Age | Commit message (Collapse) | Author |
|
Shorewall in jessie doesn't come with a proper unit file, and
as a result, it doesn't properly start with systemd.
To solve this, we provide the systemd unit file that comes with stretch,
add a systemd submodule that provides the exec resources needed for when
systemd units or configuration files are changed
Change-Id: I861fa951835928b4741abfbf969adcee4b8f147b
|
|
|
|
- ignore puppet lint error about inheriting from different namespace
|
|
If clamd is not running, the helpful cronjob tries to start it again,
but the way it is being started can only be run as root, and the cronjob
is run as the clamav user, so you get an error on each cron run. This
fixes that problem
Change-Id: I4cdb29dc651bee8a2eef1655ad4748d885afae0f
|
|
|
|
I used `puppet-lint -f FILE` to fix most issues, while
finishing with manual intervention.
|
|
Change-Id: I23d7fcea3755e9ecab561ecf69d8a6ecb8bdeca4
|
|
Have openvpn logs go to /var/log/leap/openvpn_$protocol, instead of to
/var/log/daemon.log.
Change-Id: I1fc33de660648ab0dba1ce98de2864649c104719
|
|
stunnel server logs were not going to /var/log/stunnel4/*, but to
/var/log/syslog instead. This was different from stunnel client
logging, now its the same.
Change-Id: I2dc2024b77dbb65554fc7865b0e46aedf930c6d8
|
|
Add a site_rsyslog config that removes duplicate mail logging.
Previously mail logs would be copied to /var/log/syslog, mail.log,
mail.err, mail.info, maillog and to the console. This removes those and
only puts them in /var/log/mail.log.
It also removes other superfluous configurations, either because they
are commented out already, or because they are uucp or nntp.
Change-Id: Ib05036787d2c818bf8802c22a4b8050f945a6e6d
|
|
In order for postfix to access the opendkim milter socket, we need to
remove the chroot option for the cleanup service.
See e97a9d3800b173375a630e18e4b1aa0894eb96e1 for opendkim
implementation.
Change-Id: I2742650965e61273fb804ebe9ce3f9bd38796582
|
|
|
|
|
|
It failed to calculate the sessions and tokens db names.
- Resolves: #7658
|
|
By default, Puppet installs recommended packages.
We turn this off for all apt Package resources.
|
|
|
|
|
|
|
|
This reverts commit 0aebb4c41f96f6ad7a7e8a3b07eaffa1f9075f51.
We enabled systemd as puppet service default provider, but this results
in these services falsely detected as not running, and restarted on
every deploy.
We need to indivually configure systemd as service provider only for
those services that ship a systed unit file.
see #7966 for details
|
|
|
|
defined.
|
|
https://gitlab.com/shared-puppet-modules-group/tor/merge_requests/3)
Change-Id: I7905bedc0256bc1c7b9d7316584c9622b92b7670
|
|
Change-Id: I886b104b1caf561477361e382dae54d718ea88c2
|
|
Change-Id: If493b8a1f06a786df36a28aa1fc592e270eba639
|
|
Change-Id: I0ed4827bc53da280d9ed62ea71382ca302ce6924
|
|
Change-Id: I328aa37b393817e1764ea7e635fcefc801adbbf4
|
|
- Related: #2327
|
|
|
|
- Resolves: #7785
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Change-Id: I0305e33c743c15ec38abcf66979a1b2f582f693c
|
|
Change-Id: I5f04e31e49642597c69895b5aca3ff5326dfd6ec
|
|
Even when the service provider defaults to systemd in
latest puppet, it still defaults to 'debian' in puppet
3.7.2 (jessie version).
We dropped wheezy support so we should use the systemd provider
for now.
https://docs.puppetlabs.com/puppet/latest/reference/type.html#service-provider-systemd
|
|
- Resolves: #7948
|
|
|
|
|
|
|
|
ownership reset on each deploy.
|
|
|
|
Use purging of nagios resources in a way that not
all resources are recreated on every puppetrun.
Resolves: #2327
|
|
|
|
|
|
|