Peter Palfrader [Thu, 12 May 2016 13:44:47 +0000 (15:44 +0200)]
mail-big-homedirs: Fix architecture guessing (re: RT#6221)
Peter Palfrader [Wed, 11 May 2016 20:34:08 +0000 (22:34 +0200)]
keyring.d.o cert on keyring service
Aurelien Jarno [Thu, 5 May 2016 23:02:24 +0000 (01:02 +0200)]
Always create mips64el chroot on mipsel buildds
All our mipsel build daemons are now capable of running mips64el
binaries. In addition we have mips64el capables build daemons which
are not using a Loongson 3 CPU.
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
Aurelien Jarno [Thu, 5 May 2016 22:40:09 +0000 (00:40 +0200)]
Add mipsel-aql-03.debian.org
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
Héctor Orón Martínez [Mon, 2 May 2016 19:19:12 +0000 (21:19 +0200)]
update zumbi email address
Signed-off-by: Héctor Orón Martínez <zumbi@debian.org>
Julien Cristau [Fri, 29 Apr 2016 15:08:05 +0000 (17:08 +0200)]
Disable security.d.o repo for wheezy hosts
It's been repurposed for LTS, which doesn't carry ia64/sparc.
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Thu, 28 Apr 2016 00:13:18 +0000 (02:13 +0200)]
add httpredir-bm-01-srv wwid
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Wed, 27 Apr 2016 23:20:26 +0000 (01:20 +0200)]
nagios: add tivsm-apicit and tivsm-bacit to sibelius package ignore list
Signed-off-by: Julien Cristau <jcristau@debian.org>
Peter Palfrader [Mon, 25 Apr 2016 15:36:10 +0000 (17:36 +0200)]
Replace the deb.d.o RedirectPermanent with plain Redirects
Julien Cristau [Sun, 24 Apr 2016 20:13:14 +0000 (22:13 +0200)]
buildd: fix sbuild.conf on wheezy harder
Aurelien Jarno [Sun, 24 Apr 2016 15:44:32 +0000 (17:44 +0200)]
Add porta
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
Aurelien Jarno [Sat, 23 Apr 2016 17:47:12 +0000 (19:47 +0200)]
buildd: ship a different sbuild.conf for wheezy hosts
Otherwise the wheezy sbuild version chokes on the aspcud_criteria
configuration variable.
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
Aurelien Jarno [Sat, 23 Apr 2016 13:15:59 +0000 (15:15 +0200)]
Fix a typo in previous commit
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
Aurelien Jarno [Sat, 23 Apr 2016 12:05:40 +0000 (14:05 +0200)]
buildd: provide sbuild.conf with ASPCUD criteria
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
Aurelien Jarno [Fri, 22 Apr 2016 18:25:28 +0000 (20:25 +0200)]
buildds: don't add dm_snapshot to /etc/modules
build daemons do not use LVM for the chroots anymore, therefore we don't
need to add dm_snapshot to /etc/modules.
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
Julien Cristau [Fri, 22 Apr 2016 12:08:20 +0000 (14:08 +0200)]
Add debian.nl
Julien Cristau [Wed, 20 Apr 2016 14:54:23 +0000 (16:54 +0200)]
tlsa record for gobby (port 6523)
Julien Cristau [Wed, 20 Apr 2016 14:20:03 +0000 (16:20 +0200)]
Switch gobby.debian.org ssl cert to letsencrypt
Julien Cristau [Wed, 20 Apr 2016 10:28:34 +0000 (12:28 +0200)]
Remove tlsa record for gobby
Julien Cristau [Sat, 16 Apr 2016 14:03:27 +0000 (16:03 +0200)]
New *.alioth.debian.org ssl cert
Julien Cristau [Sat, 16 Apr 2016 13:33:26 +0000 (15:33 +0200)]
ferm: remove my office addresses
Signed-off-by: Julien Cristau <jcristau@debian.org>
Peter Palfrader [Sat, 16 Apr 2016 06:00:10 +0000 (08:00 +0200)]
Use ftp.at at conova
Martin Zobel-Helas [Fri, 15 Apr 2016 19:29:42 +0000 (19:29 +0000)]
add new office networks
Signed-off-by: Martin Zobel-Helas <zobel@debian.org>
Peter Palfrader [Fri, 15 Apr 2016 18:04:25 +0000 (20:04 +0200)]
Add manpages, II
Peter Palfrader [Fri, 15 Apr 2016 17:58:56 +0000 (19:58 +0200)]
Add manpages
Peter Palfrader [Fri, 15 Apr 2016 17:41:48 +0000 (19:41 +0200)]
sudo for manpages
Peter Palfrader [Fri, 15 Apr 2016 17:31:46 +0000 (19:31 +0200)]
rename debian-cdn to debian2 so it sorts after debian.list
Peter Palfrader [Fri, 15 Apr 2016 17:06:21 +0000 (19:06 +0200)]
Add manziarly
Peter Palfrader [Fri, 15 Apr 2016 17:03:55 +0000 (19:03 +0200)]
Add manziarly
Peter Palfrader [Tue, 12 Apr 2016 15:29:01 +0000 (17:29 +0200)]
re-order entries
Peter Palfrader [Tue, 12 Apr 2016 15:25:12 +0000 (17:25 +0200)]
Redirect /debian* on deb.d.o to cdn-fastly
SRV support in apt only helps when there is no http proxy (transparent
or directly configured). If there is a proxy, and it doesn't support
SRV records as well, requests end up directly on the deb.d.o vhost.
