William Hirigoyen
6fa89e69a5
Update changelog
gitea/ansible-roles/pipeline/head This commit looks good
2022-09-02 15:48:09 +02:00
Ludovic Poujol
1f52700b47
memcached: NRPE check for multi-instance setup
...
gitea/ansible-roles/pipeline/head This commit looks good
Also some cleanup & split of tasks between single and multi instance
Note: Munin part seems still broken at the time
2022-09-01 15:33:00 +02:00
Ludovic Poujol
ee67ebca8b
webapps/nextcloud: Drop support for Nginx
2022-09-01 12:46:37 +02:00
William Hirigoyen
2bda54a7bd
Update CHANGELOG.md
gitea/ansible-roles/pipeline/head This commit looks good
2022-09-01 12:07:47 +02:00
Ludovic Poujol
d165a104f2
* webapps/nextcloud: Add missing dependencies for imagick
gitea/ansible-roles/pipeline/head This commit looks good
2022-09-01 11:28:08 +02:00
Ludovic Poujol
4a3b40d986
generate-ldif: Support any MariaDB version
gitea/ansible-roles/pipeline/head This commit looks good
2022-08-29 17:29:14 +02:00
Jérémy Lecour
c7a6b3e694
evocheck: upstream release 22.08.1
gitea/ansible-roles/pipeline/head This commit looks good
2022-08-29 17:03:31 +02:00
Jérémy Lecour
71aafe161c
evocheck: upstream release 22.08
2022-08-29 17:03:31 +02:00
Eric Morino
9a25d5981f
add webapps/nextcloud changelog
gitea/ansible-roles/pipeline/head This commit looks good
2022-08-26 16:34:19 +02:00
Jérémy Lecour
5fa7f4809c
vrrp: fix systemd unit name
gitea/ansible-roles/pipeline/head This commit looks good
2022-08-24 17:58:46 +02:00
Jérémy Lecour
018eee7ea0
Update 'CHANGELOG.md'
...
* use role name
* more descriptive message
* order items alphabetically
2022-08-24 15:22:25 +02:00
Patrick Marchand
2c1ec040d1
Simplify user subset creation
...
Instead of tags, allow only one subset of users to be created at a time.
2022-08-24 09:05:29 -04:00
Patrick Marchand
9dfcfe1ef3
Made it possible to only create a subset of users
...
gitea/ansible-roles/pipeline/head This commit looks good
The evolinux_users_create variable is a list of tags that defaults to ['active'].
Only the users that have one of the tags in the evolinux_users_create list will be created.
2022-08-23 20:18:45 -04:00
David Prevot
3bd4b92425
CHANGELOG: Document previous ($self) change
gitea/ansible-roles/pipeline/head This commit looks good
2022-08-18 10:27:26 +02:00
Jérémy Lecour
d0abfa985c
redis: config directory must be owned by the user that runs the service
...
gitea/ansible-roles/pipeline/head This commit looks good
… to be able to write tmp config files in it
2022-08-17 16:53:07 +02:00
Jérémy Dubois
de0c4fd314
openvpn: automate the initialization of the CA and the creation of the server certificate ; use openssl_dhparam module instead of a command
gitea/ansible-roles/pipeline/head This commit looks good
2022-08-10 17:23:47 +02:00
Mathieu Trossevin
78dcec8656
varnish: Repair systemd unit for jessie/stretch
gitea/ansible-roles/pipeline/head This commit looks good
2022-08-10 11:18:23 +02:00
Mathieu Trossevin
08a4f1ed5f
Document previous change
gitea/ansible-roles/pipeline/head This commit looks good
2022-08-10 10:26:37 +02:00
Jérémy Lecour
6c33e11d5f
evocheck: upstream release 22.07.1
gitea/ansible-roles/pipeline/head This commit looks good
continuous-integration/drone/push Build is passing
2022-07-28 14:18:12 +02:00
Jérémy Lecour
0f899dcd09
evocheck: remove failure if deprecated variable is used
gitea/ansible-roles/pipeline/head This commit looks good
continuous-integration/drone/push Build is passing
2022-07-28 13:58:09 +02:00
Jérémy Lecour
25b96c3283
Release 22.07.1
continuous-integration/drone/push Build is running
gitea/ansible-roles/pipeline/head This commit looks good
