Archives/algo
2
0
Fork 0
mirror of https://github.com/trailofbits/algo synced 2024-11-10 01:11:07 +00:00
Code Issues Projects Releases Wiki Activity
1,154 Commits 5 Branches 2 Tags 10 MiB
48f704c851
Commit Graph

1154 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jack I
48f704c851
Merge branch 'master' into dependabot/pip/ansible-9.4.0 2024-08-29 20:15:15 -06:00
Roch Moreau
346437fa6e
fix: Fix server selection in update-user while preserving nice display of server along with its alt_name in the list (#14727) 
This commit fixes a bug preventing correct selection of server when trying to update users. It improves the prompt's clarity by providing both server name and IP_subject_alt_name. It also ensures server selection from the list uses actual server names instead of list descriptions strings that caused the initial bug.

Co-authored-by: Jack Ivanov <17044561+jackivanov@users.noreply.github.com>
 2024-07-17 18:55:42 -06:00
Daniel Elsner
da32bafd2d
Change hetzner default server to cx22 (#14730) 2024-06-17 15:13:26 +00:00
Polycarbohydrate
5a275cd0cd
Update deploy-from-cloudshell.md (#14721) 2024-05-13 18:36:57 -06:00
Vladislav Orlov
8c4ae501ad
Use legacy OpenSSL Format for Apple Devices (#14718) 
* fix openssl

* Update openssl.yml

---------

Co-authored-by: Jack Ivanov <17044561+jackivanov@users.noreply.github.com>
 2024-05-09 20:04:25 -06:00
Matthew Hall
6ce6f5c81e
Use region code instead of name to deploy in non-default Vultr region. (#14713) 2024-04-01 01:23:59 +00:00
dependabot[bot]
1401af5054
Bump ansible from 9.1.0 to 9.4.0 
Bumps [ansible](https://github.com/ansible-community/ansible-build-data) from 9.1.0 to 9.4.0.
- [Changelog](https://github.com/ansible-community/ansible-build-data/blob/main/docs/release-process.md)
- [Commits](https://github.com/ansible-community/ansible-build-data/compare/9.1.0...9.4.0)

---
updated-dependencies:
- dependency-name: ansible
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-03-28 08:11:30 +00:00
Jack Ivanov
a4a9d6d7c8
Fix Vultr collection (#14707) 2024-03-16 19:21:12 +00:00
Jack Ivanov
0d1be722a1
Fix hetzner module (#14698) 2024-03-14 09:25:09 +01:00
Ali Hajimirza
ebf127dc52
Use cheapest EC2 instance as default (#14536) 
* Update docs

* Update docs
 2024-03-11 20:42:53 +00:00
Okan Binli
74051d06a2
Update README.md dependencies (#14634) 
`file` and `lookup` are part of the ubuntu most of the time but in some cases it was missing therefore ansible fails.

Co-authored-by: Jack Ivanov <17044561+jackivanov@users.noreply.github.com>
 2024-01-04 20:46:31 +03:00
BowTiedJerboa
5817300bb1
Updated Python dependency from 3.8 to 3.10 (#14677) 
* Updated Python dependency from 3.8 to 3.10 to support version issues with Ansible

* Changed install recommendations to use pyenv instead of downloading from ppa
 2023-12-29 23:40:39 +03:00
Ayaan Mirza Baig
baf8a85c0b
Create SECURITY.md (#14669) 
Added a basic skeleton for SECURITY.md

Co-authored-by: William Woodruff <william@yossarian.net>
 2023-12-12 19:17:59 +03:00
Disconnect3d
c9352a1801
cloud-pre.yml: use 4096 bits for ssh rsa key (#14674) 
The ssh-key we generated used 2048 bits while even openssh's ssh-keygen defaults to 3072 nowadays [0].

While RSA-2048 is probably ok (?) and what NIST recommends for keys until around 2030, its probably better to switch to more bits.

This is also just a temporary solution as we should also switch to ed25519.

Thanks to Dan M (@dmur1 or dan@hexarcana.ch) for pointing this out.

[0] 19d3ee2f3a/ssh-keygen.c (L83)
 2023-12-12 17:05:13 +01:00
Pavel Mishkovich
67aa5fe881
Add a linode entry to troubleshooting.md (#14632) 2023-12-08 01:57:57 +03:00
Alex Oswald
a6ad0adc94
update digitalocean docs on droplets (#14659) 
Make note of smaller/cheaper droplets for DigitalOcean and document it.
 2023-12-08 01:56:17 +03:00
Jack Ivanov
90c2b1bbeb
upgrade ansible to 9.1.0 (#14673) 
* upgrade to 9.1.0

* python version

* 3.11-alpine

* missed python version
 2023-12-08 01:54:08 +03:00
Dima Scherbakov
fd6efb71f2
ssh_config: ignore pre-existing SSH keys on client (#14646) 
sshd limits the number of authentication attempts permitted per
established connection.
The limit is set via the MaxAuthTries option and defaults to six
attempts.

Client SSH environments that define more than six SSH keys globally or
in the agent would exhaust authentication attempts before they reach the
algo-specified per-instance SSH private key.

