flyingscorpio/self-hosting
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
421 commits 1 branch 0 tags 1.1 MiB
Commit graph

377 commits

Author SHA1 Message Date
Tunui Franken
4c516c3f5a fixup! Use hostname for VG name 2025-01-12 10:06:54 +01:00
Tunui Franken
6e38e9dea6 Start role icinga2_master 2025-01-11 12:44:28 +01:00
Tunui Franken
e72a1d2284 Use hostname for VG name 2025-01-10 14:06:42 +01:00
Tunui Franken
4d2d67aed1 mailserver-manage: Add rm-user 2025-01-05 00:07:25 +01:00
Tunui Franken
201d19716e mailserver-manage: Fix syntax error 2025-01-04 23:54:24 +01:00
Tunui Franken
8626dd49bf mailserver-manage: Add add-random-alias 2025-01-04 23:53:44 +01:00
Tunui Franken
02281e9f67 Prefer local.d over override.d for rspamd configs 2025-01-04 22:13:42 +01:00
Tunui Franken
9fd411fb7e [mailserver-manage] Implement add_alias 2025-01-03 15:23:24 +01:00
Tunui Franken
8c55770cae Rename manage-mailserver.sh => mailserver-manage.sh 2025-01-03 12:59:21 +01:00
Tunui Franken
f041c35b86 Minor changes 2024-12-31 18:24:58 +01:00
Tunui Franken
3dbee0703d [forgejo] Move vaulted variables to inventory 
Use defaults for examples and defaults
 2024-12-31 18:17:38 +01:00
Tunui Franken
09346eae9b [add_cert_dns_01] Move vaulted variables to inventory 
Use defaults for examples and defaults
 2024-12-31 18:17:21 +01:00
Tunui Franken
bfe30310c5 Start with higher values for rspamd actions 2024-12-25 19:20:33 +01:00
Tunui Franken
71053ef90b Add missing 'state: directory' attribute 2024-12-22 10:26:31 +01:00
Tunui Franken
4ffd0d8ec7 [forgejo] Add missing dependency 'setup_nftables' 2024-12-22 10:17:14 +01:00
Tunui Franken
01ed65eef2 [bugfix] manage-mailserver.sh: $# doesn't apply to function 2024-12-22 10:06:21 +01:00
Tunui Franken
d4932b1ce0 Start a manage-mailserver.sh script for users, passwords, quota, and aliases 2024-12-15 13:49:30 +01:00
Tunui Franken
1fce4d7db7 Use proxymap for postfix pgsql queries 2024-12-15 10:59:25 +01:00
Tunui Franken
5f1caf064e Minor doc fix 2024-12-15 10:33:00 +01:00
Tunui Franken
ace028b91b ACME HTTP-01 challenge needs apache 2024-12-15 10:30:34 +01:00
Tunui Franken
31b27b390e Minor change 2024-12-15 10:21:09 +01:00
Tunui Franken
d9dd7785b6 Only copy bashrc for accounts select accounts 2024-11-29 17:27:12 +01:00
Tunui Franken
7f6e45f841 Add bashrc 2024-11-29 17:11:29 +01:00
Tunui Franken
563ac1b664 Add tag for updating forgejo 2024-11-29 12:15:07 +01:00
Tunui Franken
98e4e0e31f Fix dovecot socket permissions 2024-11-15 12:42:20 +01:00
Tunui Franken
bd2e2092a6 Check for DHCP with a portable command 2024-11-01 18:04:21 +01:00
Tunui Franken
5a580d9f00 Allow multiple virtual domains 2024-11-01 17:10:52 +01:00
Tunui Franken
80acd7da54 Replace ansible_facts vars by their ansible magic vars counterparts 2024-11-01 11:17:07 +01:00
Tunui Franken
0c15e1b02d Remove vaulted password in mailserver_database role, move hash to the jinja2 template 2024-10-25 19:31:39 +02:00
Tunui Franken
ddfc5c2841 Indent blockinfile blocks 2024-10-25 18:11:03 +02:00
Tunui Franken
2bcd8b8c5f Put /var/vmail in a dedicated LV 2024-10-12 17:45:47 +02:00
Tunui Franken
