- Dec 07, 2024
-
-
nimrod authored
-
nimrod authored
-
nimrod authored
-
nimrod authored
-
nimrod authored
It seems unmaintained. It fails to install on Python 3.12 and the domain name hasn't been renewed.
-
nimrod authored
-
nimrod authored
That's why it's there for.
-
nimrod authored
There are multiple services deployed by Docker Compose on the host. The first one creates the Docker network shared by all of them. However, newer versions of Docker Compose check the network tags and if the tag for the service doesn't match it (rightfully) complains. Instead the network is now created by an Ansible playbook when first provisioning the host and the network is marked as externally managed in all of the services.
-
nimrod authored
-
- May 10, 2024
-
-
nimrod authored
Docker Compose changed the names of the containers.
-
- Jul 30, 2022
-
-
nimrod authored
-
nimrod authored
It's part of ldap-common and that package is not required anymore. Since I'm creating most of it already, just create all of it.
-
nimrod authored
I don't know why but the config changed somewhere along the line.
-
nimrod authored
-
nimrod authored
-
nimrod authored
There's an update to OpenLDAP 2.5 or maybe 2.6 coming down the pipe. But I'm kicking the can down the road for now. Keeping up with Debian releases is enough for today.
-
- Jul 16, 2022
-
-
nimrod authored
- Change from a single backup that's overwritten everytime to a multiple, dated backups. - Save the last 30 days of backups. - Save backups under the host's /var/backups instead of a Docker volume. Easier to backup. - Add a restore script so that at least I would have some idea on how to restore this backup. Last thing I want to do when I need this backup is to try and figure out how to restore it.
-
- Apr 23, 2022
- Dec 11, 2021
- Apr 24, 2021
-
-
nimrod authored
-
- Apr 21, 2021
-
-
nimrod authored
To be integrated with the Nginx web proxy.
-
- Mar 26, 2021
- Feb 26, 2021
-
-
nimrod authored
The SSL-terminating proxy should have that hostname.
-
- Feb 19, 2021
-
-
nimrod authored
The external name for it.
-
- Feb 07, 2021
-
-
nimrod authored
-
- Feb 05, 2021
-
-
nimrod authored
-
- Jan 23, 2021
- Jan 07, 2021
-
-
nimrod authored
- GitLab CI templates. - Pre-commit snippet. - Address pre-commit issues.
-
- Nov 23, 2020
-
-
nimrod authored
A lot of different fixes. What I have in production right now.
-
- Nov 23, 2019
-
-
nimrod authored
Run as a limited user and bind to the regular HTTP port using file capabilities.
-
nimrod authored
- Relax the permission on /etc/ssl to allow generating snakeoil certificate and key. - Grant the slapd binary CAP_NET_BIND_SERVICE to allow binding to privileged ports. - Change owner of /etc/ldap/ldap.conf to allow modifying it in entrypoint. - Prepopulate volumes with the correct ownership, permissions and directory structure to avoid doing it in the entrypoint without root.
-
- Nov 19, 2019
-
-
nimrod authored
- Use port 8080 (http-alt) instead of port 80 (a priviliged port). - Run Apache with the www-data user. - Enable the Apache status module.
-
- Sep 21, 2019
- Sep 20, 2019
-
-
nimrod authored
- Update base image to Debian Buster. - Install pamtester in the image.
-