summaryrefslogtreecommitdiff
path: root/etc
AgeCommit message (Collapse)Author
43 hoursmorecaXiao Pan
43 hoursfix: acme.sh-systemd allow read write to /etc/nginx and /var/log/nginx so no ↵Xiao Pan
error when auto renew
5 daysI only connect to imapsXiao Pan
8 daysI do not enable pop3 in dovecot nowXiao Pan
8 dayspacdiffXiao Pan
10 daysdovecot 2.3 to 2.4 big config changesXiao Pan
https://doc.dovecot.org/2.4.2/installation/upgrade/2.3-to-2.4.html
10 dayspacdiffXiao Pan
2025-08-29nft disallow pp wg ip because no needXiao Pan
2025-08-29remove unneeded configsXiao Pan
2025-08-28metaXiao Pan
2025-08-28switch to dnsmasqXiao Pan
2025-08-28dnsmasq use many servers and ignore resolv.confXiao Pan
man dnsmasq wrote "By default, dnsmasq will send queries to any of the upstream servers it knows about and tries to favour servers that are known to be up." There's a --strict-order option to make bottom server=... as highest priority, see [this stackexchange question][0]. I think this default behavior seems not very good, it send some unnecessary dns queries. But tcpdump shows there's not much dns query going on any way so maybe not a problem. [0]: https://unix.stackexchange.com/q/500900
2025-08-28metaXiao Pan
2025-08-28add default dnsmasq.confXiao Pan
2025-08-23pacdiffXiao Pan
2025-08-16cgitrc: since $HTTP_HOST does not work, use the other clone-prefix config ↵Xiao Pan
has less code
2025-08-15cgitrc $HTTP_HOST not working nowXiao Pan
2025-08-03nft only allow wg insp and pp ip to local portXiao Pan
2025-07-22nginx.conf cgit add back favicon.ico because I no longer use cgit-pink and ↵Xiao Pan
cgit has it, also add cgit.js which I maybe forgot to add
2025-07-22add commentXiao Pan
2025-07-22nginx.conf add commentXiao Pan
2025-07-22website add http3 quic supportXiao Pan
2025-07-22nginx set worker_processes to autoXiao Pan
Which seems is how many cpu cores I have. To try to improve performance.
2025-07-22nginx.conf add comment about http2Xiao Pan
2025-07-22nginx enable http2Xiao Pan
2025-07-15pacdiffXiao Pan
2025-07-15sudoers pacdiffXiao Pan
related upstream PR and commit: https://github.com/sudo-project/sudo/pull/427 https://github.com/sudo-project/sudo/commit/7c121ff8340c6fa551ba4997dde9d450cf74e40c
2025-07-15pacdiffXiao Pan
2025-07-14now no need port forward insp monerod-p2p port, I use ba for that nowXiao Pan
2025-07-11cgit move pubic_archive_codes to archives sectionXiao Pan
2025-07-11cgit add cfgl studio archiveXiao Pan
2025-07-11remove ssh forward to studioXiao Pan
2025-07-10change nft: website move to ca so no need route things to studioXiao Pan
2025-07-10metaXiao Pan
2025-07-10remove hosts, because no needXiao Pan
2025-07-10no more workaround with hosts using wg ip for flylightning.xyz because I ↵Xiao Pan
move the website to ca
2025-07-10nginx use cert in /etc/postfix, add mail.flylightning.xyz domainXiao Pan
nginx use cert in /etc/postfix so acme.sh only need to install to one location for both nginx and postfix to use. nginx add mail.flylightning.xyz domain for acme.sh to use to renew it, without it acme.sh will error when renew it
2025-07-10wrong user:group, change .gitolite.rc metaXiao Pan
2025-07-10metaXiao Pan
2025-07-10starting to move studio website to ca, now moving configsXiao Pan
2025-07-04nft config studio wg swgp wg to ca, studio use ::b ip6, ca use ::a ip6 so it ↵Xiao Pan
can do acme.sh
2025-07-04metaXiao Pan
2025-07-04use wg ip for flylightning.xyz to temp workaround the issue of ca `ssh -6 ↵Xiao Pan
gitolite@flylightning.xyz` and `ssh -4 gitolite@flylightning.xyz` both error; note this is after me config studio and ca wg forward
2025-05-02pacdiffXiao Pan
2025-05-02Add nft rules to port forward insp xmrd p2p when insp VPN into itXiao Pan
Also added monero-p2p port number to /etc/services for nft to use
2025-04-13pacdiffXiao Pan
2025-03-30metaXiao Pan
2025-03-30dovecot switch to track only one config fileXiao Pan
2025-03-29pacdiffXiao Pan
2025-03-04pacdiffXiao Pan
generated by cgit v1.2.3-70-g09d2 (git 2.52.0) at 2025-11-21 10:26:03 +0000