source: trunk/server

Revision Log Mode:


Legend:

Added
Modified
Copied or renamed
Diff Rev Age Author Log Message
(edit) @1351   15 years geofft Punt textbooks.mit.edu's config because it is no longer on scripts
(edit) @1350   15 years geofft Use a more accurate OU in certificates
(edit) @1349   15 years geofft Fix documentation
(edit) @1348   15 years mitchb Prompt for certs once, not five bajillion times (fix SSL session ...
(edit) @1347   15 years geofft admof: Add a -noauth flag.
(edit) @1342   15 years mitchb Improvements to check_ldap_mmr plugin o Don't put a newline after ...
(edit) @1341   15 years ezyang Disable vhost logging.
(edit) @1340   15 years mitchb Revert r1329 - stop scriptsifying activesupport and actionpack gems ...
(edit) @1339   15 years mitchb Revert r1328 - accept Rails-related updates from Fedora again
(edit) @1338   15 years geofft execsys: Have binfmt_misc detect executable PHP scripts via magic, not ...
(edit) @1337   15 years geofft execsys: Stop automatically generating the binfmt_misc configuration. ...
(edit) @1335   15 years geofft CSR and configuration for signup.mit.edu [help.mit.edu #1024298]
(edit) @1334   15 years mitchb Change the Scripts build system to build under mock!
(edit) @1333   15 years mitchb Prevent users from trying to run mock via password auth
(edit) @1332   15 years mitchb Put pristine upstream mock PAM config under revision control
(edit) @1331   15 years mitchb Revert r1330. Try not to kill *all* of our notifications next time.
(edit) @1330   15 years geofft syslog: Ignore "Failed keyboard-interactive..." We don't permit ...
(edit) @1329   15 years mitchb Scriptsify activesupport and actionpack ruby gems, patch for CVE-2009-3009
(edit) @1328   15 years mitchb Stop accepting Rails-related updates from Fedora
(edit) @1327   15 years mitchb Corrections to build and install dependencies for accountadm
(edit) @1326   15 years quentin Goddamn hardcoded vhosts
(edit) @1325   15 years mitchb Certificate and SSL config for ai6034.mit.edu
(edit) @1323   15 years mitchb Fix global scoping problem from r1317 and r1319 One of these days ...
(edit) @1322   15 years geofft Don't disable freshclam
(edit) @1321   15 years quentin Add freshclam configuration
(edit) @1320   15 years mitchb The whois daemon needs a credential file installed, too
(edit) @1319   15 years mitchb Fix vhost log rolling config from r1317
(edit) @1317   15 years quentin Temporarily keep 14 days of vhost logs
(edit) @1316   15 years quentin Handle ~urls as well when gathering statistics
(edit) @1315   15 years quentin Flush log after each entry, to avoid a big 4k buffer
(edit) @1314   15 years ezyang Collect logs about virtual host hits from MITnet at ...
(edit) @1311   15 years mitchb SSL config for bookspicker.mit.edu. The cert doesn't do much without it.
(edit) @1310   15 years geofft SSL certificate for bookspicker.mit.edu
(edit) @1307   15 years geofft certificate renewals
(edit) @1306   15 years mitchb Upgrade Apache to 2.2.13; don't patch in SNI support anymore And we ...
(edit) @1305   15 years geofft Don't zephyr -c scripts-spew about sudo from root. Because we usually ...
(edit) @1302   15 years quentin basename != dirname
(edit) @1301   15 years geofft Actually unblock reuter from sending (not just receiving) mail ...
(edit) @1300   15 years geofft Unblock golem from receiving mail (discussed with him over zephyr)
(edit) @1299   15 years geofft Unblock reuter from sending mail [help.mit.edu #985700]
(edit) @1296   15 years mitchb fedora-ds is now 389-ds - "People like alphanumeric digits"
(edit) @1294   15 years mitchb We got nss-ldapd into Fedora! Stop building it from OpenSuSE.
(edit) @1293   15 years mitchb Certificate and Apache config for metu.mit.edu
(edit) @1291   15 years mitchb Stop using the Fedora mirrors; they suck The mirrors lag behind the ...
(edit) @1290   15 years mitchb Put -updates and -updates-testing repo configs under version control
(edit) @1289   15 years mitchb OpenSUSE bumped the nss-ldapd release again? Shocking! 6.4->6.5
(edit) @1288   15 years mitchb Revert r1287 - we're not convinced the change is beneficial
(edit) @1287   15 years quentin Don't execute scripts outside of /afs, unless they're in the trusted ...
(edit) @1283   15 years mitchb Stop scriptsifying rubygem-rails; Fedora has taken our patch
