Franzi
b8a109efb0
bundles/sshmon: rewrite check_github_for_new_release
2021-12-22 11:09:26 +01:00
Franzi
38b449af35
bundles/letsencrypt: only run dehydrated after installing it
kunsi/bundlewrap/pipeline/head This commit looks good
2021-12-19 14:17:41 +01:00
Franzi
de3580a7d3
bundles/letsencrypt: ensure-some-certificate shouldn't create 10-year-certs
2021-12-19 06:36:11 +01:00
Franzi
04450d4b4c
bundles/sudo: disable syslog spam
kunsi/bundlewrap/pipeline/head This commit looks good
2021-12-19 06:23:05 +01:00
Franzi
5261375574
bundles/pppd: add systemd-timer to automatically update dyndns
2021-12-19 06:21:04 +01:00
Franzi
376dba347f
bundles/php: allow configuring of memory_limit and clear_env
2021-12-18 18:54:00 +01:00
Franzi
2b06c77439
bundles/pppd: allow dynamic configuration of nftables rules
kunsi/bundlewrap/pipeline/head This commit looks good
2021-12-14 16:18:11 +01:00
Franzi
0101e0c92d
bundles/nftables: store rules in dedicated files instead of nftables.conf
kunsi/bundlewrap/pipeline/pr-main This commit looks good
kunsi/bundlewrap/pipeline/head This commit looks good
2021-12-14 15:27:30 +01:00
Franzi
c6c5d40084
bundles/nftables: add support for restricting to "all ipv6" and "all ipv4"
2021-12-14 12:40:54 +01:00
Franzi
e2efe87308
rx300: update netbox to 3.1.0
2021-12-12 08:36:18 +01:00
Franzi
7eec5c42e3
bundles/icinga2: do not send sms or mail for services when sms/mail was disabled for host
kunsi/bundlewrap/pipeline/head This commit looks good
2021-12-04 20:07:36 +01:00
Franzi
0531ecd217
bundles/gitea: downloading gitea does not need restarting
...
kunsi/bundlewrap/pipeline/head This commit looks good
we're stopping gitea beforehand, then start it again afterwards. No need
to restart it again.
2021-12-04 20:01:35 +01:00
Franzi
d44c87e8a7
move SPAM BLOCKLIST check to icinga2 itself
...
kunsi/bundlewrap/pipeline/head This commit looks good
somehow, we tend to get false positives if we run that check on the
node itself.
2021-11-28 07:26:41 +01:00
Franzi
74f5b25f0d
various fixes, remove some TODOs
2021-11-27 10:40:20 +01:00
Franzi
a76c60f881
bundles/nftables: fix shebang
2021-11-26 18:36:16 +01:00
Franzi
632a1f6e75
voc,pretalx: install plugin lower_thirds
kunsi/bundlewrap/pipeline/head This commit looks good
2021-11-21 09:42:02 +01:00
Franzi
998b776b9f
bundles/kodi: fix .provides()
kunsi/bundlewrap/pipeline/head This commit looks good
2021-11-15 21:45:41 +01:00
Franzi
e4e340e431
bundles/grafana: fix spanning for battery row
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2021-11-15 21:36:45 +01:00
Franzi
52fbcfb43e
bundles/grafana: add some filling to battery row
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2021-11-15 21:31:15 +01:00
Franzi
7969ae9ebe
bundles/grafana: fix value for battery dashboard row
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2021-11-15 21:26:23 +01:00
Franzi
e17d1ab02f
add bundle:telegraf-battery-usage
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2021-11-15 21:18:42 +01:00
Franzi
e10ac0e57f
bundles/matrix-{media-repo,synapse}: catch all them metrics into influxdb
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2021-11-09 18:26:52 +01:00
Franzi
8f6b8632f5
bundles/{element-web,hedgedoc,powerdnsadmin}: use 'yarn install --ignore-scripts'
2021-11-09 18:10:22 +01:00
Franzi
33b6700848
bundles/mautrix-whatsapp: use precompiled binary
2021-11-09 18:10:17 +01:00
Sophie Schiller
eef463afbd
hedgedoc: forbid access to metrics and stats
