- Oct 21, 2015
- Oct 20, 2015
-
-
nimrod authored
Limit rules in UFW implies allow, remove allow rules (caused every run to be marked as changed). The internal_tls_{key,cert} variable were ignoring the playbook variable, so switched to use set_fact (less elegant but works). Copy cert and key after running apt-get install otherwise the group won't be present.
-
nimrod authored
Since OpenLDAP uses gnuTLS and Apache uses OpenSSL, it's silly to keep 2 cipher list variables so the current (gnuTLS) cipher list variable is removed. Apache now uses HTTPS with the same key as OpenLDAP. All open ports are now rate limited.
-
- Oct 19, 2015
-
-
nimrod authored
-
- Oct 15, 2015
- Oct 14, 2015
-
-
nimrod authored
-
- Oct 07, 2015