Jérémy Lecour
92ef1bff32
Add firewall checks for new configuration
2021-09-06 15:03:17 +02:00
Jérémy Lecour
7740e919a5
Check for bullseye security repository
continuous-integration/drone/push Build is passing
Details
2021-08-18 09:25:53 +02:00
Jérémy Dubois
e0202f28ff
Fix IS_PREEMPT remaining
2021-07-23 16:21:32 +02:00
Jérémy Dubois
8a735ca4ca
Renamed multiple CARP checks
...
Renamed check_advskew, check_preempt, check_advbase and their alert to add "carp" in them
2021-07-23 16:01:12 +02:00
Jérémy Dubois
af259252be
Add check_advskew and boot version
2021-07-16 14:52:49 +02:00
Jérémy Lecour
b5a467b82f
Release 21.07
continuous-integration/drone/push Build is passing
Details
2021-07-07 15:18:39 +02:00
Jérémy Lecour
96ba05975d
IS_HARDWARERAIDTOOL: match more RAID PCI cards
2021-07-07 15:15:00 +02:00
Jérémy Lecour
5ec4cd6fff
meta-data and shellcheck fixes
2021-07-07 15:15:00 +02:00
Jérémy Lecour
29363bcc23
Preliminary support for Debian 11 « Bullseye »
2021-07-07 15:14:53 +02:00
Jérémy Dubois
d10acee88e
Merge pull request 'Ignore VRRP interfaces in IS_AUTOIF, as they are virtuals interfaces' ( #133 ) from is_autoif-ignore_vrrp into master
...
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is passing
Details
Reviewed-on: #133
2021-05-25 14:19:56 +02:00
bea0bfb4e5
IS_APTGETBAK: more explicit error message
continuous-integration/drone/push Build is passing
Details
2021-05-17 15:00:39 +02:00
Jérémy Dubois
6c14daefca
Ignore VRRP interfaces in IS_AUTOIF, as they are virtuals interfaces
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is passing
Details
2021-05-17 11:47:58 +02:00
Ludovic Poujol
b562a4a008
Merge pull request 'Add new check IS_LXC_CONTAINER_RESOLV_CONF' ( #131 ) from IS_LXC_CONTAINER_RESOLV_CONF into master
...
continuous-integration/drone/push Build is passing
Details
Reviewed-on: #131
2021-05-04 09:31:11 +02:00
Ludovic Poujol
47984e7f92
Add new check IS_LXC_CONTAINER_RESOLV_CONF
...
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is passing
Details
Will ensure that every container has a resolv.conf file
and that all nameservers configured in the host resolv.conf file are present
in the container's resolv.conf
2021-04-19 11:01:49 +02:00
Eric Morino
936e6d3b1d
Add fix for IS_EVOLIX_USER in CHANGELOG
continuous-integration/drone/push Build is passing
Details
2021-01-18 11:28:09 +01:00
Eric Morino
2aa1c26c34
Fix for EVOLIX_USER account name begin by evolix, don't match testevolix for example
continuous-integration/drone/push Build is passing
Details
2021-01-18 11:20:42 +01:00
Jérémy Lecour
7d4e92a5e3
Release 20.12
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/tag Build is passing
Details
2020-12-08 10:44:33 +01:00
Jérémy Lecour
44b09ef850
support multiple values for SQL_BACKUP_PATH and POSTGRES_BACKUP_PATH
2020-12-08 10:43:10 +01:00
Jérémy Dubois
5bf2959aac
Update changelog and boost version number
2020-10-23 18:13:35 +02:00
Jérémy Dubois
e21628fea7
Fix check_noatime : do not take into account commented entry in fstab
2020-10-23 17:32:15 +02:00
Jérémy Dubois
04139f3d60
Add check_openvpncronlog and update CHANGELOG
...
A cron is needed to rotate logs, because a restart of OpenVPN would be needed
with the use of newsyslog to rotate logs
2020-10-22 18:16:52 +02:00
Jérémy Dubois
b6f4889ac5
Fix check_raidok : the same device could be displayed multiple times
2020-10-22 14:16:56 +02:00
Jérémy Dubois
b49a1fbea5
Fix check_uptodate : properly check that syspatch exists
2020-10-22 12:12:42 +02:00
Jérémy Dubois
682cd3afaa
Add check_noatime and fix check_softdep
...
Add check_noatime - Check that all ffs partitions are mounted with the noatime
option
Fix check_softdep - We now check the number of ffs partitions and we compare it
to the number of softdep options currently there
2020-10-15 10:19:31 +02:00
Jérémy Dubois
7cb6055af5
Fix check_cronpath
...
