summaryrefslogtreecommitdiff
path: root/puppet
AgeCommit message (Collapse)Author
2016-08-08Stricter VPN egress firewall (#8289)Micah
Change-Id: Ie09a6a34dfa8fe3d72568d2de0b208e7d947412f
2016-08-08Disallow intra-client connectivity (#8272).Micah
If you connect to the VPN with a client, you can make direct network connections to the other connected clients. This allows communication to the eip gateways, but disallows any other connections. Change-Id: I73e5bb5715e4d91256cbf95eda8c0ec70aa75f93
2016-08-05Disallow intra-client connectivity (#8272).Micah
If you connect to the VPN with a client, you can make direct network connections to the other connected clients. This allows communication to the eip gateways, but disallows any other connections. Change-Id: I73e5bb5715e4d91256cbf95eda8c0ec70aa75f93
2016-08-04Remove site-apache symlink.Micah
There is no need to keep this symlink around any longer, it was there for older puppet. Change-Id: Ie7a380821d478e5ad69df39f03009d773afb73f3
2016-08-02Set TCP_NODELAY option for couchdb (#8264)Micah
Mochiweb in couchdb by default sets the TCP socket option SO_NODELAY to false. This means that small data sent to the TCP socket, like the reply to a document write request (or reading a very small document), will not be sent immediately to the network - TCP will buffer it for a while hoping that it will be asked to send more data through the same socket and then send all the data at once for increased performance. Setting this increases the couchdb speed significantly. Change-Id: Ib493ef061ff62c9bdee501e44ce2b55990fe14b7
2016-07-21fix site_static's call to passengerelijah
2016-07-21fix couchdb's backupninjaelijah
2016-07-21git subrepo clone https://leap.se/git/puppet_openvpn puppet/modules/openvpnelijah
subrepo: subdir: "puppet/modules/openvpn" merged: "ba7ec7a" upstream: origin: "https://leap.se/git/puppet_openvpn" branch: "master" commit: "ba7ec7a" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "cb2995b"
2016-07-21remove openvpn submoduleelijah
2016-07-19Only use the 'main' repository for apt (#8253)Micah
Change-Id: If39222dc9ec68d1786c70c4b82b740e0a06773c4
2016-07-19Block ip-based helo at MTA (#8139).Micah
Numeric helo is a very strong indicator of spam. When this is blocked, a very significant amount of spam stops. Change-Id: Ieb340190faf37638950d1aa60b52268659e0b7f6
2016-07-19Block MTAs that claim they are 'localhost'.Micah
Nobody should be claiming that they are localhost when they are connecting over smtpd Change-Id: Ifb7df855b4e12021c58b89b2053e31fb10806096
2016-07-13Newest passenger module dont manage munin by defaultvarac
2016-07-13Notify Exec[shorewall_check] not Service[shorew..]varac
Latest shorewall module does `shorewall check` (executed by `Exec[shorewall_check]`) so every related resource change must notify this Exec instead of `Service[shorewall]` as before.
