Commit Graph

369 Commits

Author SHA1 Message Date
Arne Fitzenreiter
1a129822af linux-pae: fix grub.conf creation on pv machines
on some systems it seems that grub2 and it config also exist.
2019-06-18 14:36:02 +02:00
Peter Müller
fa7de475fe Tor: fix permissions after updating, too
Fixes #12088

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Reported-by: Erik Kapfer <ummeegge@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2019-06-12 05:45:42 +01:00
Michael Tremer
715a269aa4 tshark: Drop special package scripts
We are not doing anything different from the default here,
so we do not need an extra copy of them.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2019-05-20 10:48:25 +01:00
Erik Kapfer
ffcef39d40 tshark: New addon
Signed-off-by: Erik Kapfer <ummeegge@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2019-05-20 10:44:04 +01:00
Alexander Koch
41b7369f80 zabbix_agentd: Bugfix for /etc/sudoers.d/zabbix.user
Files containing an '~' or '.' are ignored by sudo when placed in the includedir /etc/sudoers.d This makes the file useless. The file is renamed to "zabbix" instead of "zabbix.user" to fix this.

See: https://www.sudo.ws/man/1.8.13/sudoers.man.html#Including_other_files_from_within_sudoers

Signed-off-by: Alexander Koch <ipfire@starkstromkonsument.de>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2019-04-11 07:55:10 +01:00
Michael Tremer
aac6015042 dnsdist: Install some symlinks to start the service
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2019-03-18 02:54:37 +00:00
Peter Müller
a10b0e5b44 ensure Tor daemon files have correct permissions
Set permissions for /var/lib/tor and /var/ipfire/tor to
tor:tor, regardless whether Tor user has been created before
or not.

This ensures Tor starts properly on existing systems after
reinstallation of the add-on. Thanks to Michael for the hint.

Further, a comment for new Tor user in /etc/passwd has been added.

Fixes #11779.

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2019-03-16 12:32:57 +00:00
Peter Müller
4680d554fc run Tor under dedicated user
This allows more-fine granular firewall rules (see first patch for
further information). Further, it prevents other services running as
"nobody" (Apache, ...) from reading Tor relay keys.

Fixes #11779.

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2019-03-14 13:15:18 +00:00
Michael Tremer
661fdb02c2 zabbix_agent: Ensure that the user exists on all systems
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2019-03-08 09:58:56 +00:00
Alexander Koch
06fc6170a2 zabbix_agentd: New addon
New addon for monitoring IPFire by Zabbix Monitoring (https://www.zabbix.com/features).
See https://forum.ipfire.org/viewtopic.php?f=52&t=22039 and https://lists.ipfire.org/pipermail/development/2019-February/005324.html for further details.

Best regards,
Alex

Signed-off-by: Alexander Koch <ipfire@starkstromkonsument.de>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2019-03-08 09:55:18 +00:00
Michael Tremer
c519be4226 haproxy: Create/restore backup when package is installed/uninstalled
Fixes: #11946
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2018-12-10 00:36:04 +00:00
Michael Tremer
e0986954d4 bird: Launch service on install and add symlinks to start at boot time
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2018-12-01 16:13:25 +00:00
Michael Tremer
9fbbf3fda2 shairport-sync: Add install/uninstall scripts
These scripts will install symlinks to start the service
at boot time.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2018-11-11 18:57:55 +00:00
Michael Tremer
ed1349aa76 Merge remote-tracking branch 'ms/frr' into next 2018-10-31 09:31:38 +00:00
Michael Tremer
ebd6fe2b50 frr: Add initscript
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2018-10-30 17:27:28 +00:00
Michael Tremer
a90f7faf78 frr: Install users and make backup when package is installed/uinstalled
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2018-10-30 17:20:37 +00:00
Michael Tremer
aeefbca730 clamav: Move database directory to /var partition
The clamav database is quite large and occupies valuable
space on the root partition that on older systems is only
2GB large. This change moves the virus definition database
to the /var partition which is larger and supposed to hold
data like this anyway.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2018-10-29 11:25:24 +00:00
Michael Tremer
6064cd87cc Revert "avahi: Drop package"
This reverts commit aa6ee515c5.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2018-08-10 11:11:48 +01:00
Arne Fitzenreiter
b403b04a13 initrd: add early microcode load
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2018-08-05 13:32:36 +02:00
Michael Tremer
2d5940daca Drop MySQL
This is outdated and still on 5.0.x and nobody volunteered to
update this package.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2018-02-12 12:05:46 +00:00
Michael Tremer
3ed1c621cf Revert "Add Intel microcode updates from Jan 2018"
This reverts commit d404b1dba2.

