flyingscorpio/self-hosting
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
410 commits 1 branch 0 tags 1.1 MiB
Commit graph

367 commits

Author SHA1 Message Date
Tunui Franken
3dbee0703d [forgejo] Move vaulted variables to inventory 
Use defaults for examples and defaults
 2024-12-31 18:17:38 +01:00
Tunui Franken
09346eae9b [add_cert_dns_01] Move vaulted variables to inventory 
Use defaults for examples and defaults
 2024-12-31 18:17:21 +01:00
Tunui Franken
bfe30310c5 Start with higher values for rspamd actions 2024-12-25 19:20:33 +01:00
Tunui Franken
71053ef90b Add missing 'state: directory' attribute 2024-12-22 10:26:31 +01:00
Tunui Franken
4ffd0d8ec7 [forgejo] Add missing dependency 'setup_nftables' 2024-12-22 10:17:14 +01:00
Tunui Franken
01ed65eef2 [bugfix] manage-mailserver.sh: $# doesn't apply to function 2024-12-22 10:06:21 +01:00
Tunui Franken
d4932b1ce0 Start a manage-mailserver.sh script for users, passwords, quota, and aliases 2024-12-15 13:49:30 +01:00
Tunui Franken
1fce4d7db7 Use proxymap for postfix pgsql queries 2024-12-15 10:59:25 +01:00
Tunui Franken
5f1caf064e Minor doc fix 2024-12-15 10:33:00 +01:00
Tunui Franken
ace028b91b ACME HTTP-01 challenge needs apache 2024-12-15 10:30:34 +01:00
Tunui Franken
31b27b390e Minor change 2024-12-15 10:21:09 +01:00
Tunui Franken
d9dd7785b6 Only copy bashrc for accounts select accounts 2024-11-29 17:27:12 +01:00
Tunui Franken
7f6e45f841 Add bashrc 2024-11-29 17:11:29 +01:00
Tunui Franken
563ac1b664 Add tag for updating forgejo 2024-11-29 12:15:07 +01:00
Tunui Franken
98e4e0e31f Fix dovecot socket permissions 2024-11-15 12:42:20 +01:00
Tunui Franken
bd2e2092a6 Check for DHCP with a portable command 2024-11-01 18:04:21 +01:00
Tunui Franken
5a580d9f00 Allow multiple virtual domains 2024-11-01 17:10:52 +01:00
Tunui Franken
80acd7da54 Replace ansible_facts vars by their ansible magic vars counterparts 2024-11-01 11:17:07 +01:00
Tunui Franken
0c15e1b02d Remove vaulted password in mailserver_database role, move hash to the jinja2 template 2024-10-25 19:31:39 +02:00
Tunui Franken
ddfc5c2841 Indent blockinfile blocks 2024-10-25 18:11:03 +02:00
Tunui Franken
2bcd8b8c5f Put /var/vmail in a dedicated LV 2024-10-12 17:45:47 +02:00
Tunui Franken
3667e764d8 Save mailserver report on the server 2024-10-12 12:04:24 +02:00
Tunui Franken
c0fffe69c9 Copy /etc/aliases file for mailserver_postfix 2024-10-11 16:26:13 +02:00
Tunui Franken
f10979f457 Minor change 2024-10-11 13:43:14 +02:00
Tunui Franken
280957a857 Postfix corrections 2024-10-11 12:02:31 +02:00
Tunui Franken
80db99c4cc Allow managesieve for mailserver 2024-10-06 12:44:56 +02:00
Tunui Franken
6a692ac2d5 Don't allow output ssh and only allow dhclient if using dhcp 2024-10-06 12:41:58 +02:00
Tunui Franken
6084b1abb8 Make forgejo-backup less verbose 2024-10-06 11:52:58 +02:00
Tunui Franken
0ddb75d4c5 Also allow output smtp-submission 2024-10-06 11:40:39 +02:00
Tunui Franken
148f06110f Add missing README files 2024-09-29 11:48:51 +02:00
Tunui Franken
d9d0f35034 Write report to a local file instead of printing the DNS records 2024-09-29 11:47:35 +02:00
Tunui Franken
