Eric Morino
413597cd59
Force owner opendkim for /etc/opendkim/ folder
2020-08-21 14:51:30 +02:00
Jérémy Lecour
e380fa5085
evoacme: upstream release 20.06.1
2020-08-21 14:51:30 +02:00
Ludovic Poujol
974bc653f3
lxc-php: Do --no-install-recommends for ssmtp/opensmtpd
2020-08-21 14:51:30 +02:00
Ludovic Poujol
5ce715d2ae
lxc-php: Install opensmtpd as intended
2020-08-21 14:51:30 +02:00
Ludovic Poujol
c521c98a11
php: Don't disable putenv() by default in PHP settings
2020-08-21 14:51:30 +02:00
Ludovic Poujol
2dcf99a117
lxc-php: Don't disable putenv() by default in PHP settings
2020-08-21 14:51:30 +02:00
Ludovic Poujol
193b640226
lxc-php: Install php-sqlite by default
2020-08-21 14:51:30 +02:00
Ludovic Poujol
72939c3e57
php: Install php-sqlite by default
2020-08-21 14:51:30 +02:00
Ludovic Poujol
0dfe97d771
packweb-apache: Install zip & unzip by default
2020-08-21 14:51:30 +02:00
Jérémy Lecour
a841e60531
haproxy: syntax and whitespaces
2020-08-21 14:51:30 +02:00
Jérémy Lecour
8d8e5f6998
certbot: restore compatibility with old Nginx
2020-08-21 14:51:30 +02:00
Jérémy Lecour
cd29ee4d33
certbot: install certbot dependencies non-interactively for jessie
2020-08-21 14:51:30 +02:00
Jérémy Dubois
877a32bbf0
nagios-nrpe / evolinux-base : new ntp server variable
...
Online hosted servers must use ntp.online.net as
ntp server, because others one are rate limited.
Default ntp server is pool.ntp.org, and a custom
one can be set with the nagios_nrpe_ntp_server
variable.
2020-08-21 14:51:30 +02:00
Benoît S.
bdb234c0cd
evolinux-base: check_hpraid.sh: Fix missing copy of RAID state
2020-08-21 14:51:30 +02:00
Benoît S.
f963eaacf6
evolinux-base: check_hpraid.sh: Fix RAID state detection
2020-08-21 14:51:30 +02:00
Benoît S.
35123f8189
evolinux-base: Add check_hpraid.sh
...
This script is meant to be executed as a cron by executing Nagios
NRPE plugin check_hpraid and notify by mail any errors
2020-08-21 14:51:30 +02:00
Jérémy Lecour
6d31568a41
evoacme: upstream release 20.06
2020-08-21 14:51:30 +02:00
Jérémy Lecour
291ad2ba40
redis: raise an error is port 6379 is used in "instance" mode
2020-08-21 14:51:30 +02:00
Jérémy Lecour
107f1f06e6
redis: new syntax for match filter
2020-08-21 14:51:30 +02:00
Jérémy Lecour
bd8a30a107
redis: create sudoers file if missing
2020-08-21 14:51:30 +02:00
Jérémy Lecour
66b62c5629
haproxy: chroot and socket path are configurable
2020-08-21 14:51:30 +02:00
Jérémy Lecour
f034e93b6e
whitespaces
2020-08-21 14:51:30 +02:00
Patrick Marchand
0a4aeea481
Add option to make a mysql install read only
...
Rebased on unstable
2020-08-21 14:51:30 +02:00
Patrick Marchand
004b48eee7
Added mysql_innodb_log_file_size option to the mysql role
...
Makes it possible to have larger binary entries when replicating.
2020-08-21 14:51:30 +02:00
Patrick Marchand
e713ad024b
Fix right problem in mysql replication
...
The configuration file was not set to 0644, which caused the file
to be ignored by mysql and it's configuration not to be set.
2020-08-21 14:51:30 +02:00
Patrick Marchand
c142af69f0
Added some mysql variables and allowed forcing config update
...
The default behaviour is kept, but this way we can manage a mysql
installation from ansible.
2020-08-21 14:51:30 +02:00
Patrick Marchand
18878d58e8
Replication should set a binlog format
...
This could possible be better served in the base config file, but
for now I'll keep it here.
2020-08-21 14:51:30 +02:00
Patrick Marchand
8778d69102
Removed redundant nagios checks
...
They are already installed by the base roles.
2020-08-21 14:51:30 +02:00
Patrick Marchand
c39f63048c
Removed useless dbadmin script from mysql replication tasks
...