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2021-11-09 11:58:11 +01:00
Sophie Schiller
55798ac704
hedgedoc: add telegraf config for hedgedoc metrics
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2021-11-09 11:48:03 +01:00
Franzi
0398df8f3a
bundles/openhab: fix website_check_string
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2021-10-31 10:31:13 +01:00
Franzi
0412c9042a
bundles/wireguard: fix stderr handling of wg_health_check
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2021-10-31 09:49:37 +01:00
Franzi
f482874310
home.openhab: install and configure openhab
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2021-10-31 09:43:53 +01:00
Franzi
2f885e7bfb
bundles/kodi: allow websocket port in firewall
2021-10-31 09:43:07 +01:00
Franzi
ee86b5a121
bundles/wireguard: less spammy output for wg_health_check
kunsi/bundlewrap/pipeline/head This commit looks good
2021-10-30 19:36:20 +02:00
Franzi
0a131b4248
bundles/grafana: add voltages and power usage to ipmitool
kunsi/bundlewrap/pipeline/head This commit looks good
2021-10-18 19:48:19 +02:00
Franzi
8300f48541
add bundle:ipmitool, add grafana dashboard row
kunsi/bundlewrap/pipeline/head This commit looks good
2021-10-18 19:42:27 +02:00
Franzi
92b2e19e44
bundles/grafana: fix line width for fans
2021-10-18 19:41:16 +02:00
Franzi
3775bcb9db
bundles/telegraf: add cache directory
2021-10-18 19:34:20 +02:00
Franzi
5885e4b043
bundles/users: add lsb_release and local date to status line
kunsi/bundlewrap/pipeline/head This commit looks good
2021-10-16 07:42:19 +02:00
Franzi
29eef9ec59
htop: fix sorting
2021-10-16 07:38:57 +02:00
Franzi
94cba4283b
bundles/pretalx: fixup cron
kunsi/bundlewrap/pipeline/head This commit looks good
2021-10-15 20:10:46 +02:00
Franzi
86953e60bd
bundles/pretalx: add script to automatically set is_administrator and is_staff based on group membership
kunsi/bundlewrap/pipeline/head This commit looks good
2021-10-15 20:03:15 +02:00
Franzi
095d425de1
bundles/wireguard: do not run wg_health_check during bw apply
2021-10-14 09:02:01 +02:00
Franzi
9188b28b7a
bundles/wireguard: add wg_health_check
kunsi/bundlewrap/pipeline/head This commit looks good
2021-10-14 08:54:54 +02:00
Franzi
61e5591628
bundles/systemd-networkd: fix bridge-in-bridge-setup on home.nas not working properly
kunsi/bundlewrap/pipeline/head This commit looks good
2021-10-11 20:46:07 +02:00
Franzi
8656f99f8e
bundles/wireguard: re-add reconnect script for added resiliency
kunsi/bundlewrap/pipeline/head This commit looks good
2021-09-30 06:37:42 +02:00
Franzi
30d4d989fc
add bundle:bird
2021-09-29 19:45:18 +02:00
Franzi
fe44417b14
bundles/systemd-networkd: add dummy interfaces
2021-09-29 19:44:37 +02:00
Franzi
996ef6e115
bundles/nftables: more sorted()
2021-09-29 19:44:13 +02:00
Franzi
5f1f4fd654
bundles/wireguard: add option 'snat_to' for connections
2021-09-29 19:43:29 +02:00
Franzi
902840ee7f
bundles/wireguard: use one wireguard connection per peer instead of one for all
2021-09-29 19:27:13 +02:00
Franzi
2b0e3a4bf0
bundles/powerdns: use only public ips or those attached to physical interfaces to create dns records
kunsi/bundlewrap/pipeline/head This commit looks good
2021-09-25 11:08:18 +02:00
Franzi
b81153e957
bundles/netbox: fix upgrade command
kunsi/bundlewrap/pipeline/head This commit looks good
2021-09-22 16:43:59 +02:00
Franzi
05d69c1f12
bundles/powerdns: use named-checkzone to verify zone integrity
2021-09-22 16:42:26 +02:00
