self-hosting

Author	SHA1	Message	Date
Tunui Franken	f041c35b86	Minor changes	2024-12-31 18:24:58 +01:00
Tunui Franken	3dbee0703d	[forgejo] Move vaulted variables to inventory Use defaults for examples and defaults	2024-12-31 18:17:38 +01:00
Tunui Franken	09346eae9b	[add_cert_dns_01] Move vaulted variables to inventory Use defaults for examples and defaults	2024-12-31 18:17:21 +01:00
Tunui Franken	bfe30310c5	Start with higher values for rspamd actions	2024-12-25 19:20:33 +01:00
Tunui Franken	71053ef90b	Add missing 'state: directory' attribute	2024-12-22 10:26:31 +01:00
Tunui Franken	4ffd0d8ec7	[forgejo] Add missing dependency 'setup_nftables'	2024-12-22 10:17:14 +01:00
Tunui Franken	01ed65eef2	[bugfix] manage-mailserver.sh: $# doesn't apply to function	2024-12-22 10:06:21 +01:00
Tunui Franken	d4932b1ce0	Start a manage-mailserver.sh script for users, passwords, quota, and aliases	2024-12-15 13:49:30 +01:00
Tunui Franken	1fce4d7db7	Use proxymap for postfix pgsql queries	2024-12-15 10:59:25 +01:00
Tunui Franken	5f1caf064e	Minor doc fix	2024-12-15 10:33:00 +01:00
Tunui Franken	ace028b91b	ACME HTTP-01 challenge needs apache	2024-12-15 10:30:34 +01:00
Tunui Franken	31b27b390e	Minor change	2024-12-15 10:21:09 +01:00
Tunui Franken	d9dd7785b6	Only copy bashrc for accounts select accounts	2024-11-29 17:27:12 +01:00
Tunui Franken	7f6e45f841	Add bashrc	2024-11-29 17:11:29 +01:00
Tunui Franken	563ac1b664	Add tag for updating forgejo	2024-11-29 12:15:07 +01:00
Tunui Franken	98e4e0e31f	Fix dovecot socket permissions	2024-11-15 12:42:20 +01:00
Tunui Franken	bd2e2092a6	Check for DHCP with a portable command	2024-11-01 18:04:21 +01:00
Tunui Franken	5a580d9f00	Allow multiple virtual domains	2024-11-01 17:10:52 +01:00
Tunui Franken	80acd7da54	Replace ansible_facts vars by their ansible magic vars counterparts	2024-11-01 11:17:07 +01:00
Tunui Franken	0c15e1b02d	Remove vaulted password in mailserver_database role, move hash to the jinja2 template	2024-10-25 19:31:39 +02:00
Tunui Franken	ddfc5c2841	Indent blockinfile blocks	2024-10-25 18:11:03 +02:00
Tunui Franken	2bcd8b8c5f	Put /var/vmail in a dedicated LV	2024-10-12 17:45:47 +02:00
Tunui Franken	3667e764d8	Save mailserver report on the server	2024-10-12 12:04:24 +02:00
Tunui Franken	c0fffe69c9	Copy /etc/aliases file for mailserver_postfix	2024-10-11 16:26:13 +02:00
Tunui Franken	f10979f457	Minor change	2024-10-11 13:43:14 +02:00
Tunui Franken	280957a857	Postfix corrections	2024-10-11 12:02:31 +02:00
Tunui Franken	80db99c4cc	Allow managesieve for mailserver	2024-10-06 12:44:56 +02:00
Tunui Franken	6a692ac2d5	Don't allow output ssh and only allow dhclient if using dhcp	2024-10-06 12:41:58 +02:00
Tunui Franken	6084b1abb8	Make forgejo-backup less verbose	2024-10-06 11:52:58 +02:00
Tunui Franken	0ddb75d4c5	Also allow output smtp-submission	2024-10-06 11:40:39 +02:00
Tunui Franken	148f06110f	Add missing README files	2024-09-29 11:48:51 +02:00
Tunui Franken	d9d0f35034	Write report to a local file instead of printing the DNS records	2024-09-29 11:47:35 +02:00
Tunui Franken	094e42118d	Don't include a record in SPF	2024-09-29 11:23:09 +02:00
