summaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFiles
* Define new host "calima" serving Nextcloud.Guilhem Moulin2018-12-0319
* Upgrade wiki baseline to Debian Stretch.Guilhem Moulin2018-12-034
* Upgrade MX baseline to Debian Stretch.Guilhem Moulin2018-12-032
* Upgrade webmail baseline to Debian Stretch.Guilhem Moulin2018-12-037
* ssh_known_hosts: also list ed25519 host (pub)keys.Guilhem Moulin2018-12-031
* Upgrade syntax to Ansible 2.7 (apt module).Guilhem Moulin2018-12-0325
* certs/gencerts.sh: wibbleGuilhem Moulin2018-12-031
* Postfix: replace cdb & btree tables with lmdb ones.Guilhem Moulin2018-12-0315
* IPsec: allow ISAKMP over IPv6.Guilhem Moulin2018-12-032
* Upgrade baseline to Debian Stretch.Guilhem Moulin2018-12-0323
* Skip samhain installation.Guilhem Moulin2018-12-034
* Harden anti spam on the MX:es.Guilhem Moulin2018-06-096
* More logcheck-database tweaks.Guilhem Moulin2018-04-043
* lacme: explicitely bind to [::]:80.Guilhem Moulin2018-04-041
* Postfix: replace 'fifo' types with 'unix', as it's the new default.Guilhem Moulin2018-04-041
* sympa: wibbleGuilhem Moulin2018-04-042
* Firewall: Allow DNS queries over TCP.Guilhem Moulin2018-04-041
* APT: use deb.debian.org as archive source.Guilhem Moulin2018-04-041
* Postscreen: improve DNSBL sites and scores.Guilhem Moulin2018-04-041
* Amavis: bind server to INADDR_LOOPBACKGuilhem Moulin2018-04-041
* Perform recipient address verification on the MSA itself.Guilhem Moulin2018-04-044
* LDAP: Expose part of the database to Nextcloud.Guilhem Moulin2018-04-042
* Upgrade syntax to Ansible 2.5.Guilhem Moulin2018-04-045
* Upgrade syntax to Ansible 2.4.Guilhem Moulin2017-11-237
* More logcheck-database tweaks.Guilhem Moulin2017-09-143
* Fix detection of KVM guests.Guilhem Moulin2017-07-293
* rkhunter: Disable remote updates to fix CVE-2017-7480.Guilhem Moulin2017-07-291
* Use MariaDB as default MySQL flavor.Guilhem Moulin2017-07-296
* Don't install debsecan anymore by default.Guilhem Moulin2017-06-262
* MySQL: Use a single InnoDB file per table.Guilhem Moulin2017-06-151
* Webmail: don't allow outgoing TCP/993 connections.Guilhem Moulin2017-06-151
* postfix-sender-login: strip extension before lookup.Guilhem Moulin2017-06-131
* More logcheck-database tweaks.Guilhem Moulin2017-06-071
* postfix-msa: anonymize SASL-authenticated senders using IPv6.Guilhem Moulin2017-06-061
* dovecot-auth-proxy: Fix synopsis line.Guilhem Moulin2017-06-051
* postscreen: lower zen.spamhaus.org DNSBL score from 3 to 2 on the MX:es.Guilhem Moulin2017-06-051
* postfix-sender-login: wibbleGuilhem Moulin2017-06-052
* dovecot: enable user iteration and add a cronjob for `doveadm purge -A`Guilhem Moulin2017-06-059
* move postfix-sender-login.{service,socket} to files/.Guilhem Moulin2017-06-022
* postfix: enable XFORWARD command from our internal relays.Guilhem Moulin2017-06-021
* postfix: don't rate-limit our IPsec subnet.Guilhem Moulin2017-06-023
* postfix-sender-login: terminate the worker after 32*$nProc connections to rel...Guilhem Moulin2017-06-011
* postfix-sender-login: handle EINTR in read(2) and write(2) calls.Guilhem Moulin2017-06-011
* postfix-sender-login: pre-fork 2 servers.Guilhem Moulin2017-06-011
* Don't make Roundcube add a 'X-Sender' header with the sender's identity.Guilhem Moulin2017-06-011
* Don't let authenticated client use arbitrary sender addresses.Guilhem Moulin2017-06-0111
* /lib/systemd/system → /etc/systemd/systemGuilhem Moulin2017-05-3117
* Also install non-free firmwares on civett.Guilhem Moulin2017-05-304
* Install more sympa dependencies.Guilhem Moulin2017-05-291
* Rotate civett's IPsec's key.Guilhem Moulin2017-05-292
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-24 17:19:56 +0000