fedora-infra_ansible

mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-05-03 08:20:45 +08:00

Author	SHA1	Message	Date
Kevin Fenzi	04bd0e1ea1	try and make the lock wrapper silent option actually silent	2018-05-19 02:13:47 +00:00
Patrick Uiterwijk	51ec022933	Make silent an option Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2018-05-17 16:34:38 +02:00
Patrick Uiterwijk	8773b6d931	Silence lock wrapper if script is still running Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2018-05-17 16:30:21 +02:00
Kevin Fenzi	cb22afd4fe	Look, ask has moved away. I'm sure it will write us back someday...	2018-05-09 02:00:45 +00:00
Ricky Elrod	550610d96f	nuke bodhi01.stg and batcomputer01 Signed-off-by: Ricky Elrod <relrod@redhat.com>	2018-05-07 17:01:25 +00:00
Stephen Smoogen	59b547828d	lets remove this bodhi stuff. its all in dockah now	2018-05-04 15:07:05 +00:00
Patrick Uiterwijk	5171e61866	Do not allow inbound sslv2/sslv3 Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2018-05-04 03:04:21 +02:00
Patrick Uiterwijk	8fa2c2e77e	Use public DNS from cloud Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2018-04-04 00:53:16 +00:00
Jan Kaluža	f5760b6f5e	Do exit with 1 in case service is not present while running conditional-restart.sh.	2018-03-07 08:57:58 +00:00
Mikolaj Izdebski	120fc846c5	Check if service unit is present before trying to restart it	2018-02-22 09:35:29 +00:00
Kevin Fenzi	e621c76c8f	Fix up the fedmsg handler. Ticket https://pagure.io/fedora-infrastructure/issue/6550 Just change the conditional script to use systemctl try-restart and hopefully it will do what we want.	2018-02-20 00:24:11 +00:00
Stephen Smoogen	c68cb601bf	add the httpd logs from download-ib	2018-01-31 21:30:54 +00:00
Stephen Smoogen	02938f63ad	we need to update this in 2 places and run it on logs and people	2017-12-20 21:37:46 +00:00
Patrick Uiterwijk	c9817d2b47	Add selinux to allow map for pamdatabase from unix_chkpwd Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-12-12 15:42:02 +00:00
Stephen Smoogen	c53c0b2fc8	ok lets try and be smarterish	2017-12-01 22:37:06 +00:00
Stephen Smoogen	585b6ff82f	why why why	2017-12-01 22:27:30 +00:00
Patrick Uiterwijk	e43e0e06b1	Move SSH setup to its own role Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-08-16 17:39:23 +00:00
Patrick Uiterwijk	778272ed90	Update sshd_config everywhere to present cert Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-08-15 16:41:48 +00:00
Patrick Uiterwijk	1fad80a314	We no longer have any <Fedora24 boxes Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-08-15 16:38:11 +00:00
Patrick Uiterwijk	7a5346019b	Create a sender_access file Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-08-04 16:20:13 +00:00
Ricky Elrod	6e6239051a	add resolv.conf for internetx Signed-off-by: Ricky Elrod <codeblock@fedoraproject.org>	2017-06-20 21:03:40 +00:00
Tim Flink	c40d6a5ebd	adding main.cf for upstreamfirst.fedorainfracloud.org	2017-05-25 15:51:18 +00:00
Patrick Uiterwijk	f4ae8df39d	Fix up policy source and add EL6 compiled version Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-05-04 14:12:56 +00:00
Kevin Fenzi	fcf570d42e	initial selinux module work for rsyslog to read audit	2017-05-04 14:02:02 +00:00
Kevin Fenzi	31254f9775	kill paste0* instances	2017-04-11 19:42:45 +00:00
Kevin Fenzi	e8f50d9336	drop hosted03 from nagios and various other places	2017-04-11 18:01:34 +00:00
Patrick Uiterwijk	fcc5657525	Configure SSH certificates Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-04-10 10:20:15 +00:00
Kevin Fenzi	6c253445a3	rework our conditional reload script to handle systemctl reload changes	2017-03-02 15:33:05 +00:00
Kevin Fenzi	1516393f04	ipv4 on phx2 bastion hosts	2017-02-14 21:29:33 +00:00
Kevin Fenzi	02ca818720	and now have gateway use the milter	2017-02-14 19:46:08 +00:00
Stephen Smoogen	8c90ef6064	ok this should allow smtp to send to bastion for fedorahosted.	2017-02-02 19:26:19 +00:00
Stephen Smoogen	3c9b0e4654	make fedorahosted on baston	2017-02-02 18:01:26 +00:00
Kevin Fenzi	0456dd002c	drop any relayhost for copr mails, mx1.redhat.com will not relay for it	2017-01-31 17:14:58 +00:00
Kevin Fenzi	484ab27f17	for some reason postfix wants this fqdn	2017-01-19 20:39:41 +00:00
Kevin Fenzi	a24c859d9a	koji builders only should have to deal with ipv4 mail	2017-01-19 19:46:58 +00:00
Stephen Smoogen	2f92b9777a	we need to add a larger limits for file coverage	2017-01-18 19:34:08 +00:00
Stephen Smoogen	4fe0981401	we need to do all this stuff in templates.	2017-01-16 01:01:45 +00:00
Tim Flink	cb0ef0b2fd	adding new qa-prod01.qa host to replace qadevel.qa	2016-12-15 18:02:29 +00:00
Kevin Fenzi	1effd347df	Setup a proxyreload for httpd that looks for the ticketkey. If it's not there, assume the proxy is just being configured and don't reload httpd.	2016-12-01 21:36:07 +00:00
Stephen Smoogen	12a7979213	update files to put basics for proxy13/proxy14 into being	2016-12-01 17:46:58 +00:00
Patrick Uiterwijk	2a6e8a5e25	Revert "Enable GSSAPI for ssh" This reverts commit `b4f1088938`.	2016-10-27 18:53:24 +00:00
Patrick Uiterwijk	b4f1088938	Enable GSSAPI for ssh Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-10-27 09:19:14 +00:00
Stephen Smoogen	e8bc82f0a7	remove the entries to noc02 that wont work because that hostnmae doesnt exist	2016-09-30 15:23:54 +00:00
Stephen Smoogen	e13358ccd8	push the tls change out to the smtp-mm boxes	2016-09-27 17:37:21 +00:00
Stephen Smoogen	a875430ac8	too much email still requires ipv4 only and our ipv6 reverse doesnt work here	2016-09-27 15:37:37 +00:00
Stephen Smoogen	626a00c257	tls_ssl_options not implemented in our postfix	2016-09-27 03:28:39 +00:00
Stephen Smoogen	865dc57de9	call it a crt not a csr	2016-09-27 03:25:37 +00:00
Stephen Smoogen	379340b456	and put in the items kevin asked for.	2016-09-27 03:00:03 +00:00
Stephen Smoogen	6780736eb3	lets try another go at patching	2016-09-27 01:46:38 +00:00
Stephen Smoogen	d2764137e5	try this patch set on for size to get tls working with smtp	2016-09-27 01:10:46 +00:00

1 2 3 4

189 Commits