evolix/ansible-roles
22
2
Fork 2
Code Issues 61 Pull requests 18 Releases 33 Wiki Activity
678 commits 76 branches 57 tags 128 MiB
Commit graph

678 commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Victor LABORIE 399613c06a ansible-log: detect git dir 2017-07-20 11:28:17 +02:00
Victor LABORIE 18511c6fba ansible-log: get ansible-playbook command line 2017-07-20 11:17:30 +02:00
Victor LABORIE ef79778190 ansible-log: always run (even in check mode) 2017-07-20 11:17:00 +02:00
Victor LABORIE 83fff7a051 ansible-log: tags for always run 2017-07-20 10:29:55 +02:00
Victor LABORIE 6e7d700dc3 ansible-log: keep all logs 2017-07-20 10:12:10 +02:00
Victor LABORIE 7da18102f4 Role for ansible logging 2017-07-19 18:52:17 +02:00
Victor LABORIE af1045d788 nagios-nrpe: add check_clamav_db to defaults check 2017-07-19 17:20:44 +02:00
Victor LABORIE 64a134355b evolinux-base: override logmail service 2017-07-19 16:03:36 +02:00
Jérémy Lecour 1a0ba00679 Merge branch 'evocheck-force-install' into unstable 2017-07-19 14:37:10 +02:00
Jérémy Lecour 6f566533a3 evocheck: don't install by default (but possible) 2017-07-19 14:36:30 +02:00
Jérémy Lecour 360dacf9d8 evocheck: don't fail, just print stdout 2017-07-19 14:17:10 +02:00
Jérémy Lecour 383d432bb8 Merge branch '1092-page-for-error-403' into unstable 2017-07-19 14:04:53 +02:00
Jérémy Lecour 515460ee0a Merge branch 'apache-fix-default-vhost' into unstable 2017-07-19 14:02:52 +02:00
Jérémy Lecour f390638263 Merge branch 'kvm-images-path' into unstable 2017-07-19 14:00:49 +02:00
Jérémy Lecour dac4276cad Move ansible-managed to a feature branch 2017-07-19 13:57:23 +02:00
Jérémy Lecour 6106a0a8f5 admin-users: fix AllowUsers 
* the command module was doing weird escaping, let's use the shell
module
* insert after a more appropriate position
 2017-07-19 13:54:18 +02:00
Jérémy Lecour adc3bd7a93 Fix ssh LogLevel 
* the directive can be present but commented
* the version comparison was wrong
 2017-07-19 13:49:08 +02:00
Jérémy Lecour 43e9f69314 admin-users: double-escape, dream hands !! 2017-07-19 12:33:35 +02:00
Jérémy Lecour 987e35f104 admin-users: better grep for AllowUsers detection 
Now it behaves correctly if the directive exists, but commented
 2017-07-19 12:08:06 +02:00
Jérémy Lecour 030425d9f8 fail2ban: unindent notify attribute 2017-07-19 12:06:19 +02:00
Jérémy Lecour da4b7ca41a apache: disable GoAway criteria 2017-07-19 11:55:58 +02:00
Jérémy Lecour 4099d2a3a4 fail2ban: the local jail should not be overwritten 2017-07-19 11:55:04 +02:00
Jérémy Lecour 44c679eb64 admin_users: fix logic error 2017-07-19 11:54:01 +02:00
Jérémy Lecour 3b93ba0768 fail2ban: install local jail before starting 2017-07-19 11:39:38 +02:00
Jérémy Lecour 2077af2992 fail2ban: change ips variables 2017-07-19 11:39:09 +02:00
Jérémy Lecour 7c92645c5c admin users: fix uidisbusy for proper rc check 
because of "failed_when: False", the register would never fail
so we check the return code of "getent passwd"
 2017-07-19 11:31:21 +02:00
Jérémy Lecour 0115a16675 whitespaces 2017-07-19 11:31:21 +02:00
Jérémy Lecour cb128a897b Apache: new syntax for auth 2017-07-19 11:31:21 +02:00
Gregory Colpart 86e1e057a8 We don't want anymore a 301 redirect for 403 errors, it's too confusing 2017-07-19 10:21:37 +02:00
Gregory Colpart 6e329d2820 Deny by default (default conf allow from all) 2017-07-19 10:20:54 +02:00
Jérémy Lecour 62fbbd2016 Rename role "apt-repositories" to "apt" 2017-07-19 08:56:46 +02:00
Jérémy Lecour 9c797ea273 kvm-host: images path is customizable 2017-07-19 01:34:13 +02:00
Jérémy Lecour 3a8093fb12 Apache: use "Require" 
http://httpd.apache.org/docs/2.4/howto/auth.html
 2017-07-18 20:13:58 +02:00
Jérémy Lecour 3e3e1c368e Lighter /root/.vimrc 2017-07-18 20:03:57 +02:00
Jérémy Lecour 388a2c058e Over-simplified /root/.gitconfig 2017-07-18 20:00:20 +02:00
Jérémy Lecour 8505bb9d3c … so the backup is not needed anymore 2017-07-18 19:43:28 +02:00
Jérémy Lecour 20c575ee1e named.conf.options is managed by ansible 2017-07-18 19:42:54 +02:00
Jérémy Lecour 4110d22802 Remove yet some other backups 2017-07-18 19:40:56 +02:00
Jérémy Lecour 0c2170cf5c Remove some backups, again 2017-07-18 19:38:03 +02:00
Benoît S. 92f699b84c A better default vhost for Apache. 
This is my proposal to a better vhost.
I added comments to understand the tricky behavior of Directory directive when
using Alias or ScriptAlias.
 2017-07-18 17:05:47 +02:00
Gregory Colpart 8981ea4228 Fix for Debian 9, _apt user need right to apt stuff 2017-07-18 16:51:06 +02:00
Benoît S. 54d9dbf7aa Implement #1092. We use custom error pages for Apache 
Note: The pack web will maybe modify these pages to have Evolix logo or theme,
or other things to customize.
 2017-07-18 15:40:04 +02:00
Jérémy Lecour 2aff6b94c6 Merge branch 'check_http_many-fix-custom-values' into unstable 2017-07-18 12:03:49 +02:00
Jérémy Lecour 7b6781cc1d Merge branch '1836-improve-check-http' into unstable 2017-07-18 12:01:38 +02:00
Jérémy Lecour 08a84e2fed Merge branch '1892-html_errors-off' into unstable 2017-07-18 12:00:58 +02:00
Jérémy Lecour 04ba813ea1 Merge branch '2198-purge-openntpd' into unstable 2017-07-18 12:00:20 +02:00
Benoît S. d2f0996445 Remove custom values. 
Someone has copied this script from a production server with custom values.
 2017-07-18 10:45:07 +02:00
Benoît S. 7d87a53a2f Fix #1836. We add -e 200 to nagios's check_http. 2017-07-18 10:42:26 +02:00
Benoît S. c1e53f7fe4 Set html_errors to Off for Stretch. 2017-07-18 10:26:54 +02:00
Jérémy Lecour 62534baccf squid: add UserTrust OCSP endpoint to whitelist 2017-07-17 16:44:16 +02:00