evolix
/
ansible-roles
18
2
Fork 2
Code Issues 61 Pull Requests 18 Releases 32 Wiki Activity
1,623 Commits 76 Branches 56 Tags 128 MiB
Commit Graph

1623 Commits

Author SHA1 Message Date
Jérémy Lecour a84bc70b79 Merge branch 'unstable' into stable 2018-12-04 14:51:33 +01:00
Jérémy Lecour 69d9b949e2 Release 9.6.0 2018-12-04 14:51:17 +01:00
Jérémy Lecour 2bcc1133c0 minifirewall: all variables are configurable 
By default, a Null value keeps the variable current value as-is.
Set an Array (can be empty) to replace the value.
 2018-12-04 14:49:50 +01:00
Jérémy Lecour 50e16e0dee minifirewall: compare config before/after (for restart condition) 2018-12-04 14:46:32 +01:00
Jérémy Lecour 59dd03c91e squid: better replacement in minifirewall config 2018-12-04 14:46:32 +01:00
Jérémy Lecour 33e29657a7 update changelog 2018-12-04 14:46:32 +01:00
Jérémy Lecour c96e8130ff squid: minifirewall main file is configurable 2018-12-04 14:45:48 +01:00
Jérémy Lecour c3e4a78442 minifirewall: main file is configurable 2018-12-04 14:45:48 +01:00
Victor LABORIE 74f25e8183 evolinux-base: deploy custom motd if template are present 2018-11-30 15:14:39 +01:00
Victor LABORIE 6469733d2f evoacme: fix error handling in sed_cert_path_for_(apache|nginx) 2018-11-22 15:06:23 +01:00
Jérémy Lecour 5cbad9911f Merge branch 'unstable' into stable 2018-11-14 17:15:38 +01:00
Jérémy Lecour d5e34a58d2 Release 9.5.0 2018-11-14 17:15:25 +01:00
Jérémy Lecour b3f9932c4d evolinux-users: add newaliases handler 2018-11-14 17:04:51 +01:00
Jérémy Lecour 2f8cad3c7c packweb-apache: mod-security config is already included elsewhere 2018-11-14 17:04:03 +01:00
Jérémy Lecour 5056f93283 mysql: logdir can be customized 2018-11-14 16:13:06 +01:00
Jérémy Lecour bd1b1a7775 update CHANGELOG 2018-11-14 16:13:06 +01:00
Jérémy Lecour 6b769f5d77 mysql: restart MySQL if systemd unit has changed 2018-11-14 16:13:06 +01:00
Victor LABORIE f5f1e885f7 ssl: add handler for haproxy reload 2018-11-14 15:39:45 +01:00
Jérémy Lecour 3425711ecf redis: update CHANGELOG 2018-11-14 15:35:11 +01:00
Jérémy Lecour e89da9146b redis: fix shell for redis users 2018-11-14 15:34:03 +01:00
Jérémy Lecour c60f30b106 redis: fix permissions for multiples instances 2018-11-14 15:33:43 +01:00
Victor LABORIE a4fde27546 ssl: add missing state parameter 2018-11-14 15:20:53 +01:00
Patrick Marchand 3eadd7d544 Rajout d'un cron a packweb pour ftpd 
The cronjob that maintains file size caches for ftpadmin
is not present in the packweb, which leads to things like
spinon-www0 listing all directories as being 0 octets big.
 2018-11-13 16:58:29 -05:00
Patrick Marchand 9198c1e2c0 ansible-lint does not like trailing whitespace 2018-11-13 16:56:31 -05:00
Patrick Marchand a1973ebbb3 We misunsderstood how modsecurity used the init rules 
They do not modify files and are necessary for the core rules to function.
 2018-11-13 09:59:34 -05:00
Patrick Marchand 9f2727f55f Removes modsecurity audit log and rules 910* and 901* 2018-11-13 09:59:34 -05:00
Victor LABORIE cfb87a7b65 haproxy: add vars for tls configuration 
Permit simply include of TLS configuration, eg. in [global] :

{{ haproxy_ssl_intermediate | indent(width=4) }}
 2018-11-13 11:07:06 +01:00
Jérémy Lecour df48a60684 evocheck: update script from upstream 2018-11-08 09:46:57 +01:00
Victor LABORIE 9ee245942d ssl: haproxy package check must no fail 2018-11-06 16:21:16 +01:00
Victor LABORIE c6a504c6c5 Add an SSL role for certificates deployment 2018-11-06 16:15:48 +01:00
Jérémy Lecour 4a411685ff evomaintenance: FROM domain is configurable 2018-11-06 10:39:30 +01:00
Jérémy Lecour 06a0f0d9b7 apache/nginx/fail2ban: mention ip_whitelist.yml in README.md 2018-11-02 18:18:22 +01:00
Jérémy Lecour 2f9348e3d1 update CHANGELOG 2018-11-02 18:16:29 +01:00
Jérémy Lecour 24ddc78a23 apache/nginx: IP adresses can also be removed 2018-11-02 18:15:17 +01:00
Patrick Marchand b776fc3da2 Make ip whitelist tasks more flexible 
Now the list of whitelisted ip addresses can be updated simply by
including the specific tasks in an external playbook without polluting
our role list.

This change takes effect for nginx, apache and fail2ban.
 2018-11-02 18:08:23 +01:00
Jérémy Lecour 3d76454984 update CHANGELOG for postfix 2018-11-02 10:14:49 +01:00
Jérémy Lecour c03be65ed9 evomaintenance: update script from upstream 2018-11-02 10:13:40 +01:00
Gregory Colpart 1871352fe8 enable SSL/TLS client, cf https://wiki.evolix.org/HowtoPostfix#ssltls 2018-10-31 02:20:54 +01:00
Victor LABORIE 83e9f12669 evolinux-base: install man package 2018-10-23 11:38:52 +02:00
Victor LABORIE 6e6820805d nginx: add tag for ips management 2018-10-19 10:31:45 +02:00
Jérémy Lecour 48c2496deb Merge branch 'unstable' into stable 2018-10-12 10:16:50 +02:00
Jérémy Lecour 79aceac380 Release 9.4.2 2018-10-12 10:16:40 +02:00
Jérémy Lecour 85c779164a evomaintenance: fix role compatibility with OpenBSD 2018-10-12 10:13:27 +02:00
Victor LABORIE 357914b44e amavis: fix output result checking 2018-10-11 17:18:03 +02:00
Jérémy Lecour 1d06721b96 update CHANGELOG 2018-10-08 09:43:09 +02:00
Jérémy Lecour 20e8d9f432 evomaintenance: install dependencies when installing vendored version 2018-10-08 09:37:18 +02:00
Benoît S. 88b66dca24 Evoacme: Better usage of apache2ctl -t 
By default apache2ctl is using stderr, even for displaying "Syntax OK".
So, we redirect it in stdout and remove "Syntax OK". Then we check the exit code.
 2018-10-03 15:16:28 +02:00
Victor LABORIE f2469dbdd9 * spamassassin: add missing right for amavis 2018-10-03 14:41:41 +02:00
Victor LABORIE 8dd2fcac55 Update CHANGELOG for haproxy/nagios-nrpe 2018-09-28 15:33:56 +02:00
Victor LABORIE 8cd689f9b4 haproxy: move check_haproxy_stats to nagios-nrpe role 2018-09-28 15:21:42 +02:00