WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-04-28 20:42:20 +08:00
Code Issues Packages Projects Releases Wiki Activity
18,067 Commits 9 Branches 0 Tags
e3ecddfe2f7342cfb6fa3cedef2cf4e8bfe94847
Commit Graph

453 Commits

Author SHA1 Message Date
Kevin Fenzi
9f71fa2295 comment in rsyslog-audit module in base 2017-05-04 14:20:37 +00:00
Patrick Uiterwijk
f4ae8df39d Fix up policy source and add EL6 compiled version 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-05-04 14:12:56 +00:00
Kevin Fenzi
fcf570d42e initial selinux module work for rsyslog to read audit 2017-05-04 14:02:02 +00:00
Kevin Fenzi
db328d7ac2 Revert "ansible tells me not to use {s in when, lets see if this works" 
This reverts commit 9b77ca729b.
 2017-04-20 17:03:09 +00:00
Kevin Fenzi
9b77ca729b ansible tells me not to use {s in when, lets see if this works 2017-04-20 16:57:07 +00:00
Kevin Fenzi
8a6e51a9a6 change state=running to start=started as the old one is going away in ansible 2.7 2017-04-13 01:37:21 +00:00
Stephen Smoogen
cf89a2516d and we will try nagios templates 2017-04-11 21:18:04 +00:00
Kevin Fenzi
31254f9775 kill paste0* instances 2017-04-11 19:42:45 +00:00
Kevin Fenzi
e8f50d9336 drop hosted03 from nagios and various other places 2017-04-11 18:01:34 +00:00
Patrick Uiterwijk
fcc5657525 Configure SSH certificates 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-04-10 10:20:15 +00:00
Patrick Uiterwijk
78a6c13010 Production key is generated 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-04-09 23:32:41 +00:00
Patrick Uiterwijk
09cd075108 Revert "Make explicitly invalid" 
This reverts commit b91d69d1ed.
 2017-04-09 23:24:08 +00:00
Patrick Uiterwijk
b91d69d1ed Make explicitly invalid 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-04-09 23:22:25 +00:00
Patrick Uiterwijk
d01c436580 SSH does not know years 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-04-09 23:18:54 +00:00
Patrick Uiterwijk
dc1664c8f3 Combine properly 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-04-09 23:17:58 +00:00
Patrick Uiterwijk
7a7054b34c Allow setting additional hostnames 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-04-09 23:15:16 +00:00
Patrick Uiterwijk
3ec28fa016 Use a static dir 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-04-09 22:50:25 +00:00
Patrick Uiterwijk
7ce0b12a42 Fix env tests 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-04-09 22:34:55 +00:00
Patrick Uiterwijk
c96d44b232 Add initial SSH certificates 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-04-09 22:29:14 +00:00
Kevin Fenzi
a0727e3fd2 do not apply iptables to any fed-cloud machine now 2017-04-07 19:23:42 +00:00
Stephen Smoogen
dfd088ab5e put in many changes for new nagios server 2017-04-06 23:50:44 +00:00
Stephen Smoogen
cc4a91a1eb stage a template to replace syncHttpLogs.sh someday 2017-03-17 19:43:11 +00:00
Kevin Fenzi
3743d7691c add tag for common scripts 2017-03-02 16:00:06 +00:00
Kevin Fenzi
6c253445a3 rework our conditional reload script to handle systemctl reload changes 2017-03-02 15:33:05 +00:00
Kevin Fenzi
1516393f04 ipv4 on phx2 bastion hosts 2017-02-14 21:29:33 +00:00
Kevin Fenzi
02ca818720 and now have gateway use the milter 2017-02-14 19:46:08 +00:00
Patrick Uiterwijk
ec68c3ce39 Make it not match autocloud01 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-02-08 14:31:56 +00:00
Patrick Uiterwijk
a90e9070cd No stg ip override in cloud 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-02-08 14:07:25 +00:00
Stephen Smoogen
8c90ef6064 ok this should allow smtp to send to bastion for fedorahosted. 2017-02-02 19:26:19 +00:00
Stephen Smoogen
3c9b0e4654 make fedorahosted on baston 2017-02-02 18:01:26 +00:00
Kevin Fenzi
0456dd002c drop any relayhost for copr mails, mx1.redhat.com will not relay for it 2017-01-31 17:14:58 +00:00
Kevin Fenzi
484ab27f17 for some reason postfix wants this fqdn 2017-01-19 20:39:41 +00:00
Kevin Fenzi
a24c859d9a koji builders only should have to deal with ipv4 mail 2017-01-19 19:46:58 +00:00
Stephen Smoogen
2f92b9777a we need to add a larger limits for file coverage 2017-01-18 19:34:08 +00:00
Kevin Fenzi
4588fedfb2 also allow tcp dns for builders 2017-01-16 16:41:44 +00:00
Stephen Smoogen
4fe0981401 we need to do all this stuff in templates. 2017-01-16 01:01:45 +00:00
Stephen Smoogen
d35ef94142 no reverse klingon logic in which files to fix 2017-01-10 23:48:57 +00:00
Patrick Uiterwijk
cd50a3c55d Disable rdns on masters 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-12-22 16:51:57 +00:00
Patrick Uiterwijk
d8b121b2df Make sure all machines know which realm to use 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-12-20 08:26:18 +00:00
Tim Flink
cb0ef0b2fd adding new qa-prod01.qa host to replace qadevel.qa 2016-12-15 18:02:29 +00:00
Kevin Fenzi
7e9d4e4700 more s390 move changes 2016-12-07 15:58:41 +00:00
Kevin Fenzi
3163d7fdd5 Fix missing ) 2016-12-05 17:33:53 +00:00
Kevin Fenzi
0ee9865961 Simplify this conditional for iptables. 2016-12-05 17:31:45 +00:00
Kevin Fenzi
77ff2a473b Set NM_CONTROLLED=yes in our hosts that are in fact NM_CONTROLLED. 2016-12-05 17:21:47 +00:00
Kevin Fenzi
d195bae51a Exclude the osbs hosts from our default iptables template as they have their own more complex one. 2016-12-05 17:21:06 +00:00
Kevin Fenzi
6c9392f89a fix missing close in jinja template for ipa masters config 2016-12-05 17:06:17 +00:00
Patrick Uiterwijk
1652f6776c Only apply on stg for now 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-12-04 03:13:26 +00:00
Patrick Uiterwijk
793fe47fec No canonicalization or rdns 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-12-04 03:12:45 +00:00
Kevin Fenzi
1effd347df Setup a proxyreload for httpd that looks for the ticketkey. If it's not there, assume the proxy is just being configured and don't reload httpd. 2016-12-01 21:36:07 +00:00
Stephen Smoogen
12a7979213 update files to put basics for proxy13/proxy14 into being 2016-12-01 17:46:58 +00:00