leap_platform.git - [leap

Age	Commit message (Collapse)	Author
2017-02-27	Install stunnel4 from jessie-backports	varac
	The jessie version randonly closes the connection prematurely see https://0xacab.org/leap/platform/issues/8746 - Resolves: #8746
2016-06-16	switch to two-space soft tabs to fix lint error	Micah
	Change-Id: Ic12b243b195e40482a70dd70219212c3697899ba
2016-06-16	make sure required x509 bits are there before stunnel is started	Micah
	Change-Id: I772c3b6e489e3c1848c45c6bcaa240324fc88928
2016-04-25	[style] lint further more	varac
	- ignore puppet lint error about inheriting from different namespace
2016-04-18	[style] lint some custom manifests	varac
	I used `puppet-lint -f FILE` to fix most issues, while finishing with manual intervention.
2016-04-12	Log stunnel server logs same as client (#8021)	Micah
	stunnel server logs were not going to /var/log/stunnel4/*, but to /var/log/syslog instead. This was different from stunnel client logging, now its the same. Change-Id: I2dc2024b77dbb65554fc7865b0e46aedf930c6d8
2015-04-16	stunnel shouldn't use syslog, and leap_mx can't.	elijah

2015-04-16	clean up logging mess: add 'logfile' define, mv openvpn and stunnel logs to ↵	elijah
	their own files, fix mx logwatch path.
2014-11-20	Make sure that stunnel restarts when cert/key change (#6181)	Micah Anderson
	Change-Id: I5085247a87018e18e73833119ac73225afbfea1e
2014-11-02	add missing TLSv1 sslversion parameter to site_stunnel::serviers	Micah Anderson
	Change-Id: I48dc8135943393bd11c7181853985f4a5799011e
2014-10-27	Change stunnel default sslversion to be TLSv1, instead of the default	Micah Anderson
	SSLv3 (#6261) Change-Id: I7ab5a6455e434f8359169d31febed8b92f84bbcc
2014-06-25	stunnel: make site_mx and site_webapp use new site_stunnel	elijah

2014-06-25	new generic system for stunnel: just `include site_stunnel` and stunnel + ↵	elijah
	needed shorewall will be automatically set up. requires new leap_cli
2014-04-24	change stunnel::service to 'subscribe' instead of 'require' the X509	Micah Anderson
	cert/key. This has the same effect of 'require' because both make sure that the mentioned resource(s) will be applied before this resource, but subscribe will cause this resource to refresh anytime the subscribed resources change (#4342) Change-Id: I9470bb36f135b821b67a1da70c472d7687b08718
2014-02-27	check syslog for stunnel failures	varac

2013-09-24	seperate cert and key deployment (#3918)	varac

2013-09-19	Depend services on deployment of default key, cert and ca (Feature #3838)	varac

2013-09-13	setup stunnel config to use default x509 cert,key+ca (#3837)	varac
	* fix stunnel setups for couchdb, mx, webapp services
2013-09-13	remove x509::ca for leap_ca in site_openvpn::keys and site_stunnel::stunnel ↵	varac
	(#3817)
2013-09-13	use define instead of class for site_stunnel::setup (#3817)	varac
	so it can be called multiple times
2013-04-04	pass $ca_name to stunnel::setup - this eliminates a dynamic scoped variable ↵	Micah Anderson
	lookup, and warning
2013-04-03	switch stunnel module to our version which has been modified for 2.7 ↵	Micah Anderson
	parameterized classes and qualified variables update our stunnel class instantiation to be parameterized
2013-04-02	lint so default options are together	Micah Anderson

2013-04-02	make site_stunnel::clients connect_port configurable	varac

2013-04-02	moving generic stunnel config from site_webapp to site_stunnel now working	varac

2013-04-02	moved generic stunnel config from site_webapp to site_stunnel	varac

2013-03-14	add a basic site_stunnel that takes care of some generic functionality that ↵	Micah Anderson
	all stunnel client/servers will need handled (at least in debian and ubuntu)