source: server/fedora/config

Revision Log Mode:


Legend:

Added
Modified
Copied or renamed
Diff Rev Age Author Log Message
(edit) @781   16 years quentin munin needs to start as root so it can setuid to run the script; it ...
(edit) @780   16 years geofft Munin should not run as root. Remove munin's htpasswd file, since it's ...
(edit) @779   16 years geofft mod_status is a serious privacy violation.
(edit) @778   16 years geofft This list is a little better
(edit) @777   16 years geofft Add more sysnames to differentiate between OS releases, and add the ...
(edit) @775   16 years geofft Version nscd.conf, and reduce the negative TTL to 5 seconds to solve ...
(edit) @770   16 years quentin Stop more spew; parse ssh keys and identify the used key when ...
(edit) @768   16 years geofft Commented out scripts-spew. It is inappropriate to send syslogs about ...
(edit) @761   16 years presbrey gem replication install script
(edit) @759   16 years quentin Tweak httpd settings
(edit) @758   16 years quentin Avoid spew in cases of serious error
(edit) @757   16 years quentin Add AFS monitoring to Nagios
(edit) @755   16 years andersk Oops, missed a spot.
(edit) @754   16 years andersk Use the scripts private key for *.scripts as well (the previous ...
(edit) @751   16 years andersk Configure nsswitch.conf to use nss_nonlocal.
(edit) @749   16 years andersk Nope. Don't care.
(edit) @740   16 years andersk Update SSL configuration directives from Fedora's ssl.conf. Notably, ...
(edit) @739   16 years andersk spew--
(edit) @738   16 years andersk SHUT. THE. FUCK. UP.
(edit) @734   16 years andersk Turn on KeepAlive for SSL and increase timeouts, to avoid pathological ...
(edit) @715   16 years quentin Allow syn to access nrpe through iptables
(edit) @712   16 years quentin Allow syn to monitor scripts
(edit) @708   16 years geofft Add rebecca to sudoers.
(edit) @707   16 years andersk This sucker has had it coming for a long time.
(edit) @690   16 years quentin Ignore more syslog messages
(edit) @687   16 years andersk We might as well present the *.scripts.mit.edu certificate for ...
(edit) @682   16 years andersk Revert r681; this doesn't actually work.
(edit) @681   16 years andersk Drop to nobody in case of a terrible mod_vhost_ldap disaster.
(edit) @677   16 years andersk Remove hacks-old.
(edit) @671   16 years quentin Remove broken configuration for deprecated mime_magic module, as we ...
(edit) @669   16 years geofft disable X11 forwarding; allow forwarding $EDITOR and $VISUAL because ...
(edit) @668   16 years quentin Ignore more meaningless sshd logs
(edit) @667   16 years quentin Don't log logins from non-root users
(edit) @666   16 years quentin Change syslog zephyring to coalesce messages
(edit) @665   16 years quentin Make Zephyrs more useful and move to -c scripts-auto
(edit) @664   16 years andersk -c scripts -> -c scripts-auto.
(edit) @662   16 years quentin Save log and pid in the right places
(edit) @661   16 years quentin Run whoisd on startup
(edit) @657   16 years quentin Run if_ plugin as root so it can determine the interface speed
(edit) @656   16 years andersk And finally the vhosts directory is unused.
(edit) @653   16 years andersk Convert framewrapper vhosts to real vhosts in LDAP.
(edit) @649   16 years presbrey httpd.conf: configure SNI support for *:444
(edit) @648   16 years presbrey httpd.conf: configure SNI support
(edit) @646   16 years quentin Send to host-specific instance, and send for both root and logview
(edit) @645   16 years quentin syslog-ng configuration for zephyring when root logs in
(edit) @644   16 years quentin Remove overrides of session.save_path and include_path (old ...
(edit) @643   16 years quentin Commit outstanding change allowing ldap backups
(edit) @642   16 years andersk Only check .htaccess files inside web_scripts, thus eliminating a past ...
