Commit graph

497 commits

Author SHA1 Message Date
Rouven Seifert 3763b8b106
fail2ban: enable incremental bantime 2023-10-20 16:57:02 +02:00
Rouven Seifert a8d1444ef9
Merge pull request #76 from fsr/fail2ban-mail
fail2ban: setup postfix and dovecot
2023-10-20 12:27:58 +02:00
Rouven Seifert 0712f02d40
fail2ban: setup postfix and dovecot 2023-10-19 14:24:11 +02:00
quitte 2058b8f955 add infoscreen, manual and sharepic websites 2023-10-19 11:54:15 +02:00
Rouven Seifert c360abe7d9
ftp: remove TUD private subnet
was added on kaki back then. Probably because of some routing misconfigurations
let's embrace some hope that this is now fixed
2023-10-18 23:30:16 +02:00
Rouven Seifert ddc7179312
kanboard: add short domain 2023-10-16 11:59:06 +02:00
quitte 94c9be356c kanboard: first version 2023-10-15 13:38:48 +02:00
quitte 8c7ffab70e mautrix-telegram: enable again and small fix 2023-10-09 21:19:05 +02:00
Rouven Seifert 3d18969471
nginx: disable ip anonymizing 2023-10-08 13:43:04 +02:00
Rouven Seifert 5820741dd2
matrix: move to ifsr.de 2023-10-08 13:42:29 +02:00
Lyn Fugmann d48fb6c13a
setup fail2ban
block tor exit nodes
2023-10-04 18:49:12 +02:00
Rouven Seifert 23fb7747fb
Revert "temporarily show participants again in the course-management"
This reverts commit 39db962a2c.
2023-10-02 17:32:52 +02:00
quitte a9c8c03f08 userdir: disable php error display 2023-10-01 19:17:29 +02:00
Rouven Seifert 39db962a2c
temporarily show participants again in the course-management 2023-09-29 17:49:45 +02:00
quitte 6d277b6814 courses-phil: add redirects 2023-09-28 13:34:58 +02:00
quitte 3c17c0ad6a course-phil: on-metal fixes 2023-09-27 15:08:12 +02:00
Rouven Seifert a5d29c3338 sops: set sopsfile 2023-09-27 14:25:03 +02:00
Rouven Seifert 8908b3bbff courses: phil: init as container 2023-09-27 14:20:11 +02:00
Rouven Seifert e4b26a640b
mail: set mailUser and mailGroup 2023-09-27 11:12:07 +02:00
Rouven Seifert aa1f91c5b4
mail: fix typo 2023-09-27 11:04:37 +02:00
Rouven Seifert 201fef3084
added global spam filtering script 2023-09-27 11:03:10 +02:00
Rouven Seifert 71f4c64022
nextcloud upgrade to 27 2023-09-24 16:06:10 +02:00
Rouven Seifert 1b36010ad9
mail: disable pam authentication 2023-09-22 13:46:49 +02:00
Rouven Seifert 92efae76ed
rspamd: formatting fix 2023-09-21 21:50:36 +02:00
Rouven Seifert 7c15108f3d
rspamd: enable the neural module
so we can throw some buzzwords
2023-09-21 21:49:00 +02:00
Rouven Seifert 3b59947673
rspamd: configure dynamic blacklisting 2023-09-21 21:20:48 +02:00
quitte b35703040b nix: allow fetching the index from github 2023-09-20 22:20:49 +02:00
quitte bed0f24e94 format 2023-09-20 14:09:55 +02:00
quitte e739a60e66 userdir, zsh fixes 2023-09-20 14:07:50 +02:00
Rouven Seifert 06ec7d6e32
fix double promptinit 2023-09-19 21:08:53 +02:00
Rouven Seifert 0197610e3f
fix promptinit 2023-09-19 20:44:11 +02:00
Rouven Seifert dc65c4c5c7
don't use zsh as the default shell 2023-09-19 20:30:30 +02:00
Rouven Seifert e4e1cfd3d6
zsh: add agdsn config and comma 2023-09-19 16:03:41 +02:00
Hendrik Wolff da97f9e750 mail: Enable listescape globally 2023-09-19 14:37:07 +02:00
quitte 77c2248eee add helix editor 2023-09-19 10:33:03 +02:00
Rouven Seifert 9393915efe
mail: disable the quota check for now 2023-09-18 09:48:55 +02:00
Rouven Seifert 3c98566664
Merge pull request #67 from fsr/domain-refactor
Remove fsr domain option and use the native networking ones
2023-09-17 20:31:03 +02:00
Rouven Seifert 02cd8440f1
refactor: ran deadnix 2023-09-17 20:14:32 +02:00
Rouven Seifert 62825e357f
refactor: fsr.domain -> networking.domain 2023-09-17 20:10:55 +02:00
Hendrik Wolff b357dd8590 mail: Fix formatting of extraConfig 2023-09-17 17:05:02 +02:00
Hendrik Wolff 7ba1281909 mail: Enable the listescape plugin
Make it possible to use special characters like `.` in mail directories.
