nemo
/
nebula
1
0
Fork 0
Code Issues 3 Pull Requests Releases Wiki Activity
Source Code for the Home Server setup. This includes the git server hosting this repository as well. #terraform #docker https://git.captnemo.in/nemo/nebula/
24 Commits 16 Branches 1 Tag 6.9 MiB
HCL 88.2%
Smarty 11.7%
Go to file
Nemo 357256cd11 workaround for traefik bug 
- XFO/Ref policy can't be applied yet
 		2017-11-30 02:45:38 +05:30
cloudflare traefik labels 2017-11-08 01:01:12 +05:30
docker workaround for traefik bug 2017-11-30 02:45:38 +05:30
mysql Initial commit 2017-11-04 19:09:32 +05:30
.editorconfig Work on proxying content via sydney 2017-11-26 16:53:34 +05:30
.gitignore Work on proxying content via sydney 2017-11-26 16:53:34 +05:30
README.md Security specific stuff 2017-11-30 01:44:05 +05:30
main.tf Work on proxying content via sydney 2017-11-26 16:53:34 +05:30
variables.tf Shifts to docker cert auth 2017-11-09 01:20:44 +05:30

README.md

nebula

Where stars are born.

Manages the local infrastructure of my home server.

modules

  1. docker: to actually run the services
  2. cloudflare: to manage the DNS
  3. mysql: unused, but setup

Self-learning project for terraform

Planned

  1. Setup DigitalOcean
  2. Add DO infrastructure via ansible
  3. Add traefik for proper proxying

Security Headers note

The following security headers are applied using traefik on all traefik frontend docker backends:

  • HSTS: 2592000 seconds (1 week)
  • Redirect HTTP->HTTPS
  • contentTypeNosniff: true
  • browserXSSFilter: true
  • XFO: Allow-From muximux
  • referrerPolicy: no-referrer
  • X-Powered-By: Allomancy
  • X-Server: BlackBox
  • X-Clacks-Overhead "GNU Terry Pratchett"