| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
|
|
| |
If a password hash does not match stalwart's know ones, it will just
treat it as plaintext. This is obviously very bad, and should be
avoided.
|
| |
|
|
| |
This makes it possible to use the internal storage
|
| | |
|
| |
|
|
| |
This has to do with the underlying stalwart-mail update.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Server2 is currently not so much under load, as such it seems better to
split the load.
# server2
## Virtual Hosts
etebase.vhack.eu: dav.vhack.eu
gallery.s-schoeffel.de
git.foss-syndicate.org
invidious-router.vhack.eu: video.fosswelt.org invidious-router.sils.li
issues.foss-syndicate.org
libreddit.vhack.eu
nextcloud.vhack.eu # <-- This
redlib.vhack.eu
sharkey.vhack.eu # <-- And this are the “only” really heavy services here.
source.foss-syndicate.org
source.vhack.eu
## Open ports
TCP 22: ssh
TCP 25: mail-smtp
TCP 53: dns
TCP 80: http
TCP 443: https
TCP 465: mail-smtp-tls
TCP 993: mail-imap-tls
TCP 995: mail-pop3-tls
TCP 10222: taskchampion-sync
UDP 53: dns
# server3
## Virtual Hosts
b-peetz.de
mail.vhack.eu
mastodon.vhack.eu
matrix.vhack.eu
miniflux.foss-syndicate.org: rss.foss-syndicate.org rss.vhack.eu miniflux.vhack.eu
openpgpkey.b-peetz.de
openpgpkey.s-schoeffel.de
openpgpkey.sils.li
openpgpkey.vhack.eu
peertube.vhack.eu
trinitrix.vhack.eu
vhack.eu
## Open ports
TCP 22: ssh
TCP 25: <port is 'mail-smtp' but service 'vhack.mail' is not enabled.>
TCP 53: dns
TCP 80: http
TCP 443: https
TCP 465: <port is 'mail-smtp-tls' but service 'vhack.mail' is not enabled.>
TCP 993: <port is 'mail-imap-tls' but service 'vhack.mail' is not enabled.>
TCP 4190: ???
TCP 64738: ???
UDP 53: dns
UDP 64738: ???
|
| |
|
|
|
|
|
|
| |
We can't test that much, as user creation and general configuration seems to be
locked behind completing a point and click adventure, once Sharkey is actually
setup.
As such, we simply test, that Sharkey starts and provides its default
HTML.
|
| | |
|
| |
|
|
| |
This is largely based on: https://github.com/sodiboo/system/blob/b63c7b27f49043e8701b3ff5e1441cd27d5a2fff/sharkey/package.nix
|
| |
|
|
| |
This makes re-using it even easier.
|
| |
|
|
| |
This makes it easier to re-use this test data for various tests.
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
The comment alone would probably suffice, but having a convenient function
that makes it obvious *what* part of the serial number you are actually
supposed to change seems quite useful, when trying to reduce the
possibilities of forgetting it.
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
| |
Running two mail-servers on one system is a total /mess/. Both try to
bind to the same ports, the old stack consists of **5** different
systemd services whilst stalwart-mail's systemd service simply refuses
to stop, etc.
I'm confident that it can work, but it would probably be best to deploy
the new mail-server on server3.
|
| |
|
|
|
|
|
|
| |
We would need to set the `vmailUID` option to this value and even then
some parts of SNM would still hardcode the default of 5000.
Considering that we are in the process of phasing out SNM, this does not
seem to be a worthwhile endeavour.
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
| |
The uid ranges from 400 upwards are reserved for things that allocate
them dynamic during runtime (like systemd). Our users would than get
clobbered, thus we avoid that range.
BREAKING CHANGE: Well, we'll need to change all uid of the files owned by the respective users.
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
| |
We need to actually test stalwart out in the real world, because the
test can never actually capture all the weird things people do with
their mail setup.
Refs: #6ea08aa
|
| |
|
|
|
|
| |
Doing a full `ragenix --rekey --idenitity <soispha.age.key>` run will
fail, if there are secrets that she cannot decrypt. Thus encrypt the
test secrets with all keys.
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
Currently, our NS record was missing, and we had an MX record that pointed
to `mail.foss-syndicate.org.vhack.eu`.
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This collects relevant information for each host in an informative
markdown file.
An example (generated via `./scripts/system_info.sh`):
# server2
## Virtual Hosts
etebase.vhack.eu: dav.vhack.eu
gallery.s-schoeffel.de
git.foss-syndicate.org
invidious-router.vhack.eu: video.fosswelt.org invidious-router.sils.li
issues.foss-syndicate.org
libreddit.vhack.eu
redlib.vhack.eu
source.foss-syndicate.org
source.vhack.eu
## Open ports
TCP 22: ssh
TCP 25: mail-smtp
TCP 80: http
TCP 443: https
TCP 465: mail-smtp-tls
TCP 993: mail-imap-tls
TCP 995: mail-pop3-tls
# server3
## Virtual Hosts
b-peetz.de
mastodon.vhack.eu
matrix.vhack.eu
miniflux.foss-syndicate.org: rss.foss-syndicate.org rss.vhack.eu miniflux.vhack.eu
openpgpkey.b-peetz.de
openpgpkey.s-schoeffel.de
openpgpkey.sils.li
openpgpkey.vhack.eu
peertube.vhack.eu
trinitrix.vhack.eu
vhack.eu
## Open ports
TCP 22: ssh
TCP 80: http
TCP 443: https
TCP 64738: ???
UDP 64738: ???
|
| | |
|
| | |
|
