|
40e8445679
|
matrix: increase file size limit
|
2020-06-20 00:20:48 +02:00 |
|
|
fe10cde96b
|
acertmgr: ansible style fix
|
2020-06-20 00:20:19 +02:00 |
|
|
080c3fb495
|
drone-runner: fix another syntax error
|
2020-06-20 00:10:46 +02:00 |
|
|
d0d3fe230a
|
drone-runner: set password, fix syntax error
|
2020-06-20 00:07:46 +02:00 |
|
|
84de43d428
|
gitea: disable gravatar, less log spam, persistent sessions
|
2020-06-19 23:42:22 +02:00 |
|
|
d612d1ac28
|
nginx: enable gzip for proxied responses
|
2020-06-19 23:41:50 +02:00 |
|
|
a065fd4bc8
|
drone: install runner onto bob
|
2020-06-19 23:41:16 +02:00 |
|
|
fe5bdab253
|
drone: move onto gitea server and adjust for gitea
|
2020-06-19 23:39:58 +02:00 |
|
|
c2b529345e
|
nginx: hide version
|
2020-06-18 22:39:30 +02:00 |
|
|
488fb29275
|
gitea: migrate from gogs
|
2020-06-18 22:34:30 +02:00 |
|
|
7a58869a2f
|
fix path of acertmgr handler
|
2020-06-07 15:16:49 +02:00 |
|
|
86bf87405a
|
new host for drone.io
fix path of acertmgr handler
|
2020-06-07 15:16:25 +02:00 |
|
|
9bb3111efc
|
matrix: rebase config against 1.14.0
|
2020-05-30 14:47:22 +02:00 |
|
|
8e5ccda050
|
prometheus: basic proxmox monitoring
|
2020-05-25 16:15:29 +02:00 |
|
|
5a2b3559db
|
jitsi: new role (on host zirconium.binary-kitchen.net)
|
2020-05-20 09:57:18 +02:00 |
|
|
dcadf88ada
|
mail: cleanup
|
2020-05-20 08:37:09 +02:00 |
|
|
3f920c731d
|
mail: don't apply logrotate settings
|
2020-05-20 08:36:25 +02:00 |
|
|
d96e3f20ec
|
mail: fix sieve path name and permissions
|
2020-05-20 08:35:44 +02:00 |
|
|
5067e5371e
|
mail: move vault mapping to group_vars
|
2020-05-20 08:34:22 +02:00 |
|
|
0790c0b737
|
acertmgr: cleanup
|
2020-05-18 19:49:59 +02:00 |
|
|
fb215fdd82
|
mail: make mail_trusted an array
|
2020-05-18 19:10:32 +02:00 |
|
|
9d6ed20d9f
|
librenms: update dependencies
|
2020-05-11 17:42:07 +02:00 |
|
|
35fda6124a
|
dns-intern: openvpn -> wireguard
|
2020-05-11 16:16:07 +02:00 |
|
|
088ee7c6bf
|
matrix: increase max size to 10M
|
2020-04-09 21:38:29 +02:00 |
|
|
11bd9019d9
|
matrix: update config and set max_body_size
|
2020-03-29 11:48:38 +02:00 |
|
|
453537697d
|
coturn: new role for a TURN server to be used with matrix
|
2020-03-16 20:18:59 +01:00 |
|
|
a04c216abe
|
acertmgr: Use latest package from github instead of git checkout
|
2020-02-17 20:44:21 +01:00 |
|
Kishi85
|
fd04a750a5
|
Add excludes to logrotate.d config and update to correct paths
|
2020-02-04 18:35:09 +01:00 |
|
Kishi85
|
4a11950728
|
Update logrotate configs to preserve last 7 days
|
2020-02-03 19:37:43 +01:00 |
|
|
786ecd554f
