Michael Kropat 067052d4ea Add key-based authentication to management service ...

Intended to be the simplest auth possible: every time the service
starts, a random key is written to `/var/lib/mailinabox/api.key`. In
order to authenticate to the service, the client must pass the contents
of `api.key` in an HTTP basic auth header. In this way, users who do not
have read access to that file are not able to communicate with the
service.

2014-06-21 23:42:48 +00:00

..

check_certificate.sh

script to check the SSL certificate, with instructions for turning the self-signed certificate into a properly signed certificate

2014-06-04 11:38:20 +00:00

check_ssh.sh

move the SSH password login check out of setup because it interfers with Vagrant and into a separate script that we'll use for auditing in a later phase

2014-06-06 10:51:36 -04:00

dkim.sh

typo in updating DKIM, dont regenerate the DKIM private key each time setup is run

2014-06-03 21:42:33 +00:00

dns.sh

add DNSSEC

2014-06-17 22:21:12 +00:00

functions.sh

Support dual-stack IPv4/IPv6 mail servers

2014-06-08 18:32:52 -04:00

mail.sh

use DANE when sending mail: if the recipient MX has a DANE TLSA record in DNS then Postfix will necessarily encrypt the mail in transport

2014-06-19 01:58:14 +00:00

management.sh

obviously put our stuff in /usr/local and not /usr

2014-06-21 12:35:00 -04:00

spamassassin.sh

rename the scripts directory to setup

2014-06-03 11:12:38 +00:00

start.sh

Add key-based authentication to management service

2014-06-21 23:42:48 +00:00

system.sh

run bind9 on the loopback interface for ensuring we are using a DNSSEC-aware nameserver to resolve our own DNS queries (i.e. when sending mail) since we can't trust that the network configuration provided for us gives us a DNSSEC-aware DNS server

2014-06-18 19:45:47 -04:00

web.sh

obviously put our stuff in /usr/local and not /usr

2014-06-21 12:35:00 -04:00

webmail.sh

rename the scripts directory to setup

2014-06-03 11:12:38 +00:00