| Commit message (Collapse) | Author | Age | Lines | ||
|---|---|---|---|---|---|
| ... | |||||
| * | Nice |  Johannes Christ | 2024-09-05 | -4/+4 | |
| | | | | | Nice | ||||
| * | Fix p1 in Fredrick |  Joe Banks | 2024-09-05 | -1/+1 | |
| | | |||||
| * | AlertManager init use Alpine | Joe Banks | 2024-09-04 | -2/+2 | |
| | | | | | Smaller image and faster startup | ||||
| * | Add all accepted mail domains to SRS exclude configuration | Joe Banks | 2024-09-03 | -0/+21 | |
| | | | | | | | | | | | | | | | We don't want to rewrite the envelopes of mail that is from a valid domain of our mailserver (e.g. pydis.com or int.pydis.wtf), but by default PostSRSD will rewrite anything that is not the `mydomain` configuration variable of Postfix (which is just set to `pydis.wtf` for us). This change updates the environment defaults for PostSRSD to ensure that we don't change any envelopes that don't need to be changed, as well as ensuring that to end mailservers the DKIM and SPF checks are made against the actual domain (e.g. int.pydis.wtf) instead of the rewritten envelope. | ||||
| * | Appease the documentation dictator | Joe Banks | 2024-09-03 | -4/+9 | |
| | | |||||
| * | Update postfix main.cf to pass through new conditional SRS rewriter | Joe Banks | 2024-09-03 | -2/+2 | |
| | | |||||
| * | Add new postfix sub-services for conditional SRS rewriting | Joe Banks | 2024-09-03 | -0/+23 | |
| | | |||||
| * | Create new sender canonical map template for SRS | Joe Banks | 2024-09-03 | -0/+5 | |
| | | | | | | | This template returns the address verbatim if it's a local domain else it returns nothing. Based on this, we can use these addresses for SRS, it will either use the verbatim address or pass onto SRSd for a rewrite. | ||||
| * | Clean up mail script after feeding it to at | Johannes Christ | 2024-09-03 | -0/+1 | |
| | | |||||
| * | Send raw date to Fredrick vacation script | Johannes Christ | 2024-09-03 | -2/+4 | |
| | | | | | | | Allows to add the timezone to it to properly determine local sender time and Fredrick's current time (if he's travelling within his home country, that is). | ||||
| * | Fix Jitsi SASL authentication | Joe Banks | 2024-09-03 | -4/+4 | |
| | | | | | | | | | | | | | | | Why doesn't it support quotes? Why doesn't it support quotes? Why doesn't it support quotes? Why doesn't it support quotes? Why doesn't it support quotes? Why doesn't it support quotes? | ||||
| * | More cgitrc modifications | Joe Banks | 2024-09-03 | -0/+3 | |
| | | | | | THERE ARE SO MANY OPTIONS! I LOVE CGIT!!!! | ||||
| * | Correct handler names in Dovecot role | Joe Banks | 2024-09-03 | -2/+2 | |
| | | |||||
| * | Change all templates to use {{ ansible_managed }} | Joe Banks | 2024-09-03 | -38/+38 | |
| | | |||||
| * | Set ansible_managed for use in templates | Joe Banks | 2024-09-03 | -0/+2 | |
| | | |||||
| * | Delay Fredrick vacation script replies by 10 minutes | Johannes Christ | 2024-09-03 | -1/+21 | |
| | | | | | | | Untested. We should expand this (later) such that when an e-mail is sent outside of Fredrick's regular working hours, the script (like Fredrick) needs more time to get back to you, since he needs to practice his Qi. | ||||
| * | Include sender date as a unix timestamp | Johannes Christ | 2024-09-03 | -1/+5 | |
| | | |||||
| * | Add top posting to vacation script | Johannes Christ | 2024-09-03 | -0/+9 | |
| | | |||||
| * | Add tag for rolling out service scripts | Johannes Christ | 2024-09-03 | -0/+2 | |
| | | |||||
| * | Update variable reference for Fredrick vacation script | Johannes Christ | 2024-09-03 | -1/+1 | |
| | | |||||
| * | Have Fredrick's vacation tool CC in DevOps | Johannes Christ | 2024-09-03 | -2/+1 | |
| | | |||||
| * | Add transport rules for Fredrick | Joe Banks | 2024-09-03 | -0/+5 | |
| | | |||||
| * | Add Fredrick API handler script | Joe Banks | 2024-09-03 | -0/+54 | |
| | | |||||
| * | Add variables for Fredrick API | Joe Banks | 2024-09-03 | -7/+12 | |