Intel has pulled these microcode updates because of
random system reboots and systems becoming unstable.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2018-01-24 16:08:22 +00:00
Jonatan Schlag
d404b1dba2 Add Intel microcode updates from Jan 2018
Add intel microcode to the distribution and configure dracut in a way
that the microcode is loaded early in the boot process.

Fixes #11590

Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Acknowledged-by: Arne Fitzenreiter <arne.fitzenreiter@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2018-01-14 15:25:08 +00:00
Michael Tremer
ddcd60f7dc mdns-repeater: New package
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2018-01-09 14:14:37 +00:00
Michael Tremer
333915f5cf Drop owncloud
We are going to remove PHP and owncloud requires it

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2018-01-05 13:28:59 +00:00
Michael Tremer
fbcb5b749a Drop mediatomb
This didn't build and run in ages and has been removed from
the repositories quite a while ago.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2018-01-05 13:26:33 +00:00
Michael Tremer
b2d4fa028f Drop cacti
This package was discontinued upstream and seems to be
a bit more lively again. However, nobody of the team
wants to maintain cacti. Therefore this is being dropped
for now.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2017-12-16 12:35:12 +00:00
Michael Tremer
f3ddea42c6 Drop openmailadmin package
This is EOL upstream for over ten years now and therefore
we cannot continue to support this either.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2017-12-16 12:33:05 +00:00
Michael Tremer
4d86ce7021 Drop nagios
This is no longer maintained and icinga is available.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2017-12-16 12:31:47 +00:00
Michael Tremer
f451d465fb Drop nagiosql
This is no longer maintained any more and therefore being dropped

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2017-12-14 17:48:24 +00:00
Michael Tremer
56720befc7 Drop vsftpd which isn't actively maintained any more
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2017-11-28 17:30:08 +00:00
Michael Tremer
d38edcf8b4 pound: Drop package which isn't very actively maintained any more
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2017-11-28 17:29:55 +00:00
Stephan Feddersen
fe6f676b35 WIO: fix the bugs reported in the forum
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2017-08-29 14:37:30 +01:00
Stephan Feddersen
0d6cc79d98 WIO: first addon release v1.3.1
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2017-08-15 11:45:46 +01:00
Michael Tremer
fc07307f9a Drop vdr_vnsiserver5
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2017-05-18 12:23:21 +01:00
Michael Tremer
a3366d419f mysql: Fix build with newer GCC
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2017-05-18 12:07:35 +01:00
Michael Tremer
076ad71576 avahi: Drop package
The daemon locks up when starting up in avahi_log_info() and
probably the other logging functions, too.

Since avahi is not really used a lot in the distribution,
has been in testing for four years and has virtually no users
I am going to drop it instead of wasting time on fixing this.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2017-04-12 17:49:45 +01:00
Michael Tremer
778979f630 dbus: Update to 1.11.12
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2017-04-11 14:23:54 +01:00
Michael Tremer
5056b4f104 Drop mldonkey files
The packages has been dropped years ago. However, some
files remained in the source tree.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2017-01-16 16:53:35 +00:00
Arne Fitzenreiter
2872f345b0 guardian: add path to update-lang-cache
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2016-11-03 06:51:49 +01:00
Arne Fitzenreiter
f8571e07be guardian: add languange cache regeneration at (un)install
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2016-11-02 20:26:58 +01:00
Jonatan Schlag
3943a54036 Libvirt: Fix update.sh script
The virtlogd could only be restarted when the daemons run. The update.sh
script tried to restart the daemon no matter if the daemons run or not.
This behaviour produce problems.

