source: server/fedora/config/etc

Revision Log Mode:


Legend:

Added
Modified
Copied or renamed
Diff Rev Age Author Log Message
(edit) @1088   13 years mitchb bc.mit.edu certificate and reified vhost
(edit) @1086   13 years quentin Test your changes! Port 444 was serving axo.mit.edu all day!
(edit) @1085   13 years mitchb scripts.mit.edu CSR defaults
(edit) @1084   13 years mitchb Add openssl.cnf file, so we can track our standard CSR fields
(edit) @1082   13 years geofft Allow reified vhosts to override *.scripts
(edit) @1081   13 years geofft reify cycling-club.scripts.mit.edu to pick up the cert
(edit) @1080   13 years geofft cycling-club.scripts 30 day cert from Comodo
(edit) @1073   13 years quentin Don't let people lock all our memory (use the Ubuntu default of 64KB ...
(edit) @1072   13 years quentin Don't apply resource limits to root's processes, and clean up ...
(edit) @1071   13 years quentin Set sane memory resource limits
(edit) @1068   13 years quentin Disallow root keyboard-interactive logins
(edit) @1067   13 years quentin tibetforum.mit.edu vhost + cert
(edit) @1059   13 years geofft We don't need mDNS
(edit) @1043   13 years geofft contrib.scripts moved
(edit) @1040   13 years mitchb Use the django media directory from the RPM, not the egg. Silly me... ...
(edit) @1039   13 years mitchb Provide autoinstalled Djangos with /__scripts/django/media for admin CSS
(edit) @1032   13 years mitchb Change CPU time limit for Apache-spawned processes from 3min to 5min. ...
(edit) @1020   13 years geofft /etc/sysconfig/openafs: for great awesome
(edit) @1019   13 years mitchb Increase CPU time limit for processes spawned by Apache. This should ...
(edit) @1018   13 years quentin Allow hostbased authentication over the backend network (Yay!)
(edit) @1017   13 years quentin Route to b-k over the backend network
(edit) @1016   13 years quentin Allow FastCGIs to take up to 5 minutes to respond
(edit) @1010   13 years quentin ACPI event handler so you can't shut down with the power button
(edit) @1006   13 years quentin Reboot on OOM
(edit) @1001   13 years mitchb We need subversion-devel from testing as well, so that we can build a ...
(edit) @1000   13 years andersk Change the core file limit from hard to soft.
(edit) @999   13 years geofft Install Subversion (1.5) from the updates-testing-newkey repo.
(edit) @998   13 years geofft cert and vhost for schuh.mit.edu
(edit) @996   13 years mitchb i386_linux3 isn't actually twice as good just because we listed it ...
(edit) @994   13 years geofft i386_deb40 is better than i386_linux1
(edit) @992   13 years mitchb Don't let cron send mail if it can't touch the cron status file. ...
(edit) @988   13 years mitchb I should start reading root's mail. I will probably regret this.
(edit) @986   13 years quentin Add reverse-resolution for the backend IPs
(edit) @985   13 years quentin Map to local usernames, instead of to @scripts.mit.edu addresses (both ...
(edit) @984   13 years quentin Allow local part to contain @
(edit) @983   13 years quentin Support mail to foo@bar.scripts.mit.edu
(edit) @982   13 years quentin Check that cron can actually run things as users
(edit) @979   14 years geofft er, Fedora has a nontrivial vimrc
(edit) @978   14 years geofft undo miscommit
(edit) @977   14 years geofft Suppress writing .viminfo file
(edit) @975   14 years geofft eastgate.mit.edu SSL cert and conf [help.mit.edu #792732]
(edit) @974   14 years andersk Change sipb.mit.edu DocumentRoot to web_scripts/sipb.
(edit) @973   14 years geofft Change default cert to *.scripts except for 18.181.0.43.
(edit) @972   14 years geofft Uncommitted changes to httpd.conf. These seem to involve performance ...
(edit) @971   14 years andersk Get rid of the custom sipb.mit.edu aliases.
(edit) @970   14 years andersk Change the IP for scripts.mit.edu and add scripts-vhosts.mit.edu.
(edit) @969   14 years andersk Add scripts-vhosts.