2023-09-17 16:40:12 +02:00
Rouven Seifert 220575d64b
formating 2023-09-17 16:01:51 +02:00
quitte a830d97bf9 mail migration: on-metal fixes 2023-09-17 16:00:19 +02:00
quitte e26b2c1ebe userdir: fix 403 2023-09-17 14:28:13 +02:00
Rouven Seifert b26bb94495
userdir: fix autoindex 2023-09-16 19:39:09 +02:00
Lyn Fugmann 460f9c46b3
make givenname optional in web interface 2023-09-15 19:24:27 +02:00
Rouven Seifert 0c12c14148
patch portunus to make givenname optional 2023-09-15 13:26:45 +02:00
Rouven Seifert b224f278c9
matrix, nextcloud: pin domain to staging 2023-09-15 13:04:24 +02:00
Rouven Seifert 4447cf06c4
manage all aliases in /etc/aliases 2023-09-15 12:56:19 +02:00
Rouven Seifert 5a49b73b33
postgres backup: add mailman 2023-09-14 16:03:29 +02:00
Rouven Seifert fcb4c6a36d
mailman: use postgresql 2023-09-14 14:54:09 +02:00
Rouven Seifert 8eb6545fc3
nextcloud: add legacy redicect 2023-09-06 14:22:56 +02:00
Rouven Seifert d8e3bb4689
Merge pull request #61 from fsr/imap-sieve
Mail: enable spam training through imap-sieve
2023-09-06 12:29:24 +02:00
Rouven Seifert 25d7e1bf63
ssh: add new key for rouven 2023-09-06 12:22:42 +02:00
Rouven Seifert 11b0903535
mail: put spam sieve scripts into /etc 2023-09-04 13:10:01 +02:00
Rouven Seifert a0f78133f6
mail: automatically subscribe to all important mailboxes and expunge spam 2023-09-04 11:58:23 +02:00
Rouven Seifert 76e5801d87
mail: enable spam training through imap-sieve 2023-09-04 11:58:22 +02:00
Rouven Seifert de6c5b4abf
mail: rename header x-spam to x-spam-flag 2023-09-04 10:45:21 +02:00
Rouven Seifert 04e983deb1
mail: enable spamassasin style spam headers 2023-09-04 10:29:44 +02:00
Rouven Seifert 99100ac27d
sogo: remove duplicate spam folder 2023-09-03 22:56:26 +02:00
Lyn Fugmann b68a325a3f
Merge remote-tracking branch 'origin/portunus-fixes' 2023-09-03 18:58:13 +02:00
Rouven Seifert 4c64f28a41
mail: clean sender data using header checks 2023-09-01 11:02:13 +02:00
Rouven Seifert 6dd628403c
networking: introduce rdns option 2023-09-01 10:42:22 +02:00
Rouven Seifert b3254db337
mail: update smtp_helo_hostname to match rDNS 2023-09-01 10:06:47 +02:00
Lyn Fugmann 7fdb6f9218
portunus: add patch to fix non-ascii character bug 2023-09-01 00:14:41 +02:00
quitte 202381d181 Merge remote-tracking branch 'origin/nextcloud' 2023-08-31 21:27:58 +02:00
Lyn Fugmann 39b54503d4
nextcloud: pin to version 25 for migration 2023-08-30 14:01:49 +02:00
Rouven Seifert 5ee9193a23
kpp: add redirect 2023-08-29 12:29:22 +02:00
Rouven Seifert 1a47ab4e52
kpp: move to ifsr.de 2023-08-29 12:27:13 +02:00
Rouven Seifert a83e2d7506
website: add bbb redirect 2023-08-28 19:19:19 +02:00
Rouven Seifert 1ba207e1c0
wiki: add vernetzung redirect
stura complained, actual wiki is on durian
2023-08-28 17:37:11 +02:00
quitte edc25956f5 wiki: add logo 2023-08-26 17:15:10 +02:00
quitte eadeaf4229 ldap: fix group syncing 2023-08-25 15:01:52 +02:00
Rouven Seifert 3dca54ace0
pad: set the listed tag by default 2023-08-24 20:36:30 +02:00
quitte 7fb4fa12ed undo formatting mistake 2023-08-24 16:48:19 +02:00
