| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Server2 is currently not so much under load, as such it seems better to
split the load.
# server2
## Virtual Hosts
etebase.vhack.eu: dav.vhack.eu
gallery.s-schoeffel.de
git.foss-syndicate.org
invidious-router.vhack.eu: video.fosswelt.org invidious-router.sils.li
issues.foss-syndicate.org
libreddit.vhack.eu
nextcloud.vhack.eu # <-- This
redlib.vhack.eu
sharkey.vhack.eu # <-- And this are the “only” really heavy services here.
source.foss-syndicate.org
source.vhack.eu
## Open ports
TCP 22: ssh
TCP 25: mail-smtp
TCP 53: dns
TCP 80: http
TCP 443: https
TCP 465: mail-smtp-tls
TCP 993: mail-imap-tls
TCP 995: mail-pop3-tls
TCP 10222: taskchampion-sync
UDP 53: dns
# server3
## Virtual Hosts
b-peetz.de
mail.vhack.eu
mastodon.vhack.eu
matrix.vhack.eu
miniflux.foss-syndicate.org: rss.foss-syndicate.org rss.vhack.eu miniflux.vhack.eu
openpgpkey.b-peetz.de
openpgpkey.s-schoeffel.de
openpgpkey.sils.li
openpgpkey.vhack.eu
peertube.vhack.eu
trinitrix.vhack.eu
vhack.eu
## Open ports
TCP 22: ssh
TCP 25: <port is 'mail-smtp' but service 'vhack.mail' is not enabled.>
TCP 53: dns
TCP 80: http
TCP 443: https
TCP 465: <port is 'mail-smtp-tls' but service 'vhack.mail' is not enabled.>
TCP 993: <port is 'mail-imap-tls' but service 'vhack.mail' is not enabled.>
TCP 4190: ???
TCP 64738: ???
UDP 53: dns
UDP 64738: ???
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
The comment alone would probably suffice, but having a convenient function
that makes it obvious *what* part of the serial number you are actually
supposed to change seems quite useful, when trying to reduce the
possibilities of forgetting it.
|
| |
|
|
|
|
|
|
|
|
| |
Running two mail-servers on one system is a total /mess/. Both try to
bind to the same ports, the old stack consists of **5** different
systemd services whilst stalwart-mail's systemd service simply refuses
to stop, etc.
I'm confident that it can work, but it would probably be best to deploy
the new mail-server on server3.
|
| | |
|
| |
|
|
|
|
|
|
| |
We need to actually test stalwart out in the real world, because the
test can never actually capture all the weird things people do with
their mail setup.
Refs: #6ea08aa
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
This includes the obvious changes, ensuring that it follows our
current best-practices.
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
| |
The redirects always have an implicit dependency on the DNS config of
the running host. As such, simply stating them for all host is never a
possibility and setting them per host the only viable option.
|
|
|
values
This allows us to outsource the host-handling from the `flake.nix` file.
|
