- May 07, 2022
-
-
nimrod authored
-
nimrod authored
This time it's mixed content.
-
nimrod authored
Trying to figure out and issue with Nextcloud and Collabora Online. Should be reverted ASAP.
-
nimrod authored
-
nimrod authored
-
nimrod authored
-
nimrod authored
-
nimrod authored
-
nimrod authored
To make more uniform, use the same location on all hosts. Instead of copying the same tasks over and over in the renew-certs playbook in the homelab repo.
-
nimrod authored
Those directories were used by hosts now served by ns4.
-
nimrod authored
-
nimrod authored
-
nimrod authored
Access LAM on its own domain (from inside the network only).
-
nimrod authored
- No more proxying in www.shore.co.il. I think about redoing it all with a subdomain per service. Also no more secrets, intead authenticate against the LDAP server or something. - CI templates. - Simpler self-signed SSL certificate generation. - Set the hostname in CI. - Use the www-redirect snippet in shore.co.il.
-
nimrod authored
-
nimrod authored
-
nimrod authored
Marked as weak in SSL Labs' test.
-
nimrod authored
-
nimrod authored
SSL Labs' test complains that it doesn't offer forward secrecy.
-
nimrod authored
Prettier editing.
-
nimrod authored
-
nimrod authored
Up to now I supported older browsers by supporting older versions of TLS and cipher suites. I still think it makes sense for my blog, etc. but not for Nextcloud or GitLab. So here's the first step, make the previous default SSL configuration be ssl-legacy (split out the common parts to ssl-common) and next is ssl-modern.
-
- Mar 03, 2022
- Nov 10, 2021
- Sep 20, 2021
- May 31, 2021
-
-
nimrod authored
-
- May 19, 2021
-
-
nimrod authored
So I can get the real client IP in the service.
- May 14, 2021
-
-
nimrod authored
If the acme challenge is in a location block but the default redirection is not, the default always takes precedence (Nginx won't resolve the order between the different directives, but it will between different location blocks).
-
- May 02, 2021