It was used by a very specific client case and is not needed for a
general role.
2020-08-21 14:51:30 +02:00
Patrick Marchand
df99e9ac4f
Make it possible for mysql role to copy evolix scripts
...
Based myself off of the webapps/evoadmin-web role, but I'm not sure
we still consider this a hack or not. We use a read only /usr fs,
so we need to remount it to add scripts in /usr/local/share.
2020-08-21 14:51:30 +02:00
Patrick Marchand
6a264a3179
Added option to prepare mysql servers for replication
2020-08-21 14:51:30 +02:00
Benoît S.
d0004ebacc
nagios-nrpe: Added hpsa support to check_hpraid
...
Also handle empty slots.
2020-08-21 14:51:30 +02:00
Benoît S.
5bf7ba5c84
nagios-nrpe: shellchecked check_hp
...
Also refactored the checking part and outputing.
2020-08-21 14:51:30 +02:00
Benoît S.
d8a3bd0c01
nagios-nrpe: Adding licence GPLv2 to check_hpraid
...
Also describe what has been removed/changed from the original source.
2020-08-21 14:51:30 +02:00
Benoît S.
8d9d068a33
nqgios-nrpe: Add check_hpraid
2020-08-21 14:51:30 +02:00
Ludovic Poujol
a9fe102f30
packweb-apache: Don't turn on mod-evasive emails by default
2020-08-21 14:51:30 +02:00
Jérémy Lecour
3a26f18201
Merge pull request 'Release 10.0.0' ( #100 ) from unstable into stable
continuous-integration/drone/push Build is passing
continuous-integration/drone/tag Build is passing
2020-05-13 11:25:48 +02:00
Jérémy Lecour
4016387ca8
Release 10.0.0
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
2020-05-13 11:20:45 +02:00
Jérémy Lecour
ac7ee86a9c
minifirewall: /bin/true command doesn't report "changed" anymore
continuous-integration/drone/push Build is passing
2020-05-11 15:23:52 +02:00
Jérémy Lecour
0da938223e
redis: remove quotes when reading variables
continuous-integration/drone/push Build is passing
2020-05-09 09:56:13 +02:00
Jérémy Lecour
849ec405d5
evocheck: upstream version 20.04.4
continuous-integration/drone/push Build is passing
2020-04-28 16:00:45 +02:00
Jérémy Lecour
57e5791728
networkd-to-ifconfig: add variables for configuration by variables
continuous-integration/drone/push Build is passing
2020-04-26 18:39:25 +02:00
Jérémy Lecour
2f77100b47
evocheck: upstream version 20.04.3
continuous-integration/drone/push Build is passing
2020-04-26 10:54:49 +02:00
Patrick Marchand
72736751ea
in evobackup_client, made rsync ssh key use the actual variable
continuous-integration/drone/push Build is passing
2020-04-24 11:09:47 -04:00
Patrick Marchand
ebecda38b6
Fixed evobackup-client not updating the ssh key in the jail
...
continuous-integration/drone/push Build is passing
I have no idea how this got past testing, but apparently, the task
did not even exist..
2020-04-24 10:46:10 -04:00
Patrick Marchand
53ae27b250
evobackup-client now uses the default ed25519 key of the server
...
continuous-integration/drone/push Build is passing
We used to prefer creating a specific one for backups, but everybody
kept thinking the wrong key was being used and "fixing" it. The
advantages of having a specific key for backups did not outweigh
the challenge of creating a culture change.
2020-04-24 10:36:36 -04:00
Eric Morino
9e0388c865
Fix task when memcached_instance_name
continuous-integration/drone/push Build is passing
2020-04-23 12:01:01 +02:00
Patrick Marchand
7173fc06ea
Quote a variable in zz_evobackup.default.sh.j2
...
continuous-integration/drone/push Build is passing
This allows us to remove the shellcheck ignore warning comment and puts it in line with upstream. Apparently, the file can only contain one PID, so it's okay to quote the variable.
2020-04-20 18:16:39 +02:00
Patrick Marchand
daa97a2314
revert last change to zzz_evobackup, it broke
continuous-integration/drone/push Build is passing
2020-04-20 11:30:55 -04:00
Patrick Marchand
556b6a6f89
added litteral blocks to zzz_evobackup template
...
continuous-integration/drone/push Build is passing
This makes sure that nothing inside the script is parsed by jinja
unless we want it.
2020-04-20 11:27:51 -04:00
Eric Morino
Jérémy Lecour
Ludovic Poujol
Jérémy Dubois
Benoît S.
Patrick Marchand