|
slapd: use root password from vault
|
2020-02-03 19:08:09 +01:00 |
|
|
3e27ad3bde
|
dhcpd: use new secret omapi key
|
2020-02-03 18:38:01 +01:00 |
|
|
f184ca15fe
|
common: limit syslog retention to 7 days
|
2020-02-02 20:57:28 +01:00 |
|
|
d97524798b
|
bk-dss: use ldap_uri instead of ldap_host
|
2020-01-31 19:55:15 +01:00 |
|
|
66d6af74f0
|
matrix: reduce logging
|
2020-01-30 16:31:04 +01:00 |
|
|
1029f41bdc
|
dhcp: replace ap05 mac addr
|
2020-01-27 20:35:45 +01:00 |
|
|
611a14fffb
|
common: set journald retention time to 7days
|
2020-01-27 20:35:23 +01:00 |
|
|
8a25f21a87
|
matrix: rebase homeserver.yaml against 1.9.0
|
2020-01-27 15:28:49 +01:00 |
|
|
9ff516e089
|
matrix: set proper collation/ctype for DB
|
2020-01-22 13:12:21 +01:00 |
|
|
84189d95a1
|
matrix: default name to username
|
2020-01-20 20:49:00 +01:00 |
|
|
6b82d3d92b
|
new host: sodium (matrix) and new role matrix
|
2020-01-20 15:56:29 +01:00 |
|
|
7950c96da2
|
grafana: new role
|
2020-01-08 12:08:06 +01:00 |
|
|
f23d71aa6a
|
new host: strontium (Rocket.Chat)
|
2020-01-08 12:03:28 +01:00 |
|
|
871add3b0e
|
dns/dhcp: add ap05 for testing
|
2019-11-30 22:12:25 +01:00 |
|
|
3ab962ba4d
|
web: add binary.kitchen to vhost config
|
2019-11-30 22:11:40 +01:00 |
|
|
ef9e4352d3
|
slapd: add openssh public key schema
|
2019-11-28 22:40:51 +01:00 |
|
|
7acbf3d066
|
web: add more domains to certificates
|
2019-11-15 16:31:07 +01:00 |
|
|
a4e32cb79b
|
bk-dss: update to 0.8.4
|
2019-11-07 22:32:54 +01:00 |
|
|
909c9ebca6
|
new host: fusilli
|
2019-10-31 19:43:26 +01:00 |
|
|
91d95b190c
|
dns-intern: use future-proof pdns config
|
2019-10-14 18:34:43 +02:00 |
|
|
986392237c
|
uau: install more updates
|
2019-10-14 08:15:37 +02:00 |
|
|
b2f56c709b
|
common: install ipmitool on Proxmox hosts
|
2019-10-09 21:08:48 +02:00 |
|
|
a86081d6d7
|
acertmgr: update to version 1.0.0
|
2019-10-01 08:05:32 +02:00 |
|
|
25fca48dc8
|
new alias: 3dprinter
|
2019-09-30 18:50:41 +02:00 |
|
|
411243aeef
|
new host: noodlehub
|
2019-09-30 18:44:44 +02:00 |
|
|
133838e586
|
radius: fix symlinks that break with debian buster
|
2019-09-23 18:47:23 +02:00 |
|
|
a3675c0cc8
|
hackmd: new upstream URL and version 1.5.0
|
2019-09-18 13:08:08 +02:00 |
|
|
fbe1ac33c3
|
mail: cleanup
|
2019-09-17 13:29:59 +02:00 |
|
|
e0cbf2b760
|
common: remove snmpd
|
2019-09-17 10:16:05 +02:00 |
|
|
939b9ccb4c
|
partdb: update to debian buster / PHP 7.3
|
2019-09-17 08:51:03 +02:00 |
|
|
e31abbb8bb
|
web: switch to PHP 7.3
|
2019-09-12 13:34:05 +02:00 |
|
|
772df6c630
|
common: also clear motd on Proxmox hosts
