Commit Graph

254 Commits

Author SHA1 Message Date
302b6525f6
fix certbot verification path 2020-08-22 09:59:26 -05:00
4f2e05439e
enable flux 2020-08-22 09:57:58 -05:00
c1da21773f
add fun commands 2020-08-22 09:57:45 -05:00
98f98bab16
gitea 1.12.2 2020-08-22 09:57:45 -05:00
277a1bc569
uncommitted grafana code 2020-06-12 16:32:02 -05:00
91d2fcbf27
spiped removal 2020-06-12 16:30:06 -05:00
3a43d5ec60
restart craftbukkit if jar changes 2020-06-12 16:29:32 -05:00
00d74fc10f
autossh removal 2020-06-12 16:29:02 -05:00
ca5e9bd44e
add certs role 2020-05-23 16:41:09 -05:00
dae3c475fb
whitespace fix 2020-05-23 16:40:00 -05:00
3c222eee69
gitea 1.11.5 2020-05-23 16:39:37 -05:00
94cbb6d917
add more minecraft message regex captures 2020-05-23 16:39:37 -05:00
ca2eeaf2e7
disable craftbukkit max tick 2020-05-09 11:00:59 -05:00
e41d3c6b7b
add lava death regex 2020-05-09 11:00:39 -05:00
e75481b2f5
fix warning regarding null byte 2020-05-09 11:00:06 -05:00
1cc7ba9fb1
use lock files to prevent restic jobs from stacking 2020-04-22 21:39:16 -05:00
92bc6f43c8
add craftbukkit restic hook 2020-04-20 22:30:18 -05:00
5e85d23c6c
add more standard tools 2020-04-20 22:30:18 -05:00
b2f56598fa
get restic path from environment 2020-04-20 22:30:18 -05:00
e08ed9a2ec
add restic self-update 2020-04-20 22:28:21 -05:00
7b242c65a6
fix upgrade bug 2020-04-20 22:26:41 -05:00
8dae1331f7
go 1.14.2 2020-04-20 22:26:35 -05:00
f81634f0d5
gitea 1.11.4 2020-04-20 22:25:47 -05:00
acae6acb07
add craftbukkit role 2020-04-20 22:25:07 -05:00
81daf417d8
fix issues with restic minecraft hook 2020-01-28 00:06:49 -06:00
4dd6380c0b
disable/enable minecraft instances 2020-01-26 15:18:17 -06:00
22dbc01a3c
gitea 1.10.2 2020-01-26 15:16:18 -06:00
75188b008e
install serveral system tools
refs #4
2020-01-23 08:03:35 -06:00
05a67e2db4
keep 5 days of syslog files uncompressed 2020-01-23 08:03:08 -06:00
11898e4ee7
support for multiple instances of minecraft in restic minecraft hook 2020-01-23 08:01:58 -06:00
5b65beff27
don't register change when checking restic repo 2020-01-23 08:01:23 -06:00
befad13cb5
add spiped role 2020-01-23 08:00:57 -06:00
c63271c8b5
add basic go role 2020-01-23 07:59:32 -06:00
b769ea477b
minecraft multi-instance support 2020-01-22 20:16:31 -06:00
2b1ba0d6fc
upgrade minecraft 2020-01-22 20:16:00 -06:00
831655600c
add mbuffer, socat, spipe and pv
closes #2
2020-01-15 20:42:28 -06:00
4fc6c1ab78
add telegraf.d support 2020-01-05 16:46:26 -06:00
b39e213bc3
add lua, add python packages 2020-01-01 11:20:31 -06:00
ced9d028f8
fix error in rsyslog configuration
umask is not supported in an action
2020-01-01 11:19:44 -06:00
3b5c2242d1
add iptables whitelist for DNS 2020-01-01 11:19:19 -06:00
f7273def95
add gitea backup directory 2020-01-01 11:18:26 -06:00
2b4fdbc661
add nsd role 2020-01-01 11:17:43 -06:00
2da2a1affc
Add simple Discord bot to notify of Minecraft events 2019-12-30 19:53:35 -06:00
d8ffc99fdd
add restic hook for gitea 2019-12-27 00:05:28 -06:00
91bd92045e
restic script fixes 2019-12-27 00:04:59 -06:00
27e305a6ec
add p7zip and unzip 2019-12-27 00:03:29 -06:00
e44e06594e
fix order of restic job hooks 2019-12-25 17:23:36 -06:00
07a5dd96b2
update rclone 2019-12-23 11:56:32 -06:00
3349430416
Add minecraft restic hook 2019-12-23 11:32:19 -06:00
52d9dc0f57
restic should log to syslog 2019-12-23 11:30:21 -06:00
d86b692e4f
add pre/post hooks to restic scripts 2019-12-23 11:30:07 -06:00
55ba448f13
