Commit graph

1101 commits

Author SHA1 Message Date
a24fb12c21
bundles/apt: introduce restart_triggers (restart services if another service has been upgraded)
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2021-04-02 08:12:51 +02:00
7ca24d27d3
bundles/apt: add a bit of code to remove old, unused kernel images 2021-04-02 08:11:17 +02:00
8a0c8f32ae
bundles: less Restart=on-failure, more Restart=always 2021-04-02 08:05:33 +02:00
5b276368b8
bundles/wireguard: iptables/bundle_rules should be a list
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-04-01 17:13:24 +02:00
17f9aa9c3e
bundles/icinga2: disable command module
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-04-01 17:12:35 +02:00
c5eb2f4f70
bundles/icinga2: do not send recovery emails 2021-04-01 17:11:42 +02:00
763a071acc
nodes/htz.ex42-1048908: update mautrix-whatsapp to 0.1.6
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-04-01 17:03:42 +02:00
957cac5ebc
bundles/postfix: disable SPAM BLOCKLIST check if relayhost is set 2021-04-01 17:00:53 +02:00
3481d4e13c
have ovh systems relay mail via htz.ex42-1048908, too 2021-04-01 17:00:23 +02:00
61c6188454
bundles/postfix: mynetworks now supports identifiers 2021-04-01 16:59:49 +02:00
b7222e2cd1
bundles/systemd-networkd: fix typo in routes
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-04-01 16:31:57 +02:00
6e423c24fb
bundles/wireguard: rework metadata.py
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2021-04-01 16:27:31 +02:00
b679f568eb
bundles/systemd-networkd: no need for a specific order in /etc/systemd/network/ 2021-04-01 16:26:06 +02:00
d787f8b0a3
bundles/systemd-networkd: rework routes 2021-04-01 16:25:24 +02:00
b52a196c73
bundles/nginx: add configuration option for client_max_body_size
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-30 21:26:25 +02:00
b7583bc8cc
nodes/voc.pretalx: install some plugins
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-30 19:52:31 +02:00
da9fe36646
bundles/pretalx: support installing plugins 2021-03-30 19:52:03 +02:00
8503a4a946
nodes/htz.ex42-1048908: update travelynx to 1.19.9
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-30 18:22:35 +02:00
e924cc1322
nodes/htz.ex42-1048908: update element-web to 1.7.24 2021-03-30 18:22:19 +02:00
72831ee386
nodes/home.nas: one cronjob for permissions instead of three
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-28 16:44:01 +02:00
7345543fa2
bundles/mx-puppet-discord: remove logging to files, disable presence logging
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-28 11:29:16 +02:00
c388d5ea1e
bundles/postgresql: fix restart dependencies
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-28 09:39:08 +02:00
35e4bbf04b
bundles/postfix: remove postscreen usage
All checks were successful
bundlewrap/pipeline/head This commit looks good
postscreen isn't able to share its cache file between
instances, which leads to the server simply accepting
mails for the port on which postscreen starts up later.
Since we can't predict which port this will be, we
simply remove postscreen alltogether.

Yes, i know i could just remove postscreen for port 2525.
2021-03-28 09:00:37 +02:00
ce39850bda
bundles/postfix: fix .provides() for iptables reactor
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-28 08:56:22 +02:00
9fe4e2933d
bundles/postfix: add firewalling for port 2525
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2021-03-28 08:37:51 +02:00
a4b2dc29a9
bundles/miniflux: don't clean up old entries
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-28 08:04:41 +02:00
85d9b9fdac
nodes/htz-cloud.sewfile: move seafile data to zfs
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-27 14:03:33 +01:00
0ca57e8e24
nodes/htz-cloud.sewfile: also backup mysql database
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-27 13:49:23 +01:00
39c1d34bbb
bundles/sshmon: fix disk space usage limits 2021-03-27 12:07:49 +01:00
8f0f635484
bundles/basic: change load graph for cpu graph 2021-03-27 12:06:12 +01:00
568a31586f
bundles/apt: fix permissions for /etc/kernel/postinst.d/unattended-upgrades
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-27 08:31:29 +01:00
f514e200f0
bundles/mautrix-whatsapp: restart bridge daily again
All checks were successful
bundlewrap/pipeline/head This commit looks good
It seems neither WhatsApp nor WhatsApp Web are designed for 24/7
connections, thus leading to all kinds of weird side effects like
"Bridge thinks it's connected, but no messages get through at all"
or "WhatsApp is running, but the Bridge can't connect to it"
2021-03-27 08:21:41 +01:00
83db4ba886
nodes/home.nas: add firewalling for yate sip server
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-26 18:55:20 +01:00
f98720b57b
bundles/dhcpd: sort dchp leases by ip in bash alias
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-26 09:27:52 +01:00
8d7e5d3f66
nodes/htz.ex42-1048908: update matrix-media-repo to 1.2.6
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-26 09:06:35 +01:00
65490b1d20
bundles/apt: log stdout and stderr separately in upgrade-and-reboot
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-26 09:02:48 +01:00
4bd61fedde
nodes/htz.ex42-1048908: update gitea to 1.13.6
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-25 17:44:55 +01:00
27753d50c4
bundles/postfix: use threading in check_spam_blocklist
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-25 17:42:59 +01:00
fdcec012f3
bundles/postfix: add SPAM BLOCKLIST check for every non-private IP attached to the server
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-22 20:24:14 +01:00
b99176be49
bundles/kodi: add iptables rules
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-21 19:10:49 +01:00
75f5c58764
dns/franzi.business: fix matrix federation port in SRV record
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-21 18:12:27 +01:00
50438d940e
nodes/htz.ex42-1048908: update gitea to 1.13.5
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-21 17:55:43 +01:00
28dd9694af
add bundle:oidentd
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-21 17:40:58 +01:00
6a6198c9b9
bundles/wireguard: move iptables rules to metadata reactor
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-21 15:26:29 +01:00
559f743ce2
nodes/voc.pretalx: no localized strings in website_check_string
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-21 12:59:08 +01:00
691c3e7bc2
iptables: add some missing rules
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-21 12:27:03 +01:00
087bc4c669
nodes: iptables for all
All checks were successful
bundlewrap/pipeline/head This commit looks good
2021-03-21 11:44:52 +01:00
3bc5e55400
bundles/iptables: don't apply iptables rules if a rules file is missing 2021-03-21 11:44:27 +01:00
4b00c8b55a
bundles/unbound: do not bind to 0.0.0.0 if qemu is installed 2021-03-21 11:43:53 +01:00
5a0aa82ec9
bundles/powerdns: fix missing imports 2021-03-21 11:43:17 +01:00