zelo72/documentation
1
0
Fork 0
mirror of https://github.com/mastodon/documentation synced 2025-04-11 22:56:17 +02:00
Code Issues 6 Releases Wiki Activity
735 Commits 11 Branches 11 Tags
Commit Graph

221 Commits

Author SHA1 Message Date
Chad Ingram
d0b9bb8801 Update Development-guide.md 
Add protobuf to brew install line - needed by cld3
 2017-05-17 00:08:04 -04:00
Eugen Rochko
afaa3feda1 Merge pull request #251 from aral/mac-development-environment-instructions 
Mac development environment instructions
 2017-05-16 16:56:15 +02:00
Aral Balkan
ab538eeb51
Fix typo on Mac developer guide 2017-05-16 16:45:40 +02:00
Aral Balkan
0f26e2962a
Cosmetic: removed trailing line in code on Mac dev guide 2017-05-16 16:31:44 +02:00
Aral Balkan
9de932c427
Change order of prerequisites in Mac development guide 
Xcode commandline tools need to be installed before ffmpeg is
as they’re used to compile it.
 2017-05-16 16:20:03 +02:00
Aral Balkan
34071d26d0
Improve running instructions in Mac development guide (#250) 2017-05-16 16:09:37 +02:00
Aral Balkan
c84f141e22
Add Mac development environment setup instructions. Closes #250 2017-05-16 16:04:50 +02:00
Myles Braithwaite
9f752db5e0 Added note about adding backports on Debian. (#249) 
Added a note about having to add Debian Backports repository to properly install `ffmpeg`.
 2017-05-15 16:24:12 -07:00
Ira Abramov
acf56f2266 Webpacker addition after v1.3.3 requires a documentation as well. 2017-05-13 18:48:49 +03:00
Ira
3f4db4fe31 Packages that were needed in my dev env 
Packages that were needed in my dev env
 2017-05-13 18:11:55 +03:00
Luc Didry
70bddee7d3 Add munin plugins repositories 2017-05-11 11:23:32 +02:00
Valentin Lorentz
2c51aa53f8 Add missing queue to the sidekiq command 2017-05-10 19:21:51 +02:00
jeroenpraat
1c5e3bce14 explaining DB_POOL better 2017-05-10 16:29:26 +02:00
Akihiko Odaki
00f401ba6f Update "Customizing your instance" according to a change in Mastodon (#234) 
This change reflects commit af6a84da147f4230807b37c64bc09760e6ab5055 in
mastodon repository.
 2017-05-10 15:47:03 +02:00
Akihiko Odaki
124598b206 Add dependencies for CLD3 (#235) 
This reflects commit d5cabfe5c65ac29d2f9c151b46c01a9fd885a9e0 in mastodon
repository.
 2017-05-10 15:46:17 +02:00
Isao Sugimoto
e97ec8f8ff more better instructions of debian jessie-backports (#232) 
* more better instructions of debian jessie-backports

* minor fix
 2017-05-09 09:10:10 -07:00
Ash Furrow
3ad0c4ab19 Updates for Docker documentation. See discussion in #136. (#214) 2017-05-09 10:12:02 +02:00
Darius Kazemi
03ee8bedfa Add a Debian 8 installation note (#223) 
* Add a Debian 8 installation note

According to the conversation in f0a863feecd4b138520, Debian 8 installs
an older version of nginx by default. This adds a note telling people
how to install a newer one.