fix restic sleep bugs 2019-12-23 11:29:36 -06:00
55676661db
add more standard utils 2019-12-18 22:09:35 -06:00
8ab9c36366
add more restic helper scripts 2019-12-18 22:09:05 -06:00
0eb5699a8d
enable remote syslog 2019-12-18 22:08:03 -06:00
0ff318ae00
update minecraft server 2019-12-18 22:07:13 -06:00
4a7cd07ac9
add restic wrapper scripts 2019-12-15 20:52:36 -06:00
95b7f4115c
add restic role 2019-12-15 00:40:49 -06:00
818a7aaefd
add utils role 2019-12-13 21:48:59 -06:00
93d140015b
gitea 1.10.1 2019-12-10 21:59:45 -06:00
0e9c3a402b
Update minecraft server to 1.15 2019-12-10 20:42:43 -06:00
6e49a596e7
Remove unused autossh environment variables 2019-12-03 20:55:54 -06:00
576c5c6f17
Fix /var/log/syslog directory ownership 2019-12-03 20:41:50 -06:00
962a6542be
Support unattended-upgrades rebooting the system based on logged in users 2019-12-03 20:32:18 -06:00
54a6e007b6
Fix grafana port 2019-12-03 20:19:45 -06:00
aaa3d221e1
Disable autossh built-in monitoring 2019-12-03 20:18:54 -06:00
4f85a73714
Set gitea RuntimeDirectory 2019-12-03 20:18:11 -06:00
8b3ecdbb9c
Set autossh systemd RuntimeDirectory 2019-12-03 20:17:37 -06:00
25bde1105f
Add tmpfiles.d override for file permissions
The permissions for /var/log/syslog were being reset on boot
2019-12-03 20:14:59 -06:00
02919f87fc
Fix typos 2019-12-03 20:14:33 -06:00
3bb250084a
Fix formatting error 2019-12-03 20:14:07 -06:00
ccdf6fab93
Add InfluxDB role 2019-12-01 20:40:40 -06:00
c13ce7cb4d
Add grafana role 2019-12-01 20:40:29 -06:00
e13a935f80
Add autossh role 2019-12-01 20:40:12 -06:00
f99c956212
Fix certbot command 2019-12-01 13:45:19 -06:00
8488dc650a
Allow gitea role to use UNIX socket 2019-12-01 13:44:49 -06:00
6936849797
Fix Minecraft backup script wording 2019-11-29 15:05:35 -06:00
c255787630
Add backup completion message 2019-11-29 15:02:40 -06:00
3e5f948a00
Add log levels to Minecraft backup script 2019-11-29 15:00:53 -06:00
a459473252
Fix gitea directory modes 2019-11-29 13:17:37 -06:00
eac790014f
Configure gitea for production mode 2019-11-29 13:17:13 -06:00
3d8e67e686
Simplify firewall IP and network lists 2019-11-28 22:47:59 -06:00
2c7182fe37
Manage postfix aliases 2019-11-28 21:47:08 -06:00
084e118a93
Set system name for apticron 2019-11-28 21:46:04 -06:00
9f12ae25fd
Remove mandatory user groups
This triggers a change on every run even though there wasn't one.
2019-11-28 12:55:51 -06:00
3ca199ed20
Fix gitea log directory permissions 2019-11-27 16:43:45 -06:00
30c8de817e
Add more variables 2019-11-27 16:43:31 -06:00
bd04d892f8
Added cerbot renewal jobs 2019-11-27 16:10:19 -06:00
f292c531db
Fix rsyslog file and directory permissions 2019-11-27 16:09:22 -06:00
134fd61d6b
Add mandatory interactive user group 2019-11-25 18:58:52 -06:00
ce85694a58
Remove comment 2019-11-25 18:28:49 -06:00
4540766d80
Clean up ulogd.conf template 2019-11-25 18:24:14 -06:00
13d12faa86
Add iptable SSH whitelist 2019-11-24 19:10:21 -06:00
4ddd1ed439
Change default iptables policy
We have a final reject rule and this will prevent disconnections during a reload
2019-11-24 19:01:07 -06:00
b8c39416de
Install iptables 2019-11-24 18:55:55 -06:00
43a882e7d9
Add gitea role 2019-11-24 18:50:21 -06:00
932f04db5b
Add certbot role 2019-11-24 18:50:05 -06:00
e3cdb84192
Created stripped down default nginx virtual host configuration 2019-11-24 16:31:06 -06:00
8a31ccb6ac
Add initial sudo role 2019-11-22 21:09:18 -06:00
885a37ee0a
