- 22 Jul, 2015 1 commit
-
-
Joshua Tauberer authored
Some users report munin is broken because munin and munin-node disagree about the name of the machine. I think this occurs if hostname (used by munin-node) reports a different name than PRIMARY_HOSTNAME (which we put in the munin config). Hard-code PRIMARY_HOSTNAME in munin-node.conf. Fixes #474. See https://discourse.mailinabox.email/t/404-not-found-on-admin-munin/623/24.
-
- 21 Jul, 2015 4 commits
-
-
Joshua Tauberer authored
-
Joshua Tauberer authored
-
Joshua Tauberer authored
-
Joshua Tauberer authored
dont run network checks during upgrades since this is a bad reason to block an upgrade from going through
-
- 20 Jul, 2015 1 commit
-
-
Joshua Tauberer authored
forgot a 'continue' statement see 216acb0e fixes #497
-
- 19 Jul, 2015 6 commits
-
-
Joshua Tauberer authored
fix occ upgrade to not bail when occ returns 'ownCloud is already latest version' exit code 3, see #496
-
Joshua Tauberer authored
v0.12c remove live dependency on Sourceforge everything was already on master
-
Joshua Tauberer authored
-
Joshua Tauberer authored
use a temporary mirror for roundcube while Sourceforge is recovering from an outage https://twitter.com/sfnet_ops/status/622171668497076224
-
Joshua Tauberer authored
-
Joshua Tauberer authored
hard-code pyzor sevice URL because 'pyzor discover' is failing because Sourceforge is offline, fixes #496
-
- 18 Jul, 2015 2 commits
-
-
Joshua Tauberer authored
use a temporary mirror for roundcube while Sourceforge is recovering from an outage https://twitter.com/sfnet_ops/status/622171668497076224
-
Joshua Tauberer authored
-
- 17 Jul, 2015 4 commits
-
-
Joshua Tauberer authored
-
Joshua Tauberer authored
-
Joshua Tauberer authored
hard-code pyzor sevice URL because 'pyzor discover' is failing because Sourceforge is offline, fixes #496
-
Joshua Tauberer authored
-
- 13 Jul, 2015 2 commits
-
-
Joshua Tauberer authored
Add TLSA record for SSL connections.
-
PortableTech authored
While not widely supported, there are some browser addons that can validate DNSSEC and TLSA for additional out-of-band verification of certificates when browsing the web. Costs nothing to implement and might improve security in some situations.
-
- 11 Jul, 2015 2 commits
-
-
Joshua Tauberer authored
outgoing_mail_header_filters use local hostname and ip
-
Joshua Tauberer authored
Optimise FAIL2BAN jail.local
-
- 10 Jul, 2015 3 commits
-
-
Joshua Tauberer authored
closes #476
-
Joshua Tauberer authored
-
Brian Bustin authored
-
- 09 Jul, 2015 1 commit
-
-
Joshua Tauberer authored
-
- 06 Jul, 2015 2 commits
-
-
anoma authored
Explicitly set the timings and counts for the dovecot jail rather than change the global [DEFAULT] and inherit it for this one jail. These settings are far too safe so a future PR should increase security here.
-
anoma authored
Reverts the remaining FAIL2BAN settings to default: findtime 600 and maxretry 3. As jail settings override default settings this was hardly being used anyway so it is better to explicitly set it per jail as and when required.
-
- 04 Jul, 2015 2 commits
-
-
Joshua Tauberer authored
-
Joshua Tauberer authored
setting an alias to forward to two or more addresses was broken since aa334283 fixes #482
-
- 03 Jul, 2015 4 commits
-
-
Joshua Tauberer authored
-------------------- This is a minor update to v0.11, which was a major update. Please read v0.11's advisories. * The administrator@ alias was incorrectly created starting with v0.11. If your first install was v0.11, check that the administrator@ alias forwards mail to you. * Intrusion detection rules (fail2ban) are relaxed (i.e. less is blocked). * SSL certificates could not be installed for the new automatic 'www.' redirect domains. * PHP's default character encoding is changed from no default to UTF8. The effect of this change is unclear but should prevent possible future text conversion issues. * User-installed SSL private keys in the BEGIN PRIVATE KEY format were not accepted. * SSL certificates with SAN domains with IDNA encoding were broken in v0.11. * Some IDNA functionality was using IDNA 2003 rather than IDNA 2008.
-
Joshua Tauberer authored
-
Joshua Tauberer authored
-
Joshua Tauberer authored
-
- 02 Jul, 2015 6 commits
-
-
PortableTech authored
Modify outgoing_mail_header_filters and mail-postfix.sh files to result in the primary hostname, and the public ip of the server showing in the first mail header route instead of unknown and 127.0.0.1. This could help lower the spam score of mail sent from your server to some public mail services.
-
-
Joshua Tauberer authored
update docstring to clarify usage of -c option
-
Hnk Reno authored
-
Joshua Tauberer authored
-
Joshua Tauberer authored
cleanup and harden of fail2ban
-