|
2019-09-12 13:22:19 +02:00 |
|
|
bd06590301
|
nginx: enable TLSv1.3 (relevant VMs have buster)
|
2019-09-12 13:09:52 +02:00 |
|
|
fb81c5ce02
|
common: remove snmp, add acpid (on VMs)
|
2019-09-12 12:00:59 +02:00 |
|
|
ef7177f0ec
|
common: set vm.swappiness on Proxmox hosts
|
2019-09-10 19:14:55 +02:00 |
|
|
3d1a681850
|
librenms: debian buster
|
2019-09-09 19:33:47 +02:00 |
|
|
a6a973c034
|
prosody: make it work with buster
|
2019-09-09 19:09:44 +02:00 |
|
|
8a2ade46cb
|
Remove host apfelkuchen
|
2019-09-07 20:45:11 +02:00 |
|
|
c763264ccd
|
hackmd: update and fix uploads folder link creation
|
2019-09-06 16:17:34 +02:00 |
|
|
4c7d472f2f
|
remove racktables and partially remove snmpd
|
2019-09-03 13:13:03 +02:00 |
|
Kishi85
|
6945b4918c
|
mail: Enable subject privacy for the history module
|
2019-09-03 11:50:08 +02:00 |
|
|
6e593d0feb
|
gogs: switch to debian buster
|
2019-08-30 11:20:40 +02:00 |
|
Kishi85
|
6ce23ca253
|
mail: disable rspamd actions for mail from localhost
|
2019-07-24 10:11:38 +02:00 |
|
Kishi85
|
83afecfd72
|
mail: use srs only for forwards and MDA, not for incoming mails
|
2019-07-24 09:38:01 +02:00 |
|
Kishi85
|
5faf9de93e
|
mail: fix redis config
|
2019-07-23 17:23:14 +02:00 |
|
Kishi85
|
5df4457b0e
|
mail: add postsrsd to stop breaking forwards for SPF domains
|
2019-07-23 16:06:16 +02:00 |
|
|
43f1633a22
|
cleanup roles
|
2019-07-23 12:00:59 +02:00 |
|
Kishi85
|
2153438ec5
|
mail: allow any sender from our internal networks
|
2019-07-23 11:29:34 +02:00 |
|
|
85c2a90431
|
bk-dss: enable admin menu for zaesa
|
2019-07-22 13:18:46 +02:00 |
|
Kishi85
|
884bbbfbae
|
mail: use rspamd with automatic learning using sieve + managesieve
|
2019-07-16 09:37:50 +02:00 |
|
|
4b1952a6e0
|
uau: minimize diff to default config
|
2019-07-10 18:43:08 +02:00 |
|
|
5ead59ce14
|
acertmgr: update to version 0.9.8
|
2019-07-09 12:39:31 +02:00 |
|
|
f1dec82592
|
prometheus: only support Debian buster
|
2019-07-09 12:38:32 +02:00 |
|
|
909e767b36
|
dhcp/dns: add new hosts and IP ranges
|
2019-06-27 10:09:39 +02:00 |
|
|
2a417cdee2
|
acertmgr: update to version 0.9.7
|
2019-06-18 15:13:05 +02:00 |
|
|
f8daa11de1
|
nextcloud: first step towards handling php from ansible again
|
2019-05-20 21:35:58 +02:00 |
|
|
477441585d
|
owncloud: rename to nextcloud
|
2019-05-20 20:55:50 +02:00 |
|
|
7f689e1a82
|
owncloud: rename to nextcloud
|
2019-05-20 20:55:05 +02:00 |
|
|
06dcb1b082
|
mail: fix SSL CA settings
|
2019-05-20 20:09:07 +02:00 |
|
|
4ee7c6ad16
|
acertmgr: migrate from legacy paths
|
2019-05-20 19:49:08 +02:00 |