* updating wording
 2017-05-09 08:10:16 +02:00
Darius Kazemi
2be17b694c Merge pull request #193 from alifianmahardhika/patch-1 
Update Vagrant-guide.md
 2017-05-08 11:33:09 -07:00
Darius Kazemi
5b91212370 Merge pull request #204 from nolanlawson/fwenzel-patch-1 
Add default CSP (take 2)
 2017-05-08 11:16:49 -07:00
Nolan Lawson
8a57435b88 remove referrer-policy: strict-origin-when-cross-origin 2017-05-07 19:42:46 -07:00
Nolan Lawson
444beff404 remove unsafe-inline from script-src 2017-05-07 19:34:52 -07:00
Jarek Lipski
443ee05b75 Remove duplicate line in Administration guide 2017-05-07 22:41:19 +02:00
Darius Kazemi
234175e30a Merge pull request #210 from tootsuite/Gargron-patch-1 
Fix Node.js installation recommendation, also use 6.x
 2017-05-07 10:15:22 -07:00
Eugen Rochko
50edeb67e2 Merge pull request #196 from kagucho/master 
Use "sudo -u" instead of "sudo su"
 2017-05-07 14:45:59 +02:00
Eugen Rochko
1f202dedc1 Merge pull request #203 from wolfyshy/master 
Update Apache configuration a bit
 2017-05-07 00:51:34 +02:00
Eugen Rochko
a8da345a79 Merge pull request #209 from suoko/patch-1 
Updated Administration-guide.md
 2017-05-07 00:45:13 +02:00
Eugen Rochko
530ce36181 Merge pull request #212 from suoko/patch-2 
Update Administration-guide.md
 2017-05-07 00:43:43 +02:00
Eugen Rochko
07309d26dd Merge pull request #202 from takayamaki/fix_pgbouncer_guide 
fix section "Configuring userlist.txt" of PgBouncer-guide.md
 2017-05-07 00:42:03 +02:00
takayamaki
0b79565316 fix section "Configuring userlist.txt" of PgBouncer-guide.md 
fix order of username and password when generating hash with md5sum
https://pgbouncer.github.io/config.html#authentication-file-format
 2017-05-07 05:09:42 +09:00
suoko
fd3927b956 Update Administration-guide.md 
Update for those using docker
 2017-05-06 13:53:15 +02:00
William Pitcock
04efe7f909 scalingo guide: major improvements 
- better limitation docs
- add instructions for adding custom domains
- add upgrading instructions
 2017-05-05 22:35:05 -05:00
Eugen Rochko
5d9994a4c2 Fix Node.js installation recommendation, also use 6.x 2017-05-06 04:38:01 +02:00
suoko
7f5258ce84 Updated Administration-guide.md 
This way you can assign admininistration priviledges to users on some configurations
 2017-05-05 21:05:34 +02:00
Eugen Rochko
d75b3d41c6 Merge pull request #207 from d6rkaiz/patch-3 
Instructions for installing on CentOS
 2017-05-05 02:01:05 +02:00
Isao Sugimoto
a3097c94e5 Instructions for installing on CentOS 
related: #13
 2017-05-05 04:33:04 +09:00
ABCanG
efefa29739 update how to launch application with vagrant 2017-05-04 16:45:37 +09:00
Nolan Lawson
5bd6d4de27 update image-src/media-src to be more lax 2017-05-03 22:39:33 -07:00
Wolfyshy LeLoupe
38ddc33afc Update Apache configuration a bit 
This is the configuration we use on https://generous.horse and it includes the Cache-Control and Referrer-Policy headers.
 2017-05-03 19:28:56 -05:00
ThibG
01c5d5a29c Add note on PuSH issue with Mastodon v1.3.2 2017-05-03 09:32:18 +02:00
Akihiko Odaki
cab815878c Use "sudo -u" instead of "sudo su" 
"sudo su" limits the capability of sudo to log the operations. -u option is
more straightforward and has better logging.
 2017-05-03 11:02:55 +09:00
Alifian Mahardhika
e564f507a3 Update Vagrant-guide.md 2017-05-02 13:04:35 +09:00
jeroenpraat
448906e217 Prerequisites and cronjobs (#183) 
* Prerequisites and cronjobs

* We probably we don't even support Windows and Mac
 2017-05-01 16:59:28 +02:00
Nolan Lawson
718daad4a8 Add photos and avatars to static/immutable cache (#184) 2017-05-01 16:57:16 +02:00
ThibG
9430d2e2d9 Document how to use WEB_DOMAIN along with common pitfalls (#149) 
* Create Serving_a_different_domain.md

Add extensive documentation for WEB_DOMAIN, as the feature is ill-documented and may be confusing.

* Fix Serving_a_different_domain.md

* Webfinger discovery workaround has made its way to v1.3.0
 2017-05-01 16:45:18 +02:00
Nolan Lawson
f0a863feec Recommend HTTP/2 in the nginx config (#178) 2017-05-01 16:35:16 +02:00
Noëlle Anthony
befab7b7c3 Include explicit production environment (#172) 
These tasks sometimes fail under non-Docker installations when the administrator tries to run them without explicitly requesting the production environment.
 2017-05-01 16:32:47 +02:00
Bjarni Rúnar Einarsson
72ed10378f Avoid hard-coding ciphers into configuration (#171) 
* Avoid hard-coding ciphers into configuration

This change allows OpenSSL to choose the most appropriate available cipher(s) from the HIGH cipher suite. This is sufficient to get an A on the SSLLabs.com tests suite. If MEDIUM is allowed as well, the grade drops to a B which is still more than adequate for most deployments.

This type of configuration would prevent problems such as the current inability of Tusky on Android 7 devices to connect to some Mastodon instances.

The main benefit though, is this delegates the decisions about which ciphers are "good" and which ciphers are "bad" to the experts; the distribution security teams and the OpenSSL developers. If a weakness is found in a particular cipher it will get moved from HIGH to one of the lower classes (or removed entirely) and this will get deployed just like any other security update. Similarly, if new stronger ciphers are standardized (such as Curve 25519) - these will immediately become available without needing to change the configuration.

Hope this helps!

Note: I have not been able to test this change with Mastodon myself. I am using these settings in production elsewhere though, and they work quite well. Alternately, if people don't want to trust the OpenSSL definitions, please consider taking a look at https://wiki.mozilla.org/Security/Server_Side_TLS and implementing the recommendations from there.

* Also avoid SHA1

As requested during review. :)

* Fix a typo in the ssl_ciphers line

I wrote !SHA1, should have written just !SHA. Very sorry about the noise.
 2017-04-27 22:25:39 +02:00
Nolan Lawson
79f58d8b13 Fix typo in BgBouncer-guide.md (#168) 2017-04-27 22:24:59 +02:00
wxcafé
938575a679 Revert "Avoid hard-coding ciphers into configuration (#122)" (#170) 
This reverts commit fc79d23ad0fa379b87f360625a8254e585a6bb08.
 2017-04-27 22:15:37 +02:00