(edit) @1282   15 years mitchb Update nss-ldapd from version 0.6.10 release 6.2 to release 6.4 ...
(edit) @1277   15 years ezyang Add missing build dependency, as suggested by adehnert.
(edit) @1276   15 years mitchb Updated CellServDB from Ops
(edit) @1275   15 years mitchb Temporarily scriptsify rubygem-rails to work around Fedora packaging ...
(edit) @1274   15 years mitchb Upgrade OpenAFS to 1.4.11 o Two of our patches (postinit and ...
(edit) @1273   15 years mitchb Upgrade nss-ldapd to version 0.6.10
(edit) @1272   15 years mitchb Wrap check_ldap_mmr with a sudo invocation, and don't spew logs about it
(edit) @1270   15 years mitchb Nagios plugin to monitor LDAP multi-master replication status
(edit) @1267   15 years mitchb Configuration for new scripts webserver real-mccoy
(edit) @1266   15 years quentin Symlink in case AFS is stupid
(edit) @1265   15 years quentin Prevent AFS client from registering shared or backend IPs
(edit) @1264   15 years geofft Fix URL of Django admin media for F11/py2.6.
(edit) @1259   15 years mitchb Reintegrate branches/fc11-dev (r1121:1258) to trunk
(edit) @1256   15 years andersk BLUE!!!
(edit) @1255   15 years geofft Second coat of paint on an empty bikeshed
(edit) @1254   15 years geofft Still not convinced, but perhaps it works now too
(edit) @1253   15 years geofft I'm not convinced this package exists, but it's up to date now
(edit) @1250   15 years mitchb Configuration for new scripts webserver busy-beaver
(edit) @1245   15 years mitchb Missed one; pancake-bunny backend route config
(edit) @1244   15 years mitchb Configuration for new scripts webserver pancake-bunny
(edit) @1242   15 years mitchb Renewal certificate for scripts-cert.mit.edu
(edit) @1241   15 years ezyang Preliminary commit of Xen installation documents.
(edit) @1240   15 years ezyang Revert change, as this will fail if AFS is not loaded.
(edit) @1239   15 years ezyang Have zroot also look in /mit/scripts/.ssh/authorized_keys. This is a ...
(edit) @1237   15 years mitchb Small fixes to the server installation doc
(edit) @1236   15 years mitchb Nitpick punctuation fix in spec file; doesn't change anything
(edit) @1235   15 years mitchb Tidy up dependencies for php_scripts o Add BuildRequires dependency ...
(edit) @1234   15 years mitchb Package the php scripts.so logging module stupid_server_install_kludges--;
(edit) @1233   15 years mitchb Update to new Athena CellServDB
(edit) @1227   15 years quentin Add cycling-club to set of blocked mail users, and split the list off ...
(edit) @1225   15 years mitchb Make athrun use arch/@sys/bin instead of just bin
(edit) @1219   15 years mitchb Add a very braindead implementation of athrun for scripts. This ...
(edit) @1214   15 years geofft SSL cert and config for tours.mit.edu
(edit) @1209   15 years mitchb kmod-openafs should be shaken, not stirred... err, installed, not ...
(edit) @1208   15 years quentin Add ImageMagick PHP extension
(edit) @1193   15 years ezyang Commiting enabling of dom.ini, pending further performance review.
(edit) @1191   15 years mitchb Remove expired test cert and config for geofft.mit.edu
(edit) @1190   15 years mitchb Make the server install directions slightly more complete
(edit) @1187   15 years quentin Always ensure we have tokens before starting crond
(edit) @1178   15 years mitchb Make installation of a scripts server less of a hazing ritual by ...
(edit) @1177   15 years quentin Document how to generate a pkcs12 file from a PEM certificate and key
(edit) @1171   15 years quentin Script for checking certificate expiration times
(edit) @1170   15 years geofft scripts.mit.edu Equifax-signed 2-year cert
(edit) @1169   15 years geofft suexec: Hardcode the JAVA_TOOL_OPTIONS value. Because, otherwise, ...
(edit) @1168   15 years geofft Make Java work again by reducing its maximum heap size. Otherwise, it ...
(edit) @1167   15 years geofft suexec: Let the JAVA_TOOL_OPTIONS environment variable through.
(edit) @1166   15 years geofft Replace *.scripts' cert with an Equifax-signed one from RapidSSL.
(edit) @1165   15 years geofft limits.conf: Actually, keep data and as around. rss isn't respected ...
(edit) @1164   15 years quentin Revert r1162 (DDoS over?)
(edit) @1163   15 years andersk Punt memory limits other than rss.
(edit) @1162   15 years quentin Temporarily reduce request timeouts in order to deal with DDoS
Note: See TracRevisionLog for help on using the revision log.