evolix/ansible-roles
22
2
Fork 2
Code Issues 61 Pull requests 18 Releases 33 Wiki Activity
2816 commits 76 branches 57 tags 129 MiB
Commit graph

672 commits

Author SHA1 Message Date
Ludovic Poujol 17f884b04a evolinux-base: Add non-free repos & install non-free firmware on dedicated hardware
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-03-15 11:35:20 +01:00
Ludovic Poujol 913e6d96e8 generate-ldif: Add services check for bkctld
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-03-15 10:53:16 +01:00
Jérémy Lecour a733e2794f evolinux-base: backup-server-state release 22.03
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-03-08 16:49:53 +01:00
Mathieu Trossevin 9c84e95182
Repair keepalived role
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-03-02 16:23:01 +01:00
Jérémy Lecour e5dc503cfd Release 22.03
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-03-02 09:42:12 +01:00
Jérémy Lecour 270d03b6a6 evolinx-users: optimize sudo configuration
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-03-02 09:40:52 +01:00
Jérémy Lecour 1dc4d0e133 redis: always install check_redis_instances
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-03-01 14:04:05 +01:00
Jérémy Lecour c8ef7e9b75 redis: check_redis_instances tolerates absence of instances
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-03-01 14:02:22 +01:00
Jérémy Lecour d9e95218ce apt_hold_packages: broadcast message with wall, if present
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-02-24 11:49:12 +01:00
Ludovic Poujol 39949ea921 generate-ldif: Add support for php-fpm in containers
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-02-21 11:31:00 +01:00
Ludovic Poujol e79141d2d2 lxc: Fail if /var is nosuid 2022-02-17 16:25:20 +01:00
Jérémy Lecour 799466788f lxc-php: preliminary support for PHP 8.1 container
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-02-17 14:50:21 +01:00
Jérémy Dubois f3c443d076 openvpn: now check that openvpn has been restarted since last certificates renewal
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-02-15 15:52:21 +01:00
Ludovic Poujol 9995fca35d varnish: update munin plugin to work with recent varnish versions
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-02-08 16:16:24 +01:00
Ludovic Poujol a2f73bb7df elasticsearch: Use /etc/elasticsearch/jvm.options.d/evolinux instead of default /etc/elasticsearch/jvm.options
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-02-07 15:18:46 +01:00
Jérémy Dubois 981128dc17 openvpn: make it compatible with OpenBSD and add some improvements
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-02-03 18:35:16 +01:00
Jérémy Lecour 0cbdda840d Explicit permissions for systemd overrides
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-02-03 14:18:20 +01:00
Jérémy Lecour 9e27d9707b kvm-host: add missing default value 2022-02-03 14:16:45 +01:00
Jérémy Lecour 5153b88d01 evolinux-base: option to bypass raid-related tasks 2022-02-03 14:15:33 +01:00
Jérémy Lecour 3dd78fbf7e Release 22.01.3
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
continuous-integration/drone/pr Build was killed
Details
2022-01-31 11:57:21 +01:00
Jérémy Lecour fcb0b8c80f backup-server-state: 22.01.3
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-01-28 16:27:39 +01:00
Jérémy Lecour cd26081add rbenv: install Ruby 3.1.0 by default 2022-01-28 16:27:20 +01:00
Jérémy Lecour bb30402df3 Release 22.01.2
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
continuous-integration/drone/pr Build was killed