continuous-integration/drone/pr Build is passing
gitea/ansible-roles/pipeline/pr-stable This commit looks good
2022-07-28 13:49:57 +02:00
Jérémy Lecour
f10ebe8cd6
evocheck: upstream release 22.07
2022-07-28 13:38:33 +02:00
Jérémy Lecour
c8898a3d10
nagios-nrpe: use regexp to exclude paths/devices in check_disk1
gitea/ansible-roles/pipeline/head This commit looks good
continuous-integration/drone/push Build is passing
2022-07-28 13:25:51 +02:00
Jérémy Lecour
0d086731ae
evomaintenance: upstream release 22.07
gitea/ansible-roles/pipeline/head This commit looks good
continuous-integration/drone/push Build is passing
2022-07-27 15:49:41 +02:00
Jérémy Lecour
f7edd565a3
nagios-nrpe: check_disk1 returns only alerts
continuous-integration/drone/push Build is passing
2022-07-27 09:24:46 +02:00
Jérémy Lecour
b453321b3d
nagios-nrpe: exclude /run/shm and /run/lock from check_disk1
2022-07-27 09:24:46 +02:00
Jérémy Lecour
0b41efd188
mongodb: replace version_compare() with version()
continuous-integration/drone/push Build is passing
2022-07-18 15:54:42 +02:00
Bruno TATU
213c6dd6ac
Add change for fail2ban role
continuous-integration/drone/push Build is passing
2022-07-08 11:28:29 +02:00
Jérémy Lecour
53847d9919
Release 22.07
continuous-integration/drone/push Build is passing
2022-07-06 18:02:42 +02:00
Jérémy Lecour
a387304483
Fix CHANGELOG
continuous-integration/drone/push Build is passing
2022-07-06 14:26:13 +02:00
Jérémy Lecour
0a3bfd7f27
evolinux-base: session timeout is configurable
continuous-integration/drone/push Build is passing
2022-07-06 14:24:41 +02:00
Eric Morino
028bfe209a
Add change in kvm-host
continuous-integration/drone/push Build is passing
2022-07-05 10:18:49 +02:00
Jérémy Dubois
68ac8fc058
openvpn: configure logrotate
continuous-integration/drone/push Build is passing
2022-06-30 10:12:36 +02:00
Jérémy Dubois
07c3c0226f
openvpn: minimal rights on /etc/shellpki/ and crl.pem
continuous-integration/drone/push Build is passing
2022-06-29 16:09:04 +02:00
Jérémy Lecour
205e699355
minifirewall: docker mode is configurable
continuous-integration/drone/push Build is passing
2022-06-22 17:20:15 +02:00
Jérémy Lecour
abb14e5b52
haproxy: add haproxy_allow_ip_nonlocal_bind to set sysctl value
continuous-integration/drone/push Build is passing
2022-06-22 15:32:10 +02:00
Ludovic Poujol
519ef930df
Update PermitRootLogin task to work on Debian 11
continuous-integration/drone/push Build is passing
2022-06-21 15:13:38 +02:00
Jérémy Lecour
050c61c220
Release 22.06.3
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
2022-06-17 11:00:51 +02:00
Jérémy Lecour
57ecac01ba
evolinux-base: blacklist and do not install megaclisas-status package on incompatible servers
continuous-integration/drone/push Build is passing
2022-06-16 15:19:44 +02:00
William Hirigoyen (Evolix)
3623363b94
Update changelog for version 22.06
continuous-integration/drone/push Build is passing
2022-06-13 17:35:31 +02:00
Jérémy Lecour
556719bbf2
Release 22.06.2
continuous-integration/drone/push Build is passing
2022-06-10 11:11:44 +02:00
Ludovic Poujol
b3ac39decd
postgresql: Fix task order when using pgdg repo & Install the right pg version
continuous-integration/drone/push Build is passing
2022-06-09 10:33:28 +02:00
Jérémy Lecour
cea1408bba
evocheck: upstream release 22.06.2
continuous-integration/drone/push Build is passing
2022-06-09 07:42:29 +02:00
Jérémy Lecour
4d1d77faaf
postgresql: add variable to configure binding addresses (default: 127.0.0.1)
2022-06-09 07:41:52 +02:00
Ludovic Poujol
1e19418fb0
Fail2ban: Multiple changes & improvements :
...
