| Age | Commit message (Collapse) | Author | Files | Lines | |
|---|---|---|---|---|---|
| 13 days | Harden role security: file permissions, service binding, no_log, strict defaults | Luke Hoersten | 1 | -0/+1 | |
| - Add no_log: true to tasks that handle passwords/secrets - Tighten config file permissions (0644 -> 0600/0640 where appropriate) - Bind pleroma to 127.0.0.1 instead of 0.0.0.0 - Tighten ergo unix socket mode 0777 -> 0770 - Remove weak defaults; roles now fail explicitly if required vars not set | |||||
| 2025-05-29 | Fixed an error with overwriting certbot certs. | Luke Hoersten | 1 | -2/+2 | |
| 2024-07-29 | Cleaned up always-changed status tasks. | Luke Hoersten | 1 | -1/+1 | |
| 2020-09-05 | Use proper ssl cert config for prosody. | Luke Hoersten | 1 | -10/+8 | |
| 2020-06-14 | Added postgresql for prosody. | Luke Hoersten | 1 | -1/+20 | |
| 2020-06-14 | Copy prosody keys over. | Luke Hoersten | 1 | -0/+14 | |
| 2020-05-14 | Added prosody role. | Luke Hoersten | 1 | -0/+26 | |
 |
index : luke/ansible-roles | |
| Ansible roles for nth.io infrastructure | Luke Hoersten |
| summaryrefslogtreecommitdiff |