Archives
/
algo
mirror of https://github.com/trailofbits/algo
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,150 Commits
5 Branches
2 Tags
11 MiB
master
dependabot/pip/ansible-9.4.0
dependabot/github_actions/actions/setup-python-5.1.0
fix/14704
dependabot/pip/jinja2-approx-eq-3.1.3
v1.1
v1.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
Commit Graph

419 Commits (master)

Author SHA1 Message Date
Jack Ivanov 6f170982aa move to Elastic IP (#512) 7 years ago
Jack Ivanov 9f698fdd68 Get strongswan from the Zesty repo on Xenial (#515) 7 years ago
Jack Ivanov bd348af9c2 Implementing blocks and additional fail hints #487 (#497) 
change the troubleshooting url
 7 years ago
Jack Ivanov 2f5c050fd2 dpdaction to clear (#498) 7 years ago
Jack Ivanov 0ed68b6c30 Properly configure ICMP restrictions (#492) 7 years ago
Ryan Kasper 0cb43650cb Windows 10 -PfsGroup None --> -PfsGroup ECP256 (#493) 
* Windows 10 -PfsGroup None --> -PfsGroup ECP256

Fixes broken tunnel when rekey (CREATE_CHILD_SA request [ N(REKEY_SA) SA No TSi TSr KE ]) occurs (on my Windows 10 1703 build 15063.138 Creator's Update system this is ~every 57 minutes)

* Update Windows Client PfsGroup Commandline
 7 years ago
Jack Ivanov 540c761d3b Disable RSA in the mobileconfigs. Fixes #486 7 years ago
Jack Ivanov 451394100d Some enhances in the compat ciphers (#464) 
raise the IntegrityCheckMethod to SHA384

Move Windows to ECDSA

Increase IntegrityCheckMethod
 7 years ago
Dan Guido aac052da46 this option is deprecated (#477) 7 years ago
Jack Ivanov c3fcfe5d0d Let users choose the distro version #449 (#466) 
Make dpdaction great again

add 1704 to travis

Make EC2 image name more convenient

modify apparmor profile
 7 years ago
Andy Boutte 76cdc69548 CF tested and working for EC2 deployment (#431) 
* AWS CloudFormation #132

* IPv6 EC2 draft

* CF tested and working for EC2 deployment

* IPv6 Implementation, EC2, Cloudformation

* Fixed ipv6 networking

* adding ip6tables rule for DHCP on AWS
 7 years ago
Jack Ivanov a7b06058cb remove the proxy role #440 (#457) 
* remove the proxy role #440

* Separate facts. Make roles more independent from each other

move openssl to local tasks

move unneeded tasks
 7 years ago
Dan Guido 0b05ea19bc Windows needs SHA2-256. Closes #453. (#456) 7 years ago
Dan Guido 8173b84ff8 Change uniqueids back to never (#448) 
We need this to allow multiple connections with the same id/certificate
 7 years ago
Dan Guido b29772f146 prefer ed25519 7 years ago
Dan Guido f9f7be7b0d Fix a typo from #439 7 years ago
Dan Guido 1778cb1f45 disable dpd #430 (#437) 
Closes #430
 7 years ago
Dan Guido 8e5e6d5088 remove extraneous integrity algos from AEAD ciphers (#439) 
In reference to
https://github.com/trailofbits/algo/issues/9#issuecomment-294370560
 7 years ago
Jauder Ho 5b2e13d18f Only enable ChaCha cipher (#412) 
* Only enable ChaCha cipher

* Add back a few ciphers for compatability
 7 years ago
Jack Ivanov fa5a956193 Add URLStringProbe (#428) 
* Add URLStringProbe

* switch to Apple's hotspot-detect.html
 7 years ago
Jack Ivanov ea5976f49b write logs to file if BSD only 7 years ago
Jack Ivanov 9c12272c8c Python False-y values should be accepted. #417 (#426) 7 years ago
Jack Ivanov 16329fe088 Instance size (#404) 
* Escaping Special Characters #388