quitte 7d2c00ef1f nginx: fix regexes 2023-08-24 16:28:07 +02:00
Jonas Gaffke ebb066c027
enable free url 2023-08-24 16:25:15 +02:00
Rouven Seifert d669f15c49
website: pad: redirect legacy codimd pads 2023-08-24 15:33:52 +02:00
Lyn Fugmann 2ea2341e1b
nextcloud: change ldap user filter to posixAccount 2023-08-23 22:52:53 +02:00
Lyn Fugmann 91e5639123
nextcloud: refactor
- simplify database config
- run the whole preStart script as sudo, to reduce log clutter
2023-08-23 22:12:06 +02:00
Lyn Fugmann 46040f8d31
nextcloud: configure ldap automatically via nextcloud-occ cli 2023-08-23 20:56:24 +02:00
quitte 0eeb60a281 hydra: ldap fixes 2023-08-23 17:12:08 +02:00
Rouven Seifert d90e705738
hydra: init 2023-08-23 16:53:43 +02:00
quitte 1f450f35f8 wiki: fix images 2023-08-23 16:34:42 +02:00
quitte af6119a0ec wiki: set default theme 2023-08-23 15:26:58 +02:00
Rouven Seifert edac0c3eba
pads: move to ifsr.de 2023-08-23 15:17:12 +02:00
Rouven Seifert b4d8a71c65
wiki: move to ifsr.de 2023-08-22 16:55:03 +02:00
Rouven Seifert 6500dd04b6
wiki: add redirects 2023-08-22 16:29:09 +02:00
Rouven Seifert d188722565
Merge pull request #55 from fsr/padlist
Add pad lister tool
2023-08-22 15:43:29 +02:00
Rouven Seifert 5c1af65721
padlist: configure ldap authentication 2023-08-22 15:37:42 +02:00
Rouven Seifert a555a005e1
ldap: simplify homedir creation 2023-08-22 15:25:33 +02:00
Rouven Seifert 6887bae0a3
padlister: init 2023-08-22 14:55:56 +02:00
Rouven Seifert 72bac64809
ftp: formatting -_- 2023-08-22 14:35:26 +02:00
Rouven Seifert 897410f8df
ftp: enable fancy index 2023-08-22 14:32:23 +02:00
Rouven Seifert 7a902d6b8d
ftp: move to ifsr.de 2023-08-22 14:21:24 +02:00
Rouven Seifert ee9d1abb68
courses: start after postgres 2023-08-21 12:10:44 +02:00
Rouven Seifert 8e2f284201
postgres: backup: specify databases 2023-08-21 11:48:03 +02:00
Rouven Seifert cdd10f5372
postgres: enable backups 2023-08-21 11:40:56 +02:00
Rouven Seifert ca5d374f51
stream: move to ifsr.de 2023-08-17 13:50:57 +02:00
Lyn Fugmann fff575342d
wiki: add comments 2023-08-16 15:41:01 +02:00
Rouven Seifert 84a690bd52
wiki: start after postgres 2023-08-16 15:41:00 +02:00
Lyn Fugmann e6948b1fa1
wiki: add VisualEditor plugin 2023-08-16 15:40:59 +02:00
Lyn Fugmann aaab6ef91c
wiki: configure oidc auth 2023-08-16 15:40:43 +02:00
Lyn Fugmann 11be7f44c1
Patch Portunus to allow using both insecure ldap and ldaps at once 2023-08-16 15:39:52 +02:00
Lyn Fugmann c992331bbd
Fix wiki setup and database connection 2023-08-16 15:39:39 +02:00
quitte 5bc34bdbdb fixed ifsrde index 2023-08-16 15:11:27 +02:00
Rouven Seifert 38c947fe01
remove the vm 2023-08-16 14:51:01 +02:00
quitte 606c7185e0 on-metal updates
- grav fixes
- course management migration
2023-08-16 14:21:56 +02:00
Rouven Seifert 89404e80d3
include uptsream nginx config for grav 2023-08-16 13:57:10 +02:00
Rouven Seifert aaf49311fc
ssl for the website 2023-08-16 13:28:43 +02:00
Rouven Seifert f8684b8be9
initial website configuration 2023-08-16 13:24:56 +02:00
Rouven Seifert 8e85ef6281
secret rotation
- removed all non-admin keys from ssh and sops
