disable TLSA for api.ftp-master, lists, and udd

author Peter Palfrader <peter@palfrader.org>

Sun, 9 Oct 2016 11:31:21 +0000 (13:31 +0200)

committer Peter Palfrader <peter@palfrader.org>

Sun, 9 Oct 2016 11:31:21 +0000 (13:31 +0200)
author Peter Palfrader <peter@palfrader.org>
Sun, 9 Oct 2016 11:31:21 +0000 (13:31 +0200)
committer Peter Palfrader <peter@palfrader.org>
Sun, 9 Oct 2016 11:31:21 +0000 (13:31 +0200)
diff --git a/modules/roles/manifests/init.pp b/modules/roles/manifests/init.pp

index 1d72824..a6e0965 100644 (file)
--- a/modules/roles/manifests/init.pp
+++ b/modules/roles/manifests/init.pp
@@ -58,6 +58,7 @@ class roles {
         if has_role('api.ftp-master') {
                 ssl::service { 'api.ftp-master.debian.org':
                         notify  => Exec['service apache2 reload'],
+                       tlsaport => 0,
                 }
         }
  
diff --git a/modules/roles/manifests/lists.pp b/modules/roles/manifests/lists.pp

index ace2b25..d1d9d23 100644 (file)
--- a/modules/roles/manifests/lists.pp
+++ b/modules/roles/manifests/lists.pp
@@ -1,6 +1,7 @@
  class roles::lists {
         ssl::service { 'lists.debian.org':
                 notify  => Exec['service apache2 reload'],
+               tlsaport => 0,
         }
  
         dnsextras::tlsa_record{ 'tlsa-mailport':
diff --git a/modules/roles/manifests/udd.pp b/modules/roles/manifests/udd.pp

index fe9abba..ea81cdf 100644 (file)
--- a/modules/roles/manifests/udd.pp
+++ b/modules/roles/manifests/udd.pp
@@ -1,5 +1,6 @@
  class roles::udd {
         ssl::service { 'udd.debian.org':
                 notify  => Exec['service apache2 reload'],
+               tlsaport => 0,
         }
  }
author	Peter Palfrader <peter@palfrader.org>
	Sun, 9 Oct 2016 11:31:21 +0000 (13:31 +0200)
committer	Peter Palfrader <peter@palfrader.org>
	Sun, 9 Oct 2016 11:31:21 +0000 (13:31 +0200)
modules/roles/manifests/init.pp		patch \| blob \| history
modules/roles/manifests/lists.pp		patch \| blob \| history
modules/roles/manifests/udd.pp		patch \| blob \| history