094e42118d Don't include a record in SPF 2024-09-29 11:23:09 +02:00
Tunui Franken
45841ffd9f Print DNS entries at end of mailserver playbook 2024-09-28 14:11:56 +02:00
Tunui Franken
86983b241d Add role mailserver_dmarc 2024-09-28 12:47:35 +02:00
Tunui Franken
67e70e7017 Add role mailserver_spf 2024-09-28 12:33:47 +02:00
Tunui Franken
998390668e Setup nftables for mailserver_dovecot 2024-09-28 11:44:49 +02:00
Tunui Franken
b933680621 Setup nftables for mailserver_postfix 2024-09-28 11:44:43 +02:00
Tunui Franken
0f6bc98576 [forgejo] Add cleanup step for when a backup fails 2024-07-31 10:52:14 +02:00
Tunui Franken
59693081e1 Fix DKIM key ownership 2024-07-26 19:07:11 +02:00
Tunui Franken
e188c4ae87 Add DKIM selector map 2024-07-26 18:57:25 +02:00
Tunui Franken
1834dd9503 Add role mailserver_dkim, create DKIM key 2024-07-26 18:47:04 +02:00
Tunui Franken
e411c82f24 Fix lineinfile tasks 2024-07-25 22:10:27 +02:00
Tunui Franken
6d70a60899 Finish imapsieve config for learn-ham and learn-spam 2024-07-25 22:10:02 +02:00
Tunui Franken
b1c0a4f8a1 Add imap_sieve plugin 2024-07-25 19:04:59 +02:00
Tunui Franken
dfef9192ef Add autoexpunge and subscribe mailbox configs 2024-07-25 18:48:48 +02:00
Tunui Franken
873d15c61e Add classifier-bayes override 2024-07-25 18:37:36 +02:00
Tunui Franken
26d7a14668 Add redis override for rspamd 2024-07-25 18:20:10 +02:00
Tunui Franken
aa18f19de9 Add sieve to move spam to junk 2024-07-25 18:19:02 +02:00
Tunui Franken
a94c5de1b3 Add milter_headers override 2024-07-25 18:02:20 +02:00
Tunui Franken
efc8ce52f9 Create role mailserver_rspamd 2024-07-25 17:57:37 +02:00
Tunui Franken
81dc218bb1 Restrict sender login mismatch while allowing sending as alias 2024-07-25 17:20:12 +02:00
Tunui Franken
e51afeac6b Install mutt 2024-07-25 16:54:40 +02:00
Tunui Franken
1deee8ddfe Add $myhostname to mydestination to allow local emails 2024-07-25 16:20:36 +02:00
Tunui Franken
20430faa4d Don't include hostname in From address for quota-warning 2024-07-25 15:29:09 +02:00
Tunui Franken
1c6a95883a Some dovecot fixes 2024-07-25 15:14:20 +02:00
Tunui Franken
60efb8eb38 Set mydestination to localhost 2024-07-24 18:25:33 +02:00
Tunui Franken
f9586ef4fa Create password hash in Ansible 2024-07-24 17:55:46 +02:00
Tunui Franken
edfaf0e066 Allow multiple virtual_aliases mappings for the same source 2024-07-24 17:29:58 +02:00
Tunui Franken
80cc5a55fe Minor change 2024-07-24 17:13:24 +02:00
Tunui Franken
628d0c326a For needed mailboxes: add postmaster, use aliases instead, and create them 2024-07-24 16:46:30 +02:00
Tunui Franken
fc1bbe1c24 Rename forgejo backup log dir 2024-07-21 13:27:57 +02:00
Tunui Franken
b0b308a25d Add AcceptEnv sshd_config for forgejo 2024-07-21 00:04:19 +02:00
Tunui Franken
1087698be9 Rename forgejo_backup.sh => forgejo-backup.sh 2024-07-20 22:45:10 +02:00
Tunui Franken
dbb0563248 Redirect forgejo-backup logs in cron, move some files 2024-07-20 22:45:10 +02:00
Tunui Franken
b7fcd6e300 fixup! Move forgejo-backup logs out of log dir 2024-07-08 17:28:26 +02:00
Tunui Franken
7d71495034 Fix name of sql dump file in forgejo backup script 2024-07-08 15:47:18 +02:00
Tunui Franken
babf3aee25 Move forgejo-backup logs out of log dir 
