| Commit message (Collapse) | Author | ||
|---|---|---|---|
| 11 days | modules/stalwart-mail: Remove now unneeded `allowInsecureSmtp` option | Benedikt Peetz | |
| 11 days | tests/email-dns: Init | Benedikt Peetz | |
| This test is somewhat involved, but tries to exercise our full mail handling capabilities. It effectively only tests that alice can send a message to bob, but it checks nearly all security mechanisms (DNSSEC is currently still missing). | |||
| 11 days | pkgs/fetchmail-common-name: Patch fetchmail to accept certificates without ↵ | Benedikt Peetz | |
| common name Pebble gives you SAN only certificates. | |||
| 11 days | test/email-ip: Rename from the general `email` test | Benedikt Peetz | |
| 11 days | modules/stalwart-mail-free: Remove all `security` dependent checks if it's null | Benedikt Peetz | |
| 11 days | pkgs/stalwart-mail-free: Avoid running `stalwart-mail`'s tests | Benedikt Peetz | |
| 11 days | pkgs/stalwart-mail-free: Update `cargoHash` | Benedikt Peetz | |
| 11 days | modules/stalwart-mail: Capitalize default mailboxes | Benedikt Peetz | |
| This seems to be somewhat of a standart. | |||
| 11 days | modules/stalwart-mail: Also listen on :25 without SSL but with STARTTLS | Benedikt Peetz | |
| This is important, so that other MTA can send us mail. | |||
| 11 days | modules/stalwart-mail: Set a default value for `principals` | Benedikt Peetz | |
| 11 days | modules/stalwart-mail: Include full systemd service and set correct dependencies | Benedikt Peetz | |
| This also starts `nginx` so that we can complete http-01 acme challenges. | |||
| 11 days | modules/stalwart-mail: Select DKIM keys per-domain | Benedikt Peetz | |
| 11 days | modules/stalwart-mail: Avoid hardcoding `vhack.eu` email address | Benedikt Peetz | |
| 11 days | modules/dns: Add service dependencies | Benedikt Peetz | |
| 11 days | modules/dns: Set a reasonable verbosity level | Benedikt Peetz | |
| The default is way too quiet. | |||
| 11 days | modules/dns: Provide the option to open the required firewall ports | Benedikt Peetz | |
| 11 days | modules/dns: Remove `lib.debug` calls | Benedikt Peetz | |
| 11 days | modules/dns/dns/types/records/PTR.nix: Special case for reverse IP lookups | Benedikt Peetz | |
| This makes implementing a DNS server in tests easier. | |||
| 11 days | pkgs/stalwart-mail-free: Also patch to use the platform CA store | Benedikt Peetz | |
| This is needed for the test. The general changes are caused by the requirement to update the `chargoHash`, which currently only works with this counter intuitive attribute overriding. | |||
| 11 days | modules/dns/dns/types/records/MTA-STS.nix: Init | Benedikt Peetz | |
| 11 days | modules/dns/dns/types/records/DMARC.nix: Reference the correct RFC | Benedikt Peetz | |
| RFC 7208 is titled “Sender Policy Framework (SPF) for Authorizing Use of Domains in Email, Version 1”, whilst RFC 7489 is titled “Domain-based Message Authentication, Reporting, and Conformance (DMARC)” | |||
| 11 days | .envrc: Add ./scripts to PATH | Benedikt Peetz | |
| 11 days | scripts/testInteractive: Actually build the *interactive* test driver | Benedikt Peetz | |
| Otherwise, the experience is simply worse. | |||
| 11 days | modules/stalwart-mail: Move the package to the `pkgs` subtree | Benedikt Peetz | |
| 11 days | {modules,tests}/dns: Init | Benedikt Peetz | |
| Most of the dns module was taken from: <https://git | |||
 |
index : nixos-server | |
| nixos-config for vhack.eu servers https://vhack.eu | vhack.eu |
| about summary refs log tree commit diff stats |