# Date Author Comment
913f599c 2019-03-01 14:42 Marc Dequènes

add 'freds' user

ad6dfb77 2019-02-28 08:42 Marc Dequènes

dc-dovecot: adapt for Dovecot 2.3

929e449f 2019-02-28 08:42 Marc Dequènes

mail: ensure to fetch facts for mda replication partner

fd27c961 2019-02-24 18:11 Marc Dequènes

update 'bind9' module to avoid vars conflicts

a66cf6ea 2019-02-24 12:29 Marc Dequènes

dc-postfix: use vars instead of static set_fact

5f93387b 2019-02-24 12:29 Marc Dequènes

dc-dovecot: use vars instead of static set_fact

c1594edc 2019-02-24 11:17 Marc Dequènes

mail: ensure facts for Redis master are fetched

fccc455f 2019-02-24 11:01 Marc Dequènes

dc-ldap: use vars instead of static set_fact

14a2f554 2019-02-24 10:25 Marc Dequènes needs 'expires' apache plugin

6ca99d81 2019-02-24 00:21 Marc Dequènes install config

initial install fails without it

a7e9483c 2019-01-17 14:34 Marc Dequènes

disable all monitoring until Nicecity-NG is ready

the current machine is not able to hold the load and crash

2dbd6575 2019-01-11 19:28 Marc Dequènes

force lists in intermediate variables to be resolved #2

65d9ed5c 2019-01-11 19:23 Marc Dequènes

dc-web: rsync needed for 'synchronize' module

d25cc3cc 2019-01-11 17:02 Marc Dequènes

update submodules

1562056d 2019-01-11 17:01 Marc Dequènes

force lists in intermediate variables to be resolved

35a67e9f 2019-01-10 04:58 Marc Dequènes fix index permissions

802177b7 2018-12-30 14:44 Marc Dequènes

Orfeo: needs accounts resolution

It was removed in e8b3717 because Orfeo does not have historical VIP
shell accounts anymore, but certain services needs it (like

aad53888 2018-12-30 13:41 Marc Dequènes

dns: adjust rate limiting

f498ead5 2018-12-30 10:33 Marc Dequènes

Pond: experimenting with Bind DNSSEC support

55ee712d 2018-12-30 10:32 Marc Dequènes

Pond: update list of reverse zones

a7da91d8 2018-12-29 10:18 Marc Dequènes

dns: add rate limiting

6e731173 2018-12-29 08:31 Marc Dequènes

added duckcorp/

9ab70ad9 2018-12-29 07:59 Marc Dequènes

dc-postfix: rework TLS security

  • enforce server cipher order
  • be more restrictive with mandatory secured connections
  • smtpd?_tls_session_cache_database is not needed anymore, RFC 5077 TLS
    session tickets is recommended instead
  • share TLS settings among server types
7dcda2d6 2018-12-28 16:35 Marc Dequènes (Duck) webstats are no more

Removed Piwik/Matomo from the CSP.

0cf9ae03 2018-12-28 16:27 Marc Dequènes (Duck) forgot alias to TLD

(1-25/608) Per page: 25, 50, 100

Also available in: Atom