| | | |||||
| * | Migrate service scripts from files to templates | Joe Banks | 2024-09-03 | -5/+17 | |
| | | |||||
| * | Treat NGINX responses as UTF-8 | Joe Banks | 2024-09-02 | -0/+19 | |
| | | | | | | | | | | Some sites that had non-ASCII characters rendered weirdly because our NGINX configuration was not returning a default charset and so rendering was being left up to browser/standards defaults. This change adds a new config file to /etc/nginx/conf.d/ which forces responses to be interpreted as/transformed to UTF-8. | ||||
| * | Raise time threshold for 4xx alerts | Johannes Christ | 2024-09-01 | -1/+1 | |
| | | | | | | | At present we get plenty of unactionable, flapping alarms. So far, they have shown us nothing of value. Raise the time consecutive errors need to be seen before we alert. | ||||
| * | Pleasure the style dictator | Johannes Christ | 2024-09-01 | -1/+2 | |
| | | | | | | See https://github.com/python-discord/infra/pull/524#issuecomment-2323385510. | ||||
| * | Install Galaxy dependencies in CI with cache | Joe Banks | 2024-09-01 | -1/+11 | |
| | | |||||
| * | Update Ansible lint config to ignore Jinja spacing rule | Joe Banks | 2024-09-01 | -0/+2 | |
| | | | | | | Also ignore the promethues-postgres-exporter which is a submodule and is not subject to our lint rules | ||||
| * | Update git checkouts in Ansible lint CI stage | Joe Banks | 2024-09-01 | -1/+8 | |
| | | |||||
| * | Override runtime directory permissions | Johannes Christ | 2024-09-01 | -0/+23 | |
| | | |||||
| * | Swap saslauthd to mount outside of postfix | Johannes Christ | 2024-09-01 | -2/+5 | |
| | | | | | Closes #474. | ||||
| * | Add missing task for sasl role | Johannes Christ | 2024-09-01 | -0/+10 | |
| | | |||||
| * | Update dependency mkdocs-material to v9.5.34 |  renovate[bot] | 2024-09-01 | -3/+3 | |
| | | | | | | | | datasource | package | from | to | | ---------- | --------------- | ------ | ------ | | pypi | mkdocs-material | 9.5.33 | 9.5.34 | | ||||
| * | noqa variable naming on dmarc_metrics_exporter task | Joe Banks | 2024-08-31 | -8/+7 | |
| | | |||||
| * | Skip ansible lint on DMARC metrics exporter role | Joe Banks | 2024-08-31 | -0/+1 | |
| | | |||||
| * | Explicitly set become: true on DMARC sieve compilation handler | Joe Banks | 2024-08-31 | -0/+1 | |
| | | |||||
| * | Use --unsafe in check-yaml pre-commit filter | Joe Banks | 2024-08-31 | -1/+1 | |
| | | | | | | This performs a syntax check instead of attempting a load to prevent unresolvable tags (i.e. Ansible's `!vault`) from kicking up errors. | ||||
| * | Add DMARC exporter to Prometheus scrape targets | Joe Banks | 2024-08-31 | -0/+7 | |
| | | |||||
| * | Run DMARC inbox setup and dmarc_metrics_exporter role on mail hosts | Joe Banks | 2024-08-31 | -0/+25 | |
| | | |||||
| * | Add tasks to template and enable DMARC inbox sieve filter | Joe Banks | 2024-08-31 | -0/+39 | |
| | | |||||
| * | Add new DMARC inbox sieve filter | Joe Banks | 2024-08-31 | -0/+7 | |
| | | |||||
| * | Add dmarc_metrics_exporter role requirement | Joe Banks | 2024-08-31 | -0/+4 | |
| | | |||||
| * | Update munin-node config template to allow scraping from any host | Joe Banks | 2024-08-30 | -1/+8 | |
| | | |||||
| * | Add scraping config to munin master against all Ansible hosts | Joe Banks | 2024-08-30 | -4/+8 | |
| | | |||||
| * | Create a new firewalld zone for Wireguard interface on Rocky hosts | Joe Banks | 2024-08-30 | -0/+19 | |
| | | |||||
| * | Setup firewall rule for Rocky hosts in munin-node | Joe Banks | 2024-08-30 | -0/+12 | |
| | | |||||
| * | Add Munin port 4949 to wireguard allow list for nftables hosts | Joe Banks | 2024-08-30 | -0/+3 | |
| | | |||||
| * | Add new firewalld role for shared reload handler | Joe Banks | 2024-08-30 | -0/+6 | |
| | | |||||
 |
index : infra | |
| The PyDis DevOps boiler house, the engine room, where the magic happens. |
| aboutsummaryrefslogtreecommitdiffstats |