2016-07-12git subrepo clone https://leap.se/git/puppet_systemd puppet/modules/systemdMicah
subrepo: subdir: "puppet/modules/systemd" merged: "6d47fd4" upstream: origin: "https://leap.se/git/puppet_systemd" branch: "master" commit: "6d47fd4" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: If71ec55d9f038b04fcab6d4ce5620db89168f75c
2016-07-12git subrepo clone https://leap.se/git/puppet_check_mk puppet/modules/check_mkMicah
subrepo: subdir: "puppet/modules/check_mk" merged: "aa02571" upstream: origin: "https://leap.se/git/puppet_check_mk" branch: "master" commit: "aa02571" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: I6cb060eb80966dd6ae346f7a8105289caa9ccbaf
2016-07-12git subrepo clone https://leap.se/git/puppet_sysctl puppet/modules/sysctlMicah
subrepo: subdir: "puppet/modules/sysctl" merged: "975852b" upstream: origin: "https://leap.se/git/puppet_sysctl" branch: "master" commit: "975852b" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: Ica1925ea414df32850d0358ae17d6c704ae6fa7d
2016-07-12git subrepo clone https://leap.se/git/puppet_backupninja ↵Micah
puppet/modules/backupninja subrepo: subdir: "puppet/modules/backupninja" merged: "5268a87" upstream: origin: "https://leap.se/git/puppet_backupninja" branch: "master" commit: "5268a87" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: I147608fbb12a35fe83642d4d031009dcc62cecee
2016-07-12git subrepo clone https://leap.se/git/puppet_rsyslog puppet/modules/rsyslogMicah
subrepo: subdir: "puppet/modules/rsyslog" merged: "b8ef11c" upstream: origin: "https://leap.se/git/puppet_rsyslog" branch: "master" commit: "b8ef11c" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: Iee06502c6df609f1a261410742360cec8694dab5
2016-07-12git subrepo clone https://leap.se/git/puppet_vcsrepo puppet/modules/vcsrepoMicah
subrepo: subdir: "puppet/modules/vcsrepo" merged: "4e23209" upstream: origin: "https://leap.se/git/puppet_vcsrepo" branch: "master" commit: "4e23209" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: I72f8ecdef4855ef9da6e1486453b1cdf01bb54a3
2016-07-12git subrepo clone https://leap.se/git/puppet_postfix puppet/modules/postfixMicah
subrepo: subdir: "puppet/modules/postfix" merged: "cce918f" upstream: origin: "https://leap.se/git/puppet_postfix" branch: "master" commit: "cce918f" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: I325a79fe1780ee6a5d61959310cf8e52c9a6896f
2016-07-12git subrepo clone https://leap.se/git/puppet_squid_deb_proxy ↵Micah
puppet/modules/squid_deb_proxy subrepo: subdir: "puppet/modules/squid_deb_proxy" merged: "08bfacc" upstream: origin: "https://leap.se/git/puppet_squid_deb_proxy" branch: "master" commit: "08bfacc" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: I4afe250a7d95c927ee2c1e06f7efd6f733fefe29
2016-07-12git subrepo clone https://leap.se/git/puppet_haproxy puppet/modules/haproxyMicah
subrepo: subdir: "puppet/modules/haproxy" merged: "af322a7" upstream: origin: "https://leap.se/git/puppet_haproxy" branch: "master" commit: "af322a7" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: Iabf2dd01dc00acd7d886420968bda9aab7190770
2016-07-12git subrepo clone https://leap.se/git/puppet_stunnel puppet/modules/stunnelMicah
subrepo: subdir: "puppet/modules/stunnel" merged: "523612f" upstream: origin: "https://leap.se/git/puppet_stunnel" branch: "master" commit: "523612f" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: If384c84c99d9cabc67d2b4b9d7d2fbfa4a47550a
2016-07-12git subrepo clone https://leap.se/git/puppet_tor puppet/modules/torMicah
subrepo: subdir: "puppet/modules/tor" merged: "9981a70" upstream: origin: "https://leap.se/git/puppet_tor" branch: "master" commit: "9981a70" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: I0a876a52bd83914cfd1e06abe9af208dd62e5683
2016-07-12git subrepo clone https://leap.se/git/puppet_nagios puppet/modules/nagiosMicah
