Mathieu Trossevin
0618c18b4e
Update changelog: force lxc containers to be in correct TZ
2020-10-20 17:20:31 +02:00
Mathieu Trossevin
4295383d43
Merge branch 'unstable' into change_timezone
2020-10-20 17:19:06 +02:00
Ludovic Poujol
c8d4da532f
evoacme: Don't ignore hooks with . in the name (ignore when it's ".disable")
2020-10-20 10:58:51 +02:00
Ludovic Poujol
9e5d041210
dovecot: Update munin plugin & configure it
2020-10-20 10:56:41 +02:00
Jérémy Lecour
d80461e39a
redis: variable to force use of port 6379 in instances mode
2020-10-19 16:03:58 +02:00
Ludovic Poujol
995cb6d9a2
dovecot: Update munin plugin & configure it
2020-10-16 15:33:52 +02:00
Ludovic Poujol
45835d3349
nextcloud: Install version 20 instead of 19
2020-10-16 15:25:49 +02:00
Jérémy Lecour
9bb7379e32
filebeat: add logstash output variables
2020-10-16 10:47:24 +02:00
Ludovic Poujol
929f258bf8
nextcloud: New role
2020-10-02 16:51:05 +02:00
Eric Morino
4f7c0d6e69
Add TransfertLog to sftp and ftps configuration
2020-09-22 10:08:45 +02:00
Jérémy Lecour
8b48552e36
Release 10.2.0
2020-09-17 14:06:46 +02:00
Jérémy Lecour
3e67d92fd3
certbot: an empty change shouldn't raise an exception
2020-09-16 12:07:27 +02:00
Jérémy Lecour
48174ad618
evoacme: remount /usr if necessary
2020-09-14 11:31:47 +02:00
Jérémy Lecour
4007b14c09
whitespaces
2020-09-14 11:17:54 +02:00
Jérémy Lecour
b818c348c2
evoacme: remove Debian 9 support
2020-09-11 11:09:45 +02:00
Ludovic Poujol
f9d6fe0ad4
evolinux-base: install wget
2020-09-10 14:59:19 +02:00
Jérémy Lecour
c7151a8de8
certbot: fix "no-self-upgrade" option
2020-09-08 10:02:15 +02:00
Jérémy Lecour
37ed5dd393
evolinux-base: swappiness is customizable
2020-09-01 14:08:39 +02:00
Jérémy Lecour
afa0fd35c8
Change default public SSH/SFTP port from 2222 to 22222
2020-08-28 18:32:47 +02:00
Jérémy Lecour
d0622c6b20
tomcat: root directory owner/group are configurable
2020-08-27 17:12:34 +02:00
Jérémy Lecour
7413a242a8
Release 10.1.0
2020-08-21 14:50:17 +02:00
Jérémy Lecour
44ddc8047d
evoacme: disable empty task for hooks
2020-08-21 14:21:28 +02:00
Jérémy Lecour
1e6d6cdd13
sort lines in CHANGELOG
2020-08-21 14:03:41 +02:00
Jérémy Lecour
f49bf5c72d
evoacme: use Let's Encrypt deploy hooks instead of evoacme hooks
2020-08-21 14:02:07 +02:00
Jérémy Lecour
a60deb276b
evoacme: upstream release 20.08
2020-08-21 14:01:06 +02:00
Jérémy Lecour
8ea1bac000
evoacme: update for new certbot role
...
* certbot is installed by the certbot role
* Apache/Nginx configuration is delegated to the certbot role
* No more "acme" user, everything is done with "root".
2020-08-21 13:36:24 +02:00
Benoît S.
a8095b1c36
Updated CHANGELOG.md with recent merges
2020-08-20 15:49:22 +09:00
Jérémy Lecour
5c4daf3691
Merge remote-tracking branch 'origin/generateldif-patch' into unstable
2020-08-19 14:53:10 +02:00
Jérémy Lecour
d457b25c4b
Merge remote-tracking branch 'origin/nagios-nrpe-amavis-update' into unstable
2020-08-19 14:52:04 +02:00
Jérémy Lecour
7eed6d0255
Merge remote-tracking branch 'origin/squid-sa-update-domains' into unstable
2020-08-19 14:51:50 +02:00
Jérémy Lecour
221e9edc10
Merge branch 'nagios-nrpe-check-hpraid' into unstable
2020-08-19 14:49:22 +02:00
Jérémy Lecour
57ac4e467c
metricbeat: allow using a template
2020-08-18 14:01:09 +02:00
Jérémy Lecour
ce35f7292f
filebeat: allow using a template
2020-08-18 14:00:46 +02:00
Ludovic Poujol
edbc596511
mongodb: Fix issue introduced by 8aa7f6cf33
2020-07-30 11:31:19 +02:00
Mathieu Trossevin
23a486dc9a
[LXC] Force lxc containers to be in the correct timezone
...
