Archives
/
algo
mirror of https://github.com/trailofbits/algo
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,150 Commits
5 Branches
2 Tags
11 MiB
master
dependabot/pip/ansible-9.4.0
dependabot/github_actions/actions/setup-python-5.1.0
fix/14704
dependabot/pip/jinja2-approx-eq-3.1.3
v1.1
v1.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
Commit Graph

419 Commits (master)

Author SHA1 Message Date
Jack Ivanov 275663264a ipv6 option is available in ansible 2.2; Fixed #158 8 years ago
Jack Ivanov 37ec574d8d IP_subject_alt_name is not declared for localhost. Fixed #149 8 years ago
Jack Ivanov 517366f194 EC2 fix 8 years ago
Jack Ivanov 50e9dbfce0 draft EC2 #150 #157 8 years ago
Jack Ivanov 981809998c Merge branch 'master' of github.com:trailofbits/algo 8 years ago
kennwhite 016a8c7708 Change default instance to free tier (t2.micro) 
I know this is a bit goofy, but the t2.nano is not in the free tier for AWS even though it is smaller than the t2.micro instance. See: https://aws.amazon.com/blogs/aws/ec2-update-t2-nano-instances-now-available/ (the "PS" at the bottom), confirmed on pricing page. The difference is $4.30 per mo vs. free/$8.76  per mo. Maybe add this to config questions, but at least one reviewer has noted this as an issue for his just-setup AWS free account.
 8 years ago
Jack Ivanov 0269cafff7 DNS fix 8 years ago
Jack Ivanov 29ef4d45df Merge pull request #144 from trailofbits/ami_latest_image 
Sort by latest AMI - resolves #140
 8 years ago
Jack Ivanov c552602724 Azure support #26 8 years ago
Defunct 27e5a4feca Sort by latest AMI - resolves #140 8 years ago
Jack Ivanov 3d53dde6ca Fixed. #137 8 years ago
Jack Ivanov 790bcb2efc Merge branch 'win10_support' #9 8 years ago
Jack Ivanov 8a0c5ab971 Windows support implemented 8 years ago
Jack Ivanov f6166ccde4 modify ciphers #9 8 years ago
Jack Ivanov 195697a1f0 Merge pull request #131 from trailofbits/ec2updates 
EC2 Updates and fixes
 8 years ago
Jack Ivanov ad162f55a2 here were no credentials #127 8 years ago
defunct e40545cce5 opens #126 
This commit reverts changes in 437d659 to avoid breaking changes.
 8 years ago
Jack Ivanov e90b58802d fix in the mobileconfig template 8 years ago
Jack Ivanov 2cb98b4516 Windows RSA support #9 8 years ago
Jack Ivanov ede452fad4 Merge branch 'master' of github.com:trailofbits/algo 8 years ago
Jack Ivanov c5860cbc5d Merge pull request #125 from cernekee/tag-fix. Fix #128 
Add missing playbook tags
 8 years ago
Jack Ivanov ee95846445 mobileconfig fix 8 years ago
Defunct d54ba6c7ce Merge branch 'master' into ec2updates 8 years ago
fkt 27ea98e7a8 Show congrats message at the end - #115 8 years ago
Defunct 437d659eb6 resolves #126 - incorrect private key usage w/o ssh-agent 8 years ago
Defunct 1dc6e1a0fa resolves #118 - AWS env keys 8 years ago
Jack Ivanov 047f68df2f Change the site in the congrats handler to whoer.net in order to clarify the message at the end of the install about testing VPN. Fix #110 8 years ago
Kevin Cernekee 433389c0ab Use /var/run/reboot-required to determine if a restart is needed 
The current check only looks to see if a new kernel was installed.
 8 years ago
Kevin Cernekee 09bbc4058c Add missing tags in common playbook 
If the common playbook is invoked with the "cloud" tag, non-cloud
tasks will be skipped.  On GCE this causes "Install tools" to be skipped,
apparmor-utils is not installed, and then the "Enforcing ipsec with
apparmor" step fails.
