Git-Mirrors/graphene-os-server-infrastructure
1
0
Fork 0
mirror of https://github.com/GrapheneOS/infrastructure.git synced 2024-12-22 05:35:00 -05:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 3a92693611 move PowerDNS webserver to localhost port 81 Daniel Micay 2023-11-04 22:50:37 -0400
  • c959f8bc5b drop jdk-openjdk from attestation servers Daniel Micay 2023-11-04 16:31:03 -0400
  • a10afab253 update Python dependencies Daniel Micay 2023-10-24 14:16:54 -0400
  • 9aba6192e7 unbound: block dns rebinding Orazio 2023-10-04 13:39:59 +0200
  • cfc189742e
         unbound: block dns rebinding Orazio 2023-10-04 13:39:59 +0200
  • cb0007f816 update python dependencies Daniel Micay 2023-10-03 11:39:02 -0400
  • a4af9e2faf add ephemeral-trees directory to pacreport Daniel Micay 2023-10-01 09:04:41 -0400
  • c29206dff6 update python dependencies Daniel Micay 2023-10-01 08:41:06 -0400
  • ffff417df9 mastodon package now declares proper dependencies Daniel Micay 2023-09-24 22:18:30 -0400
  • 1f7ea042fe expand host variable declarations Daniel Micay 2023-09-18 03:29:23 -0400
  • 15f1cbcd02 nginx: drop ExecStart override Daniel Micay 2023-09-18 02:41:59 -0400
  • eeaaf12886
         Typo fix Tommy 2023-09-07 19:57:24 -0700
  • 4a985cbe29
         Typo fix Tommy 2023-09-07 19:56:43 -0700
  • 1bc32489f1
         Use curve secp384r1 Tommy 2023-09-07 19:51:41 -0700
  • 90411f367c update OCSP cache path for certbot-renew.service Daniel Micay 2023-09-02 15:07:28 -0400
  • 067b42213f update ocsp cache path for certbot deploy hook Daniel Micay 2023-08-21 03:20:50 -0400
  • adec4b9bda certbot: drop absolute path for deploy hook Daniel Micay 2023-08-21 03:15:44 -0400
  • a92156528a add nftables dscp counter config to guide Daniel Micay 2023-08-19 00:46:21 -0400
  • 104c1857d9 add vconsole.conf to pacreport.conf Daniel Micay 2023-08-19 00:37:04 -0400
  • 14da5949f2 add fstrim/xfs_fsr configuration to pacreport.conf Daniel Micay 2023-08-19 00:33:56 -0400
  • 5a86b91909 update pip-compile command Daniel Micay 2023-08-19 00:27:56 -0400
  • 9419af1bd6 use af21 for unbound DoT traffic Daniel Micay 2023-08-19 00:17:06 -0400
  • e1af23a478 add attestation service config for email Daniel Micay 2023-08-18 23:57:44 -0400
  • 343d1fdb2f add mtr package Daniel Micay 2023-08-16 22:55:53 -0400
  • b88d0d5c96 raise ssh background traffic priority to af11 Daniel Micay 2023-08-14 23:31:22 -0400
  • ae2fc9244b support drop-in configurations for ssh configs Daniel Micay 2023-08-11 11:36:08 -0400
  • 894f150a62 use CAKE no-split-gso for release servers Daniel Micay 2023-08-06 23:18:53 -0400
  • 4160e5a6b7 chrony: mark traffic as EF Daniel Micay 2023-08-04 16:51:12 -0400
  • 2f56bae4a5 use consistent naming for system drop-in configs Daniel Micay 2023-08-04 14:45:15 -0400
  • e56add4330 run fstrim daily instead of weekly Daniel Micay 2023-08-04 14:38:41 -0400
  • b67d037a5e add xfs_fsr service run before fstrim service Daniel Micay 2023-08-03 13:45:11 -0400
  • 124897ccba update systemd/system.conf Daniel Micay 2023-08-01 18:06:28 -0400