An If statement now checks if the daemon runs or not and execute the
command that is suitable for the situation.

Fixes: #11172

Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2016-09-05 17:05:32 +01:00
Jonatan Schlag
d996e17ab8 Update libvirt to 2.1
This is the update of libvirt to the latest version 2.1.
The most important change from a packager view is the new virtlogd
daemon.
This daemon handles the qemu output and wrote it to log files.

The require some changes:
- A new init script to start, stop restart the daemon called virtlogd.
The daemon is restart with SIGUSR1 (this is important because the daemon
keeps all pipelines etc. open).

This introduces a problem with the uninstall.sh install.sh script.
It is not possible to stop the daemon while virtual machines are
running, so the script update.sh execute from now not uninstall.sh and
install.sh instead it contains all steps from uninstall.sh install.sh
expect the start / stop routine for virtlogd. The daemon is just
restarted after the update, which makes sure that all changes take
effect.

- new symlinks in the uninstall.sh and install.sh script and some root
file changes because of the new virtlogd init script.
- the archive format changes from tar.gz to tar.xz

For Changelogs see:

https://libvirt.org/news-2015.html
https://libvirt.org/news.html (2017 and later:
https://libvirt.org/news-2016.html )

Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2016-08-31 22:40:35 +01:00
Jonatan Schlag
1cd62a8d3d Libvirt: Remove delay from start command in install.sh
Fixes: #11152

Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2016-08-03 11:42:24 +01:00
Jonatan Schlag
3a4a8b055b Libvirt: Add backup
The directory /etc/libvirt is backed up on uninstallation  and is
restored on installation.

Alle Files in  /var are commented in the rootfile so they are not
removed on uninstallation.
Because of the fact that the directories are not shipped with the
package they were created at installation time.
The permissions of 3 directories are changed because the qemu user is
nobody and the qemu group is kvm, so the permissions must be nobody:kvm

Fixes: #11151

Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2016-08-02 16:07:33 +01:00
Michael Tremer
0c265f5717 nginx: Update to 1.8.1
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2016-07-29 09:04:04 +01:00
Michael Tremer
71f578bbfc freeradius: New package
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2016-07-19 14:54:50 +01:00
Jonatan Schlag
b61fe3f404 Fix in libvirt install.sh/uninstall.sh
The libvirt daemon was not started after installation because the
initscritp is named 'libvirtd' not like the package 'libvirt'.
The same problem appear in the uninstall.sh. The service was not
stopped.

Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2016-07-15 09:53:13 +01:00
Jonatan Schlag
5cc7ae0926 Qemu: add a group kvm to access /dev/kvm eaiser
As a normal user, it is not possible to use qemu with KVM. This is bad
because it is better when it is possible to start the machine with a
less privileged user. To achieve this a group KVM is created and the
access to /dev/kvm is allowed for this group. So every user in this
group can use qemu with KVM.
This change is also useful for libvirt because the VMs can be started
with user nobody and group kvm.

Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2016-06-20 16:25:29 +01:00
Jonatan Schlag
77d989a667 Change the default libvirt remote user to libvirt-remote
It is possible to communicate per ssh via a socket with libvirt. It is
not a good idea to do this as root, so the remote user is now
libvirt-remote. Only this user or users in the group libvirt-remote can
communicate with the socket.
The user libvirt-remote is created without a password. The users have to
set a password for this user after installation.

Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2016-06-16 09:32:49 +01:00
Jonatan Schlag
272ac1b454 New package libvirt
Libvirt is buidl only on i585 and x86_64 because qemu is build only
on this arches.

Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2016-06-01 22:26:01 +01:00