 8 years ago
Jack Ivanov 29de003b2d inplemented #109 8 years ago
Jack Ivanov 5383c71499 Fixed #108 8 years ago
Jack Ivanov d052cb8e77 skip-tags added. Fixed #121 8 years ago
Jack Ivanov 76ea7f67ae extra vars added to use local DNS #110 8 years ago
Jack Ivanov 289807ead4 fix dependencies 8 years ago
Jack Ivanov d50bd43988 Fix SSH keys permissions 8 years ago
Jack Ivanov 44bc3ead48 set AllowTcpForwarding to local 8 years ago
Dan Guido c52350030d Merge branch 'master' into docs 8 years ago
Jack Ivanov d93b7c200f EC2 | Add VPC group #98 and counts #59 8 years ago
Jack Ivanov 0e613f2ff7 fix a typo. #96 closed 8 years ago
Jack Ivanov 8c284a16e3 Done. #96 8 years ago
Jack Ivanov 062426e0ec client configuration templates #43 8 years ago
Dan Guido 1a3a14943c pull in changes from master 8 years ago
Jack Ivanov fcf29534ba the proxixy filter rules disabled #93 8 years ago
Jack Ivanov bf5d5e53ac ip6tables fixes 8 years ago
Jack Ivanov c43ccc3898 iptables moved to the vpn role #61 8 years ago
Dan Guido bff7c414b2 Initial commit of reorg'd docs 8 years ago
Jack Ivanov 4db428a86e Disable unneeded plugins in StrongSwan #84 8 years ago
Jack Ivanov 2cca45c967 additional tags 8 years ago
Jack Ivanov ad9d7d6ddb disable dpdtimeout #90 8 years ago
Jack Ivanov 8e0cca6b66 some fixes 8 years ago
Jack Ivanov dbeb7a13e8 Merge branch 'tags' #80 8 years ago
Jack Ivanov 4d731580b7 linting 8 years ago
Jack Ivanov fc162728d3 role for local installation 8 years ago
Jack Ivanov d9441b236a move to tags #80 8 years ago
Jack Ivanov aa4dcc31d4 gce role to tags 8 years ago
Jack Ivanov cf5a0f41d3 ec2 role to tags 8 years ago
Jack Ivanov 97ea00056d DO roles to tags 8 years ago
Jack Ivanov 6685642f0b #85 fixed 8 years ago
Jack Ivanov 91688324ce additional functions 8 years ago
Jack Ivanov ddcee8db18 logging fixes 8 years ago
Jack Ivanov 97a00699b7 new tags 8 years ago
Jack Ivanov 05df4f0c04 unattended-upgrades moved to the security role 8 years ago
Evgeniy Ivanov 4284dd63aa rsyslog moved to the logging role 8 years ago
Jack Ivanov 0cd4084aa4 ssh fixes 8 years ago
Jack Ivanov 00e4bcc1ec security role and SSH fixes #77 8 years ago
Jack Ivanov 8c5f80bf8f linting 8 years ago
Jack Ivanov 57b6c96ba8 SSH fingerprints #77 8 years ago
Jack Ivanov 0945f54366 SSH user-management #77 8 years ago
Jack Ivanov c19908c9b1 ssh fixes 8 years ago
Jack Ivanov cf08c5ff61 fix 8 years ago
Dan Guido 27421070b9 linting 8 years ago
Dan Guido 809b62cd33 daemon_reload is an option for systemd, not service 8 years ago
Jack Ivanov b29f1ab226 service fixed #78 8 years ago
Dan Guido 2fcc3600fd Disable features in the Match block vs main config 8 years ago
Jack Ivanov 1dcfe18055 SSH tunneling role #77 8 years ago
Jack Ivanov 19797bc020 CPU and memory limitations of the services #63 8 years ago
Evgeniy Ivanov 5ecd23c59c type 8 years ago