SSH client allows "forgetting" existing keys per connection using the
IdentitiesOnly option.
A client only offers an explicitly defined key when this option is set.
 2023-09-27 18:15:35 +03:00
dependabot[bot]
a5b30cdbfe
Bump docker/login-action from 2 to 3 (#14649) 
Bumps [docker/login-action](https://github.com/docker/login-action) from 2 to 3.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/v2...v3)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-09-27 18:02:00 +03:00
dependabot[bot]
29f5a2f6f8
Bump docker/metadata-action from 4 to 5 (#14648) 
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 4 to 5.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Upgrade guide](https://github.com/docker/metadata-action/blob/master/UPGRADE.md)
- [Commits](https://github.com/docker/metadata-action/compare/v4...v5)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-09-27 17:57:28 +03:00
dependabot[bot]
fc1d3d4d7b
Bump actions/checkout from 3 to 4 (#14647) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-09-27 17:57:15 +03:00
dependabot[bot]
199e404ec4
Bump docker/build-push-action from 4 to 5 (#14650) 
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 4 to 5.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v4...v5)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-09-27 17:57:03 +03:00
dasmart
17881b2d2a
make sure cron is installed on ubuntu. #14568 (#14640) 2023-09-27 17:56:28 +03:00
Brenton Bostick
abb8164054
Fix typos (#14635) 2023-08-14 18:43:02 +03:00
Artem Dinaburg
1cf3d8d66d
Add CODEOWNERS file (#14599) 2023-07-25 14:55:28 +03:00
Maksim Beliaev
7d1af5abab
Update README.md (#14591) 2023-07-25 14:53:34 +03:00
James Olds
1c80cd23f5
update link to empirehacking slack (#14621) 2023-06-29 13:37:09 -04:00
Jack Ivanov
75cfeab24a
Ubuntu 22.04 support (#14579) 
* add 22.04 support

* actions trigger

* lighsail to 22.04 and remove 20.04

* test scripted deploy

* ansible lint is advisory. moving to terraform
 2023-05-17 03:04:23 +03:00
Jack Ivanov
45fe0f595d change dockerhub docs references 2023-03-16 20:52:25 -04:00
Jack Ivanov
1c47de7011 github docker image/package 2023-03-16 20:46:10 -04:00
ali ahmadi
1083b4bb97
Update install.sh (#14575) 
convert .venv into .env in install.sh
 2023-03-03 00:55:02 -04:00
bravepickle
8be2d689a7
updating .dockerignore file (#14559) 2023-03-03 00:54:49 -04:00
Mauer-Oats
651f949ca6
Update cloud-hetzner.md (#14450) 2022-10-30 13:38:32 +03:00
Dan Roscigno
9cc6b6c3a9
Update cloud-amazon-ec2.md (#14513) 2022-10-30 13:37:33 +03:00
Peter Gardfjäll
9ef093976b
Make Azure OS disk type configurable and default to a cheaper type (#14533) 
* add azure option for osDiskType

* azure: change default image to minimal ubuntu
 2022-10-30 13:35:44 +03:00
Jack Ivanov
43ed16ea13
Update client-linux-ipsec.md 
Closes #14495
 2022-10-30 13:15:20 +03:00
Jack Ivanov
347f864abb
Ansible upgrade 6.1 (#14500) 
* linting

* update ansible

* linters
 2022-07-30 15:01:24 +03:00
Mo Beigi
a43de09437
Remove dead link to centos docs (#14488) 2022-06-14 00:38:19 +03:00
jabacrack
972723a139
update windows deployment documentation (#14470) 2022-06-14 00:13:35 +03:00
Maxim Perepelitsa
59672d476d
Update Lightsail required IAM permissions (#14438) 2022-06-14 00:11:53 +03:00
dependabot[bot]
ed01f30949
Bump actions/checkout from 2 to 3 (#14427) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-06-14 00:11:21 +03:00
WinterPhoenix
8b05cda01d
Fix OS Name for Vultr (#14458) 2022-04-27 19:09:39 +03:00
David Myers
c0968a8fdb
Only offer available DigitalOcean regions (#14447) 2022-03-26 11:41:55 +03:00
dependabot[bot]
9f241b1886
Bump ansible-core from 2.12.1 to 2.12.3 (#14425) 
Bumps [ansible-core](https://github.com/ansible/ansible) from 2.12.1 to 2.12.3.
- [Release notes](https://github.com/ansible/ansible/releases)
- [Commits](https://github.com/ansible/ansible/compare/v2.12.1...v2.12.3)

---
updated-dependencies:
- dependency-name: ansible-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-03-03 17:24:55 -05:00
dependabot[bot]
63bfa63f6a
Bump actions/setup-python from 2.3.1 to 2.3.2 (#14418) 
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2.3.1 to 2.3.2.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v2.3.1...v2.3.2)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-02-17 11:38:34 +03:00
Jack Ivanov
e416e76ce8
DO networks fix (#14421) 
* DO networks fix

* linting: add warn_list
 2022-02-17 11:37:41 +03:00
Glenn Schlereth
b29b310ff3
Update EC2 IAM Profile to least privilege required (#14417) 
Change overly permissive IAM Profile from using wildcard in list of
actions required. Explictly define the 4 required ec2:Associate*
Realized while investigating issue #14383, though change does not
resolve that issue
 2022-02-16 11:37:20 +03:00
Jack Ivanov
a103d8dd16
Local install prompt (#14412) 
* add local install warning

* change layout

* skip lint
 2022-01-31 16:35:32 +03:00
David Myers
1a86b5fb4b
Update Cloud Shell instructions (#14411) 2022-01-31 16:29:38 +03:00
Hueseyin
4b1081b7b8
Added OpenWrt Wireguard client manual (#14399) 2022-01-13 22:55:55 +03:00