Do not check PATH=XXX but only XXX
because XXX can also be in quotes
(PATH="XXX" would not be matched)
2020-10-09 14:09:21 +02:00
Jérémy Lecour
83fa22a72a
IS_VARTMPFS: use findmnt if available
continuous-integration/drone/push Build is failing
Details
2020-09-04 15:36:51 +02:00
Jérémy Lecour
6993e8f8b3
fix quoting error
continuous-integration/drone/push Build is failing
Details
2020-09-04 12:01:15 +02:00
Jérémy Lecour
3f65cdafc6
IS_POSTGRES_BACKUP: look for compressed backup too
continuous-integration/drone/push Build is passing
Details
2020-09-04 11:56:00 +02:00
Jérémy Dubois
4798873ace
Add check_backupuptodate - Check that /home/backup is not older than 2 days
2020-08-04 15:08:21 +02:00
Jérémy Dubois
8eb2c5f9bc
Update changelog
2020-07-27 17:01:15 +02:00
Jérémy Dubois
5bad0301d9
Add check_ntp() - Check the ntpd configuration
2020-07-27 16:59:54 +02:00
Jérémy Dubois
57d44cbf91
Removed check_postgresql - Deprecated since we now use an API
2020-07-23 11:00:34 +02:00
Jérémy Dubois
3d86996f5d
Fix check_defaultroute - We need to check if the /etc/mygate file exists before comparing it - version 6.7.3
2020-07-23 10:28:34 +02:00
Jérémy Dubois
04994ecebc
Add check_defaultroute function and update CHANGELOG file to 6.7.2
2020-07-22 14:27:27 +02:00
c688b0d524
Bump to version 6.7.1
2020-07-15 11:31:38 +02:00
b58ad51307
Fix check_sudomaint function - ADMIN group does not exist anymore, we now check that the wheel group has NOPASSWD for evomaintenance
2020-07-15 11:21:10 +02:00
5eedf3ad4d
Fix check_customsyslog - We have to check whether EvoBSD is present in newsyslog.conf file
2020-07-15 11:19:30 +02:00
239c5896df
We want evocheck advbase output to be uniq
2020-07-15 11:08:32 +02:00
Benoît S.
e3778343a5
Merge pull request 'IS_DUPLICATE_FS_LABEL: blkid has a cache that can provoke false positive' ( #124 ) from IS_DUPLICATE_FS_LABEL-blkid-fix into master
...
continuous-integration/drone/push Build is passing
Details
Reviewed-on: #124
2020-06-26 08:51:44 +02:00
Benoît S.
eea3e4b36e
Merge branch 'master' into IS_DUPLICATE_FS_LABEL-blkid-fix
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is passing
Details
2020-06-26 08:50:58 +02:00
Benoît S.
fdaa5ed0ab
IS_DUPLICATE_FS_LABEL: Update changelog
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is passing
Details
2020-06-26 15:49:38 +09:00
Benoît S.
652fcdbe44
IS_DUPLICATE_FS_LABEL: blkid has a cache that can provoke false positive
...
Disable the cache by using `-c /dev/null`.
Example of false positive:
```
/dev/mapper/HDD0-swap2: LABEL="SWAP2" UUID="5540a49e-3e7b-4528-9c4e-49fb5f8d7f3d" TYPE="swap"
/dev/dm-0: LABEL="SWAP2" UUID="5540a49e-3e7b-4528-9c4e-49fb5f8d7f3d" TYPE="swap"
```
`dm-0` may have been cached during boot time, if you don't use a cache,
it doesn't appear any more.
2020-06-26 15:49:30 +09:00
Jérémy Lecour
98caca3592
Remove PROGDIR variable
...
continuous-integration/drone/push Build is passing
Details
The "realpath -m" command is not compatible with old versions of Debian.
The PROGDIR variable is unused.
2020-06-17 22:52:17 +02:00
Jérémy Lecour
5e4b60e61b
IS_EVOBACKUP_EXCLUDE_MOUNT: exclude disabled backup scripts
continuous-integration/drone/push Build is passing
Details
2020-05-11 17:18:04 +02:00
Jérémy Lecour
ddba7cbed9
Release 20.04.4
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/tag Build is passing
Details
2020-04-28 15:59:01 +02:00
Jérémy Lecour
3d0e632dec
Don't search /etc/nginx if it doesn't exist
2020-04-28 15:58:08 +02:00
8d80e5bfc8
Update CHANGELOG to 6.6.2
2020-04-27 15:45:41 +02:00
4fead89240
Add check_sync function - If a server is a Carp member we check whether the sync.sh script is present or not
2020-04-27 15:38:27 +02:00
e0716d3197
Remove check_oldhomedir - This information is irrelevant since we always keep home directories of former sysadmins
2020-04-27 15:35:28 +02:00
c436480014
Add check_pfenabled function
2020-04-27 15:30:42 +02:00
Jérémy Lecour
Jérémy Dubois
Brice Waegeneire
Ludovic Poujol
Eric Morino
Tristan PILAT
Benoît S.