- 05 Sep, 2019 9 commits
-
-
Jan Alexander Steffens (heftig) authored
Enables TLS 1.3.
-
Jan Alexander Steffens (heftig) authored
-
-
Jan Alexander Steffens (heftig) authored
-
Jan Alexander Steffens (heftig) authored
Where http does not redirect to https. These are package mirrors and the web key directory.
-
Jan Alexander Steffens (heftig) authored
-
Jan Alexander Steffens (heftig) authored
-
Jan Alexander Steffens (heftig) authored
-
Jan Alexander Steffens (heftig) authored
-
- 04 Sep, 2019 1 commit
-
-
Jelle van der Waa authored
-
- 03 Sep, 2019 2 commits
-
-
Jelle van der Waa authored
-
Protect from simple privilege escalation attacks on scripts that are granted privileged execution for unprivileged users by restricting the PATH to a static set. Without doing so, it is a trivial attack to provide a binary used by a privileged script that executes former without an absolute path to escalate privileges by gaining code execution through that binary. Anything run with elevated privileges through sudo shall never ever have the possibility to pass on the unsanatized PATH from an unprivileged user. Signed-off-by:
Levente Polyak <anthraxx@archlinux.org>
-
- 02 Sep, 2019 2 commits
-
-
Jelle van der Waa authored
-
Pierre Schmitz authored
-
- 01 Sep, 2019 5 commits
-
-
Jelle van der Waa authored
-
Jelle van der Waa authored
This bans all requests exceeding 1/min in a time period of 30 minutes. This might be too harse and can be adjusted later.
-
Pierre Schmitz authored
-
Pierre Schmitz authored
-
Jelle van der Waa authored
These are static requests for JS/CSS assets which are the topmost request for the wiki. Caching these in nginx helps a lot to turn down the load.
-
- 31 Aug, 2019 2 commits
-
-
Pierre Schmitz authored
-
Pierre Schmitz authored
-
- 25 Aug, 2019 1 commit
-
-
Florian Pritz authoredSigned-off-by:
Florian Pritz <bluewind@xinu.at>
-
- 19 Aug, 2019 1 commit
-
-
Jan Alexander Steffens (heftig) authored
This reverts commit 9809d84d. I forgot our package already does this.
-
- 17 Aug, 2019 1 commit
-
-
Jan Alexander Steffens (heftig) authored
-
- 15 Aug, 2019 11 commits
-
-
Jan Alexander Steffens (heftig) authored
- Restore fstype to mount tasks. Annoyingly it does not default to auto. - Use the right task type for copying files and place them in the chroot. - Install both python-requests and python-yaml.
-
Jan Alexander Steffens (heftig) authored
-
Jan Alexander Steffens (heftig) authored
-
Jan Alexander Steffens (heftig) authored
- Move ext4 handling to not-btrfs, allowing XFS - Improve btrfs mkfs and mount options space_cache=v2 only needs to be done once and is automatic afterwards
-
Jan Alexander Steffens (heftig) authored
-
Jan Alexander Steffens (heftig) authored
Improves performance on btrfs.
-
Jan Alexander Steffens (heftig) authored
Prevents borg from backing up the database thrice, - once as a database dump, - once because /var/lib/postgres/data/ is part of the root backup, - once because /var/lib/postgres/backup/ is part of the root backup.
-
Florian Pritz authored
Signed-off-by:Florian Pritz <bluewind@xinu.at> -
Florian Pritz authored
Signed-off-by:Florian Pritz <bluewind@xinu.at> -
Florian Pritz authored
Signed-off-by:Florian Pritz <bluewind@xinu.at> -
Florian Pritz authored
Signed-off-by:Florian Pritz <bluewind@xinu.at>
-
- 14 Aug, 2019 4 commits
-
-
Jelle van der Waa authored
-
Jan Alexander Steffens (heftig) authored
-
Jelle van der Waa authored
Dan retired in 2017.
-
Jelle van der Waa authored
-
- 13 Aug, 2019 1 commit
-
-
Jelle van der Waa authored
-
