Commit graph

132 commits

Author SHA1 Message Date
86f906db4a reset.sh: add every .gitignore path 2025-01-27 00:48:37 +01:00
6d3b725304 add arguments for alpine major version and mirror 2025-01-27 00:47:31 +01:00
8d4a6649d3 set umask to 077 2025-01-22 21:45:24 +01:00
c69afc0a63 create variable for php version + upgrade to php 8.4 2025-01-22 21:44:16 +01:00
bf2cf5539a readme: document profiles 2025-01-22 19:15:17 +01:00
6332458101 *.sh shebang: use sh instead of bash 2025-01-22 19:15:17 +01:00
63e5ea9ead knot.conf: fix warnings about journal-content: all 2025-01-22 19:15:17 +01:00
5bd6a23546 knot.conf: disable notify to secondary by default 2025-01-22 19:15:12 +01:00
25725ed2f4 nsd.conf: make default secret obviously invalid 2025-01-22 19:00:17 +01:00
b1aa8efea4 add upstream.sh + move php to base.yaml 2025-01-22 18:58:35 +01:00
9ed1b18f89 update readme 2025-01-20 19:24:59 +01:00
7ab7a6e958 add nsd service 2025-01-20 19:24:44 +01:00
9ecbd6f59d setup-xoq.sh: strip CR char for podman compatibility 2025-01-20 17:27:09 +01:00
fbbaf1f31f fully qualified images + static ips 2025-01-20 17:24:27 +01:00
bebfe9d6fb add knot-secondary container 2024-12-19 15:50:52 +01:00
30ffd732c3 update to latest alpine and sftpgo tarballs 2024-12-19 15:16:27 +01:00
3d1368530e update knot configuration
set nsec3 iterations and salt length to 0 and completely disable server version disclosure
2024-11-18 22:24:30 +01:00
50a52ca68f add compatibility with rootless docker
notably /tmp is not automatically writable inside a read-only container, contrarily to podman
2024-10-14 22:02:31 +02:00
4cc1f2bebd put back license information on readme 2024-09-29 22:09:33 +02:00
4c24e5720b readme: more information 2024-09-22 18:38:33 +02:00
72f793c5dd add .gitkeep for more required directories 2024-09-22 18:33:09 +02:00
cd9234adc5 add .gitkeep for required directories 2024-09-10 18:38:27 +02:00
7f94b9d919 add default zone files for registry 2024-08-08 02:51:15 +02:00
dfbf57a155 various minor fixes 2024-08-08 00:11:05 +02:00
9a03df85f2 run tor as root 2024-08-08 00:03:43 +02:00
c438fc348d rename root directories 2024-07-26 01:43:56 +02:00
40a2fec99d make every container read-only 2024-07-25 21:20:03 +02:00
05e4dbcd63 sftpgo.toml: force umask to 022 + don't show version 2024-07-25 15:20:22 +02:00
2088d187d3 add alpine as base image + add cronie service 2024-07-24 18:30:48 +02:00
4b387af85e move container/ tree at root, del mkosi, add certbot 2024-07-23 00:27:43 +02:00
b6ec2e2ef6 podman containers introduction 2024-07-18 20:58:12 +02:00
572816d54e sudoers: add --config to certbot commands 2024-04-10 00:11:13 +02:00
5a3a301451 sftpgo.toml: listen also on ipv6 2024-04-09 18:24:00 +02:00
d21a838d70 fix apache persmissions again 2024-04-09 18:23:40 +02:00
de3fd449e6 mkosi 20 → 22 2024-04-09 17:31:14 +02:00
aaed1a93c4 use debian bookworm instead of testing 2024-04-09 17:18:31 +02:00
247a059909 format nginx/inc/messages.conf 2024-04-09 17:14:08 +02:00
cfbefe7ffc add sntrup761x25519-sha512 to sshd_config 2024-04-09 17:12:52 +02:00
a15f130950 fix some permissions 2024-04-09 17:09:44 +02:00
2c11085e5e Better installation script sftpgo.sh 2024-02-10 19:00:59 +01:00
38c23590da Add DNS challenge hooks for Certbot 2024-01-30 20:24:22 +01:00
8a72df8461 certbot: cli.ini > servnest.ini 2024-01-28 19:29:02 +01:00
8782bfcfb7 fix sftpgo.sh when source directory already exists 2024-01-27 15:05:19 +01:00
6f9a7ffdaf systemd-resolved → knot-resolver 2024-01-27 15:04:34 +01:00
5b4e45f5e1 update for mkosi 20 2024-01-25 10:53:45 +01:00
13348b1662 apt repository: testing + disable onion service 2024-01-25 10:51:04 +01:00
2b71dcf65f fix gitignore 2024-01-25 10:49:43 +01:00
8001a938e2 /etc/tor/torrc permissions 2023-11-04 16:21:15 +01:00
e57db26e9b sftpgo.toml: update to better match Niver config 2023-11-04 16:20:52 +01:00
e31d394c3d sudoers: fix certbot arguments order 2023-11-04 16:19:31 +01:00