- rotated sops keys
- regenerated secrets
2023-08-14 11:31:18 +02:00
Rouven Seifert f1924af906
vaultwarden: don't use staging domain 2023-08-09 15:36:53 +02:00
Rouven Seifert 88ae35d945
add activation script showing updated packages 2023-07-29 17:09:01 +02:00
Rouven Seifert f3aa48f7b4
update bacula mail subject 2023-07-25 11:27:25 +02:00
Rouven Seifert aa65070aa0
fix escaping in bacula mailcommand 2023-07-22 13:24:48 +02:00
Rouven Seifert 0e29e3c27a
configure mails for bacula 2023-07-21 12:30:55 +02:00
Rouven Seifert 03497aebc9
pin bacula to 9.6.7 2023-07-20 23:38:03 +02:00
Rouven Seifert 95fb2ae683
fix hedgedoc database config 2023-07-20 13:00:30 +02:00
Rouven Seifert 7839693bad
Merge pull request #52 from fsr/db-passwords
remove postgresql passwords where they are not needed
2023-07-20 12:48:05 +02:00
Rouven Seifert 10101a9e18
write own bacula config file since the upstream one is broken 2023-07-20 10:14:12 +02:00
Rouven Seifert 8ef5af5305
fix sogo replacements 2023-07-19 17:49:32 +02:00
Rouven Seifert defc2f2324
remove postgresql passwords where they are unneeded 2023-07-19 17:44:49 +02:00
Rouven Seifert 6d28293c86
Merge pull request #42 from fsr/gitea
Add gitea module
2023-07-19 16:19:47 +02:00
Rouven Seifert 9b19e080b0
open firewall for bacula 2023-07-19 16:02:41 +02:00
root 8b30a10c0f bacula fixes 2023-07-19 15:56:07 +02:00
Rouven Seifert 3fef58e888
configure bacula 2023-07-19 15:46:49 +02:00
Lyn Fugmann a2360c9f56
Add gitea module 2023-07-19 15:46:37 +02:00
Rouven Seifert 32b74fefd1
add sane zsh config 2023-07-19 15:01:47 +02:00
Lyn Fugmann da7cbfb98c
nixify portunus seeds 2023-07-19 14:32:06 +02:00
Lyn Fugmann e8263b93dc
Refactor ldap and enable dex
Co-authored-by: revol-xut <revol-xut@protonmail.com>
2023-07-19 14:31:47 +02:00
Rouven Seifert 80d016ae8f
enable mail quotas
Currently set to 10 gigabytes. Nobody I know ever reached that limit, so it should be fine
2023-07-14 15:47:11 +02:00
Rouven Seifert d7e85c3d43
Merge branch 'main' into vaultwarden 2023-07-12 15:54:36 +02:00
Rouven Seifert c0266785cd
Merge branch 'main' into vaultwarden 2023-07-12 15:51:25 +02:00
Rouven Seifert e7adae7b45
add mail settings 2023-07-12 15:46:25 +02:00
Lyn Fugmann 8d84f387f5
Add course-management module 2023-07-12 00:33:53 +02:00
Tassilo Tanneberger 69cf4211a4
Merge pull request #43 from fsr/userdir
Serve public_html directory
2023-07-08 18:47:37 +02:00
Rouven Seifert 2afef761ed
Merge branch 'main' into garbage 2023-07-07 12:16:30 +02:00
Rouven Seifert 1b3ea40f9e
Merge branch 'main' into kpp 2023-07-07 12:10:53 +02:00
Rouven Seifert 105b2a0476
mail: include aliases in local recipient maps 2023-07-07 11:03:57 +02:00
Rouven Seifert 6c542cadb9
fix sending to aliases 2023-07-07 10:14:02 +02:00
Lyn Fugmann 9be95bc7d7
Fix IPv6 mail sending, add noreply alias 2023-07-06 01:10:47 +02:00
Rouven Seifert 0165a0ad2d
removed some unneeded files 2023-07-05 17:15:24 +02:00
Rouven Seifert 1d9359416d
add postmaster alias 2023-07-05 16:21:20 +02:00
Rouven Seifert d5e881c639
