Thomas Buck
e6bd74153d
creating domain list for letsencrypt dynamically. some other small fixes.
3 anos atrás
Thomas Buck
97ceee0704
remove unnecessary secret_* everywhere
3 anos atrás
Thomas Buck
484ee1eb99
ZNC password hash and salt generation was not working. Now using builtin znc tool to generate it. Also changed znc config options slightly.
5 anos atrás
Óscar Nájera
8f0cc14f76
Fix: Ansible uses the value present in apt module state parameter
6 anos atrás
chadrh
595075268e
Add dependencies tag to some tasks where it was missing
7 anos atrás
Aleksandr Bogdanov
f5a38fec63
Implementing password hashing for ircbouncer and mailserver inside password_hash filter plugin
7 anos atrás
Mike Ashley
b00b93a85b
Add missing configuration variable for ircbouncer
8 anos atrás
Tomas Bedrich
9786230808
Changed LE-renew cron frequency
8 anos atrás
Mike Ashley
3d68705341
Add leading 0 to octal file permissions
This is done to suppress warnings from ansible-lint.
8 anos atrás
John Giannelos
0b62ed998b
Add directories to allow persistent znc user/modules configuration.
8 anos atrás
Carl Meyer
e8796ecd28
Idempotent and independent post-certificate-renewal tasks.
8 anos atrás
Mike Ashley
0302a8fa0a
Correct certificate paths for ZNC
8 anos atrás
Mike Ashley
8f1b6a9ed8
Arrange for services to restart on cert renewal
9 anos atrás
Mike Ashley
ec7b5867d3
Update ircbouncer role for LE certificate
9 anos atrás
Mike Ashley
4afa3c97b0
Use systemd service unit configuration for ZNC
8 anos atrás
Mike Ashley
b9eb9ef9bb
Fix znc configuration
The znc package installs the client but does not set it up as a
service. This patch restores the service configuration that
was done on wheezy/trusty.
8 anos atrás
Sebastian Kriems
fe536873b7
ufw tasks shall have the ufw tag
resolves #453
Conflicts:
roles/common/tasks/ufw.yml
9 anos atrás
Sebastian Kriems
968abba197
ufw tasks shall have the ufw tag
resolves #453
9 anos atrás
Alex Payne
372f84473f
init.d -> systemctl
9 anos atrás
Alex Payne
123dc51517
Use packaged ZNC
9 anos atrás
Laurent Arnoud
a09e2e71c1
tar used in place of unarchive module
9 anos atrás
Manfred Touron
16c93ea486
Using more verbose 'dependencies' tag (#393 )
9 anos atrás
Manfred Touron
b49f3a6586
Tagged 'deps' aptitude tasks
9 anos atrás
Philip Potter
56633b3b12
Allow znc timezone to be configured
Since 1.0, znc has allowed you to specify the user's timezone:
conveniently, in tzinfo format. This allows the user to configure and
specify that timezone.
This matters because it affects the timestamps that znc issues when
playing back the buffer after a disconnection.
for more info see:
- http://wiki.znc.in/ChangeLog/1.0#Timezones
- http://wiki.znc.in/Configuration
There is also a zpush_timezone configuration option, which could at some
point be unified with irc_timezone into a common configuration item.
10 anos atrás
catern
54e62152d2
ZNC: don't make install if configure or make fail
ZNC module compilation can fail on memory-limited systems, causing ZNC
to not work properly. But even after the failure, make install still
creates /usr/local/bin/znc. Thus Ansible would skip the ZNC build and
install step on future runs, despite ZNC not being correctly installed,
causing the playbook to appear to complete successfully and requiring
manual troubleshooting.
10 anos atrás
Lorenzo Villani
3b4bf9c591
Install ZNC Monit config file only when needed
This commit moves the monitoring role to the bottom of site.yml so that
it is executed after all other roles.
This is needed because the monitoring role conditionally installs Monit
configuration file based on whether some other packages have been
installed or not (such as ZNC).
This patch also adds a comment to the "monitoring" entry within the
"roles" list and a `roles/monitoring/README.md` file telling users why
the monitoring role has to come last.
Resolves #284
10 anos atrás
Lorenzo Villani
661ed29a3e
Use /usr/sbin/nologin as login shells for vmail and znc users
10 anos atrás
Alex Payne
2d2f8a53fb
Only monitor ZNC with monit if role is used.
The other services monitored by the default monit task should always be present except in very custom setups.
Resolves #255 .
10 anos atrás
Lorenzo Villani
d5ecf673d3
Calm OCD by sorting almost every with_items block in alphabetical order
10 anos atrás
Lorenzo Villani
9b5c2b0229
ZNC: Update configuration template for znc 1.4
ZNC 1.4 uses a new section within the configuration file to specify
password hash and salt. This requires adding a new Ansible variable
'irc_password_salt'.
Also update the README file to reflect above changes.
10 anos atrás
Lorenzo Villani
6c58422d25
Add BindHost to prevent random "Connection timed out" errors
Also see: http://b.wardje.eu/2011/12/znc-failing-to-connect.html
10 anos atrás
Luke Cyca
8f4c9ea5f3
Put ZNC web interface on its on port that is inaccessible through the firewall
10 anos atrás
Luke Cyca
785cad2e84
Upgrade ZNC to 1.4
10 anos atrás
Justin Plock
ea0b288818
Moved ufw firewall rules into individual roles
10 anos atrás
Thom Wiggers
8578f49e21
Make sure that only ZNC can read its certificate
To bring this certificate in line with how those in ssl.yml are managed.
10 anos atrás
Justin Plock
f16d7f33d7
If we want to use SSL, I wasn’t able to connect to port 6667 so I had to change this to 6697 which is the SSL only port
11 anos atrás
Alex Payne
f7f7157cec
more updated variable formatting and accommodation of the YAML parser being a fussbudget
11 anos atrás
Alex Payne
d28f0f82b9
move to non-deprecated template variable formatting
11 anos atrás
Allen Riddell
5d8ca0b08a
ircbouncer: connect to default server (freenode) using ssl
11 anos atrás
Luke Cyca
2c083c44e6
Create znc config directory
11 anos atrás
Luke Cyca
0877ee4a89
Fix znc download URL
This URL works for all releases, not just the latest one.
11 anos atrás
Luke Cyca
f6d74de487
Provide a good initial config for znc (but leave it alone after that)
11 anos atrás
Hector Castro
2e7005eaec
Fix SSL certificate for ZNC so that it begins with a private key.
11 anos atrás
Greg Karékinian
58dddc55d1
Remove variables from roles
Refs #39
11 anos atrás
Luke Cyca
ca8a371320
Use combined cert for postfix, dovecot, and znc
Fix CAcert usage in postfix and dovecot
11 anos atrás
Alex Payne
3ccefb5f03
use shell for znc compile. Fixes #12
11 anos atrás
Alex Payne
080d38986c
first commit
11 anos atrás