Tunui Franken	45841ffd9f	Print DNS entries at end of mailserver playbook	2024-09-28 14:11:56 +02:00
Tunui Franken	86983b241d	Add role mailserver_dmarc	2024-09-28 12:47:35 +02:00
Tunui Franken	67e70e7017	Add role mailserver_spf	2024-09-28 12:33:47 +02:00
Tunui Franken	998390668e	Setup nftables for mailserver_dovecot	2024-09-28 11:44:49 +02:00
Tunui Franken	b933680621	Setup nftables for mailserver_postfix	2024-09-28 11:44:43 +02:00
Tunui Franken	0f6bc98576	[forgejo] Add cleanup step for when a backup fails	2024-07-31 10:52:14 +02:00
Tunui Franken	59693081e1	Fix DKIM key ownership	2024-07-26 19:07:11 +02:00
Tunui Franken	e188c4ae87	Add DKIM selector map	2024-07-26 18:57:25 +02:00
Tunui Franken	1834dd9503	Add role mailserver_dkim, create DKIM key	2024-07-26 18:47:04 +02:00
Tunui Franken	e411c82f24	Fix lineinfile tasks	2024-07-25 22:10:27 +02:00
Tunui Franken	6d70a60899	Finish imapsieve config for learn-ham and learn-spam	2024-07-25 22:10:02 +02:00
Tunui Franken	b1c0a4f8a1	Add imap_sieve plugin	2024-07-25 19:04:59 +02:00
Tunui Franken	dfef9192ef	Add autoexpunge and subscribe mailbox configs	2024-07-25 18:48:48 +02:00
Tunui Franken	873d15c61e	Add classifier-bayes override	2024-07-25 18:37:36 +02:00
Tunui Franken	26d7a14668	Add redis override for rspamd	2024-07-25 18:20:10 +02:00
Tunui Franken	aa18f19de9	Add sieve to move spam to junk	2024-07-25 18:19:02 +02:00
Tunui Franken	a94c5de1b3	Add milter_headers override	2024-07-25 18:02:20 +02:00
Tunui Franken	efc8ce52f9	Create role mailserver_rspamd	2024-07-25 17:57:37 +02:00
Tunui Franken	81dc218bb1	Restrict sender login mismatch while allowing sending as alias	2024-07-25 17:20:12 +02:00
Tunui Franken	e51afeac6b	Install mutt	2024-07-25 16:54:40 +02:00
Tunui Franken	1deee8ddfe	Add $myhostname to mydestination to allow local emails	2024-07-25 16:20:36 +02:00
Tunui Franken	20430faa4d	Don't include hostname in From address for quota-warning	2024-07-25 15:29:09 +02:00
Tunui Franken	1c6a95883a	Some dovecot fixes	2024-07-25 15:14:20 +02:00
Tunui Franken	60efb8eb38	Set mydestination to localhost	2024-07-24 18:25:33 +02:00
Tunui Franken	f9586ef4fa	Create password hash in Ansible	2024-07-24 17:55:46 +02:00
Tunui Franken	edfaf0e066	Allow multiple virtual_aliases mappings for the same source	2024-07-24 17:29:58 +02:00
Tunui Franken	80cc5a55fe	Minor change	2024-07-24 17:13:24 +02:00
Tunui Franken	628d0c326a	For needed mailboxes: add postmaster, use aliases instead, and create them	2024-07-24 16:46:30 +02:00
Tunui Franken	fc1bbe1c24	Rename forgejo backup log dir	2024-07-21 13:27:57 +02:00
Tunui Franken	b0b308a25d	Add AcceptEnv sshd_config for forgejo	2024-07-21 00:04:19 +02:00
Tunui Franken	1087698be9	Rename forgejo_backup.sh => forgejo-backup.sh	2024-07-20 22:45:10 +02:00
Tunui Franken	dbb0563248	Redirect forgejo-backup logs in cron, move some files	2024-07-20 22:45:10 +02:00
Tunui Franken	b7fcd6e300	fixup! Move forgejo-backup logs out of log dir	2024-07-08 17:28:26 +02:00
Tunui Franken	7d71495034	Fix name of sql dump file in forgejo backup script	2024-07-08 15:47:18 +02:00