(edit) @635   16 years andersk Enable mod_expires.
(edit) @624   16 years quentin Allow monitoring by syn.mit.edu
(edit) @623   16 years quentin Move the heartbeat script to /__scripts/heartbeat so we can serve it ...
(edit) @607   16 years quentin Add a second NTP server, for good measure.
(edit) @605   16 years andersk blah blah APACHE HAS NO GODDAMN ABSTRACTION BARRIERS blah blah blah.
(edit) @604   16 years andersk Prevent vhost access controls from applying to /__scripts.
(edit) @603   16 years andersk Modularize the redirect-to-certs kludge so that users just need to say ...
(edit) @602   16 years andersk /icons -> /__scripts/icons to avoid shadowing vhost namespace.
(edit) @584   16 years quentin Support hacks.mit.edu
(edit) @583   16 years geofft oops, webmaster@szs is a special case
(edit) @566   16 years geofft webzephyr IP address
(edit) @556   16 years geofft Postfix changes for webzephyr
(edit) @548   16 years geofft i can has root@scripts?
(edit) @520   16 years andersk Enable mod_negotiation.
(edit) @512   16 years andersk Use ldapi:// url.
(edit) @511   16 years andersk Re-enable sendfile now that it works.
(edit) @509   16 years andersk Apparently sendfile() breaks with kernel 2.6.23 and openafs 1.4.5.
(edit) @503   16 years quentin Add smart monitoring to munin
(edit) @500   16 years andersk Add b-m and o-f aliases.
(edit) @493   16 years andersk Make 127.0.0.1 work, for Munin monitoring.
(edit) @487   16 years andersk Not used anymore.
(edit) @486   16 years andersk Oops, clean up a few things from r484.
(edit) @484   16 years andersk /etc/ldap.conf.
(edit) @482   16 years andersk ou=vhosts -> ou=VirtualHosts.
(edit) @478   16 years geofft more ldap chocolatey goodness
(edit) @477   16 years andersk Don't IndexIgnore HEADER* README*.
(edit) @471   16 years andersk ifcfg-lo_0 -> ifcfg-lo:0 so it comes up on boot.
(edit) @455   16 years geofft prelim ldap stuff
(edit) @454   16 years geofft prelim ldap stuff
(edit) @426   17 years andersk Add more users to aliases.
(edit) @425   17 years andersk Not sure what this is, but it's on both servers.
(edit) @424   17 years andersk Kerberos config from o-f.
(edit) @423   17 years quentin Tell users when they don't have tickets or don't exist
(edit) @422   17 years quentin Update root mail recipients
(edit) @421   17 years quentin Enabling magic sysrq
(edit) @420   17 years quentin Removing arbitrary limits (to sync repository to actual state)
(edit) @419   17 years quentin Committing live hosts file (was same on both servers)
(edit) @418   17 years quentin Committing unknown change (rpm upgrade?); it's true on both servers.
(edit) @417   17 years quentin Enable munin apache graphing by turning on server-status
(edit) @416   17 years quentin Added munin configuration for monitoring apache
(edit) @409   17 years andersk Remove SSLUserName, because mod_auth_sslcert is better and having the ...
(edit) @408   17 years andersk SSLVerifyClient optional.
(edit) @399   17 years andersk Add www.* names for non-mit.edu fake vhosts.
(edit) @395   17 years andersk Make lombana a real vhost.
(edit) @391   17 years andersk Enable mod_auth_optional.
(edit) @384   17 years andersk Allow mod_auth_sslcert configuration to be overridden in .htaccess.
(edit) @370   17 years andersk Move localhost.key to scripts.key.
(edit) @369   17 years andersk More useful certificate location.
(edit) @365   17 years presbrey provide header directives available to .htaccess files
(edit) @364   17 years geofft Replace the huge SSH banner with a reference to the FAQ that contains ...
(edit) @358   17 years quentin made scripts.mit.edu the default vhost instead of vhosts.mit.edu; ...
(edit) @356   17 years quentin add -t to cause temporary rather than permanent failures when ...
Note: See TracRevisionLog for help on using the revision log.