Jérémy Lecour
c25c3c6a31
minifirewall: improve variables values and documentation
2018-08-30 17:06:21 +02:00
Jérémy Lecour
9787328a0b
minifirewall: add a variable to force a restart of the firewall
2018-08-30 17:05:30 +02:00
Jérémy Lecour
96cd04ae40
minifirewall: add a variable to disable the restart handler
2018-08-30 17:04:14 +02:00
Jérémy Lecour
944006e63c
Release 9.3.1
2018-08-30 14:06:06 +02:00
Jérémy Lecour
cfd5e3d7f2
metricbeat: new variables to configure elasticsearch hosts and auth
2018-08-30 13:47:48 +02:00
Jérémy Lecour
cb9e48b41d
update the CHANGELOG with a forgotten line for mysql
2018-08-24 18:38:12 +02:00
Jérémy Lecour
191a49784d
Release 9.3.0
2018-08-24 18:27:03 +02:00
Jérémy Lecour
3f67398371
evolinux-todo: don't echo "nothing…" when verbosity=0
2018-08-24 18:27:03 +02:00
Jérémy Lecour
673d5a68c5
squid: change a task name
2018-08-24 18:11:19 +02:00
Jérémy Lecour
d138c00db8
etc-git: some entries of .gitignore are mandatory
2018-08-24 14:44:51 +02:00
Jérémy Lecour
fe064c16d1
update CHANGELOG for evolinux-todo
2018-08-24 14:43:14 +02:00
Jérémy Lecour
c1afb68d19
Add an "evolinux-todo" role
...
It makes sure there is a /etc/evolinux/todo.txt where we can append
tasks to be done manually.
It has a task to output the content of the file, for exemple at the end
of a playbook run.
2018-08-24 14:31:11 +02:00
Jérémy Lecour
3e3c6437e8
etc-git: install a script to optimize the repository each month
2018-08-24 00:28:15 +02:00
Jérémy Lecour
6077986204
fail2ban: fix typo in variable name
2018-08-23 16:48:50 +02:00
Jérémy Lecour
bb956fb5e7
apache: logrotate replacement is more subtle/precise
...
It replaces only the proper directive and not every occurence of the
word.
2018-08-23 13:02:25 +02:00
Jérémy Lecour
d09fd169b3
mysql: default values should stay in the proper file
...
Default values are set in z-evolinux-defaults.cnf and should be added in
zzz-evolinux-custom.cnf only if the value differs from the default.
2018-08-23 12:17:13 +02:00
Jérémy Lecour
12c49ed93b
fail2ban: add a variable to update the list of ignored IP addresses
2018-08-23 11:43:34 +02:00
01ae7b0e31
Add some new customisable configuration parameters
2018-08-23 09:31:04 +02:00
Jérémy Lecour
e939198159
fail2ban: add a variable to disable the ssh filter (default: False)
2018-08-23 09:16:33 +02:00
Jérémy Lecour
0869fb539a
fail2ban: fix typo in jinja filters
2018-08-21 23:21:30 +02:00
Jérémy Lecour
012dabf657
fail2ban: fix fail2ban_ignore_ips definition
...
If the final variable is combined in the defaults file, it's component
can be overridden, but the final variable can't be overriden.
2018-08-21 23:14:31 +02:00
Jérémy Lecour
77aeb60544
bind: chroot-bind.sh must not be executed in check mode
2018-08-21 18:46:16 +02:00
Jérémy Lecour
b6fa349394
evolinux-base: compact multiple systctl tasks into one
2018-08-21 13:34:03 +02:00
5721282a9f
Hot fix: remove .conf suffix because Amavis don't read it!
2018-08-20 22:25:06 +02:00
Jérémy Lecour
47d5146642
evocheck: the crontab is overwritten
2018-08-18 09:59:26 +02:00
Jérémy Lecour
26c46bfb96
evocheck: the crontab is updated by the role
2018-08-18 09:41:59 +02:00
51f41ff14a
Workaround by Evolix security team for old kernels and vulnerabiliy CVE-2018-5391 (FragmentSmack)
2018-08-17 21:28:14 +02:00
Jérémy Lecour
dbb72ef2a0
evocheck: fix quotes on grep regular expressions
2018-08-17 15:52:42 +02:00
Jérémy Lecour
4d7e9b1c3f
evocheck: detect installed packages even if "held" by APT (manual fix)
2018-08-17 14:59:22 +02:00
Jérémy Lecour
40160e0c6e
generate-ldif: detect installed packages even if "held" by APT
2018-08-17 11:56:41 +02:00
Jérémy Lecour
4461281945
evolinux-base: add internal FQDN/hostname in /etc/hosts if needed
2018-08-17 10:07:36 +02:00
Jérémy Lecour
46fed05fa2
evocheck: update upstream script
2018-08-17 10:04:07 +02:00
Jérémy Lecour
bc8858fc0a
evolinux-base: improve hostname configuration
...
We can have a "real" hostname and domain, but also an "internal" hostnae
and domain, used mostly for internal tools.
2018-08-16 16:17:34 +02:00
d07af3ca55
Fix forgotten spaces in configuration directives
2018-08-14 11:09:48 +02:00
1d021e0954
Fix mistaken task
2018-08-14 10:21:12 +02:00
d321814254
Add cluster members configuration
2018-08-13 17:49:24 +02:00
Jérémy Lecour
ccd8c00e3a
CHANGELOG : add missing entries
2018-08-09 18:24:48 +02:00
Jérémy Lecour
3f74cbaf47
uvrrpd role is not ready for stable yet
2018-08-09 18:21:07 +02:00
Jérémy Lecour
2752650ea3
The openvpn role is not ready for stable yet
2018-08-09 18:04:02 +02:00
Jérémy Lecour
f2bd125cfc
memcached: improve systemd units management
2018-08-09 17:46:31 +02:00
Jérémy Lecour
adb0033722
memcached: add a TODO comment for multi-instances NRPE checks
2018-08-09 17:25:50 +02:00
Jérémy Lecour
17b8b4c3d5
nginx: add a backward compatible variable for backports
2018-08-09 17:13:04 +02:00
Jérémy Lecour
fbc9bf3288
haproxy: add a backward compatible variable for backports
2018-08-09 17:11:47 +02:00
Jérémy Lecour
b9b0183ec5
remount-usr: mount doesn't report a change
...
It is arguable that this is a real change or not,
but in practice we have playbooks that report changes only for this and
it's very fun to scroll back each time to see if it's remount-usr or
a "real" change.
2018-08-06 15:01:52 +02:00
e817dffc0f
Ignore /sys/kernel/debug/tracing in check_disk1
2018-08-01 11:08:11 +02:00
b095f87f85
Nginx role now handle Nginx installation from backports for either Debian Jessie or Stretch
2018-07-31 16:06:05 +02:00
Victor LABORIE
57cf0a29ab
kvm-host: install kvm-tools package instead of copying add-vm.sh
2018-07-27 11:27:50 +02:00
Eric Morino
14e270b688
Ajout verification minifirewall + /usr en ro + port management pour check_openvpn + certificat dhparam
2018-07-26 11:48:14 +02:00
8ad8c2c798
Add the first version of OpenVPN role
2018-07-24 17:16:30 +02:00
db683ea9c3
Fix role - shift haproxy_apt_preferences file to the templates directory
2018-07-24 15:43:45 +02:00
Jérémy Lecour
Tristan PILAT
Gregory Colpart
Daniel Jakots
Victor LABORIE
Eric Morino