summaryrefslogtreecommitdiffstats
path: root/roles/common/tasks
Commit message (Expand)AuthorAgeFiles
...
* Replace IPSec tunnels by app-level ephemeral TLS sessions.Guilhem Moulin2015-06-073
* Log SASL usernames for longer, but don't include mail.log into syslog.Guilhem Moulin2015-06-071
* Fix syntax error.Guilhem Moulin2015-06-071
* Don't install 'unhide.rb'.Guilhem Moulin2015-06-071
* Don't use generic maps.Guilhem Moulin2015-06-071
* Generate certs for Dovecot and Nginx if they are not there.Guilhem Moulin2015-06-071
* Make genkeypair.sh able to display TXT record for DKIM signatures.Guilhem Moulin2015-06-072
* Add support for CSR and subjectAltName in genkeypair.sh.Guilhem Moulin2015-06-071
* More logcheck-database tweaks.Guilhem Moulin2015-06-071
* logcheck-database tweaks.Guilhem Moulin2015-06-071
* Don't require a PKI for IPSec.Guilhem Moulin2015-06-072
* Don't try to start smart on VMs.Guilhem Moulin2015-06-071
* wibbleGuilhem Moulin2015-06-072
* Make use of Ansible 1.5 new features.Guilhem Moulin2015-06-073
* Install haveged.Guilhem Moulin2015-06-072
* Install ClamAV.Guilhem Moulin2015-06-072
* wibbleGuilhem Moulin2015-06-071
* Configure the webmail.Guilhem Moulin2015-06-071
* Force expansion of escape sequences.Guilhem Moulin2015-06-071
* wibbleGuilhem Moulin2015-06-071
* Install common packages.Guilhem Moulin2015-06-071
* Configure S.M.A.R.T.Guilhem Moulin2015-06-072
* Configure NTP.Guilhem Moulin2015-06-072
* wibbleGuilhem Moulin2015-06-071
* Share master.cf accross all Postfix instances.Guilhem Moulin2015-06-071
* Use a dedicated SMTP port for samhain.Guilhem Moulin2015-06-071
* Reorganization.Guilhem Moulin2015-06-073
* Optimize LDAP modifications.Guilhem Moulin2015-06-071
* Load our schema *before* the database.Guilhem Moulin2015-06-071
* Configure debsecan.Guilhem Moulin2015-06-071
* Common LDAP (slapd) configuration.Guilhem Moulin2015-06-072
* Common MySQL configuration.Guilhem Moulin2015-06-072
* Postfix master (nullmailer) configurationGuilhem Moulin2015-06-073
* Be more specific regarding the protocol in use for IPSec policies.Guilhem Moulin2015-06-071
* Don't start daemons when there is a triggered handler.Guilhem Moulin2015-06-073
* Flush pending handlers between each include.Guilhem Moulin2015-06-076
* We are not using nf_conntrack.Guilhem Moulin2015-06-071
* Autostart daemons.Guilhem Moulin2015-06-075
* Prohibit binding against the IP reserved for IPSec.Guilhem Moulin2015-06-071
* Use a dedicated, non-routable, IPv4 for IPSec.Guilhem Moulin2015-06-072
* Don't save dynamic rules.Guilhem Moulin2015-06-071
* Add a 'check' switch to the firewall.Guilhem Moulin2015-06-071
* Configure the (basic) logging policy.Guilhem Moulin2015-06-072
* Configure IPSec.Guilhem Moulin2015-06-072
* Configure fail2ban.Guilhem Moulin2015-06-072
* Configure rkhunter.Guilhem Moulin2015-06-072
* Configure samhain.Guilhem Moulin2015-06-072
* Configure v4 and v6 iptable rulesets.Guilhem Moulin2015-06-072
* Configure APT.Guilhem Moulin2015-06-072
* Configure /etc/{hosts,hostname,mailname}.Guilhem Moulin2015-06-072