Archives
/
algo
mirror of https://github.com/trailofbits/algo
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,138 Commits
5 Branches
2 Tags
10 MiB
fix/14704
dependabot/pip/ansible-9.4.0
master
dependabot/github_actions/actions/setup-python-5.1.0
dependabot/pip/jinja2-approx-eq-3.1.3
v1.1
v1.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '90c2b1bbeb'
${ noResults }
Commit Graph

1138 Commits (90c2b1bbebfb8763a3d0d07cf6a3defaea4fa375)
 

Author SHA1 Message Date
David Myers 5efa20b79a
Update WSL doc (#1817) 
Note in the WSL doc that Algo does not work on Ubuntu 20.04 LTS under WSL.
 4 years ago
David Myers e4753d2510
Make clients prefer IPv6 (#1822) 
Change IPv6 addresses to non-ULA addresses such that they are favored over IPv4.
 4 years ago
David Myers 47bb48b0fb
Update Linux WireGuard client doc (#1846) 
Ubuntu 18.04 LTS now includes WireGuard so the PPA is no longer needed.
 4 years ago
Eugene Pirogov 3f86ae0713
Few cosmetic change to readme (#1813) 
Several small improvements around markup for code blocks
 4 years ago
David Myers 9ac64cbf21
Document WG DNS search domain on Linux client (#1796) 4 years ago
Jack Ivanov c14ff0d611
Ubuntu 20.04 support (#1782) 
* ubuntu 20.04 support

* purge snapd for 20.04

* strongswan-starter fix
 4 years ago
KilometerM 7695372e2b
Remove hosts-file.net/ad_servers.txt (#1791) 
hosts-file.net/ad_servers.txt now leads to a 404 page. The list is no longer published nor maintained.

More information:

https://forums.malwarebytes.com/topic/257401-inquiry-regarding-automated-processing-of-hosts-files/
https://github.com/pi-hole/pi-hole/pull/3236#issue-396455876
https://github.com/uBlockOrigin/uBlock-issues/issues/971#issue-591298291
https://www.reddit.com/r/pihole/comments/fsg11e/hostsfilenet/
 4 years ago
Jack Ivanov 6753dc919f
Update troubleshooting.md 4 years ago
Jack Ivanov ca898d5bf2
Update troubleshooting.md 
Closes #1786
 4 years ago
David Myers eeda23be97
Initial support for Ubuntu 20.04 (#1770) 4 years ago
Wade Winright e29615bc05
Modified script to handle more types of blocklists (#1771) 
Added/modified script to better handle multiple types of blocklists available to drop in to the BLOCKLIST_URLS.
 4 years ago
Saravanan Palanisamy 02fe2f7dd5
use ca_password from variable(--extra-vars) - non-interactive installation using ansible playbook (#1774) 
* use ca_password from variable

* add tests to cover the changes

* update tests - PR #1774
 4 years ago
Jack Ivanov 27de76048c
ipv6 nat fix (#1775) 4 years ago
aleks 4f1b9270be
relax CA constraints for client (the client equivalent of PR #1675) (#1768) 
* relax CA constraints for client (the client equivalent of PR #1675)

* fixing incorrectly hard-coded output file path
 4 years ago
dependabot[bot] c231cd42d6
Bump ansible from 2.8.3 to 2.8.8 (#1736) 
Bumps [ansible](https://github.com/ansible/ansible) from 2.8.3 to 2.8.8.
- [Release notes](https://github.com/ansible/ansible/releases)
- [Commits](https://github.com/ansible/ansible/compare/v2.8.3...v2.8.8)

Signed-off-by: dependabot[bot] <support@github.com>
 5 years ago
David Myers 3f3138f555
Fix IPsec DNS when WireGuard uses port 53 (#1719) 
* Fix IPsec DNS when WireGuard uses port 53

* Change ACCEPT to RETURN
 5 years ago
Jack Ivanov 28d95eace2
Update main.yml (#1727) 5 years ago
Jack Ivanov 1e8a9c5cf1
Generate mobileconfigs for WireGuard (#1698) 
* Generate mobileconfigs for WireGuard

* add xmllint to wireguard profiles

* Enable onDemand prompts for WireGuard

* linting
 5 years ago
Dan Hughes 512b5660e1
Use user-defined hostname for SSH hostname (#1715) 
* Use user-defined hostname for SSH hostname

* Update readme to use hostname in ssh commands
 5 years ago
Dan Hughes 5c09d6dd02
Use absolute path for identityfile in ssh config (#1718) 
* Use absolute path for identityfile in ssh config

