippet included in every conf
 2020-04-09 21:07:50 +02:00
Alexandre Aubin
f390f02077 Update nginx security.conf.inc with new Mozilla recommendation 2020-04-08 19:59:27 +02:00
Alexandre Aubin
3a7b93d8aa Get rid of domain-specific acme-challenge snippet, use a single snippet including in every conf 2020-04-06 18:09:14 +02:00
pitchum
5e6e53142b Improve nginx config for xmpp-upload subdomain. 2020-03-25 12:09:53 +01:00
Alexandre Aubin
af415e38e6 Factorize ciphers and headers configuration into a common file for all vhosts 2020-03-23 22:43:29 +01:00
Alexandre Aubin
27f6899b65 /var/www/xmpp-upload.{domain} -> /var/xmpp-upload/{domain} 2020-03-23 22:15:03 +01:00
pitchum
994f0ca1ef nginx + metronome config for http_upload 2020-03-22 08:36:33 +01:00
Alexandre Aubin
f050b3c5b8 First version of http exposure diagnosis 2019-10-10 16:13:13 +02:00
Kayou
e9d399f7cd
Format 2019-04-04 12:29:23 +02:00
Kayou
1a1fc0bdff
Add connection_upgrade 2019-04-04 12:28:00 +02:00
Alexandre Aubin
dbafa47f88
Merge branch 'stretch-unstable' into featureCipherStrategy 2019-03-23 18:19:04 +01:00
Alexandre Aubin
dcff10f6f8 Simplify setting usage in regenconf hooks 2019-03-22 16:31:45 +01:00
Alexandre Aubin
a8f88e7232 [yolo] gzip off in global.conf breaks everything because conflict with gzip on; in nginx.conf ... Moving it to server blocs 2019-03-13 19:11:49 +01:00
Alexandre Aubin
a1d85b6350
Merge branch 'stretch-unstable' into featureCipherStrategy 2019-02-25 00:56:20 +01:00
Alexandre Aubin
198919adc8 Don't add Strict-Transport-Security header in nginx conf if using a self-signed cert 2019-02-22 16:24:19 +01:00
Romuald du Song
5d48640f3c Adapt comment to new context 2019-02-14 23:12:59 +01:00
Romuald du Song
7b01ccfefb remove whitespace control attempt 2019-02-14 21:33:36 +01:00
Romuald du Song
a267e1bc74 what a cumbersome whitespace control 2019-02-14 21:28:56 +01:00
Romuald du Song
3251189ab8 what a cumbersome whitespace control 2019-02-14 21:26:25 +01:00
Romuald du Song
e776c777e6 remove strip whitespace syntax 2019-02-14 21:17:58 +01:00
Romuald du Song
8e1034771a use setting security_ciphers_compatibility to define security configurations 2019-02-04 23:01:16 +01:00
Alexandre Aubin
4a7e33a145 #564 broke the autoconfig, nginx was lookin for mailconfig.xml instead of main/config.xml 2019-01-30 17:34:51 +01:00
frju365
8cb029a55e Better Configuration of nginx (#564) 
* path-traversal

* [fix] try a patch for path-traversal

* Use more_set_headers insta
 2018-11-28 01:21:28 +01:00
liberodark
1906692289 Remove ECDH curve or change it ? (#579) 
Update ECDH curves recommended by Mozilla, now that we are on stretch
 2018-11-27 18:30:39 +01:00
liberodark
76121ea084 HTTP2 On (#580) 
* HTTP2 On

for better security

* Remove old lines
 2018-11-27 18:27:01 +01:00
frju365
d77b157bcc [enh] Set Path as full-path (#563) 
* [fix] Set Path as full-path
* same
* Update yunohost_admin.conf
 2018-10-27 17:47:12 +02:00
frju365
fa66a7b8c7 OCSP Stapling (#533) 
* [enh] Jinja templating
* [enh] try to enable OCSP
* typo
* [mod] use jq (json parsing)
* typo
* well escaping "" :)
* [fix] if 2d part condition
* We need to include this for ynh_render_template to be available >.> ...
* Simplify code
* Gotta export domain too...
* Remove quotes in variable itself..
* Replace previous code blocks by new code
 2018-10-27 16:38:25 +02:00
pitchum
a7e85dbbba [enh] Add MUA autoconfig. 2018-06-25 09:45:13 +02:00
Alexandre Aubin
dd8af083b3 Merge branch 'unstable' into stretch-unstable 2018-05-20 21:43:05 +02:00
Alexandre Aubin
3feae2e877 Some ecdh_curve don't work on jessie 2018-05-02 19:48:36 +02:00
Alexandre Aubin
25bd5648a7 Disabling http2 for now as it's causing weird issues with curl 2018-05-02 18:16:08 +02:00
frju365
cc3c704ba8 [enh] Enable HTTP2 protocol in nginx conf (#448) 
* [Add] http2
* Update yunohost_admin.conf
 2018-05-02 18:07:30 +02:00
frju365
9ebb082e32 [fix] Nginx Regression typo (#459) 2018-05-02 14:10:13 +02:00
Bram
c36431ce24
Merge pull request #454 from frju365/patch-2 
[enh] ECDH Curves
 2018-05-02 06:36:39 +02:00
frju365
90e093a482 Tweak the CSP config in nginx template for domains (#456) 
* Little correction for template conf for apps
* Move the default-src CSP thing to report-only for now
 2018-05-01 23:44:23 +02:00
frju365
6c07296b9f
[Fix] ECdH curve not compatible with Jessie 2018-05-01 17:16:27 +02:00
frju365
d497fd216a
Update server.tpl.conf 2018-04-28 21:40:39 +02:00
frju365
f59eed7b7e
[enh] add X25519 curve 2018-04-28 21:33:49 +02:00
frju365
d73789c546
Update server.tpl.conf 2018-04-28 21:21:25 +02:00
frju365
0154f15d95
[enh] ECDH Curves 2018-04-28 20:42:57 +02:00
frju365
4276a187a0
[enh] Comment with the URL of the Mozilla Directives 2018-02-09 16:24:16 +01:00
frju365
03273e3b94
[fix] typo 2018-02-09 16:20:29 +01:00
frju365
c824f403a4
[Fix] Referrer, CSP bad conf. cf. Another pr. 2018-02-09 16:10:31 +01:00
frju365
b655229cbd
[Fix] Referrer 2017-12-30 11:18:17 +01:00
frju365
95835118bd
[Fix] CSP Standart. 2017-12-29 17:59:12 +01:00
frju365
9e19e5316c
[Fix] Nginx headers 2017-12-29 16:07:15 +01:00
frju365
e696caa31f
[Fix] Nginx headers 2017-12-29 16:00:29 +01:00
Alexandre Aubin
6cc237dcca Changing nginx ciphers to intermediate compatiblity (#298) 
* Changing nginx ciphers to intermediate compatiblity
* [fix] Move commented ciphers list after, and add explanation
* [fix] Move commented ciphers list after, and add explanation
 2017-04-28 17:37:34 +02:00
Alexandre Aubin
f851817bbf Updating ciphers with recommendation from mozilla with modern compatibility 2017-03-12 20:58:45 -04:00