zydronium/danwin-hosting
1
0
Fork 0
mirror of https://github.com/DanWin/hosting.git synced 2025-08-02 12:31:49 +02:00
Code Issues Projects Releases Packages Wiki Activity
172 commits 1 branch 0 tags 1.3 MiB
Commit graph

172 commits

This branch
This branch
All branches
Author SHA1 Message Date
Daniel Winzen
7da6b8feed
Install PHPMyAdmin locally as distributions ship outdated version 2019-01-26 16:48:38 +01:00
Daniel Winzen
7661c0ccdb
With more than 10 crashes within 10 minutes we should restart php 2019-01-26 14:17:09 +01:00
Daniel Winzen
7eed4a05d7
hidden service dirs now contain authorized_clients folder 2019-01-25 20:32:35 +01:00
Daniel Winzen
e537e06118
Enable exec() related functions since we now have resource control in place 2019-01-22 21:15:32 +01:00
Daniel Winzen
bdf26c8d00 Introduce CPU and Memory resource control for php and all child-processes 2019-01-22 21:12:50 +01:00
Daniel Winzen
98d6a46aff
Merge pull request #41 from NoahvdAa/patch-2 
Fixed a small typo
 2019-01-20 11:50:31 +01:00
Noah van der Aa
7f7b228df6
Fixed a small typo 
"Here a list of 588 public hosted sites (172 sites hidden):" -> "Here is a list of 588 public hosted sites (172 sites hidden):"
 2019-01-18 18:54:46 +01:00
Daniel Winzen
11574e3e3f
nproc seems to be a global limit, not per session - increased accoringly 2019-01-08 18:20:24 +01:00
Daniel Winzen
5eab397200
Randomise DB (user)names to reduce attack surface + allow multiple DBs per user 2019-01-07 22:26:33 +01:00
Daniel Winzen
838b6c3b6f
disable systemd-resolver and tor@default apparmor profile 2019-01-06 20:35:04 +01:00
Daniel Winzen
74417d1d5b
nginx default site is now managed by the script 2019-01-06 19:48:35 +01:00
Daniel Winzen
6a834142ba
Fixed typo 2019-01-06 19:44:49 +01:00
Daniel Winzen
dfe7f7d9e7
when shell access is enabled, we shouldn't use force-command in sshd_config 2019-01-06 19:35:49 +01:00
Daniel Winzen
09ca89029e
apply security restrictions in limits.conf 2019-01-06 19:33:12 +01:00
Daniel Winzen
c46a2584fa
Add shell access and scp support 2019-01-06 18:20:02 +01:00
Daniel Winzen
b5d8b79b8e Disabled STRICT_TRANS_TABLES for compatibility 2019-01-05 12:15:56 +01:00
Daniel Winzen
ee7e1d11ca
Merge pull request #40 from NoahvdAa/patch-1 
Added the "select all" option to the file manager.
 2019-01-04 21:29:44 +01:00
NoahvdAa
c306ea2518
Check-All checkmark fix 
Check-All checkmark now only appears when javascript is enabled.
 2019-01-04 14:19:04 +01:00
NoahvdAa
cdd2b5b9be
Added the "select all" option to the file manager. 
#13
 2019-01-04 14:16:51 +01:00
Daniel Winzen
899da11a56
Merge pull request #38 from NoahvdAa/patch-1 
Fixed a typo
 2019-01-04 09:59:35 +01:00
NoahvdAa
ae2aa16f76
Fixed a typo 2019-01-04 09:57:00 +01:00
Daniel Winzen
7e4ed95ba8
Additional direcotries would have to be included in chroots to be useful - removed 2019-01-03 07:20:54 +01:00
Daniel Winzen
e536a5c544
Minor nginx config fix 2019-01-01 20:43:21 +01:00
Daniel Winzen
cff617379d
tmp is created by setup_chroot script already 2019-01-01 14:34:06 +01:00
Daniel Winzen
6b6efc2fc6
Logs are stored outside chroot - don't check existence and let nginx handle it 2019-01-01 13:54:36 +01:00
Daniel Winzen
55bc8cd757
Introduce mysqld socket stream forwarding with nginx for chroot jails 2019-01-01 13:47:30 +01:00
Daniel Winzen
0f38bd2449
Improved privilege separation 2019-01-01 02:24:22 +01:00
Daniel Winzen
a5b0de4b07
Added setup_chroot.sh script 2018-12-27 22:32:37 +01:00
Daniel Winzen
91167d1f45
Fix systemd namespace issues taking effect after reboot 2018-12-24 06:27:33 +01:00
Daniel Winzen
e0bfc5e633
Our hidden service should run on v3 by default 2018-12-10 16:58:50 +01:00
Daniel Winzen
a901e25bb4
Instructions to prepare user disk quota 2018-12-09 12:25:25 +01:00
Daniel Winzen
08cc492b86
New imap.enable_insecure_rsh php.ini option protects against imap_open exploit 
http://php.net/manual/en/imap.configuration.php
 2018-12-08 11:01:06 +01:00
Daniel Winzen
11c055ebcf
Remove commeted options 2018-12-07 22:18:49 +01:00
Daniel Winzen
4f6539b31d
Introduce systemd.exec restrictions for better security 2018-12-07 21:54:44 +01:00
Daniel Winzen
8e155012a7
Suppress chatty dovecot messages 2018-12-07 21:48:22 +01:00
Daniel Winzen
4b25310396
Simplified sshd_config 2018-12-07 13:25:30 +01:00
Daniel Winzen
756e16b533
Fixed potential race condition pointed out in issue #31 2018-12-06 16:54:35 +01:00
Daniel Winzen
5cd13e9269
Introduced selection between v2, v3 and custom hidden service 2018-12-06 16:24:35 +01:00
Daniel Winzen
305c8bc0c3
Fix mariadb 10.3 compatibility by adding default values 2018-12-05 22:19:46 +01:00
Daniel Winzen
be005c3137
Renamed config file 2018-12-05 17:18:46 +01:00
Daniel Winzen
aedd8a1e6a
Update to latest mariadb version 2018-12-05 17:18:11 +01:00
Daniel Winzen
64163823a8
dnsmasq should only listen on lo interface 2018-12-05 07:59:46 +01:00
Daniel Winzen
fd95a4e2e3
v3 hidden service export to disk + hostname file is auto generated by tor 2018-12-04 21:48:45 +01:00
Daniel Winzen
c9cddc9f86
Username should be a prepared variable 2018-12-04 21:27:35 +01:00
Daniel Winzen
d0710d3d20
Merge pull request #37 from DanWin/revert-35-patch-1 
Revert " Disabling emulated parameters"
 2018-12-04 21:13:51 +01:00
Daniel Winzen
0fc4412404
Revert " Disabling emulated parameters" 2018-12-04 21:10:36 +01:00
Daniel Winzen
ba71455ca5
Introduce DEFAULT_PHP_VERSION 2018-12-04 20:48:08 +01:00
Daniel Winzen
4e163a7e2d
Fixed syntax error 2018-12-04 15:26:24 +01:00
Daniel Winzen
c174251826
exim4 might interfere with postfix 2018-12-04 13:36:16 +01:00
Daniel Winzen
4f059e66f7
Droped php7.2 systemd.service files 2018-12-04 13:29:17 +01:00