summaryrefslogtreecommitdiff
AgeCommit message (Expand)Author
2014-06-03move hiera from site.pp to site_config::setupChristoph
2014-06-02static site: gracefully handle static sites that are not configured.elijah
2014-06-02static site: better message for wrong location type.elijah
2014-06-02remove superfluous RackBaseURI directiveelijah
2014-06-02work around hiera's inability to escape '%' by using ':percent:'elijah
2014-06-02static site: added rack support, added custom apache configelijah
2014-06-02added templatewlv function (allows passing local variables to templates)elijah
2014-06-02added support for /provider.json served from static site.elijah
2014-06-02fix unbound: configs in /etc/unbound/unbound.conf.d contained a syntax error ...elijah
2014-05-27Add missing scope to top-level sshd class, passing necessary parametersMicah Anderson
2014-05-27Update sshd submodule to get necessary fixes to enable us to change sshd portMicah Anderson
2014-05-27Switch away from site_config::sshd and instead just include site_sshdMicah Anderson
2014-05-27clarify comments in site_sshd::authorized_keysMicah Anderson
2014-05-24Merge remote-tracking branch 'cz8s/feature/allow_webapp_and_mx_on_one_host' i...Micah Anderson
2014-05-24move haproxy-template to modules/site_haproxyChristoph
2014-05-24remove unused variable local_portsChristoph
2014-05-22Implement #2328: unbound.conf: content changed on every puppetrunMicah Anderson
2014-05-22lint cleanup of site_config::caching_resolverMicah Anderson
2014-05-22Install wheezy-backports version of unbound, this is necessary to solve #2328Micah Anderson
2014-05-22Move rsyslog preferences snippet to site_apt::preferences::rsyslog, toMicah Anderson
2014-05-22remove old classesChristoph
2014-05-22fix haproxy config if webapp and mx run on the same hostChristoph
2014-05-21fix resolv.conf on virtualboxChristoph
2014-05-20added support for environmentally scoped services and tags, when using latest...elijah
2014-05-20add support for webapp on subdomainelijah
2014-05-20changed the default service levels to be more minimal, because it is currentl...elijah
2014-05-17fix bug with empty tor familieselijah
2014-05-17static: pin amber version to 0.3.0elijah
2014-05-17fixes #5533 and updates rsyslog Merge branch 'rsyslog_backport' into developkwadronaut
2014-05-17change rsyslog pin from leaps debian repo to backports (fixes #5533)kwadronaut
2014-05-14revert accidental change to webapp config templateAzul
2014-05-14use hash for provider service levelsAzul
2014-05-13Revert "update cipher configuration for openvpn to use the IANA name"Micah Anderson
2014-05-13openvpn server config: script-security should be "1", since we don't need "2"...elijah
2014-05-13added simple shorewall whitebox test (close #5649)elijah
2014-05-08add known issues, making this the canonical place, which we will bringMicah Anderson
2014-05-07openvpn package resource needs to be ensure => latest to accommodate upgradesMicah Anderson
2014-05-06update cipher configuration for openvpn to use the IANA name, due toMicah Anderson
2014-05-06add the tun-ipv6 configuration to the eip-service (#4163)Micah Anderson
2014-05-06Change the initial firewall to subscribe to the rule file to be able toMicah Anderson
2014-05-06set the ipv6 configuration options on the serverMicah Anderson
2014-05-06install openvpn from wheezy-backports, this will bring in openvpn 2.3,Micah Anderson
2014-05-02fix incorrect shorewall parameter name 'protocol', should be 'proto'Micah Anderson
2014-04-29fix missing semicolon, causing syntax errorMicah Anderson
2014-04-29block DNS traffic at the OpenVPN gateway (#4164)Micah Anderson
2014-04-29nagios: make the check_procs tests for leap_mx and soledad be much moreMicah Anderson
2014-04-29require json so we can use it to dumpt the service levelsAzul
2014-04-24bring service_levels into webapp config - #5527Azul
2014-04-24initial firewall: allow port 22 by default. This is the most common portMicah Anderson
2014-04-24create a /var/run/tapicero directory, owned by tapicero:tacpiero to holdMicah Anderson