3667e764d8 Save mailserver report on the server 2024-10-12 12:04:24 +02:00
Tunui Franken
c0fffe69c9 Copy /etc/aliases file for mailserver_postfix 2024-10-11 16:26:13 +02:00
Tunui Franken
f10979f457 Minor change 2024-10-11 13:43:14 +02:00
Tunui Franken
280957a857 Postfix corrections 2024-10-11 12:02:31 +02:00
Tunui Franken
80db99c4cc Allow managesieve for mailserver 2024-10-06 12:44:56 +02:00
Tunui Franken
6a692ac2d5 Don't allow output ssh and only allow dhclient if using dhcp 2024-10-06 12:41:58 +02:00
Tunui Franken
6084b1abb8 Make forgejo-backup less verbose 2024-10-06 11:52:58 +02:00
Tunui Franken
0ddb75d4c5 Also allow output smtp-submission 2024-10-06 11:40:39 +02:00
Tunui Franken
148f06110f Add missing README files 2024-09-29 11:48:51 +02:00
Tunui Franken
d9d0f35034 Write report to a local file instead of printing the DNS records 2024-09-29 11:47:35 +02:00
Tunui Franken
094e42118d Don't include a record in SPF 2024-09-29 11:23:09 +02:00
Tunui Franken
45841ffd9f Print DNS entries at end of mailserver playbook 2024-09-28 14:11:56 +02:00
Tunui Franken
86983b241d Add role mailserver_dmarc 2024-09-28 12:47:35 +02:00
Tunui Franken
67e70e7017 Add role mailserver_spf 2024-09-28 12:33:47 +02:00
Tunui Franken
998390668e Setup nftables for mailserver_dovecot 2024-09-28 11:44:49 +02:00
Tunui Franken
b933680621 Setup nftables for mailserver_postfix 2024-09-28 11:44:43 +02:00
Tunui Franken
0f6bc98576 [forgejo] Add cleanup step for when a backup fails 2024-07-31 10:52:14 +02:00
Tunui Franken
59693081e1 Fix DKIM key ownership 2024-07-26 19:07:11 +02:00
Tunui Franken
e188c4ae87 Add DKIM selector map 2024-07-26 18:57:25 +02:00
Tunui Franken
1834dd9503 Add role mailserver_dkim, create DKIM key 2024-07-26 18:47:04 +02:00
Tunui Franken
e411c82f24 Fix lineinfile tasks 2024-07-25 22:10:27 +02:00
Tunui Franken
6d70a60899 Finish imapsieve config for learn-ham and learn-spam 2024-07-25 22:10:02 +02:00
Tunui Franken
b1c0a4f8a1 Add imap_sieve plugin 2024-07-25 19:04:59 +02:00
Tunui Franken
dfef9192ef Add autoexpunge and subscribe mailbox configs 2024-07-25 18:48:48 +02:00
Tunui Franken
873d15c61e Add classifier-bayes override 2024-07-25 18:37:36 +02:00
Tunui Franken
26d7a14668 Add redis override for rspamd 2024-07-25 18:20:10 +02:00
Tunui Franken
aa18f19de9 Add sieve to move spam to junk 2024-07-25 18:19:02 +02:00
Tunui Franken
a94c5de1b3 Add milter_headers override 2024-07-25 18:02:20 +02:00
Tunui Franken
efc8ce52f9 Create role mailserver_rspamd 2024-07-25 17:57:37 +02:00
Tunui Franken
81dc218bb1 Restrict sender login mismatch while allowing sending as alias 2024-07-25 17:20:12 +02:00
Tunui Franken
e51afeac6b Install mutt 2024-07-25 16:54:40 +02:00
Tunui Franken
1deee8ddfe Add $myhostname to mydestination to allow local emails 2024-07-25 16:20:36 +02:00
Tunui Franken
20430faa4d Don't include hostname in From address for quota-warning 2024-07-25 15:29:09 +02:00
Tunui Franken
1c6a95883a Some dovecot fixes 2024-07-25 15:14:20 +02:00
Tunui Franken
60efb8eb38 Set mydestination to localhost 2024-07-24 18:25:33 +02:00
Tunui Franken
f9586ef4fa Create password hash in Ansible 2024-07-24 17:55:46 +02:00
Tunui Franken