use portunus.package to override 2023-07-04 17:06:18 +02:00
Rouven Seifert d94a77d35c
configure kpp 2023-07-04 16:03:10 +02:00
Rouven Seifert 5136effd16
fix the portunus pach 2023-07-04 15:15:58 +02:00
Rouven Seifert 0d7a9738b0
manually patch the portunus regex 2023-07-04 15:10:00 +02:00
Rouven Seifert 8b3e42dbb6
disable mail forwarding 2023-07-04 14:54:59 +02:00
Rouven Seifert 18922904df
vaultwarden: init module 2023-07-04 14:20:55 +02:00
Rouven Seifert 2d431ff526
added sieve 2023-07-04 14:00:06 +02:00
Rouven Seifert 7354c31da8
fixed sogo 2023-07-04 12:45:51 +02:00
Rouven Seifert 566ba5082c
Merge remote-tracking branch 'origin/main' into mailman 2023-07-04 09:41:51 +02:00
Rouven Seifert 13020f8ce3
fix ldap group search 2023-07-04 09:36:08 +02:00
Rouven Seifert 15319c9b2b
various fixes
- fix mailman's confirmation emails not sending
- introduce a stateful /etc/aliases
- configure ldap for postfix
2023-07-03 18:23:36 +02:00
Lyn Fugmann 34de78bee0
Serve public_html directory 2023-06-30 15:42:46 +02:00
Lyn Fugmann eba88a8833
add mautrix-telegram 2023-06-22 20:18:28 +02:00
Rouven Seifert 3ddab16dae
use uid as lpad in 2023-06-13 20:17:20 +02:00
Rouven Seifert 0dd03b0965
enable acme for the ifsr base domain 2023-06-13 19:55:07 +02:00
Rouven Seifert 666e6b4425
enable submission on port 587 2023-06-13 19:55:06 +02:00
Rouven Seifert a9b8875563
reload mail services upon acme renew 2023-06-13 19:55:05 +02:00
Rouven Seifert a44c2e04e2
update mailman ssh settings and add root alias 2023-06-13 19:55:01 +02:00
Rouven Seifert 7331eef574
switch to the 23.05 release 2023-05-25 22:58:14 +02:00
Rouven Seifert 504c89d4e9
revert portunus patch to test other stuff 2023-05-12 15:08:11 +02:00
revol-xut 09330c5204 adding overlay for portunus 2023-04-26 15:42:26 +02:00
Rouven Seifert 1f1229e182
enable https for mailman 2023-04-24 22:30:04 +02:00
Rouven Seifert 5f761825f0
Merge pull request #30 from fsr/mailman
Mailman config
2023-04-24 21:12:15 +02:00
revol-xut 8e1543bb14
nixpkgs fmt 2023-04-23 19:43:53 +02:00
revol-xut 25b6d71896
fixing the secrets 2023-04-13 19:35:10 +02:00
revol-xut de62b47e52
merging with main 2023-04-13 18:56:15 +02:00
revol-xut 9cda0097fc
fixing database string 2023-04-13 18:52:15 +02:00
revol-xut a8824ce574
trying to make sogo a little bit more secure 2023-04-13 18:38:37 +02:00
Rouven Seifert 12f1d690ba
added ldap config to mailman 2023-04-04 14:25:21 +02:00
Rouven Seifert d1fb1b3de1
initial mailman config 2023-04-04 00:04:04 +02:00
Tassilo Tanneberger b9c58f5363
Merge pull request #22 from fsr/mail
[Draft] Fixes for the mail configuration
2023-04-03 23:19:32 +02:00
revol-xut 78dbad50f8 Merge branch 'sogo-test' 2023-04-03 23:14:28 +02:00
revol-xut c813f3ac83
fixing secrets for sogo 2023-04-03 23:14:12 +02:00
Tassilo Tanneberger 7dffd30187
Merge pull request #29 from fsr/sogo-test
Sogo Module implementation
2023-04-03 23:05:28 +02:00
revol-xut e37482ef0a
nixpkgs fmt 2023-04-03 23:05:00 +02:00
Rouven Seifert 7c947ab23a
fix the domain name 2023-03-26 15:12:54 +02:00
Rouven Seifert 250ee8b01b
formatting 2023-03-24 17:06:40 +01:00