Otherwise the backup includes it's own logs while writing to them
 2024-07-08 10:56:11 +02:00
Tunui Franken
ee361662d0 Make sure some dirs exist before doing forgejo backup 2024-07-08 10:40:11 +02:00
Tunui Franken
8ccf64fbff Allow incoming HTTPS for websites 2024-07-06 20:42:33 +02:00
Tunui Franken
73a730494c Small fixes 2024-07-06 20:41:11 +02:00
Tunui Franken
7e4af01df3 Add sshd_config 2024-07-06 18:10:12 +02:00
Tunui Franken
6fc0f44412 Add bash_aliases to common 2024-04-14 00:07:57 +02:00
Tunui Franken
7f5358e9da Add role common with etckeeper 2024-04-13 23:22:15 +02:00
Tunui Franken
949163ca59 Make forgejo conf file non group readable 2024-04-13 22:46:00 +02:00
Tunui Franken
dac63af2ec Add role "add_cert" to be used instead of add_cert_{dns_01,http_01} 2024-04-09 23:51:18 +02:00
Tunui Franken
b388fa002e Minor change 2024-04-09 20:21:59 +02:00
Tunui Franken
ac1e28aab6 Fix some vars in mailserver_postfix main.cf template 2024-04-07 20:41:25 +02:00
Tunui Franken
0b9a101c02 [forgejo] Enable mailer with dummy protocol while mailserver isn't ready 2024-04-07 20:39:32 +02:00
Tunui Franken
b4ffb1ae86 Reload apache2 after cloning tunuifranken.info 2024-04-07 17:08:53 +02:00
Tunui Franken
3c1160cd23 [tunuifranken] Change unix user to tunuifranken 2024-04-07 17:08:53 +02:00
Tunui Franken
808a40ac68 Set more specific sudoers permissions for git user 2024-04-07 17:08:53 +02:00
Tunui Franken
e0cfde4c9f Permit to define forgejo_dump_path with ansible-playbook -e ... 2024-04-07 12:09:50 +02:00
Tunui Franken
cbc1712a63 Minor change 2024-04-07 11:51:36 +02:00
Tunui Franken
49b7fea2ee Fix forgejo .asc file download as user git 2024-04-07 11:51:19 +02:00
Tunui Franken
0b9f2f6197 Minor change 2024-04-01 17:11:27 +02:00
Tunui Franken
c3ebf02781 Add missing apache2 modules for forgejo 2024-04-01 16:42:09 +02:00
Tunui Franken
f27a0901c5 Conditionnaly run DNS-01 or HTTP-01 for certificates 2024-03-08 09:59:23 +01:00
Tunui Franken
f64784fafa Minor naming change 2024-03-07 18:22:19 +01:00
Tunui Franken
ab2ec4f933 Add certbot command for HTTP-01 challenge 2024-03-07 18:11:27 +01:00
Tunui Franken
2b80d8b762 Add post-hook for letsencrypt certificate 2024-03-07 17:59:06 +01:00
Tunui Franken
0226b9a0a2 Clarify variables used in letsencrypt roles 2024-03-07 15:18:05 +01:00
Tunui Franken
393eafb5c0 Rename role setup_certbot => add_cert_http_01 2024-03-07 15:01:38 +01:00
Tunui Franken
8adc6a74c5 Rename role deploy_certificate => add_cert_dns_01 2024-03-07 15:01:38 +01:00
Tunui Franken
b453e559c9 Disable forgejo mailer functionality, as long as mailserver role isn't ready 2024-03-05 15:33:26 +01:00
Tunui Franken
d7deda69a2 Fix download asc file needs root 2024-03-05 14:27:40 +01:00
Tunui Franken
bcef50c199 Restart postfix instead of reloading 2024-01-27 13:49:09 +01:00
Tunui Franken
47dd5c4676 Add postfix master.cf 2024-01-27 13:47:55 +01:00
Tunui Franken
0ed9279666 Use template for postfix main.cf 2024-01-27 13:47:37 +01:00
Tunui Franken
9344a95d95 Move execution of postgresql script to a handler 2024-01-17 10:01:47 +01:00
Tunui Franken
f01e29fd31 Use hashes for default created virtual_users 2024-01-17 09:53:35 +01:00