* Make instance sizes more flexible to edit #355
 7 years ago
Jack Ivanov bf75a1bb03 move generating of the known_hosts file to local_action (#425) 7 years ago
MiWCryptAnalytics 04b61ca3d2 Increase CA key entropy to 128bit (#415) 
Changes the default CA key size from 48 bit to 128bit with OpenSSL usermode CSPRNG with hex encoding
 7 years ago
Jack Ivanov 02f363d825 change the order of ciphers 7 years ago
mathew19 ae43ed6f81 Update client_ipsec.secrets.j2 (#414) 
Fix filename in client ipsec_user.secrets
 7 years ago
mathew19 5e56996f5c Fix name (#411) 7 years ago
Jack Ivanov c61a07fb60 Escaping Special Characters #388 (#403) 7 years ago
Jack Ivanov 56a72e5af2 New ciphers implementing #247 (#352) 
Switches to SHA2_512_256 HMAC integrity algorithm and adds cipher compatibility for other platforms.
 7 years ago
Jack Ivanov 70738ed8be Enable IP forwarding GCE #369 7 years ago
Jack Ivanov 95e0134f21 1. Disable SSH key deploying if installation on existing server 
2. Move to the ed25519 algorithm
3. Delete unneeded option RSAAuthentication
Fixes #272
 7 years ago
Dan Guido e55ce03906 URLStringProbe with this URL does not work as intended 7 years ago
Dan Guido 5e22b79033 Add configuration for URL probes to Apple profile 
Chrome and Android both request a known URL that generates HTTP 204 No Content responses to determine if they have internet connectivity. In Apple profiles, we can use the same URL to determine whether the VPN needs to connect. Using this feature will help save battery life for lots of users.
 7 years ago
Jack Ivanov 47515154bb add mtu in the sswan profile 7 years ago
Casey Lang 8b977afd99 Modify creation of GCE Instance (#363) 
Update deprecated GCE metadata options
 7 years ago
Jack Ivanov 3b8d04d06c remove the logging role 7 years ago
Jack Ivanov 6e61a51aca rewrite the sysctl task 7 years ago
Jack Ivanov c0f4b5fa41 Enable default values if the role is skipped #313 7 years ago
Josh Soref 84bbcb88d0 Spelling fixes (#342) 
* spelling: algorithm

* spelling: bertrand

* spelling: between

* spelling: checking

* spelling: conjunction

* spelling: contributor

* spelling: delimited

* spelling: fashion

* spelling: droplet

* spelling: javascript

* spelling: nameserver

* spelling: obligatory

* spelling: official

* spelling: overridden

* spelling: overwrite

* spelling: parameter

* spelling: suppressing
 7 years ago
James Hale 41ed682213 Reduce VPC CIDR size to /16 (#341) 7 years ago
Josh Meisels d37c6b72c5 Add new Azure regions and allow user to select VM size (#332) 
* Update Azure Region List

Included several additional regions in the Azure list.

In a future version we may want to ask users to choose a continent, then present region options since this list is getting long.

* Add VM size selection

Added prompt for user to choose VM size. Useful because the default size is not available in all regions, and there are cheaper sizes.

* Handle vm_size choice in "Create an Instance" step

Use the variable passed in that the user chose for vm_size.

* Differentiate Basic A0 and Standard A0

* Remove vm_size D1 since it's being deprecated

* Fix syntax issue - missing semicolons

* Remove note to self comment

* Remove changes to let user select VM size

Removing my previous additions that let the user select their Azure VM size.

* Hard code VM size to cheapest size

Remove my usage of a variable for VM size. Update to use the Basic_A0, which is the cheapest size of VM.
 7 years ago
Matt Mankins b8d2dc68bb Change EC2 VPC CIDR blocks to uncommon non-routable addresses (#335) 7 years ago
Josh Watson 84a3b5f675 Change EC2 VPC CIDR blocks to non-routable addresses. (#330) 
The previous address ranges were actually routable addresses, which caused some concern for some people because it looked suspicious in tracert. The new CIDR blocks are non-routable addresses, which resolves this concern.
 7 years ago
brad2014 09e5d87c7b Minor name and documentation edits (#327) 7 years ago
James Hale 3b3fb601ef Fix name tag key (#282) 7 years ago
Dan Guido 655a917dd2 iptables filter table fix (#285) 7 years ago
Jack Ivanov 6facb6cb4f FreeBSD / HardenedBSD (#262) 
* FreeBSD draft