* Update readme with ssh config include
 5 years ago
Jack Ivanov dcfed41ae8 Apply netplan for digitalocean only (#1723) 5 years ago
Austin Dworaczyk Wiltshire 027b1b8497
Update dnscrypt-proxy cache settings for improved performance and privacy. (#1714) 
These values match those recommended by the author of DNSCrypt-proxy

See:
https://github.com/DNSCrypt/dnscrypt-proxy/wiki/Caching#dns-cache
https://00f.net/2019/11/03/stop-using-low-dns-ttls/
 5 years ago
Jack Ivanov 3720c5eb1f
Update CHANGELOG.md 5 years ago
Jack Ivanov 2abbf22196
Alternative Ingress IP (#1605) 
* Separate ingress IP draft

* task name fix

* placeholder
 5 years ago
David Myers 78cc708435 Clarify SSH port changed for cloud only (#1706) 5 years ago
Jack Ivanov 0efa4eaf91 Ca certificate name constraints (#1675) 
* X.509 Name Constraints

* nameConstraints to a random generated uuid

* Second level domain

* nameConstraints fixes

* critical in nameConstraints lost after last refactoring
 5 years ago
Jack Ivanov 0e57da8237
Move to Ubuntu 19.10 (#1702) 
* 19.04 is dead, long live 19.10

* Remove 19.04 from tests

* Update docs

* Set proper Azure name
 5 years ago
David Myers 6ac2e2d1a4 Document using Google Cloud Shell (#1699) 5 years ago
David Myers df57e21194 DO documentation update (#1696) 5 years ago
David Myers 2d94bbd278 Documentation updates (#1694) 5 years ago
Jack Ivanov 62d00901e6
Update main.yml 5 years ago
Jack Ivanov d8c48ec505
Update pre-deploy.sh 5 years ago
Jack Ivanov 98f43c5cbd
Github Actions fix for PRs (#1687) 5 years ago
Jack Ivanov 24574a3205
apt locking fixes (#1685) 5 years ago
Jack Ivanov 0629aa5ca5
Update badge 5 years ago
Jack Ivanov cc72728c6d
Update badge 5 years ago
Jack Ivanov 53dfc570eb
Github Actions (#1681) 5 years ago
Jack Ivanov eb40ade096
scaleway region fix (#1678) 5 years ago
Jack Ivanov 625f634163
Update CHANGELOG.md 5 years ago
Jack Ivanov d635c76b50
Change default SSH port and introduce cloud-init support (#1636) 
* Change default SSH port

* Iptables to ansible_ssh_port

* Add Scaleway

* permissions and groups fixes

* update firewall docs

* SSH fixes

* add missing cloudinit to cloud-azure

* remove ansible_ssh_user from the tests

* congrats message fix
 5 years ago
Jack Ivanov b66c9f59aa
Update CHANGELOG.md 5 years ago
TC1977 45aa0065cd Documentation updates (#1607) 
* update variable name to store_pki

* Document BetweenClients_DROP

* Update README.md

* Update faq.md

* VPN On Demand is for Apple IPSEC clients only

* How to update users from cloud-init

* How to monitor user activity

* Fix typo

* Update FAQ about WireGuard, fix typos

* Correct locations of install log and user configs

* Update-users from cloud-init

* Update features list

* More "IPsec" and "WireGuard" changes

* fixed broken link/absent link in FAQ

* Python version README fix for #1622

* road warrior instructions

* Update index.md

* Reorganize config.cfg

As per @davidemyers suggestions

* Further config changes

As per feedback, also better explanation of keys_clean_all

* Add road warrior instructions to FAQ

* Remove specific ports from RW instructions
 5 years ago
David Myers 221568cd25 Remove some commas from input.yml (#1652) 
* Remove some commas from input.yml

* Update input.yml
 5 years ago
David Myers d18de4b679 Add deploy-from-macos.md (#1649) 5 years ago
David Myers d72f3b5ba3 Update Windows documentation (#1640) 
* Update Windows documentation

* Revise instructions
 5 years ago
David Myers 9f27c25adc Update the Ubuntu WireGuard documentation (#1645) 5 years ago
Julien Bachmann 43aafdfce1 fixed code to work with python3.7 (#1608) 
* fixed code to work with python3.7

* removed trailing whitespaces and re-run ansible-linter
 5 years ago
David Myers b65e6b1351 Support Ubuntu 19.10 (#1630) 
Add Travis tests
 5 years ago
Jack Ivanov dfd979eb68
Windows SSH key permissions workaround (#1584) 
* Windows SSH key permissions workaround

* Ensure Ansible is not being run in a world writable directory

* linting
 5 years ago
David Myers 5737317dae Allow WireGuard to listen on port 53 (#1594) 
* Allow WireGuard to listen on port 53

* Use a variable for the port to avoid

* Add comment to config.cfg
 5 years ago