Archives
/
algo
mirror of https://github.com/trailofbits/algo
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
984 Commits
5 Branches
2 Tags
11 MiB
master
dependabot/pip/ansible-9.4.0
dependabot/github_actions/actions/setup-python-5.1.0
fix/14704
dependabot/pip/jinja2-approx-eq-3.1.3
v1.1
v1.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '8bdd99c05d'
${ noResults }
Commit Graph

984 Commits (8bdd99c05dc0afde9847c002e6cbce880c05b632)
 

Author SHA1 Message Date
Jack Ivanov 8bdd99c05d Refactor to support Ansible 2.8 (#1549) 
* bump ansible to 2.8.3

* DigitalOcean: move to the latest modules

* Add Hetzner Cloud

* Scaleway and Lightsail fixes

* lint missing roles

* Update roles/cloud-hetzner/tasks/main.yml

Add api_token

Co-Authored-By: phaer <phaer@phaer.org>

* Update roles/cloud-hetzner/tasks/main.yml

Add api_token

Co-Authored-By: phaer <phaer@phaer.org>

* Try to run apt until succeeded

* Scaleway modules upgrade

* GCP: Refactoring, remove deprecated modules

* Doc updates (#1552)

* Update README.md

Adding links and mentions of Exoscale aka CloudStack and Hetzner Cloud.

* Update index.md

Add the Hetzner Cloud to the docs index

* Remove link to Win 10 IPsec instructions

* Delete client-windows.md

Unnecessary since the deprecation of IPsec for Win10.

* Update deploy-from-ansible.md

Added sections and required variables for CloudStack and Hetzner Cloud.

* Update deploy-from-ansible.md

Added sections for CloudStack and Hetzner, added req variables and examples, mentioned environment variables, and added links to the provider role section.

* Update deploy-from-ansible.md

Cosmetic changes to links, fix typo.

* Update GCE variables

* Update deploy-from-script-or-cloud-init-to-localhost.md

Fix a finer point, and make variables list more readable.

* update azure requirements

* Python3 draft

* set LANG=c to the p12 password generation task

* Update README

* Install cloud requirements to the existing venv

* FreeBSD fix

* env->.env fixes

* lightsail_region_facts fix

* yaml syntax fix

* Update README for Python 3 (#1564)

* Update README for Python 3

* Remove tabs and tweak instructions

* Remove cosmetic command indentation

* Update README.md

* Update README for Python 3 (#1565)

* DO fix for "found unpermitted parameters: id"

* Verify Python version

* Remove ubuntu 16.04 from readme

* Revert back DigitalOcean module

* Update deploy-from-script-or-cloud-init-to-localhost.md

* env to .env
 5 years ago
Jack Ivanov 61729ac9b5
Update client.conf.j2 (#1580) 5 years ago
Nil Admirari 0c3aada66f Support for scripted Docker deployments (#1582) 5 years ago
Nil Admirari fc27b439b5 Do not copy existing env to Docker image (#1581) 5 years ago
Nian Wang 71e49eb2c8 Add spacing, list format for readability. (#1560) 5 years ago
Squirrel 1ca8ee5554 Generates a password by native module (#1576) 
* use password module to generate password

* fix variable reference

* reduce character set to meet origin design

*  CA and p12 password chanes

- Move the CA_password generation task to the native lookup plugin
- Get rid of unneeded tasks
 5 years ago
Jack Ivanov c6f45ead69
Allow OnDemand to be toggled later (#1557) 5 years ago
Jack Ivanov 95eddccfb7
EC2: Enable EBS single step encryption by default (#1556) 
* EC2: EBS single step encryption by default

* return back the encryption variable
 5 years ago
Jack Ivanov 3c30074a7f
Revert "More robust use of our virtualenv (#1412)" (#1559) 
This reverts commit 2909107554.
 5 years ago
Jack Ivanov fe7755e6a0
Allow to unblock smb and netbios in config.cfg (#1558) 5 years ago
John Wesley fe19859b00 Docker makefile (#1553) 
* makefile for docker deploys

* update docs for makefile
 5 years ago
Jack Ivanov 655729ef54
Update CHANGELOG.md 5 years ago
Julien Bachmann 3dc08c94cf New cloud provider CloudStack (#1420) 
* clean commits from branch cloud-cloudstack w/ proper committer email/name

* fixed ansible-lint errors

* corrected typo in prompted message

* standalone cloudstack zones module

* added missing environment variables

* remove `_cloudstack_zones` default variable

* Move to Ubuntu 19.04

* Update cloud-cloudstack.md

* Update cloud-cloudstack.md

Markdown doesn't render `<your account>`

* Update prompts.yml

* Update main.yml
 5 years ago
James Polley 2909107554 More robust use of our virtualenv (#1412) 
Prior to this change, the script tests if it's running inside a
virtualenv; and if it is, it assumes that it must be inside its own
virtualenv.