Details
2022-01-27 14:12:40 +01:00
Jérémy Lecour 6ccd0ea440 Release 22.01.1
Some checks reported errors
continuous-integration/drone/pr Build was killed
Details
continuous-integration/drone/push Build was killed
Details
2022-01-27 14:04:41 +01:00
Jérémy Lecour 2849039fad remount-usr: use findmnt to find if usr is a readonly partition
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-01-27 11:21:19 +01:00
Jérémy Lecour 80f8a94798 evolinux-base: many improvements for backup-server-state script
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-01-27 10:29:08 +01:00
Jérémy Lecour bff8fcfebb apt: upgrade packages after all the configuration is done
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
continuous-integration/drone/pr Build was killed
Details
2022-01-25 18:25:47 +01:00
Jérémy Lecour 0e34d4cd4b Merge remote-tracking branch 'origin/bullseye-swap-top' into unstable
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-01-25 15:15:05 +01:00
Jérémy Lecour 1f4ee2de79 Prepare CHANGELOG for 22.01 release
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-01-25 15:00:03 +01:00
Mathieu Trossevin 1902c40c3c
lxc-php: Fix config for opensmtpd on bullseye
Some checks reported errors
continuous-integration/drone/pr Build was killed
Details
2022-01-25 11:57:41 +01:00
Jérémy Dubois 3822696db6 Update CHANGELOG for new openvpn role
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-01-24 19:23:26 +01:00
Jérémy Lecour ca1f465aaa nodejs: default to version 16 LTS 2022-01-12 13:04:22 +01:00
Jérémy Lecour ec346a42a5 munin: systemd override to unprotect home directory
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2021-12-23 16:56:23 +01:00
Mathieu Trossevin d3eef71127
nagios-nrpe: Fix check_nfsserver for buster and bullseye
Some checks failed
continuous-integration/drone/pr Build is failing
Details 
From buster onward the nfs server doesn't run NFSv4 over UDP (it is out
of spec, see RFC 7530). As such the check broke as it attempt to check
the availability of NFSv4 over UDP.

Right now the check doesn't check for NFSv2 over UDP as it would need to
check if it exist first, as on bullseye it isn't supported by default
anymore.
 2021-11-24 11:11:39 +01:00
Jérémy Lecour e4bb0c6f55 filebeat/metricbeat: version 7.x y default
Some checks failed
continuous-integration/drone/push Build is failing
Details
2021-11-12 10:07:43 +01:00
Jérémy Lecour 039c740ef3 mysql: add evomariabackup 21.11 2021-11-01 10:16:55 +01:00
Jérémy Lecour 6cf8195744 evolinux-base: fix alert5.service dependency syntax 2021-10-29 07:52:38 +02:00
Jérémy Lecour dcfea674a4 listupgrade: old-kernel-removal version 21.10 2021-10-25 14:23:52 +02:00
Jérémy Lecour 646a7b1813 evocheck: package install is not supported anymore 2021-10-25 10:08:40 +02:00
Jérémy Lecour dd53c01027 evocheck: upstream release 21.10.4 2021-10-25 10:02:12 +02:00
Jérémy Dubois 90acb99c2a nagios-nrpe: new check influxdb 2021-10-22 14:51:57 +02:00
Jérémy Lecour ca28df1b75 evocheck: upstream release 21.10.3 2021-10-22 13:57:56 +02:00
Jérémy Lecour 1706361e8d evocheck: upstream release 21.10.2 2021-10-22 13:43:43 +02:00
Jérémy Lecour dcdde5f7f6 evocheck: upstream release 21.10.1 2021-10-21 17:32:11 +02:00
Ludovic Poujol 9b3bb39bd0 mysql : Create a default ~root/.my.cnf for compatibility reasons 2021-10-20 16:31:05 +02:00
Ludovic Poujol b120a92203 evolinux-users + nagios-nrpe: Add support for php-fpm80 in lxc 2021-10-20 15:59:20 +02:00
Ludovic Poujol a9d0d0958d packweb-apache : Support php 8.0 2021-10-18 18:30:47 +02:00