Rouven Seifert 214c0d525d
basic ftp config 2023-03-24 17:05:30 +01:00
Rouven Seifert 1a16265222
added important aliases 2023-03-24 16:24:18 +01:00
Rouven Seifert 36dbc82c75
fix homedir mailboxes 2023-03-24 15:51:57 +01:00
Rouven Seifert e63e4d760c
use homedir mailboxes 2023-03-24 15:21:04 +01:00
Rouven Seifert 8f0f55a5ee
missing lib fix 2023-03-24 15:21:03 +01:00
Rouven Seifert dd6374d371
postfix security enhancements 2023-03-24 15:21:02 +01:00
Rouven Seifert 041628def7
fixed dkim 2023-03-24 15:21:01 +01:00
Rouven Seifert eee6282d69
mail: better ldap query and port fixes 2023-03-24 15:20:56 +01:00
tenksom 6ab7985a6a Fixed wrong port 2023-03-22 12:09:21 +01:00
tenksom c83ea08ee8 added timezone and vhostname 2023-03-22 11:24:14 +01:00
Rouven Seifert 0ed90c8122
fixed homedir creation for sshd 2023-03-10 16:38:57 +01:00
Rouven Seifert adf2320e4a
create a home dir upon login 2023-03-10 16:15:53 +01:00
Rouven Seifert 8a2f5c7061
removed garbage 2023-03-10 15:47:56 +01:00
tenksom 6e36183995
Adding new lines for postgresql 2023-03-07 17:59:22 +01:00
tenksom 4f5137c6b9
Adding ldap, nginx, postgresql config in SOGo 2023-03-07 13:06:24 +01:00
tenksom a3f4e289e1
The born of sogo 2023-03-01 18:44:56 +01:00
Rouven Seifert c06161a62a
anonymize ip adresses in nginx logs 2023-03-01 16:40:45 +01:00
Lyn Fugmann e9674b5b0e
configure ldap for hedgedoc (config adapted from kaki) 2023-02-27 11:08:21 +01:00
Rouven Seifert 0d08565be8
revert maildir to /var/mail 2023-02-17 13:54:14 +01:00
Rouven Seifert 9dc63921b8
fix hedgedoc 2023-02-15 15:53:15 +01:00
Rouven Seifert 97dc538040
fixed matrix ldap integration 2023-02-15 15:33:27 +01:00
Rouven Seifert 4945efdea7
fixed dovecot ldap queries 2023-02-15 15:14:57 +01:00
Rouven Seifert 593c324210
catting out the password doesn't work 2023-02-15 14:47:14 +01:00
Rouven Seifert f04eb43459
fixed dovecot ldap 2023-02-15 14:40:37 +01:00
revol-xut 82f47b66cb
formatting 2023-02-15 13:20:23 +01:00
Rouven Seifert bb23a7f67a
fixing the ldap user and temp disabling tls 2023-02-15 11:29:47 +01:00
Rouven Seifert f1b22088c2
format fix 2023-02-03 16:09:41 +01:00
Rouven Seifert 58449429b9
changed maildir to /var/lib/mail, rspamd fixes 2023-02-03 16:04:45 +01:00
Rouven Seifert b600c70202
formatting 2023-02-03 15:50:36 +01:00
Rouven Seifert e893690e1d
use search user for ldap 2023-02-03 15:47:17 +01:00
Rouven Seifert 4e687b1484
some ldap config 2023-02-03 15:47:16 +01:00
Rouven Seifert b74d72f722
configured dkim signing 2023-02-03 15:47:15 +01:00
Rouven Seifert 2411a9c185
finished rspamd setup 2023-02-03 15:47:14 +01:00
Rouven Seifert a11a3614a9
configured tls and rspamd 2023-02-03 15:47:10 +01:00
Rouven Seifert e569bdec50
formatting 2023-02-03 15:44:31 +01:00
Rouven Seifert 2a0e2c6623
add mail filters 2023-02-03 15:44:29 +01:00
Rouven Seifert 14ad30e65d
beautified the file and added opendkim 2023-02-03 15:44:28 +01:00
Rouven Seifert ffae1bc8c5
receiving emails works now 2023-02-03 15:44:27 +01:00
Rouven Seifert 1f70d58853
Initial Email config
Bare-minimum config consisting of postfix and dovecot2.
