evolix
/
ansible-roles
22
2
Fork 2
Code Issues 61 Pull Requests 18 Releases 32 Wiki Activity
1,668 Commits 76 Branches 56 Tags 128 MiB
Commit Graph

1668 Commits

Author SHA1 Message Date
Patrick Marchand a1973ebbb3 We misunsderstood how modsecurity used the init rules 
They do not modify files and are necessary for the core rules to function.
 2018-11-13 09:59:34 -05:00
Patrick Marchand 9f2727f55f Removes modsecurity audit log and rules 910* and 901* 2018-11-13 09:59:34 -05:00
Victor LABORIE cfb87a7b65 haproxy: add vars for tls configuration 
Permit simply include of TLS configuration, eg. in [global] :

{{ haproxy_ssl_intermediate | indent(width=4) }}
 2018-11-13 11:07:06 +01:00
Jérémy Lecour df48a60684 evocheck: update script from upstream 2018-11-08 09:46:57 +01:00
Victor LABORIE 9ee245942d ssl: haproxy package check must no fail 2018-11-06 16:21:16 +01:00
Victor LABORIE c6a504c6c5 Add an SSL role for certificates deployment 2018-11-06 16:15:48 +01:00
Jérémy Lecour 4a411685ff evomaintenance: FROM domain is configurable 2018-11-06 10:39:30 +01:00
Jérémy Lecour 06a0f0d9b7 apache/nginx/fail2ban: mention ip_whitelist.yml in README.md 2018-11-02 18:18:22 +01:00
Jérémy Lecour 2f9348e3d1 update CHANGELOG 2018-11-02 18:16:29 +01:00
Jérémy Lecour 24ddc78a23 apache/nginx: IP adresses can also be removed 2018-11-02 18:15:17 +01:00
Patrick Marchand b776fc3da2 Make ip whitelist tasks more flexible 
Now the list of whitelisted ip addresses can be updated simply by
including the specific tasks in an external playbook without polluting
our role list.

This change takes effect for nginx, apache and fail2ban.
 2018-11-02 18:08:23 +01:00
Jérémy Lecour 3d76454984 update CHANGELOG for postfix 2018-11-02 10:14:49 +01:00
Jérémy Lecour c03be65ed9 evomaintenance: update script from upstream 2018-11-02 10:13:40 +01:00
Gregory Colpart 1871352fe8 enable SSL/TLS client, cf https://wiki.evolix.org/HowtoPostfix#ssltls 2018-10-31 02:20:54 +01:00
Victor LABORIE 83e9f12669 evolinux-base: install man package 2018-10-23 11:38:52 +02:00
Victor LABORIE 6e6820805d nginx: add tag for ips management 2018-10-19 10:31:45 +02:00
Jérémy Lecour 79aceac380 Release 9.4.2 2018-10-12 10:16:40 +02:00
Jérémy Lecour 85c779164a evomaintenance: fix role compatibility with OpenBSD 2018-10-12 10:13:27 +02:00
Victor LABORIE 357914b44e amavis: fix output result checking 2018-10-11 17:18:03 +02:00
Jérémy Lecour 1d06721b96 update CHANGELOG 2018-10-08 09:43:09 +02:00
Jérémy Lecour 20e8d9f432 evomaintenance: install dependencies when installing vendored version 2018-10-08 09:37:18 +02:00
Benoît S. 88b66dca24 Evoacme: Better usage of apache2ctl -t 
By default apache2ctl is using stderr, even for displaying "Syntax OK".
So, we redirect it in stdout and remove "Syntax OK". Then we check the exit code.
 2018-10-03 15:16:28 +02:00
Victor LABORIE f2469dbdd9 * spamassassin: add missing right for amavis 2018-10-03 14:41:41 +02:00
Victor LABORIE 8dd2fcac55 Update CHANGELOG for haproxy/nagios-nrpe 2018-09-28 15:33:56 +02:00
Victor LABORIE 8cd689f9b4 haproxy: move check_haproxy_stats to nagios-nrpe role 2018-09-28 15:21:42 +02:00
Victor LABORIE c4f29c5b37 haproxy: add an option for ignore NOLB check status 2018-09-28 15:15:32 +02:00
Jérémy Lecour d442473370 Release 9.4.1 2018-09-28 10:45:50 +02:00
Jérémy Lecour 847a9d4c00 mysql-oracle: remove mysql-apt-config 0.8.10 
This package is MySQL 8 only, so we stay with 0.8.9.
 2018-09-28 10:45:50 +02:00
Jérémy Lecour 40ac98cb79 mysql-oracle: better handle packages and users 2018-09-27 15:05:02 +02:00
Jérémy Lecour f5c07860bc mysql-oracle: upgrade to mysql-apt-config 0.8.10 2018-09-27 12:11:50 +02:00
Jérémy Lecour 829da4bb40 update CHANGELOG for evomaintenance 2018-09-25 12:15:51 +02:00
Jérémy Lecour 9f3a70926d evomaintenance: tasks/variables to handle minifirewall restarts 2018-09-25 12:14:33 +02:00
Jérémy Lecour 647eda6d9b evomaintenance: variable to force the configuration (default: True) 2018-09-25 12:07:41 +02:00
Jérémy Lecour 0b6956db46 evomaintenance vendor version 0.4.1 2018-09-25 12:06:04 +02:00
Jérémy Lecour c2d8cadf26 evomaintenance vendor version 0.4.0 2018-09-25 09:53:15 +02:00
Jérémy Lecour 9f9ddf5c2e evomaintenance: some variables are mandatory 2018-09-24 18:46:34 +02:00
Jérémy Lecour 7d786d7b5f evomaintenance: update vendored script 2018-09-24 18:41:06 +02:00
Jérémy Lecour 2b5e83fa34 evomaintenance: a vendored version is available to install 2018-09-20 17:08:36 +02:00
Victor LABORIE c7cc63444d redis: set masterauth when redis_password is defined 2018-09-20 16:42:35 +02:00
Jérémy Lecour 9ddb297961 Release 9.4.0 2018-09-20 12:30:52 +02:00
Jérémy Lecour 517d7c0d9a Update CHANGELOG with generate-ldif changes 2018-09-20 12:28:48 +02:00
Jérémy Lecour 21e24df8c8 Update CHANGELOG with logstash recent changes. 2018-09-20 12:24:19 +02:00
Jérémy Lecour e0a4ae6b66 redis: improve a few tasks names 2018-09-20 12:23:51 +02:00
Jérémy Lecour 56af209fb2 elasticsearch: fix condition for tmpdir 
when a task has "failed_when: False" the "success" filter doesn't always
return the correct value (depending on the version of Ansible).
 2018-09-20 12:13:21 +02:00
Jérémy Lecour fc12a5dfbb logstash: limit to 512M by default 2018-09-20 12:13:21 +02:00
Jérémy Lecour 0f1400dd9f logstash: install 6.x by default 2018-09-20 12:13:21 +02:00
Jérémy Lecour 6c74d3a5e3 logstash: tmp directory can be customized 2018-09-20 12:13:21 +02:00
Victor LABORIE 5f4601f611 nagios-nrpe: add check_redis_instances 2018-09-20 10:21:49 +02:00
Victor LABORIE 8546f0f34f redis: add support for multi instances 2018-09-19 17:24:26 +02:00
Victor LABORIE 09e48516c6 redis: add missing tags 2018-09-19 16:25:47 +02:00