Commit message (Collapse) | Author | Age | Files | |
---|---|---|---|---|
* | Improve Debian 11's fail2ban rules. | Guilhem Moulin | 2022-12-18 | 2 |
| | ||||
* | IMAP: Update role to Debian Buster. | Guilhem Moulin | 2020-05-19 | 1 |
| | | | | | | | | For `ssl_cipher_list` we pick the suggested value from https://ssl-config.mozilla.org/#server=dovecot&version=2.3.9&config=intermediate&openssl=1.1.1d At the moment it's equivalent (modulo order) to adding ‘EDH+AESGCM+aRSA’ to ‘EECDH+AESGCM:EECDH+CHACHA20!MEDIUM!LOW!EXP!aNULL!eNULL’. | |||
* | Improve/harden fail2ban configuration. | Guilhem Moulin | 2020-01-25 | 4 |
| | | | | | | | | | * Use nftables sets with a timeout * Start daemon with a hardened unit file and restricted Capability Bounding Set. (This requires to change the log path to /var/log/fail2ban/*.) * Skip database as we don't care about persistence. * Refactor jail.local | |||
* | Update 'IMAP', 'MSA' and 'LDAP-provider' roles to Debian Stretch. | Guilhem Moulin | 2018-12-09 | 1 |
| | ||||
* | Configure the webmail. | Guilhem Moulin | 2015-06-07 | 1 |