  • 7a95f6bfb4 update systemd/networkd.conf Daniel Micay 2023-08-01 18:05:09 -0400
  • 2703b7a378 add pv package Daniel Micay 2023-07-28 23:24:40 -0400
  • 53b46f6166 set correct subnet mask for BuyVM main IP Daniel Micay 2023-07-28 00:12:05 -0400
  • 5e07ae005b use idle scheduling for fstrim.service Daniel Micay 2023-07-26 13:01:17 -0400
  • 0e37437f0c update python dependencies Daniel Micay 2023-07-26 03:41:24 -0400
  • 39c15372a2 add ioping package Daniel Micay 2023-07-26 03:40:57 -0400
  • e3b8692914 add buyvm and ovh hosts arrays Daniel Micay 2023-07-24 21:31:24 -0400
  • 1173060c25 ssh: switch to AES256-GCM to use AES-NI Daniel Micay 2023-07-22 16:32:52 -0400
  • a164ca80c7 disable unused multilib repository Daniel Micay 2023-07-18 16:58:34 -0400
  • 13d4dcb39e only discard swapfile at mount time Daniel Micay 2023-07-18 16:41:15 -0400
  • 6a8529e1a3 enable discard support for swapfile dm-crypt Daniel Micay 2023-07-18 16:38:30 -0400
  • f7402790d1 blacklist virtio_console module Daniel Micay 2023-07-17 02:21:12 -0400
  • 20590d561a blacklist snd_intel8x0 module Daniel Micay 2023-07-17 01:50:56 -0400
  • 8f4431582c blacklist sr_mod module Daniel Micay 2023-07-17 01:47:44 -0400
  • f3d7d763de add dns-stats script Daniel Micay 2023-07-16 02:09:52 -0400
  • 6b0eec9218 clean up stats scripts Daniel Micay 2023-07-16 01:25:16 -0400
  • 15302563f2 drop local-reserved-ports.conf for mastodon Daniel Micay 2023-07-15 13:16:06 -0400
  • 4717854ec8 add subuid/subgid backup files to pacreport.conf Daniel Micay 2023-07-15 13:14:59 -0400
  • 3dbf62e943 add gdk-pixbuf2 loaders cache to pacreport.conf Daniel Micay 2023-07-15 13:14:48 -0400
  • a973881a30 add sysstat unit configuration to pacreport.conf Daniel Micay 2023-07-15 13:00:48 -0400
  • 0452ce51a1 update python dependencies Daniel Micay 2023-07-15 12:54:19 -0400
  • 6595a2b05f rename eth0 to public Daniel Micay 2023-07-14 12:25:50 -0400
  • b245498612 disable unused DHCP IPv4 address for mail server Daniel Micay 2023-07-13 21:39:12 -0400
  • 6736cdc36f use highest accuracy for sysstat-collect.timer Daniel Micay 2023-07-13 18:51:39 -0400
  • 6567335b31 run sysstat-collect.service every minute Daniel Micay 2023-07-13 17:40:14 -0400
  • 4e6c0b0ae1 reorder hosts Daniel Micay 2023-07-13 15:15:54 -0400
  • 2e05e09f94 add sysstat package Daniel Micay 2023-07-13 14:39:38 -0400
  • 8a1cab9071 add SSH client configuration Daniel Micay 2023-07-13 11:41:59 -0400
  • 55dba2e7db add ovh-mitigation.txt to gitignore Daniel Micay 2023-07-11 11:59:04 -0400
  • 616232e1ab add directory structure for mirrorlist Daniel Micay 2023-07-11 11:38:53 -0400
  • a957abd347 unified info fetching script Daniel Micay 2023-07-10 23:35:56 -0400
  • d49deb3db6 add certbot-ocsp-fetcher copyright notice Daniel Micay 2023-07-09 19:19:29 -0400
  • 34a7874ec3 add license Daniel Micay 2023-07-09 19:19:16 -0400
  • f90943d9e9 Additional unbound hardening Tommy 2023-01-24 08:57:22 -0500
  • 5f339efb2d update certbot-ocsp-fetcher Daniel Micay 2023-07-09 18:16:59 -0400