continuous-integration/drone/push Build is passing
* Give the possibility to override jail.local (with fail2ban_override_jaillocal)
* If jail.local was overriden, add a warning
* Allow to tune some jail settings (maxretry, bantime, findtime) with ansible
* Allow to tune the default action with ansible
* Change default action to ban only (instead of ban + mail with whois report)
* Configure recidive jail (off by default) + extend dbpurgeage
2022-06-08 17:55:58 +02:00
Jérémy Lecour
bcaacdf57f
postgresql: fix nested loop for Munin plugins
continuous-integration/drone/push Build is passing
2022-06-08 15:39:34 +02:00
Jérémy Lecour
cbe7985814
Enforce String notation for mode
2022-06-08 15:38:21 +02:00
Jérémy Lecour
b677defd97
redis: binding is possible on multiple interfaces
2022-06-08 15:36:47 +02:00
Jérémy Lecour
1895c549d4
Release 22.06.1
continuous-integration/drone/push Build is passing
2022-06-06 15:07:10 +02:00
Jérémy Lecour
3d70438f7e
evocheck: upstream release 22.06.1
continuous-integration/drone/push Build is passing
2022-06-06 15:05:59 +02:00
Jérémy Lecour
4cd7e0f4a1
minifirewall: upstream release 22.06
2022-06-06 14:42:22 +02:00
Jérémy Lecour
56c2c19d61
evomariabackup: release 22.06.1
continuous-integration/drone/push Build is passing
2022-06-05 21:49:23 +02:00
Jérémy Lecour
6d0e49ba90
mysql: reorganize evomariabackup to use mtree instead of our own dir-check
continuous-integration/drone/push Build is passing
2022-06-05 21:48:04 +02:00
Jérémy Lecour
e718156f86
fix CHANGELOG
continuous-integration/drone/push Build is passing
2022-06-03 10:19:35 +02:00
Jérémy Lecour
e8e99bb9b6
Release 22.06
continuous-integration/drone/push Build is passing
2022-06-03 09:27:01 +02:00
Jérémy Lecour
9378f5634c
add missing entry in CHANGELOG
continuous-integration/drone/push Build is passing
2022-06-03 09:26:07 +02:00
Jérémy Lecour
51908f64b9
evocheck: upstream release 22.06
continuous-integration/drone/push Build is passing
2022-06-03 09:15:04 +02:00
Jérémy Lecour
586aa206a8
mysql: add post-backup-hook to evomariabackup
2022-06-02 18:26:23 +02:00
Jérémy Lecour
b8b96bb5b7
mysql: use dir-check inside evomariabackup
continuous-integration/drone/push Build is passing
2022-06-01 17:24:55 +02:00
Jérémy Lecour
249e53fc21
evolinux-base: add dir-check script
2022-06-01 17:24:55 +02:00
Jérémy Lecour
17a2032a10
evolinux-base: add update-evobackup-canary script
continuous-integration/drone/push Build is passing
2022-06-01 10:46:13 +02:00
Jérémy Lecour
b3dbcb082f
certbot: add hapee (HAProxy Enterprise Edition) deploy hook
continuous-integration/drone/push Build is passing
2022-05-31 14:06:25 +02:00
Ludovic Poujol
134355d190
docker: Allow live-restore to be toggled with docker_conf_live_restore
continuous-integration/drone/push Build is passing
2022-05-24 16:22:49 +02:00
Jérémy Lecour
1a9c219c5b
Release 22.05.1
continuous-integration/drone/push Build is passing
2022-05-12 15:49:18 +02:00
Jérémy Lecour
f82a81844d
evocheck: upstream release 22.05
continuous-integration/drone/push Build is passing
2022-05-12 15:47:50 +02:00
Ludovic Poujol
9973a62c16
docker : Introduce new variables to tweak daemon settings
continuous-integration/drone/push Build is passing
2022-05-10 19:04:58 +02:00
Ludovic Poujol
6aa7b89b78
docker : Introduce new default settings + allow to change the docker data directory
continuous-integration/drone/push Build is passing
2022-05-10 18:21:59 +02:00
Ludovic Poujol
1b4d4c98fe
docker : Removed Debian Jessie support
2022-05-10 17:39:45 +02:00
Jérémy Lecour
09872fa4ad
Release 22.05
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
2022-05-10 16:58:32 +02:00
Jérémy Lecour
dd2072b86b
minifirewall: fix failed_when conditions on restart
continuous-integration/drone/push Build is passing
2022-05-10 16:40:45 +02:00
Jérémy Lecour
378ee04c82
minifirewall: upstream release 22.05
2022-05-10 15:55:08 +02:00
Eric Morino
3663783509
add change in opendkim role
continuous-integration/drone/push Build is passing
2022-05-09 10:19:18 +02:00
Jérémy Lecour
749d6a78cd
redis: Add log2mail user to redis group
2022-05-05 09:40:30 +02:00
Jérémy Lecour
61cd2b7428
minifirewall: upstream release 22.04