Create directory for rsyslog archival storage 2019-11-22 21:08:34 -06:00
9232d1e761
Suppress logging of rclone passwords 2019-11-21 21:46:34 -06:00
c8ac7c5f0a
Remove rsyslog logrotate job, remove default log files 2019-11-21 21:41:29 -06:00
b8d6c5a3f7
Remove unused variable 2019-11-15 20:47:24 -06:00
fdd0858c73
Change time of minecraft backup clean up cron job 2019-11-15 20:43:43 -06:00
ef924eaf5d
Added role to manage the hosts file 2019-11-15 20:43:08 -06:00
31400a85ac
Added telegraf ping monitors
Checks basic network connectivity to default gateways and dns.google
2019-11-15 20:40:01 -06:00
602907dd7c
Add rsyslog compress cron job 2019-11-10 15:37:48 -06:00
9856e2bdbb
Add minecraft backup path variable 2019-11-10 15:37:18 -06:00
fd344fd385
Add rclone role 2019-11-10 15:36:23 -06:00
0779fbabef
Whitespace fix 2019-11-03 11:32:38 -06:00
140932154d
Add minecraft backup clean up cron job 2019-11-03 11:31:37 -06:00
33e83dd740
Add rsyslog role 2019-11-03 11:31:08 -06:00
c5d36282db
Remove default network configuration YAML 2019-10-27 18:39:54 -05:00
6622e3299d
Set system hostname 2019-10-27 18:38:54 -05:00
d07e73ac4c
Use KVM/Spice agent when applicable 2019-10-27 18:38:13 -05:00
341a1a94b8
Fix formatting 2019-10-27 18:37:35 -05:00
d9b189158c
Add minecraft backup 2019-10-27 18:36:54 -05:00
babccb4991
Add postfix role 2019-10-27 18:35:12 -05:00
cfdbeb0f2d
Add users role 2019-10-27 18:34:27 -05:00
497c70a3bf
Add telegraf role 2019-10-27 18:33:06 -05:00
7e6e1e157c
Add nginx role 2019-10-27 18:32:25 -05:00
761a515e0f
Run apt update 2019-10-27 18:31:43 -05:00
9c620cb28f
Better way to handle the serial console 2019-10-05 17:58:44 -05:00
317bed2eb6
Refactor network role 2019-10-05 16:43:05 -05:00
8a4679c6f2
Start ttys0 for serial console 2019-10-05 16:42:23 -05:00
ea9daeb109
Add users role 2019-10-05 16:42:04 -05:00
78f4ce9ee5
Add Minecraft server role 2019-10-05 16:41:47 -05:00
2d0c10aa35
Add vm_guest additions role 2019-10-05 16:41:25 -05:00
bdb914b03b
Fix chrony restart error 2019-10-05 16:40:45 -05:00
db3ccb5769
s/cooldown/cooloff/g 2019-09-02 17:54:36 +00:00
3e8161f350
Add default rules for OUTPUT and FORWARD chains 2019-09-02 17:54:06 +00:00
dbaebf70b8
Fix ulogd service names 2019-09-02 17:53:12 +00:00
e711ee3a22
Add nflog group for packet captures 2019-09-02 17:51:48 +00:00
a511491bdf
Add ulogd2 2019-09-02 17:50:56 +00:00
a44a6540ba
Use ipsets for cool off period 2019-08-30 02:34:58 +00:00
41c2343f75
Exclude loopback from conntrack 2019-08-30 00:33:49 +00:00
dfeed33f2b
Standardize iptables comments 2019-08-27 06:08:19 +00:00
39b526a6a4
Add SSH brute force and ICMP flood limitting, other improvements 2019-08-27 05:35:14 +00:00
fea57842e7
Whitespace fixes 2019-08-25 02:07:53 +00:00
de19dd6104
Network role fixes 2019-08-25 02:07:11 +00:00
b44f626df6
Add role for host based firewall 2019-08-25 02:06:19 +00:00
787bb61add
Add default network configuration 2019-03-31 13:22:09 +00:00
87697ec353
Add search domains 2019-03-27 07:33:30 +00:00
8c241920ea
Use resolv.conf instead of systemd-resolved 2019-03-27 07:32:39 +00:00
278503d2d3
Remove network tasks from common role 2019-03-27 07:09:45 +00:00
1fa09665ff
Fix modelines 2019-03-27 07:08:13 +00:00
02cb58f947
Add network role 2019-03-27 07:05:37 +00:00
8d6886dbe0
Whitespace 2019-03-16 20:35:52 +00:00
bd6c3d307a
Add the rest of the common role 2019-03-16 20:35:27 +00:00
ddad3dc65d
Add role for chrony 2019-03-16 20:34:53 +00:00