  • 462bdc8599 add session ticket key management scripts Daniel Micay 2023-07-09 18:04:17 -0400
  • eb9a4ef2d1 drop git package from discuss.grapheneos.org Daniel Micay 2023-07-09 14:48:41 -0400
  • d6b4b21f9b add count script Daniel Micay 2023-07-08 01:25:30 -0400
  • 9d35c7629f add Samsung OPAL information Daniel Micay 2023-07-08 01:15:09 -0400
  • 1abf27d74e blacklist tls kernel module Daniel Micay 2023-07-08 01:10:42 -0400
  • 2bc3eb4857 add information fetch scripts Daniel Micay 2023-07-08 01:10:26 -0400
  • bb2b23bec3 add 3.grapheneos.network package list Daniel Micay 2023-07-08 01:03:38 -0400
  • 3400e1f481 add stats scripts Daniel Micay 2023-07-08 01:03:22 -0400
  • 5d07b89e77 specify python3 in setup script Daniel Micay 2023-07-06 22:12:26 -0400
  • 48c9636fbd set proper mail.grapheneos.org certbot hook Daniel Micay 2023-07-06 18:52:10 -0400
  • 92456a8327 add missing dependencies for mastodon Daniel Micay 2023-07-06 18:47:33 -0400
  • 8eac68bc26 add hosts configuration file Daniel Micay 2023-07-06 17:55:31 -0400
  • 8ac489c9aa allow nginx master process to use CAP_CHOWN Daniel Micay 2023-07-06 04:57:45 -0400
  • 2cf694017b silence systemd-networkd address prefix warning Daniel Micay 2023-07-06 04:38:14 -0400
  • 5777fa38ae add network configuration for 1.grapheneos.network Daniel Micay 2023-07-06 04:30:23 -0400
  • 2f4e9f67c4 set log retention time per server Daniel Micay 2023-07-06 00:17:05 -0400
  • 5ea36399d1 rename 1.grapheneos.network to 2.grapheneos.network Daniel Micay 2023-07-05 17:31:48 -0400
  • a97e039314 rename 2.grapheneos.network to 3.grapheneos.network Daniel Micay 2023-07-05 17:31:30 -0400
  • 626653c23e add 3.grapheneos.org package list Daniel Micay 2023-07-03 21:35:48 -0400
  • affc4518da rename OVH mitigation script Daniel Micay 2023-07-03 18:35:43 -0400
  • 45c79b3909 drop legacy connectivity check subdomain Daniel Micay 2023-07-03 17:03:17 -0400
  • 37bf4935f1 drop mail server specific certbot configuration Daniel Micay 2023-06-30 15:47:33 -0400
  • 8114047b9b add new website server instance Daniel Micay 2023-06-30 15:45:09 -0400
  • 52a1e9f18e remove unused qemu-guest-agent package Daniel Micay 2023-06-30 12:22:01 -0400
  • d8d721ecd9 update python dependencies Daniel Micay 2023-06-30 10:53:45 -0400
  • 9cec692b28 fix staging.attestation.app name for certbot Daniel Micay 2023-06-29 13:25:10 -0400
  • 2641d41169 move staging.attestation.app to BuyVM Daniel Micay 2023-06-29 13:14:50 -0400
  • f9bee29ab8 move staging.grapheneos.org to BuyVM Daniel Micay 2023-06-23 14:41:01 -0400
  • 82bf5e752c add mail.grapheneos.net fallback name for MX Daniel Micay 2023-06-23 11:57:39 -0400
  • 4089b07be1 rename staging nameserver package list Daniel Micay 2023-06-22 16:03:11 -0400
  • 3c1c21f1a1 update package lists for split ns2.grapheneos.org Daniel Micay 2023-06-22 16:00:19 -0400
  • 129af30134 add nginx to mail.grapheneos.org Daniel Micay 2023-06-22 15:58:13 -0400
  • 2f4218fc77 move ns1.staging.grapheneos.org to BuyVM Daniel Micay 2023-06-22 12:41:26 -0400