Right now lxc containers are in the Etc/UTC timezone, this commit change
it so that they are in the same timezone as the host by copying
/etc/timezone and /etc/localtime (without dereferencing it) inside of
the container.
It might not be able to survive an update of the tzdata package however.
(Debian shouldn't change manual configuration upon update but they chose
to anyways so bear with it).
2020-07-27 11:53:03 +02:00
Jérémy Lecour
eeeb20771a
elasticsearch: keep native values
2020-07-21 10:46:34 +02:00
Jérémy Lecour
d3e69eeeb5
certbot: fix haproxy hook (ssl cert directory detection)
...
It was matching additional parameters.
Now it matches on the first argument after "crt"
2020-07-21 10:46:01 +02:00
Jérémy Lecour
21b8104654
elasticsearch: configure cluster with seed hosts and initial masters
2020-07-19 11:40:59 +02:00
Jérémy Lecour
9270852349
elasticsearch: set tmpdir before datadir
2020-07-19 11:30:00 +02:00
Jérémy Lecour
cea5620568
elasticsearch is compatible with buster
2020-07-17 13:49:07 +02:00
Jérémy Lecour
8aa7f6cf33
mongodb: install custom munin plugins
2020-07-17 13:48:18 +02:00
Benoît S.
1c050b481a
evolinux-base: check_hpraid.cron.sh: Fixed wrong <<<
usage
2020-07-01 10:18:30 +09:00
Benoît S.
0150e77041
generate-ldif: Patched computerOS detection
2020-06-30 05:11:05 +02:00
Benoît S.
0fd8128f94
generate-ldif: Skip some odd ethernet devices
2020-06-30 04:36:04 +02:00
Benoît S.
0cd889e4fb
generate-ldif: Add NVMe disk support
2020-06-30 04:10:03 +02:00
Benoît S.
9a8f1979bc
evolinux-base: check_hpraid.cron.sh: Fixed wrong else
...
The logic was wrong, an else part was not necessary.
2020-06-26 17:57:50 +09:00
Benoît S.
a28b9558cb
evolinux-base: check_hpraid.cron.sh: Better logic and use mail
...
First step is to detect errors
Second step is to detect different state
Added mail comand to replace cron output
2020-06-24 18:57:08 +09:00
Jérémy Lecour
9bdd5ad9e7
haproxy: rotate logs with date extension and immediate compression
2020-06-22 19:02:29 +02:00
Benoît S.
de908ae5bd
nagios-nrpe: check_amavis: Update regex
...
I just installed a Debian Stretch with a pack mail and the check_amavis
was not checking the right regex.
Amavis is returning:
2.7.0 Ok, discarded, id=17556-09 - INFECTED: Eicar-Signature
So the regex should be:
-if ($result =~/2.7.0 Ok, discarded, id=[^,]+ - INFECTED: Eicar-Test-Signature/) {
+if ($result =~/2.7.0 Ok, discarded, id=\S+ - INFECTED: Eicar-Signature/) {
2020-06-17 12:20:33 +09:00
Benoît S.
1d7d2ce08d
squid: Update regex for sa-update domains.
...
List of domains is like:
http://sa-update.dnswl.org/ weight=3
http://www.sa-update.pccc.com/ weight=5
http://sa-update.secnap.net/ weight=5
http://sa-update.space-pro.be/ weight=1
http://sa-update.ena.com/ weight=5
http://sa-update.razx.cloud/ weight=5
http://sa-update.fossies.org/ weight=1
http://sa-update.verein-clean.net/ weight=10
http://sa-update.bitwell.fi/ weight=5
http://sa-update.spamassassin.org/ weight=10
They all start sa-update.*, except for http://www.sa-update.pccc.com/ .
In that case, we just match sa-update on the domain name.
2020-06-17 11:25:24 +09:00