fripost-ansible - Fripost ansible scripts

	Commit message (Collapse)	Author	Age	Files
*	More logcheck-database tweaks.	Guilhem Moulin	2015-12-01	1
\|
*	dovecot-sieve: Enable the 'editheader' extension (5293).	Guilhem Moulin	2015-11-26	1
\| \| \| \| \|	Which is disabled by default, as per http://wiki.dovecot.org/Pigeonhole/Sieve
*	More logcheck-database tweaks.	Guilhem Moulin	2015-11-12	1
\|
*	nginx: adjust expiration date for static content.	Guilhem Moulin	2015-10-30	3
\|
*	ikiwiki: Also install Authen::Passphrase.	Guilhem Moulin	2015-10-28	1
\|
*	Internal Postfix config: Generate RSA 4096 keys by default.	Guilhem Moulin	2015-10-28	1
\|
*	genkeypair: use install(1) for atomic file creation with permission mode.	Guilhem Moulin	2015-10-28	3
\|
*	Internal Postfix config: Disable TLS protocols <1.2 rather than enable 1.2 only.	Guilhem Moulin	2015-10-27	1
\|
*	Roundcube managesieve SSL options: use AESGCM and disable compression.	Guilhem Moulin	2015-10-27	1
\|
*	stunnel: disable compression.	Guilhem Moulin	2015-10-27	7
\|
*	autoconfiguration: Don't use HTML entities as it makes Thunderbird unhappy.	Guilhem Moulin	2015-10-27	1
\|
*	stunnel: use GCM ciphers only; use SSL options rather than ciphers to ↵	Guilhem Moulin	2015-10-27	7
\| \| \| \|	disable protocols.
*	More logcheck-database tweaks.	Guilhem Moulin	2015-10-14	2
\|
*	Wiki: add the 'getsource' plugin.	Guilhem Moulin	2015-09-30	1
\|
*	Remove \Recent flags when a virtual mailbox is SELECTed.	Guilhem Moulin	2015-09-30	4
\|
*	IMAP: Store virtual indexes in memory.	Guilhem Moulin	2015-09-30	1
\|
*	roundcube: Raise 'imap_timeout' from 1 to 3 minutes.	Guilhem Moulin	2015-09-30	1
\| \| \| \|	See http://wiki.fripost.org/tracker/Error_on_search_in_roundcube/ .
*	Cgit: Add gitolite@ for clone ssh:// URLs.	Guilhem Moulin	2015-09-29	1
\|
*	roundcube: Use php5-enchant and GNU Aspell for spell-checking.	Guilhem Moulin	2015-09-29	1
\|
*	ikiwiki: Enable DNSSEC and email notification.	Guilhem Moulin	2015-09-29	2
\|
*	Add jqueryui configuration.	Guilhem Moulin	2015-09-29	2
\|
*	Make roundcube plugin configuration static files.	Guilhem Moulin	2015-09-29	4
\|
*	More logcheck-database tweaks.	Guilhem Moulin	2015-09-24	1
\|
*	Upgrade Roundcube to 1.1.2.	Guilhem Moulin	2015-09-24	8
\|
*	Replace gitweb with cgit.	Guilhem Moulin	2015-09-21	16
\|
*	More logcheck-database tweaks.	Guilhem Moulin	2015-09-21	2
\|
*	dovecot: Disable SSLv3.	Guilhem Moulin	2015-09-17	1
\|
*	Fix address verification probes on the MSA.	Guilhem Moulin	2015-09-16	5
\| \| \| \| \|	Put all relay restrictions under smtpd_relay_restrictions and leave smtpd_recipient_restrictions empty, since we don't do DNSBL.
*	More logcheck-database tweaks.	Guilhem Moulin	2015-09-15	1
\|
*	systemd: Auto-restart the gitweb service.	Guilhem Moulin	2015-09-15	2
\|
*	Configure FreshClam.	Guilhem Moulin	2015-09-15	2
\|
*	Enable the IMAP COMPRESS extension [RFC4978].	Guilhem Moulin	2015-09-15	1
\|
*	Add .asc to text/plain nginx MIME types.	Guilhem Moulin	2015-08-21	1
\|
*	More logcheck-database tweaks.	Guilhem Moulin	2015-08-21	3
\|
*	Update unattended-upgrades configuration.	Guilhem Moulin	2015-07-19	1
\|
*	Use full name rather than prefix for MySQL option 'key_buffer_size'.	Guilhem Moulin	2015-07-19	1
\| \| \| \| \| \|	[Warning] Using unique option prefix key_buffer instead of key_buffer_size is deprecated and will be removed in a future release. Please use the full name instead.
*	Use <bacula@fripost.org> as envelope sender for bacula.	Guilhem Moulin	2015-07-19	1
\|
*	Change match to "^(Genuine)?Intel.*" for Intel processors.	Guilhem Moulin	2015-07-12	3
\|
*	Rename 'mysql_user' plugin to 'mysql_user2' to avoid name collisions.	Guilhem Moulin	2015-07-12	4
\|
*	More logcheck-database tweaks.	Guilhem Moulin	2015-06-22	1
\|
*	logcheck: Match only hexdigits in postfix queue ID.	Guilhem Moulin	2015-06-19	1
\|
*	Match IPv6 addresses in logcheck rules.	Guilhem Moulin	2015-06-19	1
\|
*	Use 'double-bounce@fripost.org' as envelope sender for verification probes.	Guilhem Moulin	2015-06-11	2
\|
*	Don't bounce unverified recipients upon 4xx errors.	Guilhem Moulin	2015-06-11	3
\| \| \| \| \| \| \|	We don't want to bounce messages for which the recipient(s)' MTA replies 451 due to some greylisting in place. We would like to accept 451 alone, but unfortunately it's not possible to bounce unverified recipients due to DNS or networking errors.
*	Set a rootdn on cn=Monitor.	Guilhem Moulin	2015-06-11	1
\|
*	Use a single LDAP connection per Munin round to collect slapd statistics.	Guilhem Moulin	2015-06-11	4
\| \| \| \|	Using multigraphs instead.
*	More logcheck-database tweaks.	Guilhem Moulin	2015-06-10	3
\|
*	gitweb: Explicitely install FCGI.	Guilhem Moulin	2015-06-10	1
\|
*	slapd monitoring.	Guilhem Moulin	2015-06-10	6
\| \| \| \| \|	We don't use the provided 'slapd_' Munin plugin because it doesn't support SASL binds.
*	Configure munin nodes & master.	Guilhem Moulin	2015-06-10	39
\| \| \| \| \|	Interhost communications are protected by stunnel4. The graphs are only visible on the master itself, and content is generated by Fast CGI.