ifconfig fix

Pre-tasks fixes

fix hardcoded IP

some refactoring

disable system-based tags

disable freebsd tags

FreeBSD vpn role

add defaults

ssh role freebsd

default fix

dns_adblocking freebsd

ubuntu dict fix

* HardenedBSD

update-users BSD

* Rebuild the kernel

docs changing
 7 years ago
Jack Ivanov 49ba1f76b4 Some improvements in the mobileconfig. Fixes #270 7 years ago
Jack Ivanov 045ff4bb9f Azure security group. Fixes #264 7 years ago
Jack Ivanov 906d962d4d GCE. env variables #195 7 years ago
Jack Ivanov 573c2f2322 DO. env variables #195 7 years ago
Jack Ivanov fc30f8bb10 GCE. Tags fixed #267 7 years ago
Jack Ivanov 0aff3ebb6f EC2 instance_initiated_shutdown_behavior to terminate. Close #124 7 years ago
Jack Ivanov c52024d4cc Azure. Add to the inventory #30 7 years ago
Jack Ivanov 0d1731e058 update tags for azure resources 7 years ago
Jack Ivanov 6e538627db gce inventory #30 7 years ago
Jack Ivanov 9cc9cf7b5f local inventory #30 7 years ago
Jack Ivanov 69ff22f9bb fix typo 7 years ago
Jack Ivanov dfb1cbc282 DigitalOcean dynamic inventory 7 years ago
Jack Ivanov f7da2e3888 EC2 dynamic enventory. Fixes #73 7 years ago
Jack Ivanov 5cbf125202 Some refactoring. Disable unneeded variables. 7 years ago
Jack Ivanov 237fcc7a7f additional variables 7 years ago
Jack Ivanov 2a4d1837b5 Some fixes. Fedora client. Close #44 7 years ago
Jack Ivanov 0bf3e809a4 Linux clients installation vpn #44 7 years ago
Jack Ivanov d7d976784c Fixes #207 7 years ago
Jack Ivanov 8eb208c5b7 enable ipv6 if the default gateway is defined. Fixes #244 7 years ago
Craig 43c2f5c31a Installs the recommended packages with strongswan, because we need the OpenSSL (#260) 
plugin from libstrongswan-standard-plugins for ECDH to work.
 7 years ago
Jack Ivanov b8f3d43eee enable some additional debug info 7 years ago
Jack Ivanov 2a7dd88a3c Changed to ECDSA #102 7 years ago
Jack Ivanov e31f10da6d Fixes #255 7 years ago
Jack Ivanov aca036142f AndroidVPNClientProfiles #240 7 years ago
Jacob Wilder 7b468fae79 Fixed the azure role for situations where the user does not use a ~/.azure/credentials file (#242) 7 years ago
Jack Ivanov 20ebd7a595 rename connection 7 years ago
akirilov 05ab1f5feb Modified certificate generation to address issues #234 and #228 (#235) 
* Modified certificate generation to address issues #234 and #228

I have made the following modifications to comply with the IKEv2 client certificate requirements:

- Changed client certificate CN to {{ IP_subject_alt_name }}_{{ item }} from {{ item }}
- Changed client certificate SAN to {{IP_subject_alt_name }} from {{ item }}
- Added clientAuth to client certificate EKU

I have made the following changes to address a mismatch in the windows deployment script and file names:

- Changed the client certificate (.p12) filename in config/{{ IP_subject_alt_name }} to {{ IP_subject_alt_name}}_{{ item }}.p12 from {{ item }}.p12 to match the ps1 script

Testing:

I have tested the changes on Windows 10 client, Ubuntu 16.04.1 server (DigitalOcean) - the config described in Issue #234

I apologize for not being able to test on other configurations. I hope that someone else can verify my changes

* fixed iOS issues

* fixed accidentall user change

* simplified changes

* Final iteration. I think that's all I can do to minimize the changes
 7 years ago
Jack Ivanov 35faf4bca7 Local openssl tasks (#169) 
* Draft