For testing, passwd is used as userdb. Definitely NOT Production ready!
2023-02-03 15:44:26 +01:00
revol-xut c41369e2ac
enabeling ldap auth 2023-02-03 15:40:42 +01:00
Lyn Fugmann eeac519650
move matrix-synapse-ldap3.nix to /pkgs 2023-02-02 21:16:55 +01:00
Lyn Fugmann fab0899e7e
package ldap3 plugin 2023-01-21 21:26:24 +01:00
Lyn Fugmann c3134e1e58
Synapse LDAP config, add Portunus search user, update flake 2023-01-18 14:12:03 +01:00
Lyn Fugmann 4813ec4811
Merge branch 'main' into matrix 2022-12-17 21:39:37 +01:00
Lyn Fugmann ce7db4dac5
format, use domain option 2022-12-17 21:23:46 +01:00
halcyon 924ac7ee31
fix: set portunus port to 8081 2022-12-17 21:03:54 +01:00
Lyn Fugmann 509cfd4121
Merge branch 'main' into matrix 2022-12-17 21:02:56 +01:00
halcyon fc873af4b3
fix: remove open port 636, potential security risk 2022-12-17 19:45:53 +01:00
halcyon cd1647e5d6
fix: remove unneeded /dex reverse proxy 2022-12-17 19:45:06 +01:00
halcyon c91bcb11f8
fix: seedPath string -> path 2022-12-17 19:44:16 +01:00
halcyon 86295b5501
use config.fsr.domain 2022-12-17 19:21:16 +01:00
halcyon 3d8b8089d6
merge main into ldap 2022-12-17 19:17:52 +01:00
revol-xut 141bdb9737
adding option for domain 2022-12-17 19:12:41 +01:00
Lyn Fugmann 565bcae081
add matrix configuration 2022-12-17 19:11:37 +01:00
halcyon e1c992f50a
clean up ldap.nix 2022-12-17 19:04:45 +01:00
halcyon 2f8d5b8949
remove users.ldap config 2022-12-17 19:03:02 +01:00
halcyon eece008de6
add admin user with sops secured password 2022-12-17 18:48:30 +01:00
halcyon f3ac390cf9
add portunus seeds file with basic groups, no users 2022-12-17 18:27:16 +01:00
halcyon db63f4eb8d
format ldap.nix 2022-12-17 17:42:10 +01:00
halcyon 29e69b67ed
expanded portunus config
- daclaritve portunus and openldap users/groups
- basic sops stuff

still needs discussion
2022-12-17 13:58:06 +01:00
halcyon 00291f7e9f
basic ldap/portunus config
- config im moment nur auf meiner infra funktionstauglich,
  login auf website funktioniert
- keine integrations getestet
2022-12-02 14:25:55 +01:00
Lyn Fugmann 61059500cd
fix hedgedoc 2022-11-18 19:08:43 +01:00
revol-xut 231d82029d
updating flake and pinning to 22.05 2022-11-18 17:51:09 +01:00
revol-xut ba27089255
formatting and clean up 2022-11-18 17:45:03 +01:00
Tassilo Tanneberger 5f5f06dbdb
Merge pull request #7 from fsr/nextcloud 2022-11-18 17:41:42 +01:00
Lyn Fugmann 970f1180cc
add comments 2022-11-18 17:40:12 +01:00
revol-xut 575c1959f9
adding ssh into base.nix 2022-11-18 17:15:22 +01:00
Lyn Fugmann 67a76a0b2e
fix tabs 2022-11-18 17:13:58 +01:00
Lyn Fugmann 6f3bdbc456
add nextcloud config 2022-11-18 17:00:50 +01:00