continuous-integration/drone/push Build is passing
2022-04-28 19:14:31 +02:00
Jérémy Lecour
a53159c93b
minifirewall: compatibility with "legacy" version of minifirewall
continuous-integration/drone/push Build is passing
2022-04-28 12:40:02 +02:00
Jérémy Lecour
805a8ecb3a
etc-git: use "ansible-commit" to efficiently commit all available repositories (including /etc inside LXC) from Ansible
2022-04-27 14:22:59 +02:00
Jérémy Lecour
381a71aca1
dump-server-state: upstream release 22.04.3
continuous-integration/drone/push Build is passing
2022-04-26 18:21:42 +02:00
Jérémy Lecour
55356857b2
dump-server-state: upstream release 22.04.2
continuous-integration/drone/push Build is passing
2022-04-26 09:56:49 +02:00
Jérémy Lecour
daa54cac8f
evocheck: upstream release 22.04.1
2022-04-26 09:56:49 +02:00
Jérémy Lecour
5935d9d4a3
evocheck: upstream release 22.04
continuous-integration/drone/push Build is passing
2022-04-25 09:58:07 +02:00
Jérémy Lecour
58909bc395
vrrpd: Store sysctl values in specific file
2022-04-22 09:32:37 +02:00
Jérémy Lecour
a5bae6645e
dump-server-state: upstream release 22.04.1
continuous-integration/drone/push Build encountered an error
2022-04-20 11:07:20 +02:00
Jérémy Dubois
9161fae0c4
openvpn: use a local copy of files instead of cloning an external git repository
continuous-integration/drone/push Build was killed
2022-04-14 16:34:43 +02:00
Jérémy Dubois
4bf14b9a22
munin: Add possibility to install local plugins, and install dhcp_pool plugin
continuous-integration/drone/push Build was killed
2022-04-14 10:45:24 +02:00
Ludovic Poujol
959d6a8579
redis : Activate overcommit sysctl
2022-04-12 11:27:46 +02:00
Jérémy Lecour
84178d6b24
Tomcat 9 by default with Debian 11
continuous-integration/drone/push Build was killed
2022-04-08 11:57:35 +02:00
Jérémy Dubois
5b2fecb49c
Make evocommit fully compatible with OpenBSD
continuous-integration/drone/push Build was killed
2022-04-07 10:18:08 +02:00
Jérémy Lecour
e71201ab46
dump-server-state: upstream release 22.04
continuous-integration/drone/push Build was killed
2022-04-03 11:18:43 +02:00
Jérémy Dubois
726735d269
etc-git : Remount /usr in rw for git gc in in /usr/share/scripts/
2022-04-01 15:47:44 +02:00
Jérémy Dubois
6434adcc62
nagios-nrpe: Add a check dhcp_pool
continuous-integration/drone/push Build was killed
2022-03-31 16:01:23 +02:00
Jérémy Lecour
ed6ca9a85a
minifirewall: upstream release 22.03.5
continuous-integration/drone/push Build was killed
2022-03-30 22:45:13 +02:00
Mathieu Trossevin
5dc6a1d36b
etc-git: Commit changes to /etc in containers
continuous-integration/drone/push Build was killed
continuous-integration/drone/pr Build was killed
2022-03-30 16:33:00 +02:00
Jérémy Lecour
31c2629d31
minifirewall: configure proxy/backup/sysctl values
continuous-integration/drone/push Build was killed
2022-03-30 09:42:56 +02:00
Mathieu Trossevin
20abe0e09a
postfix: Skip milters after amavis (in packmail)
...
continuous-integration/drone/push Build was killed
Otherwise opendkim will sign local mails twice AND sign external mails
(pretending to be) from local domains as if they were local mails.
2022-03-29 16:06:12 +02:00
Jérémy Lecour
75459baa35
dump-server-state: upstream release 22.03.10
continuous-integration/drone/push Build was killed
2022-03-29 09:11:35 +02:00
Jérémy Lecour
3feacd0c6d
update CHANGELOG
continuous-integration/drone/push Build was killed
2022-03-28 13:28:48 +02:00
Jérémy Lecour
54bf9c1854
evolinux-base: rename backup-server-state to dump-server-state
continuous-integration/drone/push Build was killed
2022-03-27 09:18:15 +02:00
Jérémy Lecour
85d429295f
minifirewall: tail template follows symlinks
continuous-integration/drone/push Build was killed
2022-03-25 18:12:24 +01:00
Jérémy Lecour
bbc1bae437
minifirewall: upstream release 22.03.4
continuous-integration/drone/push Build was killed
continuous-integration/drone/pr Build was killed
2022-03-25 14:57:10 +01:00
Jérémy Dubois
d2fa14fb4f
backup-server-state: release 22.03.5
continuous-integration/drone/push Build was killed
2022-03-24 18:15:56 +01:00
Ludovic Poujol
Jérémy Lecour
Eric Morino
Patrick Marchand
Jérémy Dubois
Mathieu Trossevin
Bruno TATU
William Hirigoyen (Evolix)
