source: trunk

Revision Log Mode:


Legend:

Added
Modified
Copied or renamed
Diff Rev Age Author Log Message
(edit) @2711   9 years andersk Remove configuration for rcc-d7dev.mit.edu [help.mit.edu #3276770]
(edit) @2710   9 years andersk Path change for dnd.mit.edu [help.mit.edu #3276705]
(edit) @2709   9 years achernya Add some spam sources to the blacklist
(edit) @2708   9 years andersk Remove temporary outgoing port 25 exemption for cssa
(edit) @2707   10 years andersk Install /usr/sbin/suexec with mode 555, not 510 achernya noticed that ...
(edit) @2706   10 years achernya Reify leee.mit.edu to pick up new docroot
(edit) @2705   10 years achernya Fix up techfair after rename to techx
(edit) @2704   10 years andersk Remove configuration for bakerfoundation, nudelta
(edit) @2703   10 years andersk Disable /.well-known/acme-challenge This will prevent users from ...
(edit) @2702   10 years andersk Certificate and configuration for 6005 [help.mit.edu #3262093]
(edit) @2701   10 years andersk Log connections to localhost port 25
(edit) @2700   10 years andersk Block outgoing port 25 Exceptions are made for localhost, ...
(edit) @2699   10 years andersk Remove joss-whedon
(edit) @2698   10 years achernya Add joss-whedon
(edit) @2697   10 years andersk Fix mixed content in scripts-special pages Chrome now complains about ...
(edit) @2696   10 years andersk Certificate and configuration for bots [help.mit.edu #3239167]
(edit) @2695   10 years andersk Update krb5 to 1.11.5-19.fc20
(edit) @2694   10 years btidor Certificate and configuration for leee.mit.edu
(edit) @2693   10 years btidor Add a CSR-generating script
(edit) @2692   10 years btidor Use SHA-256 to sign CSRs (in case it makes a difference)
(edit) @2691   10 years btidor Rename obsolete private key
(edit) @2690   10 years andersk Certificate and configuration for rcc-d7dev [help.mit.edu #3182781]
(edit) @2689   10 years geofft Certificate and configuration for mafia-app [help.mit.edu #3182926]
(edit) @2688   10 years geofft Remove SSL configuration for mitchief The certificate has expired and ...
(edit) @2687   10 years geofft Add missing intermediate for ldpreload.com Some CA bundles, notably ...
(edit) @2686   10 years geofft Certificate renewal for luke.wf / www.luke.wf This uses the 2048-bit ...
(edit) @2685   10 years mitchb Let's not create self-signed CAs You know, while we're fixing that ...
(edit) @2684   10 years geofft reify-vhost.py: Remove comment about removing SSLCertificateKeyFile ...
(edit) @2683   10 years andersk install-howto: Update openssl commands for modern crypto Just in case ...
(edit) @2682   10 years geofft Certificate renewal for ldpreload.com This uses the 2048-bit key and ...
(edit) @2681   10 years geofft Remove three vhosts that are no longer hosted by scripts
(edit) @2680   10 years andersk Update krb5 to 1.11.5-18.fc20
(edit) @2679   10 years andersk Add missing mock configuration for scripts-fc20-i386
(edit) @2678   10 years andersk 403 error: add another case for documents that the server cannot read
(edit) @2677   10 years andersk Also move noaccount page to local disk
(edit) @2676   10 years andersk Move /__scripts to local disk
(edit) @2675   10 years andersk Don’t override ErrorDocument 403 in .htaccess
(edit) @2674   10 years andersk Show a more informative error for directories with missing index.html
(edit) @2673   10 years andersk Update httpd
(edit) @2672   10 years andersk Update allowed-setugid.list Prune members that are no longer ...
(edit) @2671   10 years andersk Update OpenAFS to 1.6.11pre2
(edit) @2670   10 years quentin Allow specifying full e-mail addresses for purge-{from,to}
(edit) @2669   10 years quentin The log file is named suexec_log, not suexec.log
(edit) @2668   10 years andersk check_afs: styx is more critical than cocytus
(edit) @2667   10 years andersk check_afs: Add test for getcwd bug
(edit) @2666   10 years andersk Update openssh to 6.4p1-8.fc20 Fedora’s new patch ...
(edit) @2665   10 years andersk Enable procmail -p (preserve environment) This lets procmail inherit ...
(edit) @2664   10 years andersk check-users: Improve error diagnosis and script hygiene
