source: server/fedora/config/etc

Revision Log Mode:


Copied or renamed
Diff Rev Age Author Log Message
(edit) @1101   14 years presbrey turn off ProxyPreserveHost to distinguish Host from X-Forwarded-Host
(edit) @1092   14 years geofft okay, maybe ajp was a bad idea
(edit) @1089   14 years presbrey httpd: add mod_proxy module and friends
(edit) @1088   14 years mitchb certificate and reified vhost
(edit) @1086   14 years quentin Test your changes! Port 444 was serving all day!
(edit) @1085   14 years mitchb CSR defaults
(edit) @1084   14 years mitchb Add openssl.cnf file, so we can track our standard CSR fields
(edit) @1082   14 years geofft Allow reified vhosts to override *.scripts
(edit) @1081   14 years geofft reify to pick up the cert
(edit) @1080   14 years geofft cycling-club.scripts 30 day cert from Comodo
(edit) @1073   14 years quentin Don't let people lock all our memory (use the Ubuntu default of 64KB ...
(edit) @1072   14 years quentin Don't apply resource limits to root's processes, and clean up ...
(edit) @1071   14 years quentin Set sane memory resource limits
(edit) @1068   14 years quentin Disallow root keyboard-interactive logins
(edit) @1067   14 years quentin vhost + cert
(edit) @1059   14 years geofft We don't need mDNS
(edit) @1043   14 years geofft contrib.scripts moved
(edit) @1040   14 years mitchb Use the django media directory from the RPM, not the egg. Silly me... ...
(edit) @1039   14 years mitchb Provide autoinstalled Djangos with /__scripts/django/media for admin CSS
(edit) @1032   14 years mitchb Change CPU time limit for Apache-spawned processes from 3min to 5min. ...
(edit) @1020   14 years geofft /etc/sysconfig/openafs: for great awesome
(edit) @1019   14 years mitchb Increase CPU time limit for processes spawned by Apache. This should ...
(edit) @1018   14 years quentin Allow hostbased authentication over the backend network (Yay!)
(edit) @1017   14 years quentin Route to b-k over the backend network
(edit) @1016   14 years quentin Allow FastCGIs to take up to 5 minutes to respond
(edit) @1010   14 years quentin ACPI event handler so you can't shut down with the power button
(edit) @1006   14 years quentin Reboot on OOM
(edit) @1001   14 years mitchb We need subversion-devel from testing as well, so that we can build a ...
(edit) @1000   14 years andersk Change the core file limit from hard to soft.
(edit) @999   14 years geofft Install Subversion (1.5) from the updates-testing-newkey repo.
(edit) @998   14 years geofft cert and vhost for
(edit) @996   14 years mitchb i386_linux3 isn't actually twice as good just because we listed it ...
(edit) @994   14 years geofft i386_deb40 is better than i386_linux1
(edit) @992   14 years mitchb Don't let cron send mail if it can't touch the cron status file. ...
(edit) @988   14 years mitchb I should start reading root's mail. I will probably regret this.
(edit) @986   14 years quentin Add reverse-resolution for the backend IPs
(edit) @985   14 years quentin Map to local usernames, instead of to addresses (both ...
(edit) @984   14 years quentin Allow local part to contain @
(edit) @983   14 years quentin Support mail to
(edit) @982   14 years quentin Check that cron can actually run things as users
(edit) @979   14 years geofft er, Fedora has a nontrivial vimrc
(edit) @978   14 years geofft undo miscommit
(edit) @977   14 years geofft Suppress writing .viminfo file
(edit) @975   14 years geofft SSL cert and conf [ #792732]
(edit) @974   14 years andersk Change DocumentRoot to web_scripts/sipb.
(edit) @973   14 years geofft Change default cert to *.scripts except for
(edit) @972   14 years geofft Uncommitted changes to httpd.conf. These seem to involve performance ...
(edit) @971   14 years andersk Get rid of the custom aliases.
(edit) @970   14 years andersk Change the IP for and add
(edit) @969   14 years andersk Add scripts-vhosts.
(edit) @968   14 years andersk Add and
(edit) @967   14 years geofft oops
(edit) @966   14 years geofft Add new IP address
(edit) @963   14 years quentin Add vhost entry for so it picks up its cert
(edit) @962   14 years geofft SSL cert for
(edit) @961   14 years quentin Add scripts LDAP schema to the repo
(edit) @953   14 years andersk Revert r952.
(edit) @952   14 years quentin Serve wiki content directly via Apache
(edit) @948   14 years quentin Try hostbased authentication in the client
(edit) @947   14 years quentin Add shosts.equiv for allowing logins
(edit) @946   14 years quentin Allow ssh hostbased authentication
(edit) @943   14 years geofft Hacks because Apache makes things hard at the .htaccess level.
(edit) @942   14 years geofft vhost
(edit) @941   14 years geofft cert for
(edit) @940   14 years geofft Whoops, forgot to
(edit) @939   14 years geofft Setting tty modes failed: Invalid argument
(edit) @938   14 years andersk Read .ssh/authorized_keys, not just authorized_keys2. ...
(edit) @915   14 years quentin Support mDNS on scripts
(edit) @914   14 years quentin Add if_err_eth2 to allowed munin commands (wtf?)
(edit) @910   14 years quentin configuration for nss-ldapd
(edit) @891   14 years quentin Add reuter to blocked mail accounts list, and prevent outbound mail
(edit) @890   14 years geofft I think this works better
(edit) @889   14 years quentin Fix geofft's typo
(edit) @888   14 years geofft Display failed root logins from off campus only at 10+10k attempts.
(edit) @887   14 years quentin Ignore non-fatal authentication failures
(edit) @886   14 years geofft certificate
(edit) @885   14 years geofft and the vhosts they rode in on
(edit) @884   14 years geofft More noms.
(edit) @883   14 years geofft Re r882, make the resulting log zephyr public. (Thanks to price for ...
(edit) @879   14 years quentin Update nscd configuration to cache smarter
(edit) @878   14 years quentin Enable sshd verbose mode, so we can identify the public key used for login
(edit) @877   14 years quentin Provide commented-out non-nss_nonlocal region in nsswitch
(edit) @876   14 years quentin Uncommitted changes on b-k
(edit) @872   14 years geofft forgot to fix SSLVerifyclient on familynet
(edit) @870   14 years geofft yay SSL vhosts yay
(edit) @869   14 years geofft SSLVerifyClient optional on port 444. Oops. ^_^;;
(edit) @868   14 years quentin Ignore all partitions mounted under /mnt
(edit) @867   14 years quentin Update postfix configuration for version 2.5.1
(edit) @866   14 years quentin Use scripts yum repository (yay!)
(edit) @865   14 years quentin Use sudo to monitor hardware sensors for munin
(edit) @864   14 years quentin Ignore f7root partitions when checking disk space
(edit) @854   14 years geofft Add a script to convert LDAP vhosts into <VirtualHost> blocks, so it's ...
(edit) @853   14 years andersk Put the children out of their misery.
(edit) @847   14 years andersk Run munin as an unprivileged user with sudo for root access when necessary
(edit) @845   14 years andersk Use the local LDAP server (as is already the case on both servers).
(edit) @842   14 years andersk Run php directly from suexec, so php scripts don’t need to be executable.
(edit) @841   14 years geofft [ #694790]
(edit) @831   14 years andersk MaxRequestsPerChild < Ridiculous
(edit) @829   14 years geofft Debathena's reasoning seems sound enough. Add fuse_allow_other, which ...
(edit) @822   14 years geofft OM NOM NOM NOM CERTIFICATES
Note: See TracRevisionLog for help on using the revision log.