Do something smart in that case, namely redirect to cdn-fastly.
Peter Palfrader [Thu, 7 Apr 2016 18:27:01 +0000 (20:27 +0200)]
syntax
Peter Palfrader [Thu, 7 Apr 2016 18:19:36 +0000 (20:19 +0200)]
Add a secondary source for main debian packages
Aurelien Jarno [Tue, 5 Apr 2016 20:14:54 +0000 (22:14 +0200)]
Add mips-aql-06 to broken-rtc
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
Aurelien Jarno [Tue, 5 Apr 2016 20:12:47 +0000 (22:12 +0200)]
Add mips-aql-06.debian.org to buildd
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
Aurelien Jarno [Tue, 5 Apr 2016 08:52:46 +0000 (10:52 +0200)]
Remove wbadm-ports ports from sudoers
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
Paul Wise [Sun, 3 Apr 2016 13:03:44 +0000 (21:03 +0800)]
Also refresh ca-global when Debian certs change
Paul Wise [Sun, 3 Apr 2016 12:42:27 +0000 (20:42 +0800)]
Fix broken symlinks in /etc/ssl/ca-global (RT#6182)
Paul Wise [Fri, 1 Apr 2016 06:01:40 +0000 (14:01 +0800)]
Fix some issues with the previous change.
Paul Wise [Fri, 1 Apr 2016 05:47:56 +0000 (13:47 +0800)]
Redirect https URLs for www-other sites to debian.org too.
Suggested-in: <CAKiQC487c4kZiTvxUYtM+nmWS9Bh3b7s3tY6jb2=eA69k0-9Ww@mail.gmail.com>
Suggested-by: Adam Cadman <adam.cadman@gmail.com>
Peter Palfrader [Tue, 22 Mar 2016 09:26:48 +0000 (10:26 +0100)]
remove gluck and rietz from puppet config
Peter Palfrader [Tue, 22 Mar 2016 07:50:17 +0000 (08:50 +0100)]
remove alioth's expiring git et al. cert
Peter Palfrader [Tue, 22 Mar 2016 07:11:48 +0000 (08:11 +0100)]
renumber mirror-isc3
Aurelien Jarno [Mon, 21 Mar 2016 15:47:59 +0000 (16:47 +0100)]
99builddsourceslist: get rid of backports.debian.org
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
Aurelien Jarno [Mon, 21 Mar 2016 15:47:59 +0000 (16:47 +0100)]
99builddsourceslist: drop support for -edu
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
Julien Cristau [Mon, 21 Mar 2016 12:48:47 +0000 (13:48 +0100)]
puppetmaster: don't look for puppet-dashboard.d.o cert
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Mon, 21 Mar 2016 12:46:15 +0000 (13:46 +0100)]
Remove puppet-dashboard.d.o cert
It seems unused, and expires soon.