works with ECDSA

RSA support for Windows

* update-users with local_openssl_tasks

* move prompts to the algo script

* additional directory for SSH keys

* move easyrsa_p12_export_password to pre_tasks

* update-users testing

* Fix hardcoded vars

* Delete the CA key

* Hardcoded IP. Fixes #219

* Some fixes
 7 years ago
Jack Ivanov 257be0f395 make the fail message more understandable. Fixes #217 7 years ago
Jack Ivanov 2798f84d3f ensure that apparmor is supported by the kernel #215 7 years ago
Jack Ivanov 3e852caf04 disable compression #146 7 years ago
Jack Ivanov cbf59addb3 additional tags 7 years ago
Jack Ivanov a50a396b94 addtiional fixes 7 years ago
Defunct b0f9ab94b1 ec2_ami_copy boto3 module, KMS, tagging, AMI caching (Encrypted support) 7 years ago
Defunct 0eb048383a refactored ec2 encryption 7 years ago
Jack Ivanov 1a81372192 EC2 Encryption Implemented #133 7 years ago
Jack Ivanov f246165298 Fix a typo 7 years ago
Glenn Rempe 9a46b671f7 Fixes #198, replace typo ECXLUDE with EXCLUDE 8 years ago
Damian Gerow b444398fab Drop the MSS for GCE instances 8 years ago
Defunct a9dd0af3fe resolves #176 + other ec2 env issues 8 years ago
Dan Guido 75194675eb closes #175 8 years ago
kennwhite d2aa52f4e9 UX hint on profile name 
Add explicit label for Algo-generated VPNs. If the user has multiple (non-Algo) VPNs for home/office, there is typically a label other than an IP address and "IKEv2".  This can be seen, for example, on OSX on the top menu bar for networks.
 8 years ago
Jack Ivanov 33b3af540a Fix SSH keys for DigitalOcean 8 years ago
Jack Ivanov 2c9c3ccb09 Fixed #146 8 years ago
Jack Ivanov cd5b096ab7 DO fix 8 years ago
Jack Ivanov 90cc5fa1f7 some fixes 8 years ago
Jack Ivanov 1d07200c74 generating ssh-keys #152 #151 #112 8 years ago
Jack Ivanov abf94989fc the password for the CA private key #75 8 years ago
Jack Ivanov 8b0fe4d8f3 Block client-to-client traffic. Fixed #166 8 years ago
Jack Ivanov ecb6b498b9 unnecessarry to use such way Fixed #162 8 years ago
Jack Ivanov f1715c4e0b random password for the p12 certificates #135 8 years ago
Jack Ivanov 03c805cb87 reorganize the wait_for functions #159 8 years ago
Jack Ivanov 275663264a ipv6 option is available in ansible 2.2; Fixed #158 8 years ago
Jack Ivanov 37ec574d8d IP_subject_alt_name is not declared for localhost. Fixed #149 8 years ago
Jack Ivanov 517366f194 EC2 fix 8 years ago
Jack Ivanov 50e9dbfce0 draft EC2 #150 #157 8 years ago
Jack Ivanov 981809998c Merge branch 'master' of github.com:trailofbits/algo 8 years ago
kennwhite 016a8c7708 Change default instance to free tier (t2.micro) 
I know this is a bit goofy, but the t2.nano is not in the free tier for AWS even though it is smaller than the t2.micro instance. See: https://aws.amazon.com/blogs/aws/ec2-update-t2-nano-instances-now-available/ (the "PS" at the bottom), confirmed on pricing page. The difference is $4.30 per mo vs. free/$8.76  per mo. Maybe add this to config questions, but at least one reviewer has noted this as an issue for his just-setup AWS free account.
 8 years ago
Jack Ivanov 0269cafff7 DNS fix 8 years ago
Jack Ivanov 29ef4d45df Merge pull request #144 from trailofbits/ami_latest_image 
Sort by latest AMI - resolves #140
 8 years ago
Jack Ivanov c552602724 Azure support #26 8 years ago
Defunct 27e5a4feca Sort by latest AMI - resolves #140 8 years ago
Jack Ivanov 3d53dde6ca Fixed. #137 8 years ago
Jack Ivanov 790bcb2efc Merge branch 'win10_support' #9 8 years ago
Jack Ivanov 8a0c5ab971 Windows support implemented 8 years ago
Jack Ivanov f6166ccde4 modify ciphers #9 8 years ago
