mtrossevin/ansible-roles
1
0
Fork 0
forked from evolix/ansible-roles
Code Issues Pull requests Releases Wiki Activity
2207 commits 14 branches 0 tags 6.5 MiB
Commit graph

2207 commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mathieu Trossevin 0618c18b4e
Update changelog: force lxc containers to be in correct TZ 2020-10-20 17:20:31 +02:00
Mathieu Trossevin 4295383d43
Merge branch 'unstable' into change_timezone 2020-10-20 17:19:06 +02:00
Ludovic Poujol c8d4da532f evoacme: Don't ignore hooks with . in the name (ignore when it's ".disable") 2020-10-20 10:58:51 +02:00
Ludovic Poujol 9e5d041210 dovecot: Update munin plugin & configure it 2020-10-20 10:56:41 +02:00
Jérémy Lecour d80461e39a redis: variable to force use of port 6379 in instances mode 2020-10-19 16:03:58 +02:00
Ludovic Poujol 995cb6d9a2 dovecot: Update munin plugin & configure it 2020-10-16 15:33:52 +02:00
Ludovic Poujol 45835d3349 nextcloud: Install version 20 instead of 19 2020-10-16 15:25:49 +02:00
Jérémy Lecour 9bb7379e32 filebeat: add logstash output variables 2020-10-16 10:47:24 +02:00
Ludovic Poujol 929f258bf8 nextcloud: New role 2020-10-02 16:51:05 +02:00
Eric Morino 4f7c0d6e69 Add TransfertLog to sftp and ftps configuration 2020-09-22 10:08:45 +02:00
Jérémy Lecour 8b48552e36 Release 10.2.0 2020-09-17 14:06:46 +02:00
Jérémy Lecour 3e67d92fd3 certbot: an empty change shouldn't raise an exception 2020-09-16 12:07:27 +02:00
Jérémy Lecour 48174ad618 evoacme: remount /usr if necessary 2020-09-14 11:31:47 +02:00
Jérémy Lecour 4007b14c09 whitespaces 2020-09-14 11:17:54 +02:00
Jérémy Lecour b818c348c2 evoacme: remove Debian 9 support 2020-09-11 11:09:45 +02:00
Ludovic Poujol f9d6fe0ad4 evolinux-base: install wget 2020-09-10 14:59:19 +02:00
Jérémy Lecour c7151a8de8 certbot: fix "no-self-upgrade" option 2020-09-08 10:02:15 +02:00
Jérémy Lecour 37ed5dd393 evolinux-base: swappiness is customizable 2020-09-01 14:08:39 +02:00
Jérémy Lecour afa0fd35c8 Change default public SSH/SFTP port from 2222 to 22222 2020-08-28 18:32:47 +02:00
Jérémy Lecour d0622c6b20 tomcat: root directory owner/group are configurable 2020-08-27 17:12:34 +02:00
Jérémy Lecour 7413a242a8 Release 10.1.0 2020-08-21 14:50:17 +02:00
Jérémy Lecour 44ddc8047d evoacme: disable empty task for hooks 2020-08-21 14:21:28 +02:00
Jérémy Lecour 1e6d6cdd13 sort lines in CHANGELOG 2020-08-21 14:03:41 +02:00
Jérémy Lecour f49bf5c72d evoacme: use Let's Encrypt deploy hooks instead of evoacme hooks 2020-08-21 14:02:07 +02:00
Jérémy Lecour a60deb276b evoacme: upstream release 20.08 2020-08-21 14:01:06 +02:00
Jérémy Lecour 8ea1bac000 evoacme: update for new certbot role 
* certbot is installed by the certbot role
* Apache/Nginx configuration is delegated to the certbot role
* No more "acme" user, everything is done with "root".
 2020-08-21 13:36:24 +02:00
Benoît S. a8095b1c36 Updated CHANGELOG.md with recent merges 2020-08-20 15:49:22 +09:00
Jérémy Lecour 5c4daf3691 Merge remote-tracking branch 'origin/generateldif-patch' into unstable 2020-08-19 14:53:10 +02:00
Jérémy Lecour d457b25c4b Merge remote-tracking branch 'origin/nagios-nrpe-amavis-update' into unstable 2020-08-19 14:52:04 +02:00
Jérémy Lecour 7eed6d0255 Merge remote-tracking branch 'origin/squid-sa-update-domains' into unstable 2020-08-19 14:51:50 +02:00
Jérémy Lecour 221e9edc10 Merge branch 'nagios-nrpe-check-hpraid' into unstable 2020-08-19 14:49:22 +02:00
Jérémy Lecour 57ac4e467c metricbeat: allow using a template 2020-08-18 14:01:09 +02:00
Jérémy Lecour ce35f7292f filebeat: allow using a template 2020-08-18 14:00:46 +02:00
Ludovic Poujol edbc596511 mongodb: Fix issue introduced by 8aa7f6cf33 2020-07-30 11:31:19 +02:00
Mathieu Trossevin 23a486dc9a
[LXC] Force lxc containers to be in the correct timezone 
Right now lxc containers are in the Etc/UTC timezone, this commit change
it so that they are in the same timezone as the host by copying
/etc/timezone and /etc/localtime (without dereferencing it) inside of
the container.