Signed-off-by: Julien Cristau <jcristau@debian.org>
Peter Palfrader [Sun, 20 Mar 2016 15:02:35 +0000 (16:02 +0100)]
Retire portman and pittar (RT#6121, RT#6135)
Tollef Fog Heen [Sun, 20 Mar 2016 08:53:19 +0000 (09:53 +0100)]
Re-enable surbl checks, and set {keep,add}_environment to empty values
Julien Cristau [Sat, 19 Mar 2016 16:39:15 +0000 (17:39 +0100)]
Use letsencrypt cert for packages.d.o
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Sat, 19 Mar 2016 15:19:44 +0000 (16:19 +0100)]
Temporarily disable TLSA for packages.d.o
Signed-off-by: Julien Cristau <jcristau@debian.org>
Peter Palfrader [Sun, 13 Mar 2016 13:08:53 +0000 (14:08 +0100)]
The debian-backports repository is obsolete: stop redirecting backports.org /debian, /backports.org and /debian-backports to the old archive location
Peter Palfrader [Sun, 13 Mar 2016 13:07:08 +0000 (14:07 +0100)]
The debian-backports repository is obsolete. Remove from autofs and rsync/syncproxy config
Julien Cristau [Sat, 12 Mar 2016 16:57:10 +0000 (17:57 +0100)]
Switch piuparts.d.o SSL cert to letsencrypt
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Sat, 12 Mar 2016 15:38:36 +0000 (16:38 +0100)]
remove TLSA record for piuparts.d.o
Signed-off-by: Julien Cristau <jcristau@debian.org>
Peter Palfrader [Fri, 11 Mar 2016 07:08:40 +0000 (08:08 +0100)]
Do not run both puppet clientbucket cleanup job concurrently. sequentially should work better
Peter Palfrader [Thu, 10 Mar 2016 21:48:30 +0000 (22:48 +0100)]
sso-rp for quantz
Tollef Fog Heen [Thu, 10 Mar 2016 10:30:12 +0000 (11:30 +0100)]
Disable surbl/perl check for now
Peter Palfrader [Wed, 9 Mar 2016 21:28:16 +0000 (22:28 +0100)]
stop using broken dns forwarders
Peter Palfrader [Wed, 9 Mar 2016 18:56:41 +0000 (19:56 +0100)]
include archive_master role too
Peter Palfrader [Wed, 9 Mar 2016 18:53:05 +0000 (19:53 +0100)]
push sibelius archive rsync via puppet, make it ssl
Peter Palfrader [Wed, 9 Mar 2016 15:30:49 +0000 (16:30 +0100)]
retire schein
Peter Palfrader [Wed, 9 Mar 2016 09:27:00 +0000 (10:27 +0100)]
Clean out puppet clientbucket
Peter Palfrader [Wed, 9 Mar 2016 09:25:52 +0000 (10:25 +0100)]
Delete more munin-async files sooner
Peter Palfrader [Tue, 8 Mar 2016 21:00:39 +0000 (22:00 +0100)]
Add boott
Peter Palfrader [Mon, 7 Mar 2016 21:04:50 +0000 (22:04 +0100)]
we want backups of busoni and senfter
Peter Palfrader [Mon, 7 Mar 2016 21:02:23 +0000 (22:02 +0100)]
ftcollins and spohr are history
Peter Palfrader [Mon, 7 Mar 2016 21:01:51 +0000 (22:01 +0100)]
We want backups of wieck
Peter Palfrader [Mon, 7 Mar 2016 20:59:39 +0000 (21:59 +0100)]
rmdir the dir
Peter Palfrader [Mon, 7 Mar 2016 20:56:32 +0000 (21:56 +0100)]
And clean out /etc/ssl/debian/keys
Peter Palfrader [Mon, 7 Mar 2016 20:53:49 +0000 (21:53 +0100)]
install ssl hostkey into /etc/ssl/private instead of /etc/ssl/debian/keys
Peter Palfrader [Mon, 7 Mar 2016 19:26:52 +0000 (20:26 +0100)]
saens is history
Peter Palfrader [Mon, 7 Mar 2016 19:09:48 +0000 (20:09 +0100)]
security-master ssl with key, and ssl for rsync
Luca Filipozzi [Mon, 7 Mar 2016 18:32:33 +0000 (18:32 +0000)]
add luca's home and work IPv4 since they are fixed (effectively)
Peter Palfrader [Sat, 5 Mar 2016 17:01:33 +0000 (18:01 +0100)]
keep volumes for full backups only 3 months instead of 4
Julien Cristau [Sat, 5 Mar 2016 13:42:46 +0000 (14:42 +0100)]
also remove chain for bugs-master ssl cert
The cert is no longer a gandi-issued, so we should use the letsencrypt
chain.
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Sat, 5 Mar 2016 09:07:47 +0000 (10:07 +0100)]
replace bugs-master.d.o SSL certificate
Signed-off-by: Julien Cristau <jcristau@debian.org>
Aurelien Jarno [Fri, 4 Mar 2016 23:21:20 +0000 (00:21 +0100)]
munin-node: partially revert
199cc183
df_abs does not support exclusion based on regex, we still need the
wrapper for it.