Tunui Franken	babf3aee25	Move forgejo-backup logs out of log dir Otherwise the backup includes it's own logs while writing to them	2024-07-08 10:56:11 +02:00
Tunui Franken	ee361662d0	Make sure some dirs exist before doing forgejo backup	2024-07-08 10:40:11 +02:00
Tunui Franken	8ccf64fbff	Allow incoming HTTPS for websites	2024-07-06 20:42:33 +02:00
Tunui Franken	73a730494c	Small fixes	2024-07-06 20:41:11 +02:00
Tunui Franken	7e4af01df3	Add sshd_config	2024-07-06 18:10:12 +02:00
Tunui Franken	6fc0f44412	Add bash_aliases to common	2024-04-14 00:07:57 +02:00
Tunui Franken	7f5358e9da	Add role common with etckeeper	2024-04-13 23:22:15 +02:00
Tunui Franken	949163ca59	Make forgejo conf file non group readable	2024-04-13 22:46:00 +02:00
Tunui Franken	dac63af2ec	Add role "add_cert" to be used instead of add_cert_{dns_01,http_01}	2024-04-09 23:51:18 +02:00
Tunui Franken	b388fa002e	Minor change	2024-04-09 20:21:59 +02:00
Tunui Franken	ac1e28aab6	Fix some vars in mailserver_postfix main.cf template	2024-04-07 20:41:25 +02:00
Tunui Franken	0b9a101c02	[forgejo] Enable mailer with dummy protocol while mailserver isn't ready	2024-04-07 20:39:32 +02:00
Tunui Franken	b4ffb1ae86	Reload apache2 after cloning tunuifranken.info	2024-04-07 17:08:53 +02:00
Tunui Franken	3c1160cd23	[tunuifranken] Change unix user to tunuifranken	2024-04-07 17:08:53 +02:00
Tunui Franken	808a40ac68	Set more specific sudoers permissions for git user	2024-04-07 17:08:53 +02:00
Tunui Franken	e0cfde4c9f	Permit to define forgejo_dump_path with `ansible-playbook -e ...`	2024-04-07 12:09:50 +02:00
Tunui Franken	cbc1712a63	Minor change	2024-04-07 11:51:36 +02:00
Tunui Franken	49b7fea2ee	Fix forgejo .asc file download as user git	2024-04-07 11:51:19 +02:00
Tunui Franken	0b9f2f6197	Minor change	2024-04-01 17:11:27 +02:00
Tunui Franken	c3ebf02781	Add missing apache2 modules for forgejo	2024-04-01 16:42:09 +02:00
Tunui Franken	f27a0901c5	Conditionnaly run DNS-01 or HTTP-01 for certificates	2024-03-08 09:59:23 +01:00
Tunui Franken	f64784fafa	Minor naming change	2024-03-07 18:22:19 +01:00
Tunui Franken	ab2ec4f933	Add certbot command for HTTP-01 challenge	2024-03-07 18:11:27 +01:00
Tunui Franken	2b80d8b762	Add post-hook for letsencrypt certificate	2024-03-07 17:59:06 +01:00
Tunui Franken	0226b9a0a2	Clarify variables used in letsencrypt roles	2024-03-07 15:18:05 +01:00
Tunui Franken	393eafb5c0	Rename role setup_certbot => add_cert_http_01	2024-03-07 15:01:38 +01:00
Tunui Franken	8adc6a74c5	Rename role deploy_certificate => add_cert_dns_01	2024-03-07 15:01:38 +01:00
Tunui Franken	b453e559c9	Disable forgejo mailer functionality, as long as mailserver role isn't ready	2024-03-05 15:33:26 +01:00
Tunui Franken	d7deda69a2	Fix download asc file needs root	2024-03-05 14:27:40 +01:00
Tunui Franken	bcef50c199	Restart postfix instead of reloading	2024-01-27 13:49:09 +01:00
Tunui Franken	47dd5c4676	Add postfix master.cf	2024-01-27 13:47:55 +01:00
Tunui Franken	0ed9279666	Use template for postfix main.cf	2024-01-27 13:47:37 +01:00
Tunui Franken	9344a95d95	Move execution of postgresql script to a handler	2024-01-17 10:01:47 +01:00

1 2 3 4 5 ...

368 commits