edfaf0e066 Allow multiple virtual_aliases mappings for the same source 2024-07-24 17:29:58 +02:00
Tunui Franken
80cc5a55fe Minor change 2024-07-24 17:13:24 +02:00
Tunui Franken
628d0c326a For needed mailboxes: add postmaster, use aliases instead, and create them 2024-07-24 16:46:30 +02:00
Tunui Franken
fc1bbe1c24 Rename forgejo backup log dir 2024-07-21 13:27:57 +02:00
Tunui Franken
b0b308a25d Add AcceptEnv sshd_config for forgejo 2024-07-21 00:04:19 +02:00
Tunui Franken
1087698be9 Rename forgejo_backup.sh => forgejo-backup.sh 2024-07-20 22:45:10 +02:00
Tunui Franken
dbb0563248 Redirect forgejo-backup logs in cron, move some files 2024-07-20 22:45:10 +02:00
Tunui Franken
b7fcd6e300 fixup! Move forgejo-backup logs out of log dir 2024-07-08 17:28:26 +02:00
Tunui Franken
7d71495034 Fix name of sql dump file in forgejo backup script 2024-07-08 15:47:18 +02:00
Tunui Franken
babf3aee25 Move forgejo-backup logs out of log dir 
Otherwise the backup includes it's own logs while writing to them
 2024-07-08 10:56:11 +02:00
Tunui Franken
ee361662d0 Make sure some dirs exist before doing forgejo backup 2024-07-08 10:40:11 +02:00
Tunui Franken
8ccf64fbff Allow incoming HTTPS for websites 2024-07-06 20:42:33 +02:00
Tunui Franken
73a730494c Small fixes 2024-07-06 20:41:11 +02:00
Tunui Franken
7e4af01df3 Add sshd_config 2024-07-06 18:10:12 +02:00
Tunui Franken
6fc0f44412 Add bash_aliases to common 2024-04-14 00:07:57 +02:00
Tunui Franken
7f5358e9da Add role common with etckeeper 2024-04-13 23:22:15 +02:00
Tunui Franken
949163ca59 Make forgejo conf file non group readable 2024-04-13 22:46:00 +02:00
Tunui Franken
dac63af2ec Add role "add_cert" to be used instead of add_cert_{dns_01,http_01} 2024-04-09 23:51:18 +02:00
Tunui Franken
b388fa002e Minor change 2024-04-09 20:21:59 +02:00
Tunui Franken
ac1e28aab6 Fix some vars in mailserver_postfix main.cf template 2024-04-07 20:41:25 +02:00
Tunui Franken
0b9a101c02 [forgejo] Enable mailer with dummy protocol while mailserver isn't ready 2024-04-07 20:39:32 +02:00
Tunui Franken
b4ffb1ae86 Reload apache2 after cloning tunuifranken.info 2024-04-07 17:08:53 +02:00
Tunui Franken
3c1160cd23 [tunuifranken] Change unix user to tunuifranken 2024-04-07 17:08:53 +02:00
Tunui Franken
808a40ac68 Set more specific sudoers permissions for git user 2024-04-07 17:08:53 +02:00
Tunui Franken
e0cfde4c9f Permit to define forgejo_dump_path with ansible-playbook -e ... 2024-04-07 12:09:50 +02:00
Tunui Franken
cbc1712a63 Minor change 2024-04-07 11:51:36 +02:00
Tunui Franken
49b7fea2ee Fix forgejo .asc file download as user git 2024-04-07 11:51:19 +02:00
Tunui Franken
0b9f2f6197 Minor change 2024-04-01 17:11:27 +02:00
Tunui Franken
c3ebf02781 Add missing apache2 modules for forgejo 2024-04-01 16:42:09 +02:00
Tunui Franken
f27a0901c5 Conditionnaly run DNS-01 or HTTP-01 for certificates 2024-03-08 09:59:23 +01:00
Tunui Franken
f64784fafa Minor naming change 2024-03-07 18:22:19 +01:00
Tunui Franken
ab2ec4f933 Add certbot command for HTTP-01 challenge 2024-03-07 18:11:27 +01:00
Tunui Franken
2b80d8b762 Add post-hook for letsencrypt certificate 2024-03-07 17:59:06 +01:00