It might not be able to survive an update of the tzdata package however.
(Debian shouldn't change manual configuration upon update but they chose
to anyways so bear with it).
 2020-07-27 11:53:03 +02:00
Jérémy Lecour eeeb20771a elasticsearch: keep native values 2020-07-21 10:46:34 +02:00
Jérémy Lecour d3e69eeeb5 certbot: fix haproxy hook (ssl cert directory detection) 
It was matching additional parameters.
Now it matches on the first argument after "crt"
 2020-07-21 10:46:01 +02:00
Jérémy Lecour 21b8104654 elasticsearch: configure cluster with seed hosts and initial masters 2020-07-19 11:40:59 +02:00
Jérémy Lecour 9270852349 elasticsearch: set tmpdir before datadir 2020-07-19 11:30:00 +02:00
Jérémy Lecour cea5620568 elasticsearch is compatible with buster 2020-07-17 13:49:07 +02:00
Jérémy Lecour 8aa7f6cf33 mongodb: install custom munin plugins 2020-07-17 13:48:18 +02:00
Benoît S. 1c050b481a evolinux-base: check_hpraid.cron.sh: Fixed wrong <<< usage 2020-07-01 10:18:30 +09:00
Benoît S. 0150e77041 generate-ldif: Patched computerOS detection 2020-06-30 05:11:05 +02:00
Benoît S. 0fd8128f94 generate-ldif: Skip some odd ethernet devices 2020-06-30 04:36:04 +02:00
Benoît S. 0cd889e4fb generate-ldif: Add NVMe disk support 2020-06-30 04:10:03 +02:00
Benoît S. 9a8f1979bc evolinux-base: check_hpraid.cron.sh: Fixed wrong else 
The logic was wrong, an else part was not necessary.
 2020-06-26 17:57:50 +09:00
Benoît S. a28b9558cb evolinux-base: check_hpraid.cron.sh: Better logic and use mail 
First step is to detect errors
Second step is to detect different state

Added mail comand to replace cron output
 2020-06-24 18:57:08 +09:00
Jérémy Lecour 9bdd5ad9e7 haproxy: rotate logs with date extension and immediate compression 2020-06-22 19:02:29 +02:00
Benoît S. de908ae5bd nagios-nrpe: check_amavis: Update regex 
I just installed a Debian Stretch with a pack mail and the check_amavis
was not checking the right regex.

Amavis is returning:
2.7.0 Ok, discarded, id=17556-09 - INFECTED: Eicar-Signature
So the regex should be:
-if ($result =~/2.7.0 Ok, discarded, id=[^,]+ - INFECTED: Eicar-Test-Signature/) {
+if ($result =~/2.7.0 Ok, discarded, id=\S+ - INFECTED: Eicar-Signature/) {
 2020-06-17 12:20:33 +09:00
Benoît S. 1d7d2ce08d squid: Update regex for sa-update domains. 
List of domains is like:

http://sa-update.dnswl.org/ weight=3

http://www.sa-update.pccc.com/ weight=5

http://sa-update.secnap.net/ weight=5

http://sa-update.space-pro.be/ weight=1

http://sa-update.ena.com/ weight=5

http://sa-update.razx.cloud/ weight=5

http://sa-update.fossies.org/ weight=1

http://sa-update.verein-clean.net/ weight=10

http://sa-update.bitwell.fi/ weight=5

http://sa-update.spamassassin.org/ weight=10

They all start sa-update.*, except for http://www.sa-update.pccc.com/.
In that case, we just match sa-update on the domain name.
 2020-06-17 11:25:24 +09:00