|
|
17f25f2c32
|
acertmgr: migrate from legacy paths
|
2019-05-20 19:38:32 +02:00 |
|
|
b6f0b9417d
|
bk-dss: update to version 0.8.3
|
2019-05-17 08:29:40 +02:00 |
|
|
8a33cdc4ad
|
slapd: fix ACLs
|
2019-05-17 08:25:14 +02:00 |
|
|
b4f95eefc8
|
bk-dss: fix typo
|
2019-05-16 15:52:49 +02:00 |
|
|
e99c8d34dd
|
pvessl: nginx based reverse proxy w/ certs for PVE
|
2019-05-13 21:46:37 +02:00 |
|
|
c4bcc13ccd
|
slapd: simplify ACL
|
2019-05-13 21:45:37 +02:00 |
|
|
45917de310
|
bk-dss: add new admin
|
2019-05-13 21:44:27 +02:00 |
|
Kishi85
|
cc7d959435
|
mail: dovecot verify password by binding to ldap
|
2019-05-13 21:30:13 +02:00 |
|
|
2abc3819ac
|
acme-dnskey-generate: handle empty san list
|
2019-05-13 21:00:50 +02:00 |
|
|
e5ca7f59db
|
replace hard coded values by variables
|
2019-05-13 20:22:02 +02:00 |
|
|
00826a8d14
|
slapd: implement proper ACL
|
2019-05-13 20:03:20 +02:00 |
|
|
6fec0e62bc
|
mail: fix aliases
|
2019-04-23 08:07:35 +02:00 |
|
|
9f3923f494
|
acertmgr: update to 0.9.5
|
2019-04-01 18:51:01 +02:00 |
|
|
ad2e2dca6b
|
dns-intern: move cannelloni to user vlan, add tmp
|
2019-04-01 18:35:27 +02:00 |
|
|
5c07927012
|
Remove BKCA for good
|
2019-03-25 21:08:23 +01:00 |
|
|
50cab2429d
|
raduis: use LE certificate via dns
|
2019-03-25 21:08:19 +01:00 |
|
|
c6c91d7256
|
Migrate LDAP from BKCA to Let's Encrypt
|
2019-03-25 19:58:06 +01:00 |
|
|
c0070e042b
|
acertmgr: update to 0.9.4
|
2019-03-25 19:25:56 +01:00 |
|
|
606851de76
|
slapd: use LE certificate via dns
|
2019-03-25 19:05:31 +01:00 |
|
|
3471c0ca34
|
bk-dss: update to 0.8.2
|
2019-03-22 13:09:58 +01:00 |
|
|
e72ee8fb74
|
acertmgr: update to 0.8.2
|
2019-03-21 22:33:05 +01:00 |
|
|
218ae6c4dd
|
bk-dss: restart uwsgi on changes (fixes #28)
|
2019-03-18 22:18:43 +01:00 |
|
|
cefabcaa7f
|
web: no longer server binary-kitchen.space
|
2019-03-09 18:39:27 +01:00 |
|
|
654c2c0122
|
cleanup whitespace
|
2019-03-09 18:38:07 +01:00 |
|
|
e7375cac3e
|
new host: mpcnc
|
2019-03-09 18:33:00 +01:00 |
|
|
97cb51efbf
|
hackmd: increase max upload size
|
2019-03-07 21:17:19 +01:00 |
|
|
e1e110e704
|
acertmgr: update to 0.8.1
|
2019-03-07 15:01:06 +01:00 |
|
|
56df920ec0
|
bk-dss: update to 0.8.1
|
2019-02-28 11:17:08 +01:00 |
|
|
7fb5ac8875
|
acertmgr: fix typo
|
2019-02-25 18:10:56 +01:00 |
|
|
476df56fcc
|
acertmgr: rename vars, introduce version
|
2019-02-25 08:34:21 +01:00 |
|
|
a2e6267ec8
|
slapd: use base from variables
|
2019-02-23 23:55:35 +01:00 |
|
|
9bffa36a33
|
acertmgr: rename from certmgr, run on config change
|
2019-02-23 23:54:24 +01:00 |
|