Evgeniy Ivanov 468d5af23d service fixes 8 years ago
Defunct 50f43dc601 revert systemd changes (2.2 only), identation normalization; 8 years ago
Evgeniy Ivanov 09c39627d9 Memory limits #63 8 years ago
Evgeniy Ivanov c51fe5dac0 run charon as non-root user #66 8 years ago
Evgeniy Ivanov 71ad2f570e proxy prompts enabled #70 8 years ago
Evgeniy Ivanov ba50abce8a make local ip changeable #67 8 years ago
Evgeniy Ivanov e6090b8245 forwarding #61 8 years ago
Colin Mahns 1fbe1b63f8 HTTPS for domains that support it 
hosts-file.net and malwaredomainlist.com has optional TLS, adaway.org forces it server side
 8 years ago
Colin Mahns 6c81b86c92 Link to MVPS Hosts file directly 
http://www.mvps.org/winhelp2002/hosts.txt redirects to http://winhelp2002.mvps.org/hosts.txt automatically, saves a step
 8 years ago
Evgeniy Ivanov 53f60e33d8 random tmp names #64 8 years ago
Evgeniy Ivanov 3864f8104d adblock.sh as an unprivileged user; Store the whitelists in /var/; #64 8 years ago
Evgeniy Ivanov 4b2ae71ffe Tighten the dnsmasq AppArmor policy #62 8 years ago
Evgeniy Ivanov de06b4fd9e security remarks 8 years ago
Evgeniy Ivanov b593986b0c SFTP fixed 8 years ago
Evgeniy Ivanov 3fa75a081d new iptabes deployment #61 8 years ago
Evgeniy Ivanov cfc38e3df1 Drop SMB traffic ##61 8 years ago
Evgeniy Ivanov 4a6602e877 RSAAuthentication no; Turn off SFTP; Turn off X11 forwarding; #51 8 years ago
Evgeniy Ivanov 16627783f5 Minor updates to the sshd_config #51 8 years ago
Evgeniy Ivanov f3eb06cfe0 server_name fixes 8 years ago
Evgeniy Ivanov 9eaaf63fa0 server_name fixes 8 years ago
Evgeniy Ivanov f20d375dc9 IP_subject fixes 8 years ago
Evgeniy Ivanov a9b10baf1d Some fixes 8 years ago
Evgeniy Ivanov a1bf2ad5ef flush handlers after loopback configured 8 years ago
Evgeniy Ivanov 7085a594fc p12 moved into playbooks 8 years ago
Evgeniy Ivanov 4f46cc221a Split the features role in two #49 8 years ago
Evgeniy Ivanov 95c43e2211 Split the features role in two #49 8 years ago
Dan Guido 2a8c1adb76 Update main.yml 8 years ago
Dan Guido 52855c9e3f Use the right language for GCE 8 years ago
Dan Guido 0fd0de17d4 rename the cloud roles 8 years ago
Dan Guido f538ffe4e8 linting 8 years ago
jack 7a8d58783f Roles and Google cloud 8 years ago
jack e729f0d303 Roles and Google cloud 8 years ago
jack 42e6067e4d Firewall | Google Cloud Engine #27 8 years ago
jack 89758aaec9 Google Cloud Engine #27 8 years ago
jack 3870956f0a google and azure 8 years ago
jack 917b7d6138 Modify user-management function 8 years ago
jack f6c1309aac non-cloud servers #34 8 years ago
jack 2f66b03880 EC2 Role; Loggin Role 8 years ago
jack fff70293f1 Roles enabled 8 years ago
Dan Guido e10b1b669f no reason to have roles yet 8 years ago
Dan Guido 041c6da9b0 fix what was here, script runs now 8 years ago
Dan Guido e8993b06dd initial commit 8 years ago