Commit graph

1062 commits

Author SHA1 Message Date
652fb72ccc
bundles/postfix: fix metadata reactor for letsencrypt 2020-11-11 08:35:36 +01:00
ea55a02215
nodes/htz-cloud.pirmasens: configure postfix, dovecot, rspamd, postfixadmin
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2020-11-10 20:35:35 +01:00
9dd7589f12
bundles/postfix: add submission_header_cleanup file 2020-11-10 20:34:27 +01:00
8180769120
bundles/postfix: add postmaster alias 2020-11-10 20:32:39 +01:00
f9bd2d695d
bundles/postfix: add SPAM BLOCKLISt for every non-private IP attached to the server
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-10 14:28:12 +01:00
aad1a742b7
bundles/icinga2: add ipv6-capable check_rbl script 2020-11-10 14:26:07 +01:00
f30aa48eca
bundles/icinga2: add sshmon private key
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-10 13:43:46 +01:00
a176a1aa65
bundles/icinga2: introduce, install checks, install sources.list, create postgres database
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-10 13:37:27 +01:00
a9c00409b4
bundles/mautrix-telegram: fix item dependency error
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-10 13:26:03 +01:00
6cd02dc563
bundles: move non-login users to items.py
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2020-11-10 13:24:07 +01:00
d0647b2e3c
nodes/htz.ex42-1048908: remove legacy users 2020-11-10 13:13:44 +01:00
cca4fec761
bundles/users: get default user data from users.json 2020-11-10 13:12:36 +01:00
c090a9c2c2
bundles/users: move root user to metadata 2020-11-10 12:50:08 +01:00
16e8c4fd00
scripts/passwords-for: sort metadata 2020-11-10 12:49:47 +01:00
3fbe32518a
bundles/postgresql: rename users -> roles
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-10 12:37:58 +01:00
d087cea869
bundles/gitea: add monitoring 2020-11-10 11:32:59 +01:00
985f47ca99
bundles/miniflux: add monitoring 2020-11-10 11:28:40 +01:00
a185e027f8
nodes: add website checks to nginx vhosts 2020-11-10 11:26:49 +01:00
8cb997133a
bundles/nginx: add monitoring
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-10 10:57:04 +01:00
65a8efc97f
bundles/zfs: fix monitoring metadata
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-10 10:35:01 +01:00
f80896fa3b
bundles/postfix: add monitoring 2020-11-10 10:21:37 +01:00
420cea15d2
bundles/apt: add monitoring for unattended upgrades 2020-11-10 09:50:20 +01:00
3088ae0ba0
bundles/sshmon: add key, add to all nodes 2020-11-10 09:15:51 +01:00
ca922ef5f7
scripts: add encrypt_file and passwords-for 2020-11-10 09:15:28 +01:00
2e2c504111
groups/ovh: make sure default user is gone 2020-11-10 08:59:54 +01:00
6ca0d863b1
bundles/sudo: use sudoers.d
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-09 20:39:35 +01:00
c7362df6c4
bundles/sshmon: import from work repository 2020-11-09 20:31:06 +01:00
eaf268aea9
libs/tools: change resolve_identifier() to return ipv4 and ipv6 separately
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-09 18:46:37 +01:00
67386d9efa
bundles/cron: provide some environment, also manage /etc/crontab
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-09 18:24:01 +01:00
1ffe8bd23e
nodes/htz.ex42-1048908: update travelynx to 1.18.8 2020-11-09 17:03:13 +01:00
a58c5877bf
bundles/gce-workaround: uninstall gce-disk-expand, too
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-09 16:48:28 +01:00
4921e0b74f
bundles/systemd-networkd: use correct syntax for resolv.conf 2020-11-09 16:47:56 +01:00
2e56feb27d
nodes/ovh.icinga2: introduce
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-09 16:40:15 +01:00
bd89cd4cb5
groups/locations: sort groups, add nameservers for google and home, add ovh 2020-11-09 16:39:57 +01:00
6f87a1d240
bundles/systemd-networkd: also deploy resolv.conf 2020-11-09 16:38:59 +01:00
394424951f
bundles/systemd-networkd: fix naming of GatewayOnlink 2020-11-09 16:38:35 +01:00
78047da04a
bundles/postgresql: only install packages after we have a zfs dataset 2020-11-09 16:37:00 +01:00
5bd642236c
bundles/postfix: only call newaliases if we already have postfix installed 2020-11-09 16:36:26 +01:00
607da9d39b
bundles/powerdns: user resolve_identifier() for node-dns-entries 2020-11-09 15:37:48 +01:00
kunsi
5ffaa9b1c8 Merge pull request 'bundle/systemd-networkd' (#4) from interface-configuration into main
All checks were successful
bundlewrap/pipeline/head This commit looks good
Reviewed-on: https://git.kunsmann.eu/kunsi/bundlewrap/pulls/4
2020-11-09 14:27:51 +00:00
44414f2375
libs/tools: adjust resolve_identifier() to new interface config 2020-11-09 15:23:44 +01:00
d90c9edc22
nodes: fix interface config 2020-11-09 15:16:29 +01:00
91fd33cfa0
bundles/systemd-networkd: better dhcp support 2020-11-09 14:58:09 +01:00
5e7c7671e0
bundles/systemd-networkd: proper config 2020-11-09 14:48:19 +01:00
fbb4e2f7a5
systemd-networkd: first draft 2020-11-09 14:08:32 +01:00
aa477322ac
dns: deploy TLS-RPT for domains we're doing mail for
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-09 13:18:09 +01:00
c3c510c609
bundles/mautrix-telegram: disable parallel file transfers for now 2020-11-09 13:17:38 +01:00
f96c53ee8a
nodes/htz.ex42-1048908: fix matrix.franzi.business nginx config 2020-11-09 13:06:03 +01:00
835da4db4d
dns: remove wildcard entries
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-09 12:37:58 +01:00
ea10ed96e5
dns: fix DMARC records, fix SPF
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-09 12:17:26 +01:00