Martin Zobel-Helas [Sun, 7 Mar 2010 09:20:19 +0000 (10:20 +0100)]
lets try the first buildd: ball
Stephen Gran [Sun, 7 Mar 2010 08:32:59 +0000 (08:32 +0000)]
get the ferm variable right
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 7 Mar 2010 08:31:55 +0000 (08:31 +0000)]
and add a nop rule for munin
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 7 Mar 2010 08:23:48 +0000 (08:23 +0000)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
Stephen Gran [Sun, 7 Mar 2010 08:23:42 +0000 (08:23 +0000)]
new ipaddress fact
Signed-off-by: Stephen Gran <steve@lobefin.net>
Martin Zobel-Helas [Sun, 7 Mar 2010 07:15:52 +0000 (08:15 +0100)]
steffani being a recursor
Martin Zobel-Helas [Sat, 6 Mar 2010 21:49:04 +0000 (22:49 +0100)]
add steffani to ferm
Martin Zobel-Helas [Sat, 6 Mar 2010 21:24:28 +0000 (22:24 +0100)]
add wieck to ferm
Martin Zobel-Helas [Sat, 6 Mar 2010 20:36:15 +0000 (21:36 +0100)]
schein runs a local dns
Martin Zobel-Helas [Sat, 6 Mar 2010 20:30:01 +0000 (21:30 +0100)]
add schein
Martin Zobel-Helas [Sat, 6 Mar 2010 20:15:43 +0000 (21:15 +0100)]
add raff+gluck to ferm
Martin Zobel-Helas [Sat, 6 Mar 2010 19:27:54 +0000 (20:27 +0100)]
add lobos to ferm
Martin Zobel-Helas [Sat, 6 Mar 2010 19:24:09 +0000 (20:24 +0100)]
add villa to ferm
Martin Zobel-Helas [Sat, 6 Mar 2010 18:30:55 +0000 (19:30 +0100)]
remove obsolete modules
Martin Zobel-Helas [Sat, 6 Mar 2010 18:30:41 +0000 (19:30 +0100)]
we want counters
Martin Zobel-Helas [Sat, 6 Mar 2010 18:14:34 +0000 (19:14 +0100)]
ah, : missing
Martin Zobel-Helas [Sat, 6 Mar 2010 18:10:37 +0000 (19:10 +0100)]
typo?
Martin Zobel-Helas [Sat, 6 Mar 2010 18:04:50 +0000 (19:04 +0100)]
saens alone
Martin Zobel-Helas [Sat, 6 Mar 2010 18:02:15 +0000 (19:02 +0100)]
move ftp and rsync to site.pp
Martin Zobel-Helas [Sat, 6 Mar 2010 17:41:50 +0000 (18:41 +0100)]
add module ftp
Martin Zobel-Helas [Sat, 6 Mar 2010 17:38:29 +0000 (18:38 +0100)]
weasel is always right
Martin Zobel-Helas [Sat, 6 Mar 2010 17:36:57 +0000 (18:36 +0100)]
Merge branch 'master' of git+ssh://puppet.debian.org/srv/puppet.debian.org/git/dsa-puppet
Conflicts:
manifests/site.pp
Martin Zobel-Helas [Sat, 6 Mar 2010 17:30:55 +0000 (18:30 +0100)]
start ferm'ing security mirrors
Stephen Gran [Sat, 6 Mar 2010 15:33:07 +0000 (15:33 +0000)]
see if global_variables works
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 15:31:59 +0000 (15:31 +0000)]
and not cause a syntax error
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 15:31:14 +0000 (15:31 +0000)]
and actually ship it
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 15:29:49 +0000 (15:29 +0000)]
add first stab at interfaces
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 13:37:07 +0000 (13:37 +0000)]
try in place array, but with bonus for syntactic correctness
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 13:36:00 +0000 (13:36 +0000)]
try in place array
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 13:33:19 +0000 (13:33 +0000)]
restore stunnel rule
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 13:28:12 +0000 (13:28 +0000)]
humph
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 13:23:13 +0000 (13:23 +0000)]
first stab at http limit rules - how bad can it go?
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 13:07:50 +0000 (13:07 +0000)]
piatti has ferm
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 12:57:43 +0000 (12:57 +0000)]
let's see if this works
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 12:53:53 +0000 (12:53 +0000)]
Revert "first stab at opening firewall for actual mail port"
This reverts commit
8aa9460c4f37da95c931dd25eb2b3ab0512f6afd.
Stephen Gran [Sat, 6 Mar 2010 12:53:47 +0000 (12:53 +0000)]
Revert "er, not a case statement"
This reverts commit
14275a7a8892845f59f12a86945da4c7effc643c.