subrepo: subdir: "puppet/modules/nagios" merged: "e6fee3c" upstream: origin: "https://leap.se/git/puppet_nagios" branch: "master" commit: "e6fee3c" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: Ib7105f359ea2c3ae6490bff4fcecbede2511eaf0
2016-07-12git subrepo clone https://leap.se/git/puppet_unbound puppet/modules/unboundMicah
subrepo: subdir: "puppet/modules/unbound" merged: "a26b91d" upstream: origin: "https://leap.se/git/puppet_unbound" branch: "master" commit: "a26b91d" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: I83719264de2c716035d34599d541cadd42319b74
2016-07-12git subrepo clone https://leap.se/git/puppet_stdlib puppet/modules/stdlibMicah
subrepo: subdir: "puppet/modules/stdlib" merged: "7112363" upstream: origin: "https://leap.se/git/puppet_stdlib" branch: "master" commit: "7112363" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: I032e3e7c2984bf53b717373df495c039bb6f41b3
2016-07-12git subrepo clone https://leap.se/git/puppet_augeas puppet/modules/augeasMicah
subrepo: subdir: "puppet/modules/augeas" merged: "27e3359" upstream: origin: "https://leap.se/git/puppet_augeas" branch: "master" commit: "27e3359" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: Ifa5c7daf3f1be1793c42f873a267b7498f5c6c0f
2016-07-12git subrepo clone https://leap.se/git/puppet_passenger puppet/modules/passengerMicah
subrepo: subdir: "puppet/modules/passenger" merged: "47fca11" upstream: origin: "https://leap.se/git/puppet_passenger" branch: "master" commit: "47fca11" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: Idba1129126ca0f13a4441e00d7b53e8b4f856825
2016-07-12git subrepo clone https://leap.se/git/puppet_x509 puppet/modules/x509Micah
subrepo: subdir: "puppet/modules/x509" merged: "19254a3" upstream: origin: "https://leap.se/git/puppet_x509" branch: "master" commit: "19254a3" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: Ia024613b147d34a7b4c888818da08152a2fa63dc
2016-07-12git subrepo clone https://leap.se/git/puppet_ruby puppet/modules/rubyMicah
subrepo: subdir: "puppet/modules/ruby" merged: "9ccd853" upstream: origin: "https://leap.se/git/puppet_ruby" branch: "master" commit: "9ccd853" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: I8f8437218403894682afbadd714f2e4efb72f018
2016-07-12git subrepo clone https://leap.se/git/puppet_rubygems puppet/modules/rubygemsMicah
subrepo: subdir: "puppet/modules/rubygems" merged: "510a369" upstream: origin: "https://leap.se/git/puppet_rubygems" branch: "master" commit: "510a369" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: Id2668c747e7d8b0a73415180baee9edece1017db
2016-07-12git subrepo clone https://leap.se/git/puppet_bundler puppet/modules/bundlerMicah
subrepo: subdir: "puppet/modules/bundler" merged: "bacec3e" upstream: origin: "https://leap.se/git/puppet_bundler" branch: "master" commit: "bacec3e" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: I7596e2c4abf326acbce2a01c363e9694626e230f
2016-07-12git subrepo clone https://leap.se/git/puppet_apache puppet/modules/apacheMicah
subrepo: subdir: "puppet/modules/apache" merged: "415e950" upstream: origin: "https://leap.se/git/puppet_apache" branch: "master" commit: "415e950" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: Iba7353669969a09c0b4bbd63add67e3245b05ede
2016-07-12git subrepo clone https://leap.se/git/puppet_couchdb puppet/modules/couchdbMicah
subrepo: subdir: "puppet/modules/couchdb" merged: "76ff149" upstream: origin: "https://leap.se/git/puppet_couchdb" branch: "master" commit: "76ff149" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: I9ccb1a9dfdaa083814ea395132c42a778052f59b
2016-07-12git subrepo clone https://leap.se/git/puppet_resolvconf ↵Micah
puppet/modules/resolvconf subrepo: subdir: "puppet/modules/resolvconf" merged: "c7eca07" upstream: origin: "https://leap.se/git/puppet_resolvconf" branch: "master" commit: "c7eca07" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: I41a76bde0943f76786b7a67c3b9ee4a6b4db7f28