(edit) @968   14 years andersk Add 18.181.0.43 and scripts-vhosts.mit.edu.
(edit) @967   14 years geofft oops
(edit) @966   14 years geofft Add new scripts.mit.edu IP address
(edit) @963   14 years quentin Add vhost entry for picker.mit.edu so it picks up its cert
(edit) @962   14 years geofft SSL cert for picker.mit.edu
(edit) @961   14 years quentin Add scripts LDAP schema to the repo
(edit) @953   14 years andersk Revert r952.
(edit) @952   14 years quentin Serve sipb.mit.edu wiki content directly via Apache
(edit) @948   14 years quentin Try hostbased authentication in the client
(edit) @947   14 years quentin Add shosts.equiv for allowing logins
(edit) @946   14 years quentin Allow ssh hostbased authentication
(edit) @943   14 years geofft Hacks because Apache makes things hard at the .htaccess level.
(edit) @942   14 years geofft debathena.mit.edu vhost
(edit) @941   14 years geofft cert for debathena.mit.edu
(edit) @940   14 years geofft Whoops, forgot to reify-vhost.py sipb.mit.edu
(edit) @939   14 years geofft Setting tty modes failed: Invalid argument
(edit) @938   14 years andersk d_zroot.pl: Read .ssh/authorized_keys, not just authorized_keys2. ...
(edit) @915   14 years quentin Support mDNS on scripts
(edit) @914   14 years quentin Add if_err_eth2 to allowed munin commands (wtf?)
(edit) @910   14 years quentin configuration for nss-ldapd
(edit) @891   14 years quentin Add reuter to blocked mail accounts list, and prevent outbound mail
(edit) @890   14 years geofft I think this works better
(edit) @889   14 years quentin Fix geofft's typo
(edit) @888   14 years geofft Display failed root logins from off campus only at 10+10k attempts.
(edit) @887   14 years quentin Ignore non-fatal authentication failures
(edit) @886   14 years geofft sipb.mit.edu certificate
(edit) @885   14 years geofft and the vhosts they rode in on
(edit) @884   14 years geofft More noms.
(edit) @883   14 years geofft Re r882, make the resulting log zephyr public. (Thanks to price for ...
(edit) @879   14 years quentin Update nscd configuration to cache smarter
(edit) @878   14 years quentin Enable sshd verbose mode, so we can identify the public key used for login
(edit) @877   14 years quentin Provide commented-out non-nss_nonlocal region in nsswitch
(edit) @876   14 years quentin Uncommitted changes on b-k
(edit) @872   14 years geofft forgot to fix SSLVerifyclient on familynet
(edit) @870   14 years geofft yay SSL vhosts yay
(edit) @869   14 years geofft SSLVerifyClient optional on port 444. Oops. ^_^;;
(edit) @868   14 years quentin Ignore all partitions mounted under /mnt
(edit) @867   14 years quentin Update postfix configuration for version 2.5.1
(edit) @866   14 years quentin Use scripts yum repository (yay!)
(edit) @865   14 years quentin Use sudo to monitor hardware sensors for munin
(edit) @864   14 years quentin Ignore f7root partitions when checking disk space
(edit) @854   14 years geofft Add a script to convert LDAP vhosts into <VirtualHost> blocks, so it's ...
(edit) @853   14 years andersk Put the children out of their misery.
(edit) @847   14 years andersk Run munin as an unprivileged user with sudo for root access when necessary
(edit) @845   14 years andersk Use the local LDAP server (as is already the case on both servers).
(edit) @842   14 years andersk Run php directly from suexec, so php scripts don’t need to be executable.
(edit) @841   14 years geofft [help.mit.edu #694790]
(edit) @831   14 years andersk MaxRequestsPerChild < Ridiculous
(edit) @829   14 years geofft Debathena's reasoning seems sound enough. Add fuse_allow_other, which ...
(edit) @822   14 years geofft OM NOM NOM NOM CERTIFICATES
(edit) @821   14 years geofft I'm stupid.
(edit) @820   14 years geofft Add server certS for random-hall.mit.edu and mitsoc.mit.edu
(edit) @817   14 years geofft Added code to zephyr on OOM kills. Also commented out a change by ...
Note: See TracRevisionLog for help on using the revision log.