Franzi
bb8910d15f
bundles/gitea: use metadata.get()
2021-09-22 16:38:27 +02:00
Franzi
b21f7c856a
bundles/gitea: switch to new file type 'download'
2021-09-21 07:55:15 +02:00
Franzi
ed2bb66e3e
bundles/basic: add links to icinga, grafana and nginx vhosts to login message
2021-09-16 19:33:11 +02:00
Franzi
5a7d0b0afd
bundles/icinga2: don't skip everything if check_sipgate_account_balance can't get applied
2021-09-16 19:33:08 +02:00
Sophie Schiller
c9f9a27096
bundle/hedgedoc add new csp defaults
kunsi/bundlewrap/pipeline/head This commit looks good
2021-09-14 20:23:01 +02:00
Sophie Schiller
738dbd94a0
bundle/hedgedoc improve dependencies
2021-09-14 20:23:01 +02:00
Sophie Schiller
481c1c85e5
bundle/nginx set instead of HTTPS
2021-09-14 20:23:01 +02:00
Sophie Schiller
77a14a0017
bundle/hedgedoc remove quoting inconsistencies
kunsi/bundlewrap/pipeline/head This commit looks good
2021-09-11 20:24:10 +02:00
Sophie Schiller
09da9a8d92
bundle/hedgedoc improve config rendering to not produce errors with faults
kunsi/bundlewrap/pipeline/head This commit looks good
kunsi/bundlewrap/pipeline/pr-main Build started...
2021-09-11 20:07:52 +02:00
Sophie Schiller
3d3994789e
bundle/hedgedoc update wbsite check
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2021-09-11 19:56:49 +02:00
Sophie Schiller
478a8da9f4
bundles/hedgedoc add new bundle
2021-09-11 19:47:28 +02:00
Franzi
f77d6df1e5
bundles/matrix-dimension: fix dependencies
kunsi/bundlewrap/pipeline/head This commit looks good
2021-09-08 15:16:00 +02:00
Franzi
05f9712b24
bundles/rspamd: change dmarc reporting sender to working address
kunsi/bundlewrap/pipeline/head This commit looks good
2021-09-08 14:43:22 +02:00
Franzi
de6249c65d
dns: fix some errors
2021-09-06 16:42:14 +02:00
Franzi
78fda4f9e9
bundles/rspamd: do not try to resolve faults in items.py
kunsi/bundlewrap/pipeline/head This commit looks good
2021-09-06 09:28:30 +02:00
Franzi
3039a0900e
bundles/rspamd: add alias for dmarc reports
2021-09-06 09:14:18 +02:00
Franzi
4ca0926546
bundles/rspamd: send dmarc reports
2021-09-06 09:11:36 +02:00
Franzi
43bcd75e87
update netbox to 3.0.1
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2021-09-02 07:52:11 +02:00
Franzi
c7fd6ee041
bundles/grafana: make rspamd row more pretty
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2021-08-25 15:15:09 +02:00
Franzi
2940bfd3d8
bundles/rspamd: add telegraf metrics
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2021-08-23 22:24:59 +02:00
Franzi
3f38497585
bundles/vmhost: add metadata reactor to add all admins to 'libvirt' group
kunsi/bundlewrap/pipeline/head This commit looks good
2021-08-22 07:25:46 +02:00
Franzi
65462ca536
bundles/nginx: default redirect mode should be 308
2021-08-22 07:20:45 +02:00
Franzi
d94df613c5
bundles/netbox: fix ADMINS
kunsi/bundlewrap/pipeline/head This commit looks good
2021-08-21 12:46:55 +02:00
Franzi
c6fe9d5eb2
bundles/postfix: fix .provides()
2021-08-21 12:32:47 +02:00
Franzi
b0d2503f08
add bundle:netbox
2021-08-21 12:32:40 +02:00
Franzi
4cb89d699c
bundles/grafana: fix missing derivative() in dovecot row
2021-08-21 08:39:39 +02:00
Franzi
12ca6f4ff7
bundles/postfix: open up SMTPS
2021-08-21 08:12:21 +02:00
Franzi
3da3c00310
bundles/rspamd: changing of .map files does not need restarting
2021-08-21 07:48:02 +02:00
Franzi
ea9abc5f73
bundles/grafana: add dashboard row for dovecot
2021-08-21 07:47:24 +02:00
Franzi
96f1604879
bundles/dovecot: some fixes
...