|
407409010e
|
bk-dss: use vault for secret, use tagged version, use correct certificate for ldap
|
2019-02-23 23:34:23 +01:00 |
|
|
845a9f3c76
|
dss: remove unused role (replaced by bk-dss)
|
2019-02-19 09:31:33 +01:00 |
|
|
905f86f2df
|
gogs: apt repo key location has changed
|
2019-02-18 19:15:34 +01:00 |
|
|
f576ebe615
|
common: forgot to remove gentoo prompt from Debian
|
2019-02-18 18:39:12 +01:00 |
|
|
d5c98eb13c
|
common: don't use gentoo prompt anymore
|
2019-02-18 18:35:54 +01:00 |
|
|
41784f514f
|
Cleanup whitespace
|
2019-02-13 16:01:32 +01:00 |
|
|
b47be3287a
|
librenms & racktables: use LE certificates
|
2019-02-13 15:57:46 +01:00 |
|
|
766ece5b10
|
acme-dnskey-generate: fix naming inconsistencies
|
2019-02-13 15:40:12 +01:00 |
|
|
275b9a6071
|
Cleanup whitespace
|
2019-02-13 14:28:16 +01:00 |
|
|
cffa318bea
|
Remove acme.sh client
|
2019-02-13 14:05:27 +01:00 |
|
|
82b5f9cdf3
|
dns-intern: sync A/PTR, use RR for radius, fix erx-rz loopback
|
2019-02-13 13:38:08 +01:00 |
|
|
82181c2eb2
|
Remove forseti/checkmk
|
2019-02-13 13:30:16 +01:00 |
|
|
d52b5c0b76
|
bk-dss: update to current version
|
2019-02-12 09:45:10 +01:00 |
|
|
fa7fec4a93
|
certmgr: update to latest version, adjust config
|
2019-02-11 19:36:35 +01:00 |
|
Kishi85
|
06760bf9f7
|
Add role to generate dns keys for acme/cermgr
|
2019-02-11 18:38:41 +01:00 |
|
|
40efa84fcf
|
dovecot: add logrotate config
|
2019-02-04 20:31:13 +01:00 |
|
|
8b0be8cc6f
|
dns: host ffrgb (offloader)
|
2019-02-04 18:33:06 +01:00 |
|
|
7b53f00a5e
|
new hosts: maccaroni & spaghetti
|
2019-01-20 14:47:55 +01:00 |
|
Kishi85
|
3425fdeac9
|
new host: magnesium (partdb/partkeepr)
|
2018-12-17 19:25:15 +01:00 |
|
|
5fae8fa02c
|
dns-intern: update loopback addresses
|
2018-10-30 12:31:34 +01:00 |
|
|
543ffce274
|
dhcpd: dhcp for Aruba APs
|
2018-10-26 18:43:18 +02:00 |
|
|
2f1ed864cd
|
dns-extern: update documentation
|
2018-10-22 21:03:18 +02:00 |
|
|
ae65e438dc
|
dns-extern: role for primary nameserver
|
2018-10-22 20:58:34 +02:00 |
|
Kishi85
|
e3c7c0cc1b
|
Change updatepolicy.aliases format
|
2018-10-22 20:30:12 +02:00 |
|
|
267557f068
|
common: install software on proxmox
|
2018-10-15 21:47:26 +02:00 |
|
|
65786edf03
|
common: run apt task to ensure python-apt is installed
|
2018-10-15 21:47:03 +02:00 |
|
|
e88a6e5691
|
further updates wrt changed ntp server
|
2018-10-15 21:46:30 +02:00 |
|
Kishi85
|
271305ad34
|
Proxmox handling
|
2018-10-15 21:08:06 +02:00 |
|
|
67d4340ba6
|
hackmd: fix owner, persistent upload path, allow anon edits
|
2018-10-15 18:46:34 +02:00 |
|