Jack Ivanov 195697a1f0 Merge pull request #131 from trailofbits/ec2updates 
EC2 Updates and fixes
 8 years ago
Jack Ivanov ad162f55a2 here were no credentials #127 8 years ago
defunct e40545cce5 opens #126 
This commit reverts changes in 437d659 to avoid breaking changes.
 8 years ago
Jack Ivanov e90b58802d fix in the mobileconfig template 8 years ago
Jack Ivanov 2cb98b4516 Windows RSA support #9 8 years ago
Jack Ivanov ede452fad4 Merge branch 'master' of github.com:trailofbits/algo 8 years ago
Jack Ivanov c5860cbc5d Merge pull request #125 from cernekee/tag-fix. Fix #128 
Add missing playbook tags
 8 years ago
Jack Ivanov ee95846445 mobileconfig fix 8 years ago
Defunct d54ba6c7ce Merge branch 'master' into ec2updates 8 years ago
fkt 27ea98e7a8 Show congrats message at the end - #115 8 years ago
Defunct 437d659eb6 resolves #126 - incorrect private key usage w/o ssh-agent 8 years ago
Defunct 1dc6e1a0fa resolves #118 - AWS env keys 8 years ago
Jack Ivanov 047f68df2f Change the site in the congrats handler to whoer.net in order to clarify the message at the end of the install about testing VPN. Fix #110 8 years ago
Kevin Cernekee 433389c0ab Use /var/run/reboot-required to determine if a restart is needed 
The current check only looks to see if a new kernel was installed.
 8 years ago
Kevin Cernekee 09bbc4058c Add missing tags in common playbook 
If the common playbook is invoked with the "cloud" tag, non-cloud
tasks will be skipped.  On GCE this causes "Install tools" to be skipped,
apparmor-utils is not installed, and then the "Enforcing ipsec with
apparmor" step fails.
 8 years ago
Jack Ivanov 29de003b2d inplemented #109 8 years ago
Jack Ivanov 5383c71499 Fixed #108 8 years ago
Jack Ivanov d052cb8e77 skip-tags added. Fixed #121 8 years ago
Jack Ivanov 76ea7f67ae extra vars added to use local DNS #110 8 years ago
Jack Ivanov 289807ead4 fix dependencies 8 years ago
Jack Ivanov d50bd43988 Fix SSH keys permissions 8 years ago
Jack Ivanov 44bc3ead48 set AllowTcpForwarding to local 8 years ago
Dan Guido c52350030d Merge branch 'master' into docs 8 years ago
Jack Ivanov d93b7c200f EC2 | Add VPC group #98 and counts #59 8 years ago
Jack Ivanov 0e613f2ff7 fix a typo. #96 closed 8 years ago
Jack Ivanov 8c284a16e3 Done. #96 8 years ago
Jack Ivanov 062426e0ec client configuration templates #43 8 years ago
Dan Guido 1a3a14943c pull in changes from master 8 years ago
Jack Ivanov fcf29534ba the proxixy filter rules disabled #93 8 years ago
Jack Ivanov bf5d5e53ac ip6tables fixes 8 years ago
Jack Ivanov c43ccc3898 iptables moved to the vpn role #61 8 years ago
Dan Guido bff7c414b2 Initial commit of reorg'd docs 8 years ago
Jack Ivanov 4db428a86e Disable unneeded plugins in StrongSwan #84 8 years ago
Jack Ivanov 2cca45c967 additional tags 8 years ago
Jack Ivanov ad9d7d6ddb disable dpdtimeout #90 8 years ago
Jack Ivanov 8e0cca6b66 some fixes 8 years ago
Jack Ivanov dbeb7a13e8 Merge branch 'tags' #80 8 years ago
Jack Ivanov 4d731580b7 linting 8 years ago
Jack Ivanov fc162728d3 role for local installation 8 years ago
Jack Ivanov d9441b236a move to tags #80 8 years ago
Jack Ivanov aa4dcc31d4 gce role to tags 8 years ago
Jack Ivanov cf5a0f41d3 ec2 role to tags 8 years ago
Jack Ivanov 97ea00056d DO roles to tags 8 years ago
Jack Ivanov 6685642f0b #85 fixed 8 years ago
Jack Ivanov 91688324ce additional functions 8 years ago
Jack Ivanov ddcee8db18 logging fixes 8 years ago
Jack Ivanov 97a00699b7 new tags 8 years ago
Jack Ivanov 05df4f0c04 unattended-upgrades moved to the security role 8 years ago
Evgeniy Ivanov 4284dd63aa rsyslog moved to the logging role 8 years ago