This change switches to testing for the activate binary in the
place we expect; and if it's found, using it directly. This avoids
false positives (running the script inside the wrong virtualenv) and
makes sure that we're running inside the right virtualenv.
 5 years ago
Jack Ivanov 211d1b2cab
Google Cloud: remove sshguard (#1548) 
* Google Cloud: remove sshguard

* Remove whitespace
 5 years ago
Jack Ivanov 561afe18f9
Remove WireGuard pki from tmpfs (#1547) 5 years ago
Jack Ivanov f8ce1f84a2
Update CHANGELOG.md 5 years ago
Jack Ivanov e8ae7b2341
Update CHANGELOG.md 5 years ago
Jack Ivanov 38d8a6d0e2 Deprecate IKEv2 for Windows (#1521) 
* Windows to WireGuard

* Add note about WireGuard

* change wireguard faq

* Clarify Windows instructions

* Correct Wireguard description

* Update README.md
 5 years ago
dependabot[bot] ab0f0c00fe Bump ansible from 2.7.10 to 2.7.12 (#1536) 
* Bump ansible from 2.7.10 to 2.7.12

Bumps [ansible](https://github.com/ansible/community) from 2.7.10 to 2.7.12.
- [Release notes](https://github.com/ansible/community/releases)
- [Commits](https://github.com/ansible/community/commits)

Signed-off-by: dependabot[bot] <support@github.com>

* Parse required ansible version
 5 years ago
Jack Ivanov 545ad480a4
Add tags to EC2 encrypted images (#1530) 5 years ago
David Myers 902fdab3a0 Update local install instructions (#1527) 5 years ago
TC1977 37e4f46673 Update deploy-from-ansible.md (#1518) 
Further clarifies that the usage of `-t` is deprecated (other than `--skip-tags`) and using variables is preferred.
 5 years ago
Jack Ivanov 090a60d48d PKI to tmpfs (#1496) 
* PKI to tmpfs

* Fixes
- diskutil to full path
- unmount and eject fixes

* Umount fix

* run diskutil info only on Darwin kernels

* fix shell tasks
 5 years ago
Jack Ivanov f986811d64
remove pycrypto from the gce role (#1489) 
pycrypto is dead
 5 years ago
Jack Ivanov 0e6554943f
Add default IPv6 routes to the windows powershell script (#1501) 5 years ago
Daniel Néri 14ee323eca Fix outdated task name in DNS role (#1499) 5 years ago
David Myers f152d3a746 Troubleshooting IPsec NAT issues (#1498) 5 years ago
TC1977 8462f0fb6c Unattended upgrade fixes (#1485) 
* Keep custom dnscrypt-proxy conffile when upgrading

* Unattended upgrade tuning
- Upgrade the 50unattended-upgrades file with latest options
- Keep the common unattended upgrade options in one file
- Enable removing of unused kernels and dependencies to save some space
 5 years ago
Jack Ivanov 6f58093a06
Update azure regions 
Closes #1492
 5 years ago
TC1977 c4cc59998a Update deploy-from-ansible.md (#1487) 
Updated role names and explanations to reflect the removal of Dnsmasq and replacement with dnscrypt-proxy for adblocking.
 5 years ago
Jack Ivanov 22cd8ad814
Update CHANGELOG.md 5 years ago
Jack Ivanov 8602a697cc
dnscrypt-proxy as a dns adblocker (#1480) 
* Move DNS adblocking to dnscrypt-proxy

* Update docs

* remove unneeded variable dnscrypt_proxy_version

* Update to the latest dnscrypt-proxy version

* install.sh fix

* spelling
 5 years ago
rodeodomino fa5b86961c Adding ipv6 localhost to the listen addresses (#1476) 5 years ago
im-batman 53755d57e3 Update config.cfg default Azure instance (#1474) 5 years ago
Bill Nottingham 4064bc281a Update the Fedora related docs. (#1470) 
* Update the Fedora related docs.

- update for new generated config file locations
- remove reference to no-longer-needed copr
- update package names for further py2 changes in Fedora

* switch back to the default ciphers
 5 years ago
TC1977 baa6efc666 Clarify: CA key must be saved to be able to update users (#1460) 
* Update README.md

* certificate -> key
 5 years ago
Dan Guido 09d70f9934
Create FUNDING.yml 5 years ago
Jack Ivanov 89e2dbde64
Update CHANGELOG.md 5 years ago
elreydetoda 146cbc71ce Adding preshared key support (#1465) 
* adding preshared key generation

* adding preshared folder

* Update client.conf.j2

adding preshared key options

* adding preshared keys to server template

* making sure private preshared is right

* making sure preshared keygen working for main.yml

* changing private to preshared for name

* changing to preshared dir instead of public
 5 years ago
TC1977 ac6b543134 Update deploy-to-unsupported-cloud.md (#1467) 
Future-proofs the "unsupported cloud providers" list.
 5 years ago
TC1977 6b2defe470 Update deploy-from-ansible.md (#1464) 
Merged redundant and contradictory "Local install" instructions.
 5 years ago
Jack Ivanov fb00d66747
Update Dockerfile (#1466) 5 years ago
Jack Ivanov 498cf46391 Block link-local networks. Block traffic from SSH tunnels to VPN clients (#1458) 5 years ago
Jack Ivanov 2d04f65284
Update CHANGELOG.md 5 years ago
Jack Ivanov d03eaed7a6
Update CHANGELOG.md 5 years ago
Jack Ivanov a2fdc509e1
Support for Ubuntu 19.04 (#1405) 
* Ubuntu 19.04

* Azure to 19.04
 5 years ago
TC1977 71c9c16ffe Update EC2 instructions (#1457) 
* Update cloud-amazon-ec2.md

* Add files via upload
 5 years ago
Jack Ivanov c27aed708a
EC2 eip facts authentication fix (#1454) 
* EC2 eip facts authentication fix

* add region to ec2_eip_facts
 5 years ago
David Myers 98f89adeba Add reference to Fedora docs in README (#1456) 5 years ago