Jérémy Dubois d38119eb0f nginx : fix variable name and debug 
nginx_minimal defined the nginx_package_name_default variable which was not
used instead of the nginx_default_package_name variable

also fixed debug which was reversed, and add another one to be sure which mode
is used
 2021-10-18 15:01:59 +02:00
Jérémy Lecour bbd16dc5b4 evolinux-base: add script backup-server-state 2021-10-15 10:50:42 +02:00
Ludovic Poujol 73d6979e72 Various changes on mongodb (support 5.0) + fixes & compatibility 
* mongodb: Deny the install on Debian 11 « Bullseye » when the version is unsupported
* mongodb: Support version 5.0 (for buster)
* mongodb: Allow to specify a mongodb version for buster & bullseye
* mongodb: Add missing remount-usr for munin plugins
 2021-10-05 15:49:47 +02:00
Jérémy Lecour 7d63f20336 evoacme: exclude renewal-hooks directory from cron 2021-10-05 08:28:47 +02:00
Jérémy Lecour 7b14296503 etc-git: optimize maintenance tasks 
* manage commits with an optimized shell script instead of many slow Ansible tasks
* centralize cron jobs in dedicated crontab
 2021-10-02 12:50:01 +02:00
Jérémy Lecour e089ddf091 evocheck: upstream release 21.10 2021-10-01 18:27:44 +02:00
Jérémy Lecour b293cf2cf9 Install python 2 or 3 libraries according to running python version 2021-09-30 17:05:10 +02:00
Jérémy Lecour 5cbfda8f52 docker-host: install additional dependencies 2021-09-30 12:09:11 +02:00
Jérémy Lecour 9b479f9c05 evolinux-base: logs are rotated with dateext by default 2021-09-30 12:07:02 +02:00
Jérémy Lecour 4a035d248d evocheck: upstream release 21.09 2021-09-30 10:45:07 +02:00
Jérémy Lecour 3de5de5304 mysql: improve Bullseye compatibility 2021-09-30 10:13:11 +02:00
Jérémy Lecour 0eb7332a34 php: enforce Debian version with assert instead of fail 2021-09-29 16:43:55 +02:00
Jérémy Lecour 73efee9caa etc-git: purge old .git/index.lock (default: True) 2021-09-23 14:45:24 +02:00
Jérémy Lecour 1d55965527 logstash: no more dependency on Java 2021-09-21 14:43:58 +02:00
Jérémy Lecour 8233264d2a logstash: logging to syslog is configurable (default: True) 2021-09-21 14:43:58 +02:00
Jérémy Lecour ef1472cbba logstash: elastic_stack_version = 7.x 2021-09-21 14:43:58 +02:00
Ludovic Poujol f75354bb84 generate-ldif: detect mdadm 2021-09-16 17:26:58 +02:00
Ludovic Poujol de4d814d74 generate-ldif: detect hardware raid card 2021-09-16 17:17:32 +02:00
Ludovic Poujol 6a2cd59e6d nagios-nrpe + evolinux-users: new check ipmi 2021-09-16 16:48:03 +02:00
Ludovic Poujol 51fd2337f0 nagios-nrpe + evolinux-users: new check raid (soft + hard) 2021-09-16 16:40:57 +02:00
Ludovic Poujol fa0c668cec evolinux-base: install freeipmi by default on dedicated hw 2021-09-16 15:58:10 +02:00
Jérémy Lecour 2b549af7d9 evolinux-base: split dpkg logrotate configuration 2021-09-09 10:23:53 +02:00
Jérémy Lecour e429f7aecb squid: add *.o.lencr.org to default whitelist 2021-09-07 14:01:52 +02:00
Jérémy Lecour e45ee59801 mysql: script "mysql-queries-killer.sh" to kill MySQL queries 2021-08-30 14:05:15 +02:00
Jérémy Lecour 65750d2aa6 evomaintenance: extract a config.yyml tasks file 2021-08-30 09:24:57 +02:00
Jérémy Lecour ecba57ad75 evolinux-base: install molly-guard by default 2021-08-25 17:57:38 +02:00
Jérémy Lecour 2c7380240c nagios-nrpe + evolinux-users: new checks for bkctld 2021-08-25 11:56:26 +02:00
Jérémy Lecour 066baf3538 Revert "bullseye-detect: this role is obsolete, Debian 11 has been fully released"
All checks were successful
continuous-integration/drone/push Build is passing
Details 
This reverts commit c9f25f4638.
