From 6c2c41d5e64bafdab5b804ca6ab135e856d9422f Mon Sep 17 00:00:00 2001 From: uvok cheetah Date: Thu, 20 Jan 2022 19:02:48 +0100 Subject: Add post --- _posts/2022-01-20-server-stuff.md | 26 ++++++++++++++++++++++++++ 1 file changed, 26 insertions(+) create mode 100644 _posts/2022-01-20-server-stuff.md diff --git a/_posts/2022-01-20-server-stuff.md b/_posts/2022-01-20-server-stuff.md new file mode 100644 index 0000000..b239814 --- /dev/null +++ b/_posts/2022-01-20-server-stuff.md @@ -0,0 +1,26 @@ +--- +layout: post +title: Server stuff +date: 2022-01-20 18:55 +0100 +category: tech +language: en +--- + +So, nothing special. + +I experimented with my vServer, set up Postfix (read: replaced exim as smarthost client +and set up Postfix as regular mail server). + +Being technically interested, I also set up SPF and DMARC for my existing domains. +Then I set up DKIM for my vServer (was already setup on my regular domains by +my web hoster), together with SPF and DMARC. + +I also contacted the all-inkl support to move my servers, so I could finally update +Nextcloud (since MySQL 5.x on the old servers would no longer be supported). + +Finally, I found about about DANE. Unfortunately, I can only set this +up on my vServer, since it required to put the certificate hash as DNS record. +Using letsencrypt certificates, which are renewed every ~ 90 days, this makes +it very ugly. On my vServer, I can configure the ACME client to reuse the key +(has stays the same, DANE record stays valid). However, with my web hosting, +this is not an option. Oh well. -- cgit v1.2.3