1. 02 Jan, 2018 1 commit
  2. 07 Dec, 2017 1 commit
  3. 01 Dec, 2017 1 commit
  4. 06 Sep, 2017 2 commits
  5. 30 May, 2017 1 commit
  6. 22 May, 2017 1 commit
  7. 10 Feb, 2017 1 commit
    • Giancarlo Razzolini's avatar
      roles/*: Fix nginx log dir permissions · ff27e416
      Giancarlo Razzolini authored
      To correctly be safe for CVE-2016-1247, we need all nginx log dirs
      to be owned by both user and group root. Also, since nginx childs
      runs as http user, the directories permissions must be 0755, so the
      http user can descent into it. Since the logrotate will create the
      log files as http:log, the nginx childs will be able to write to the
      logs, but will not be able to create files inside those dirs, fully
      preventing CVE-2016-1247.
      ff27e416
  8. 05 Feb, 2017 1 commit
  9. 17 Jan, 2017 1 commit
  10. 02 Jan, 2017 7 commits
  11. 01 Jan, 2017 2 commits
  12. 31 Dec, 2016 1 commit
  13. 30 Dec, 2016 1 commit
  14. 29 Dec, 2016 3 commits
  15. 28 Dec, 2016 3 commits
  16. 27 Dec, 2016 2 commits
  17. 05 Dec, 2016 1 commit
  18. 02 Dec, 2016 1 commit
  19. 30 Nov, 2016 1 commit
  20. 22 Sep, 2016 1 commit
  21. 17 Jun, 2016 3 commits