Stephen Gran [Sat, 6 Mar 2010 12:51:27 +0000 (12:51 +0000)]
er, not a case statement
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 12:50:48 +0000 (12:50 +0000)]
first stab at opening firewall for actual mail port
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 12:50:29 +0000 (12:50 +0000)]
add submission for mx machines
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 12:40:44 +0000 (12:40 +0000)]
nagios also wants to talk smtp
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 12:21:17 +0000 (12:21 +0000)]
convert ssh to new rule format
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 12:19:39 +0000 (12:19 +0000)]
quoting, maybe
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 12:17:52 +0000 (12:17 +0000)]
another try
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 12:14:19 +0000 (12:14 +0000)]
restrict smtp
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 6 Mar 2010 11:56:37 +0000 (11:56 +0000)]
beethoven has ferm
Signed-off-by: Stephen Gran <steve@lobefin.net>
Martin Zobel-Helas [Fri, 5 Mar 2010 22:25:56 +0000 (23:25 +0100)]
try with the correct path name
Martin Zobel-Helas [Fri, 5 Mar 2010 22:24:05 +0000 (23:24 +0100)]
does order matter?
Martin Zobel-Helas [Fri, 5 Mar 2010 22:05:34 +0000 (23:05 +0100)]
damn typo
Martin Zobel-Helas [Fri, 5 Mar 2010 21:58:52 +0000 (22:58 +0100)]
add module rsync (for ferm)
Martin Zobel-Helas [Fri, 5 Mar 2010 21:26:29 +0000 (22:26 +0100)]
ferm'ize senfl
Stephen Gran [Wed, 3 Mar 2010 00:51:56 +0000 (00:51 +0000)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
Stephen Gran [Wed, 3 Mar 2010 00:51:45 +0000 (00:51 +0000)]
quiet can't find plugins noise
Signed-off-by: Stephen Gran <steve@lobefin.net>
Peter Palfrader [Wed, 3 Mar 2010 00:18:06 +0000 (01:18 +0100)]
purcell follows a broken naming scheme for volume groups
Peter Palfrader [Tue, 2 Mar 2010 12:32:56 +0000 (13:32 +0100)]
we need newer dpkg and dpkg-dev on zee for sparc64 stuff
Peter Palfrader [Mon, 1 Mar 2010 20:34:15 +0000 (21:34 +0100)]
whitespace nazi
Peter Palfrader [Mon, 1 Mar 2010 20:32:47 +0000 (21:32 +0100)]
*ahem*
Peter Palfrader [Mon, 1 Mar 2010 19:43:38 +0000 (20:43 +0100)]
sudoers: Allow wbadm to do their stuff on grieg
Peter Palfrader [Mon, 1 Mar 2010 13:14:23 +0000 (14:14 +0100)]
puppet headers
Peter Palfrader [Sun, 28 Feb 2010 20:28:46 +0000 (21:28 +0100)]
one accepts only TERM, the other only INT
Peter Palfrader [Sun, 28 Feb 2010 20:26:00 +0000 (21:26 +0100)]
kill the daemon watcher for mpt-statusd as well
Peter Palfrader [Sun, 28 Feb 2010 20:19:09 +0000 (21:19 +0100)]
try sigint
Peter Palfrader [Sun, 28 Feb 2010 20:15:51 +0000 (21:15 +0100)]
and a typo
Peter Palfrader [Sun, 28 Feb 2010 20:14:07 +0000 (21:14 +0100)]
cosmetics
Peter Palfrader [Sun, 28 Feb 2010 20:12:36 +0000 (21:12 +0100)]
and finally
Peter Palfrader [Sun, 28 Feb 2010 20:11:53 +0000 (21:11 +0100)]
now
Peter Palfrader [Sun, 28 Feb 2010 20:11:28 +0000 (21:11 +0100)]
better
Peter Palfrader [Sun, 28 Feb 2010 20:10:52 +0000 (21:10 +0100)]
*sigh*
Peter Palfrader [Sun, 28 Feb 2010 20:10:10 +0000 (21:10 +0100)]
bad puppet
Peter Palfrader [Sun, 28 Feb 2010 20:09:21 +0000 (21:09 +0100)]
no semicolon at least
Peter Palfrader [Sun, 28 Feb 2010 20:08:46 +0000 (21:08 +0100)]
quote stuff?