2016-07-12git subrepo clone https://leap.se/git/puppet_shorewall puppet/modules/shorewallMicah
subrepo: subdir: "puppet/modules/shorewall" merged: "06e89ed" upstream: origin: "https://leap.se/git/puppet_shorewall" branch: "master" commit: "06e89ed" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: Ief531c1b951e9a1573d31bd9718cc5df11706af5
2016-07-12git subrepo clone https://leap.se/git/puppet_common puppet/modules/commonMicah
subrepo: subdir: "puppet/modules/common" merged: "ae14962" upstream: origin: "https://leap.se/git/puppet_common" branch: "master" commit: "ae14962" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: I82a15d5ab5c4e8f689f73de4e5ae97557f39b6fb
2016-07-12git subrepo clone https://leap.se/git/puppet_git puppet/modules/gitMicah
subrepo: subdir: "puppet/modules/git" merged: "ba5dd8d" upstream: origin: "https://leap.se/git/puppet_git" branch: "master" commit: "ba5dd8d" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: Ic7edc42aa0639e51cfa1873ec265e20e25f0a4f4
2016-07-12git subrepo clone https://leap.se/git/puppet_ntp puppet/modules/ntpMicah
subrepo: subdir: "puppet/modules/ntp" merged: "8a554ab" upstream: origin: "https://leap.se/git/puppet_ntp" branch: "master" commit: "8a554ab" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: I6132c417d321ed4f48cc3cd52d4050603fada61a
2016-07-12git subrepo clone https://leap.se/git/puppet_lsb puppet/modules/lsbMicah
subrepo: subdir: "puppet/modules/lsb" merged: "bac64e7" upstream: origin: "https://leap.se/git/puppet_lsb" branch: "master" commit: "bac64e7" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: Ia48799c5442c7b930952fdb822bd80d796eab321
2016-07-12git subrepo clone https://leap.se/git/puppet_apt puppet/modules/aptMicah
subrepo: subdir: "puppet/modules/apt" merged: "33c61e8" upstream: origin: "https://leap.se/git/puppet_apt" branch: "master" commit: "33c61e8" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: I6515ec49bbacdffd9f3729d486d2868162f9ac78
2016-07-12git subrepo clone https://leap.se/git/puppet_sshd puppet/modules/sshdMicah
subrepo: subdir: "puppet/modules/sshd" merged: "76f4f87" upstream: origin: "https://leap.se/git/puppet_sshd" branch: "master" commit: "76f4f87" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: Icf616796837cdbe40deb188d2b72f1c726c9e807
2016-07-12git subrepo clone https://leap.se/git/puppet_concat puppet/modules/concatMicah
subrepo: subdir: "puppet/modules/concat" merged: "abce128" upstream: origin: "https://leap.se/git/puppet_concat" branch: "master" commit: "abce128" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: Ic28e31bdc5b32fd6c55636bc35d9ca2967daf997
2016-07-12git subrepo clone https://leap.se/git/puppet_openvpn puppet/modules/openvpnMicah
subrepo: subdir: "puppet/modules/openvpn" merged: "26d4edc" upstream: origin: "https://leap.se/git/puppet_openvpn" branch: "master" commit: "26d4edc" git-subrepo: version: "0.3.0" origin: "https://github.com/ingydotnet/git-subrepo" commit: "1e79595" Change-Id: I596766ccfb806b3ca2d1c755c4e24c5ad3d997f9
2016-07-12remove submodules in preparation for move to subreposMicah
Change-Id: Ia7655153b556337f676e3d909559c4a7306bedd6
2016-07-05Use DANE/TLSA validation in postfix (#8141).Micah
Configure DNSSEC validation for client verification, giving us a stronger form of opportunistic TLS Change-Id: Iab92d4f593c4a5a44e3b694295096b0d7f687a37
2016-07-05set domain-secure to internal domain.Micah
Without this set, dnssec will fail validation for internal domains, which should not be validated Change-Id: I8589332598fe97ad5218dd23825ac77af2d8def6
2016-07-05Enable DNSSEC validation in unbound (#8214).Micah
Change-Id: Ibdf39a721162b4a5663ef27c27b2db0261c6e8a5
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-28 07:59:18 +0000