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
Aurelien Jarno [Fri, 4 Mar 2016 22:50:39 +0000 (23:50 +0100)]
munin-node: also filter /dev /run/* /sys/*
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
Aurelien Jarno [Fri, 4 Mar 2016 22:36:40 +0000 (23:36 +0100)]
munin-node: filter piuparts/schroot mounts for df*
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
Aurelien Jarno [Fri, 4 Mar 2016 22:17:16 +0000 (23:17 +0100)]
munin-node: remove df-wrap
Remove df-wrap as it is not compatible with the jessie scripts. Replace
df, df_abs and df_inode by symlinks to the original scripts.
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
Julien Cristau [Wed, 2 Mar 2016 22:49:40 +0000 (23:49 +0100)]
unbound: squeeze cleanup
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Wed, 2 Mar 2016 22:49:14 +0000 (23:49 +0100)]
motd: squeeze cleanup
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Wed, 2 Mar 2016 22:48:57 +0000 (23:48 +0100)]
debian-org: squeeze cleanup
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Wed, 2 Mar 2016 22:48:35 +0000 (23:48 +0100)]
dacs: squeeze cleanup
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Wed, 2 Mar 2016 22:31:33 +0000 (23:31 +0100)]
ssh: squeeze cleanup
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Wed, 2 Mar 2016 22:29:46 +0000 (23:29 +0100)]
schroot: squeeze cleanup
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Wed, 2 Mar 2016 22:28:13 +0000 (23:28 +0100)]
munin: squeeze cleanup
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Wed, 2 Mar 2016 22:26:57 +0000 (23:26 +0100)]
monit: squeeze cleanup
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Wed, 2 Mar 2016 22:24:16 +0000 (23:24 +0100)]
ferm: squeeze cleanup
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Wed, 2 Mar 2016 22:23:47 +0000 (23:23 +0100)]
buildd: squeeze cleanup
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Wed, 2 Mar 2016 22:23:10 +0000 (23:23 +0100)]
bacula: squeeze cleanup
Signed-off-by: Julien Cristau <jcristau@debian.org>
Julien Cristau [Wed, 2 Mar 2016 22:15:08 +0000 (23:15 +0100)]
setup-all-dchroots: goodbye squeeze
Signed-off-by: Julien Cristau <jcristau@debian.org>
Paul Wise [Tue, 23 Feb 2016 08:31:13 +0000 (16:31 +0800)]
Fix race condition cleaning up munin CGI graphs
Avoids mails like these:
From: Cron Daemon <root@menotti.debian.org>
To: root@menotti.debian.org
Subject: Cron <www-data@menotti> find /var/lib/munin/cgi-tmp -mindepth 2 -type d -empty -delete
find: `/var/lib/munin/cgi-tmp/munin-cgi-graph/debian.org/bm-bl9.debian.org/iostat-month.png': No such file or directory
find: `/var/lib/munin/cgi-tmp/munin-cgi-graph/debian.org/bm-bl9.debian.org/df_inode-day.png': No such file or directory
find: `/var/lib/munin/cgi-tmp/munin-cgi-graph/debian.org/bm-bl9.debian.org/ps_exim4-month.png': No such file or directory
find: `/var/lib/munin/cgi-tmp/munin-cgi-graph/debian.org/bm-bl9.debian.org/exim_mailstats-month.png': No such file or directory
...
Peter Palfrader [Mon, 22 Feb 2016 13:55:08 +0000 (14:55 +0100)]
Update for 29.172.in-addr.arpa DS
Peter Palfrader [Mon, 22 Feb 2016 13:40:08 +0000 (14:40 +0100)]
New DS for debian.org
Luca Filipozzi [Thu, 18 Feb 2016 02:19:12 +0000 (02:19 +0000)]
remove linode.emyr.net from ACL for luca
Peter Palfrader [Tue, 16 Feb 2016 23:14:06 +0000 (00:14 +0100)]
A better root prompt
Luca Filipozzi [Mon, 8 Feb 2016 21:55:42 +0000 (21:55 +0000)]
prep for transition away from linode
Peter Palfrader [Mon, 8 Feb 2016 18:22:16 +0000 (19:22 +0100)]
Do not backup /var/lib/munin-async
projects / mirror / dsa-puppet.git / log