Peter Palfrader [Sun, 28 Feb 2010 20:06:44 +0000 (21:06 +0100)]
mpt has funny ears
Peter Palfrader [Sun, 28 Feb 2010 19:34:34 +0000 (20:34 +0100)]
sibelius has megaraid
Peter Palfrader [Sun, 28 Feb 2010 19:33:26 +0000 (20:33 +0100)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
* 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet:
Fix typo
add my ppp ip as well
Peter Palfrader [Sun, 28 Feb 2010 19:33:02 +0000 (20:33 +0100)]
fix typo
Peter Palfrader [Sun, 28 Feb 2010 17:46:37 +0000 (18:46 +0100)]
Fix typo
Stephen Gran [Sun, 28 Feb 2010 16:25:06 +0000 (16:25 +0000)]
add my ppp ip as well
Signed-off-by: Stephen Gran <steve@lobefin.net>
Peter Palfrader [Sun, 28 Feb 2010 16:17:51 +0000 (17:17 +0100)]
Merge mptcontroller and mptraid facts
Peter Palfrader [Sun, 28 Feb 2010 16:15:44 +0000 (17:15 +0100)]
allow sudo to mpt-status on mpt raid hosts
Peter Palfrader [Sun, 28 Feb 2010 16:12:06 +0000 (17:12 +0100)]
And install mpt-status on mpt hosts
Peter Palfrader [Sun, 28 Feb 2010 16:10:44 +0000 (17:10 +0100)]
mptraid fact
Peter Palfrader [Sun, 28 Feb 2010 16:00:27 +0000 (17:00 +0100)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
* 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet:
add fact for megaraid controllers
strip some of the randomness
Peter Palfrader [Sun, 28 Feb 2010 16:00:16 +0000 (17:00 +0100)]
Nagios gets to run megaraid's megarc
Stephen Gran [Sun, 28 Feb 2010 15:48:42 +0000 (15:48 +0000)]
add fact for megaraid controllers
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 25 Feb 2010 19:24:14 +0000 (19:24 +0000)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
Stephen Gran [Thu, 25 Feb 2010 19:24:10 +0000 (19:24 +0000)]
strip some of the randomness
Signed-off-by: Stephen Gran <steve@lobefin.net>
Peter Palfrader [Thu, 25 Feb 2010 19:18:34 +0000 (20:18 +0100)]
hmm.
Peter Palfrader [Thu, 25 Feb 2010 19:16:31 +0000 (20:16 +0100)]
I hate you
Peter Palfrader [Thu, 25 Feb 2010 19:14:46 +0000 (20:14 +0100)]
try kernel
Peter Palfrader [Thu, 25 Feb 2010 19:13:25 +0000 (20:13 +0100)]
- -dsa in dsa-dsa-
Peter Palfrader [Thu, 25 Feb 2010 19:09:23 +0000 (20:09 +0100)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
* 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet:
line wrap motd
Peter Palfrader [Thu, 25 Feb 2010 19:09:19 +0000 (20:09 +0100)]
Try to get a kfreebsd module going
Stephen Gran [Wed, 24 Feb 2010 22:10:04 +0000 (22:10 +0000)]
line wrap motd
Signed-off-by: Stephen Gran <steve@lobefin.net>
Peter Palfrader [Wed, 24 Feb 2010 15:40:24 +0000 (16:40 +0100)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
* 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet: (24 commits)
stop doubling up an entry
add puppetmaster role
be a little more liberal about throwing away MS traffic
this should be empty for those hosters
use the right list of hosts
move inclusion of samhain to the end of the block, so it knows about all other classes included
clean up samhain template by role instead of by hostname
and even more carefully this time
skip hosts without ip addresses in ldap
bartok gets ferm
add debian hosts to the list
and recursors should allow localnets ...
name new class correctly
add bartok as recursor for manda
add bartok as a recursor
add local DNS recursor class
/etc/ferm is now also (kind of, almost) under puppet control
ferm.conf is now (kind of, almost) under puppet control
and name them usefully
use v4 for iptables and v6 for ip6tables
...
Peter Palfrader [Wed, 24 Feb 2010 15:39:48 +0000 (16:39 +0100)]
Let archvsync trigger snapshot (2nd snapshot instance) on sibelius
Stephen Gran [Wed, 24 Feb 2010 09:20:15 +0000 (09:20 +0000)]
stop doubling up an entry
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 24 Feb 2010 09:16:08 +0000 (09:16 +0000)]
add puppetmaster role
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 24 Feb 2010 00:37:51 +0000 (00:37 +0000)]
be a little more liberal about throwing away MS traffic
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 24 Feb 2010 00:25:30 +0000 (00:25 +0000)]
this should be empty for those hosters
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 24 Feb 2010 00:21:10 +0000 (00:21 +0000)]
use the right list of hosts
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Tue, 23 Feb 2010 23:33:15 +0000 (23:33 +0000)]
move inclusion of samhain to the end of the block, so it knows about all other classes included
Signed-off-by: Stephen Gran <steve@lobefin.net>
projects / mirror / dsa-puppet.git / log