(edit) @2663   10 years achernya Certificate and configuration for olivetti
(edit) @2662   10 years quentin Fix comment. Thanks geofft.
(edit) @2661   10 years quentin Block laublab from mail usage.
(edit) @2660   10 years achernya Certificate and configuration for 6005scripts.csail
(edit) @2659   10 years andersk OpenAFS: upgrade to 1.6.11pre1, plus patch for d_alias change
(edit) @2658   10 years quentin prune-mailq usage improvements and postcat
(edit) @2657   10 years quentin Add features to prune-mailq show_rand
(edit) @2656   10 years adehnert Disable postqueue -f and mailq for normal users postqueue -f seems ...
(edit) @2655   10 years andersk openafs: Linux: d_splice_alias may drop inode reference on error ...
(edit) @2654   10 years btidor Site disabled; update reified vhost
(edit) @2653   10 years btidor Locker emit renamed to commit
(edit) @2652   10 years quentin Block mail for compromised accounts
(edit) @2651   10 years quentin Add required module for logging
(edit) @2650   10 years andersk Disable Service Workers on scripts/~ URLs
(edit) @2649   10 years andersk openafs: Fix some afs_conn overcounts Patch from ...
(edit) @2648   10 years achernya Certificate renewal for davidben.net
(edit) @2647   10 years achernya Certificate renewal for *.lizdenys.com
(edit) @2646   10 years achernya Another block
(edit) @2645   10 years achernya A block
(edit) @2644   10 years andersk OpenAFS: avoid mvid NULL deref in check_bad_parent Patch from ...
(edit) @2643   10 years achernya Block harder
(edit) @2642   10 years mitchb Certificate and vhost config for donut-api
(edit) @2641   10 years andersk OpenAFS: drop from -fakestat-all to -fakestat
(edit) @2640   10 years achernya Block more spam
(edit) @2639   10 years andersk Add OpenAFS patches for Linux 3.17
(edit) @2638   10 years andersk vhostedit: Allow editing multiple vhosts simultaneously
(edit) @2637   10 years andersk Upgrade to OpenAFS 1.6.10; new patch for Scripts #387?
(edit) @2636   10 years glasgall Ignore virtual filesystems under /sys on ldap hosts. Because selinux ...
(edit) @2635   10 years andersk Update SSLCipherSuite from Mozilla guidelines version 3.3
(edit) @2634   10 years andersk openafs: Update force_drop patch to log more information requested by ...
(edit) @2633   10 years andersk openafs: we beseech thee, raineth not thine ENOENT upon thy callers of ...
(edit) @2632   10 years andersk Disable SSL 3.0 SSL 3.0 is only required by IE 6 on Windows XP, both ...
(edit) @2631   10 years achernya Add configuration for www.achernya.com since the cert is for that too
(edit) @2630   10 years achernya Certificate and configuration for vasilvv.org
(edit) @2629   10 years achernya Certificate and configuration for log.vasilvv.org
(edit) @2628   10 years achernya Hidden intermediate is hidden
(edit) @2627   10 years achernya Certificate renewal for achernya.com
(edit) @2626   10 years achernya scripts.mit.edu and *.scripts.mit.edu sha256 certs
(edit) @2625   10 years andersk Patch httpd crash when using SSL variables on non-SSL connections ...
(edit) @2624   10 years achernya SHA256 MITcert renewals
(edit) @2623   10 years achernya SHA256 renewal for feed.mit.edu
(edit) @2622   10 years achernya Block a spammy user
(edit) @2621   10 years andersk Enforce a modern TLS cipher suite order This configuration was copied ...
(edit) @2620   10 years andersk Revert r2619 “bash: Disable function imports” The fixes applied in ...
(edit) @2619   10 years andersk bash: Disable function imports The upstream fix for CVE-2014-6271 ...
(edit) @2618   10 years andersk ip[6]tables: Really ignore SMTP to localhost Packets in OUTPUT have ...
(edit) @2617   10 years andersk ip[6]tables: Ignore SMTP to localhost
(edit) @2616   10 years mitchb Certificate and reified vhost config for linguistics
(edit) @2615   10 years andersk Upgrade OpenAFS to 1.6.10pre1 for kernel 3.16 support
(edit) @2614   10 years quentin Configure iptables for logging user-generated direct SMTP traffic.
(edit) @2613   10 years quentin Upstream stock version of ip6tables-config
(edit) @2612   10 years glasgall Add /etc/securetty, since we need to add ttyS0 to it now.
Note: See TracRevisionLog for help on using the revision log.