Jack Ivanov 0cd4084aa4 ssh fixes 8 years ago
Jack Ivanov 00e4bcc1ec security role and SSH fixes #77 8 years ago
Jack Ivanov 8c5f80bf8f linting 8 years ago
Jack Ivanov 57b6c96ba8 SSH fingerprints #77 8 years ago
Jack Ivanov 0945f54366 SSH user-management #77 8 years ago
Jack Ivanov c19908c9b1 ssh fixes 8 years ago
Jack Ivanov cf08c5ff61 fix 8 years ago
Dan Guido 27421070b9 linting 8 years ago
Dan Guido 809b62cd33 daemon_reload is an option for systemd, not service 8 years ago
Jack Ivanov b29f1ab226 service fixed #78 8 years ago
Dan Guido 2fcc3600fd Disable features in the Match block vs main config 8 years ago
Jack Ivanov 1dcfe18055 SSH tunneling role #77 8 years ago
Jack Ivanov 19797bc020 CPU and memory limitations of the services #63 8 years ago
Evgeniy Ivanov 5ecd23c59c type 8 years ago
Evgeniy Ivanov 468d5af23d service fixes 8 years ago
Defunct 50f43dc601 revert systemd changes (2.2 only), identation normalization; 8 years ago
Evgeniy Ivanov 09c39627d9 Memory limits #63 8 years ago
Evgeniy Ivanov c51fe5dac0 run charon as non-root user #66 8 years ago
Evgeniy Ivanov 71ad2f570e proxy prompts enabled #70 8 years ago
Evgeniy Ivanov ba50abce8a make local ip changeable #67 8 years ago
Evgeniy Ivanov e6090b8245 forwarding #61 8 years ago
Colin Mahns 1fbe1b63f8 HTTPS for domains that support it 
hosts-file.net and malwaredomainlist.com has optional TLS, adaway.org forces it server side
 8 years ago
Colin Mahns 6c81b86c92 Link to MVPS Hosts file directly 
http://www.mvps.org/winhelp2002/hosts.txt redirects to http://winhelp2002.mvps.org/hosts.txt automatically, saves a step
 8 years ago
Evgeniy Ivanov 53f60e33d8 random tmp names #64 8 years ago
Evgeniy Ivanov 3864f8104d adblock.sh as an unprivileged user; Store the whitelists in /var/; #64 8 years ago
Evgeniy Ivanov 4b2ae71ffe Tighten the dnsmasq AppArmor policy #62 8 years ago
Evgeniy Ivanov de06b4fd9e security remarks 8 years ago
Evgeniy Ivanov b593986b0c SFTP fixed 8 years ago
Evgeniy Ivanov 3fa75a081d new iptabes deployment #61 8 years ago
Evgeniy Ivanov cfc38e3df1 Drop SMB traffic ##61 8 years ago
Evgeniy Ivanov 4a6602e877 RSAAuthentication no; Turn off SFTP; Turn off X11 forwarding; #51 8 years ago
Evgeniy Ivanov 16627783f5 Minor updates to the sshd_config #51 8 years ago
Evgeniy Ivanov f3eb06cfe0 server_name fixes 8 years ago
Evgeniy Ivanov 9eaaf63fa0 server_name fixes 8 years ago
Evgeniy Ivanov f20d375dc9 IP_subject fixes 8 years ago
Evgeniy Ivanov a9b10baf1d Some fixes 8 years ago
Evgeniy Ivanov a1bf2ad5ef flush handlers after loopback configured 8 years ago
Evgeniy Ivanov 7085a594fc p12 moved into playbooks 8 years ago
Evgeniy Ivanov 4f46cc221a Split the features role in two #49 8 years ago
Evgeniy Ivanov 95c43e2211 Split the features role in two #49 8 years ago
Dan Guido 2a8c1adb76 Update main.yml 8 years ago
Dan Guido 52855c9e3f Use the right language for GCE 8 years ago
Dan Guido 0fd0de17d4 rename the cloud roles 8 years ago
Dan Guido f538ffe4e8 linting 8 years ago
jack 7a8d58783f Roles and Google cloud 8 years ago
jack e729f0d303 Roles and Google cloud 8 years ago
jack 42e6067e4d Firewall | Google Cloud Engine #27 8 years ago
jack 89758aaec9 Google Cloud Engine #27 8 years ago
jack 3870956f0a google and azure 8 years ago
jack 917b7d6138 Modify user-management function 8 years ago
jack f6c1309aac non-cloud servers #34 8 years ago
jack 2f66b03880 EC2 Role; Loggin Role 8 years ago
jack fff70293f1 Roles enabled 8 years ago
Dan Guido e10b1b669f no reason to have roles yet 8 years ago
Dan Guido 041c6da9b0 fix what was here, script runs now 8 years ago
Dan Guido e8993b06dd initial commit 8 years ago