webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-17 14:33:00 +02:00
Code Issues Packages Projects Releases Wiki Activity
12,679 Commits 2 Branches 1 Tag
b54cd874b9c3f566cf65d290f13982c134c5a28b
Commit Graph

1050 Commits

Author SHA1 Message Date
Michael Tremer
6c920b19cd IPsec: Rename ipsec-block script to ipsec-policy 
This is a more general name for a script that will be extended
soon to do more than just add blocking rules.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2019-02-04 18:20:36 +00:00
Michael Tremer
f0092a6e3e keepalived: Move change of conntrack sysctl option into package 
The setting cannot be set on the default system because the ip_vs
module is not loaded by default and there is no reason to load it
just because we would be able to set the setting.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2019-01-13 12:50:26 +01:00
Michael Tremer
7d5caee6bd Add initscript for conntrackd 
The daemon will be started by default when a configuration
file exists.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2019-01-06 08:59:25 +00:00
Michael Tremer
e978f0429f keepalived: Fix incorrect path in initscript 
This path to keepalived was just incorrect and therefore
the daemon could not easily be reloaded.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-12-19 23:38:48 +00:00
Michael Tremer
f33d28978d unbound: Use correct parameter for IP addresses and hostnames 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-12-19 21:00:21 +01:00
Michael Tremer
c9ae511ecf unbound: Allow forwarding to multiple servers at the same time 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-12-19 20:23:59 +01:00
Michael Tremer
81e1e80e38 AWS: Prefer red* or eth* when importing configuration 
This change is necessary to make sure that the script prefers
are link with internet access. That would usually be red (after
the second boot) or eth* (on the first boot).

That allows (and ensures) that we can install packages in
the user-data script.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-12-12 11:36:44 +00:00
Arne Fitzenreiter
23a3aec100 cpufrequtils: update initskript for xz compressed modules 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2018-12-07 21:05:50 +01:00
Arne Fitzenreiter
56726ed954 rngd: update initskript and add hwrngtty support 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2018-12-06 22:33:05 +01:00
Michael Tremer
93363446e4 AWS: Add a timestamp to user-data.log 
This way, multiple (failed) runs of the script won't
overwrite the log file.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-12-05 14:42:54 +00:00
Michael Tremer
1022b203ad AWS: Write user-data.log to /var/log 
This should not be in /root at all.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-12-05 14:38:28 +00:00
Michael Tremer
a4e3a76af9 bird: Add initscript 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-12-01 16:13:25 +00:00
Michael Tremer
6dc7b04bea shairport-sync: Add initscript 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-11-11 18:55:35 +00:00
Michael Tremer
95c60d31aa udev: Do not try to change kernel hotplug handler any more 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-11-07 20:27:35 +00:00
Michael Tremer
e300a3d138 udev: Do no try to install any device nodes any more 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-11-07 20:26:34 +00:00
Michael Tremer
c19d29f701 Revert "haproxy: Make /dev/log available in chroot" 
This reverts commit 699f0aa710.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-11-07 20:07:53 +00:00
Michael Tremer
9f60aa9679 syslog: Listen to network and block access from anywhere but localhost 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-11-07 20:07:53 +00:00
Michael Tremer
ed1349aa76 Merge remote-tracking branch 'ms/frr' into next 2018-10-31 09:31:38 +00:00
Michael Tremer
e1def10e29 frr: Set configuration file permissions correctly 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-10-30 17:32:48 +00:00
Michael Tremer
ebd6fe2b50 frr: Add initscript 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-10-30 17:27:28 +00:00
Michael Tremer
aeefbca730 clamav: Move database directory to /var partition 
The clamav database is quite large and occupies valuable
space on the root partition that on older systems is only
2GB large. This change moves the virus definition database
to the /var partition which is larger and supposed to hold
data like this anyway.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-10-29 11:25:24 +00:00
Michael Tremer
699f0aa710 haproxy: Make /dev/log available in chroot 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-10-22 21:40:56 +02:00
Michael Tremer
b8fdc7398c static-routes: Make it clear that we are reloading routes 
When RED is brought down, we will reload all static routes.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-09-13 15:03:59 +01:00
Michael Tremer
3da2a66193 aws: Don't update the system on first boot 
This will violate AWS policy and therefore had to be removed.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-31 11:08:53 +01:00
Michael Tremer
95b87f39ac localnet: Set FQDN without using domainname command 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-23 10:18:59 +01:00
Michael Tremer
84cd9b9162 Drop the network-trigger script 
This is done at boot time and doesn't normally need to be done again.

On AWS or in the setup, renaming any network interfaces is being
handled automatically.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-22 14:05:43 +01:00
Michael Tremer
f3d59d2c94 firstsetup: There is no need to restart udev here 
All network interfaces are renamed accordingly in setup

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-22 14:02:43 +01:00
Michael Tremer
c5465a9453 aws: Let udev rename all network interfaces 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-22 14:00:39 +01:00
Michael Tremer
046ef135e6 Merge remote-tracking branch 'origin/efi' into next 2018-08-16 12:49:13 +01:00
Michael Tremer
242cfc3395 localnet: Properly format and quote variables 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-16 12:42:25 +01:00
Michael Tremer
5b9f387d59 localnet: Correctly set domain name 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-16 12:41:52 +01:00
Michael Tremer
96422f85b6 aws: Hide pakfire update output 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-15 11:51:53 +01:00
Michael Tremer
40436fa149 aws: Write user-data log to file only 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-15 11:51:53 +01:00
Michael Tremer
281d75c945 aws: Execute reboot when an update requires one 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-15 11:51:53 +01:00
Michael Tremer
3eeff87fe6 Fix typo in unbound initscript 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-15 11:51:53 +01:00
Michael Tremer
9ae73c3090 aws: Set PATH to search in /usr/local/(s)bin 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-15 11:51:53 +01:00
Michael Tremer
6cf586436b aws: Import pakfire keys before the first launch 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-15 11:51:53 +01:00
Michael Tremer
bd7d957fae aws: Log output of user-data script to /root/user-data.log 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-15 11:51:53 +01:00
Michael Tremer
0ed9b77099 aws: Install all available updates first 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-15 10:11:08 +01:00
Michael Tremer
647ca912a2 aws: Setup DNS during init phase 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-15 10:10:13 +01:00
Michael Tremer
8defa50e73 aws: Execute user-data script while we have networking up 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-13 12:14:49 +01:00
Michael Tremer
467581b8ab avahi: Update to 0.7 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-10 11:19:25 +01:00
Arne Fitzenreiter
79bcc6f769 collectd: fix cpufreq plugin enable 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2018-08-03 16:13:12 +02:00
Michael Tremer
0cf70cae66 aws: Disable SSH password authentication by default 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-30 16:54:50 +01:00
Michael Tremer
4e4c122c58 aws: Add support for a script that can be executed at first boot 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-20 16:19:46 +01:00
Michael Tremer
ba06294341 aws: Always exit the init script cleanly 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-20 16:05:15 +01:00
Michael Tremer
6cf5a533f5 partresize: Remove debugging line 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-20 12:03:10 +00:00
Michael Tremer
43829df3bb partresize: Only regenerate configuration instead of re-installing GRUB 
This should not be necessary

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-20 12:03:09 +00:00
Michael Tremer
6a7e6b4499 AWS: Give setup user permissions to read its own SSH keys 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-14 15:06:39 +01:00
Michael Tremer
87d7fc6609 aws: Unlock setup account 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-14 14:20:18 +01:00