From: Christian Heller Date: Sat, 24 Nov 2018 01:52:39 +0000 (+0100) Subject: WIP. X-Git-Url: https://plomlompom.com/repos/%22https:/validator.w3.org/%7B%7Bprefix%7D%7D/condition?a=commitdiff_plain;h=395d9b2fbde8811206b26fab39eee609c14f4fd1;p=config WIP. --- diff --git a/all_new_2018/letsencrypt.sh b/all_new_2018/letsencrypt.sh new file mode 100755 index 0000000..01f8a81 --- /dev/null +++ b/all_new_2018/letsencrypt.sh @@ -0,0 +1,31 @@ +#!/bin/sh +set -e + +# Ensure we have a server name as argument. +if [ ! $# -eq 2 ]; then + echo "Need server and action as argument." + false +fi +server="$1" +action="$2" + +# So we only get asked once for decrypting our key. +eval $(ssh-agent) +ssh-add ~/.ssh/id_rsa + +if [ "${action}" = "set" ]; then + # Install certificate. + ssh -t plom@${server} "su -c 'apt -y install certbot && certbot certonly --standalone -d ${server}$'" +elif [ "${action}" = "get" ]; then + # Get /etc/letsencrypt/ as tar file. + ssh -t plom@${server} 'su -c "cd /etc/ && tar cf letsencrypt.tar letsencrypt && chown plom:plom letsencrypt.tar && mv letsencrypt.tar /home/plom/"' + scp plom@${server}:~/letsencrypt.tar . +elif [ "${action}" = "put" ]; then + # Expand letsencrypt.tar to /etc/letsencrypt/ on server. + scp letsencrypt.tar plom@${server}:~/ + ssh -t plom@${server} 'su -c "rmdir /etc/letsencrypt && mv letsencrypt.tar /etc/ && cd /etc/ && tar xf letsencrypt.tar && rm letsencrypt.tar"' +else + echo "Action must be 'set', 'get', or 'put'." + false +fi + diff --git a/all_new_2018/setup_mail.sh b/all_new_2018/setup_mail.sh index 0415717..a3045e6 100755 --- a/all_new_2018/setup_mail.sh +++ b/all_new_2018/setup_mail.sh @@ -2,7 +2,7 @@ set -e echo "postfix postfix/main_mailer_type string 'Internet Site'" | debconf-set-selections -#echo "postfix postfix/mailname string $(hostname -f)" | debconf-set-selections +echo "postfix postfix/mailname string $(hostname -f)" | debconf-set-selections echo "$(hostname -f)" > /etc/mailname apt install -y postfix mkdir -p /etc/dovecot/conf.d/