- fix postfix/myhostname default
- ensure old_stats plugin is enabled
- ensure permissions for old_stats plugin
- ensure /etc/dovecot/ssl exists
- remove unneeded configuration files
2021-08-21 07:31:22 +02:00
Franzi
8301664d9a
bundles/{grafana,influxdb2}: fix more permissions
kunsi/bundlewrap/pipeline/head This commit looks good
2021-08-20 13:33:28 +02:00
Franzi
72d91767ec
bundles/influxdb: fix INFLUXDB PROCESS check
2021-08-20 13:25:40 +02:00
Franzi
949e139978
bundles/telegraf: influxdata has bullseye repos now
2021-08-20 13:25:22 +02:00
Franzi
f0987ccb44
bundles/unbound: automatically restart unbound if dns resolution fails for more than five minutes
kunsi/bundlewrap/pipeline/head This commit looks good
2021-08-19 20:03:24 +02:00
Franzi
35938ead04
bundles/unbound: less caching of negative results
2021-08-19 20:02:27 +02:00
Franzi
4167d3cb22
update to bw 4.11.2
kunsi/bundlewrap/pipeline/head This commit looks good
2021-08-17 18:10:35 +02:00
Franzi
5bbd188b0b
bundles/pretalx: no sudo for rebuilding
2021-08-17 16:46:58 +02:00
Franzi
d507f6794f
bundles/apt: ensure we have ncurses-term
...
If that's not installed, we get weird drawing issues in tmux.
2021-08-17 16:42:26 +02:00
Franzi
25ea5af2db
bundles/smartd: add cronjob to schedule a monthly long test
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2021-08-15 16:22:34 +02:00
Franzi
bd10dc578f
bundles/pppd: refactor check_dyndns_update
...
kunsi/bundlewrap/pipeline/head There was a failure building this commit
We don't care about what the DNS provider said when updating the ip
address. The only thing we care about is wether the current external ip
of the system matches the resolved ip address.
2021-08-14 08:00:43 +02:00
Franzi
bb519adb2c
bundles/backup-client: more logging, fix wrong variable name
2021-08-08 07:47:07 +02:00
Franzi
c14bb43993
bundles/grafana: fix derivative for wireguard last handshake time
kunsi/bundlewrap/pipeline/head This commit looks good
2021-08-07 23:32:39 +02:00
Sophie Schiller
e8d1582ed4
bw/nginx i hate whitespace
kunsi/bundlewrap/pipeline/head This commit looks good
kunsi/bundlewrap/pipeline/pr-main This commit looks good
2021-08-07 22:01:40 +02:00
Sophie Schiller
6e3603553f
bw/nginx retab everything
kunsi/bundlewrap/pipeline/head There was a failure building this commit
kunsi/bundlewrap/pipeline/pr-main There was a failure building this commit
2021-08-07 21:59:07 +02:00
Sophie Schiller
ab21983a4f
bw/nginx add not found page and deployment of error pages
kunsi/bundlewrap/pipeline/pr-main There was a failure building this commit
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2021-08-07 21:52:39 +02:00
Franzi
d9d98116e6
bundles/grafana: increase proxy_read_timeout for /api/ds/query
kunsi/bundlewrap/pipeline/head This commit looks good
2021-08-07 20:02:57 +02:00
Franzi
0a77b72cd3
update mautrix-whatsapp to 0.1.8
kunsi/bundlewrap/pipeline/head This commit looks good
2021-08-07 18:57:31 +02:00
Franzi
05de574471
bundles/backup-client: sleep a bit if backup did finish non-zero to increase chances of success
2021-08-07 10:30:19 +02:00
Franzi
04cee2b4c3
bundles/icinga2: fix file permissions
kunsi/bundlewrap/pipeline/head This commit looks good
2021-08-07 07:13:41 +02:00
Franzi