 2021-08-17 15:33:06 +02:00
Jérémy Lecour ad457dd7ba apt: use the new security repository for Bullseye
All checks were successful
continuous-integration/drone/push Build is passing
Details
2021-08-16 14:12:31 +02:00
Jérémy Lecour 969a5bce7d apt: remove workaround for Evolix public repositories with Debian 11
All checks were successful
continuous-integration/drone/push Build is passing
Details
2021-08-16 13:50:53 +02:00
Jérémy Lecour d186e21239 evoadmin-web: simpler PHP packages lists 2021-08-16 13:49:13 +02:00
Jérémy Lecour c9f25f4638 bullseye-detect: this role is obsolete, Debian 11 has been fully released 2021-08-16 13:47:33 +02:00
Jérémy Lecour 139b342fbd certbot: silence letsencrypt deprecation warnings 2021-07-20 17:19:57 +02:00
Jérémy Lecour bf49ec8df5 mysql: script "mysql_connections" to display a compact list of connections
All checks were successful
continuous-integration/drone/push Build is passing
Details
2021-07-08 15:10:35 +02:00
Jérémy Lecour 32b5efa30e evocheck: upstream release 21.07
All checks were successful
continuous-integration/drone/push Build is passing
Details
2021-07-07 15:20:24 +02:00
Jérémy Lecour 29ec7bdcf2 Remove embedded GPG keys only if legacy keyring is present
Some checks failed
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is failing
Details
2021-07-04 22:08:47 +02:00
Jérémy Lecour ffd7d0e504 evolinux-base: alert5 comes after the network 2021-07-04 22:07:51 +02:00
Jérémy Lecour 4167b6d2a9 fix CHANGELOG 2021-07-03 09:10:22 +02:00
Jérémy Lecour 3721c2ab38 squid: improve default whitelist 2021-07-03 08:56:23 +02:00
Jérémy Lecour 5905751a82 squid: must be started in foreground mode for systemd 2021-07-02 23:45:42 +02:00
Jérémy Lecour a5658b7f26 packweb-apache: install phpMyAdmin from buster-backports 2021-07-02 21:18:06 +02:00
Jérémy Lecour 5c1ae6ed0c spamassassin: change dependency on evomaintenance 
Fail with an error if evomaintenance config is missing
instead of trying to install a package that doesn't exist anymore.
 2021-07-02 21:16:43 +02:00
Jérémy Lecour 8a784c39ab mongodb: create munin plugins directory if missing 2021-07-02 21:16:40 +02:00
Jérémy Lecour 9c8dd743c8 Use python3 packages on Debian 11 and later 2021-07-02 21:16:15 +02:00
Jérémy Lecour 6b87ead5b4 update changelog 2021-07-02 21:16:12 +02:00
Jérémy Lecour e8a8e85819 redis: instance service for Debian 11 2021-07-02 21:13:42 +02:00
Jérémy Lecour c5ab0c0ff9 squid: remove obsolete variable on Squid 4 2021-07-02 21:13:05 +02:00
Jérémy Lecour f673ea85d1 Force Debian version to buster for Evolix repository 2021-07-02 21:12:33 +02:00
Jérémy Lecour 2c441f176a mysql: mariadb-client-10.5 on Debian 11 2021-07-02 21:11:27 +02:00
Jérémy Lecour c5bb8f06ae mysql: use python3 with Debian 11 and later 2021-07-02 21:10:52 +02:00
Jérémy Lecour 51d4ec1bb2 php: remove php-gettext for 7.4 2021-07-02 21:10:04 +02:00
Jérémy Lecour 2f68ae5339 Preliminary support for Bullseye 2021-07-02 20:58:09 +02:00
Jérémy Lecour 90cbd17f9b listupgrade: crontab is configurable 2021-07-02 14:01:46 +02:00