Archives
/
algo
mirror of https://github.com/trailofbits/algo
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
845 Commits
5 Branches
2 Tags
11 MiB
master
dependabot/pip/ansible-9.4.0
dependabot/github_actions/actions/setup-python-5.1.0
fix/14704
dependabot/pip/jinja2-approx-eq-3.1.3
v1.1
v1.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'a66d8f0069'
${ noResults }
Commit Graph

34 Commits (a66d8f00697029d95f7c35b0b33c827cd8d9cca0)

Author SHA1 Message Date
Jack Ivanov a66d8f0069 on-build python venvs (#1199) 6 years ago
Jack Ivanov bcba905547 ssh tunneling fixes (#1127) 6 years ago
Jack Ivanov e8947f318b Large refactor to support Ansible 2.5 (#976) 
* Refactoring, booleans declaration and update users fix

* Make server_name more FQDN compatible

* Rename variables

* Define the default value for store_cakey

* Skip a prompt about the SSH user if deploying to localhost

* Disable reboot for non-cloud deployments

* Enable EC2 volume encryption by default

* Add default server value (localhost) for the local installation

Delete empty files

* Add default region to aws_region_facts

* Update docs

* EC2 credentials fix

* Warnings fix

* Update deploy-from-ansible.md

* Fix a typo

* Remove lightsail from the docs

* Disable EC2 encryption by default

* rename droplet to server

* Disable dependencies

* Disable tls_cipher_suite

* Convert wifi-exclude to a string. Update-users fix

* SSH access congrats fix

* 16.04 > 18.04

* Dont ask for the credentials if specified in the environment vars

* GCE server name fix
 6 years ago
Jack Ivanov ffb5a1f737 WireGuard: disable SaveConfig, update-users fix (#985) 
- Disables SaveConfig. SaveConfig totally breaks the idea of configuration management and it breaks update-users
- WireGuard update-users fix. Mentioned in https://github.com/trailofbits/algo/issues/980#issuecomment-393720561
 6 years ago
Jack Ivanov 02427910de Ansible 2.4, Lightsail, Scaleway, DreamCompute (OpenStack) integration (#804) 
* Move to ansible-2.4.3

* Add Lightsail support #623

* Fixing the EC2 deployment

* Scaleway integration #623

* OpenStack cloud provider (DreamCompute optimised) #623

* Remove the security role

* Enable unattended-upgrades for clouds

* New requirements to make Azure and GCE work
 6 years ago
Jack Ivanov 6ae113a38f update-users fix (#591) 7 years ago
Jack Ivanov ee6db37428 Change the P12 and SSH passwords only for new users (#550) 7 years ago
Jack Ivanov 58d5a06e87 delete tasks and move to roles (#519) 7 years ago
Jack Ivanov bd348af9c2 Implementing blocks and additional fail hints #487 (#497) 
change the troubleshooting url
 7 years ago
Jack Ivanov a7b06058cb remove the proxy role #440 (#457) 
* remove the proxy role #440

* Separate facts. Make roles more independent from each other

move openssl to local tasks

move unneeded tasks
 7 years ago
Jack Ivanov f300fdb60b Fixes #410 7 years ago
Josh Soref 84bbcb88d0 Spelling fixes (#342) 
* spelling: algorithm

* spelling: bertrand

* spelling: between

* spelling: checking

* spelling: conjunction

* spelling: contributor

* spelling: delimited

* spelling: fashion

* spelling: droplet

* spelling: javascript

* spelling: nameserver

* spelling: obligatory

* spelling: official

* spelling: overridden

* spelling: overwrite

* spelling: parameter

* spelling: suppressing
 7 years ago
Jack Ivanov 6facb6cb4f FreeBSD / HardenedBSD (#262) 
* FreeBSD draft

ifconfig fix

Pre-tasks fixes

fix hardcoded IP

some refactoring

disable system-based tags

disable freebsd tags

FreeBSD vpn role

add defaults

ssh role freebsd

default fix

dns_adblocking freebsd

ubuntu dict fix

* HardenedBSD

update-users BSD

* Rebuild the kernel

docs changing
 7 years ago
Jack Ivanov 237fcc7a7f additional variables 7 years ago
Jack Ivanov 98558c43d2 disable unneeded task 7 years ago
Jack Ivanov 9a5801f434 contgrats fix in update-users #243 7 years ago
Jack Ivanov 35faf4bca7 Local openssl tasks (#169) 
* Draft

works with ECDSA

RSA support for Windows

* update-users with local_openssl_tasks

* move prompts to the algo script

* additional directory for SSH keys

* move easyrsa_p12_export_password to pre_tasks

* update-users testing

* Fix hardcoded vars

* Delete the CA key

* Hardcoded IP. Fixes #219

* Some fixes
 7 years ago
Jack Ivanov abf94989fc the password for the CA private key #75 8 years ago
Jack Ivanov f1715c4e0b random password for the p12 certificates #135 8 years ago
Jack Ivanov 03c805cb87 reorganize the wait_for functions #159 8 years ago
Jack Ivanov 3d53dde6ca Fixed. #137 8 years ago
Jack Ivanov 105cb601e4 Add the SSH role to the users-update playbook #92 fixed 8 years ago
Jack Ivanov 8c5f80bf8f linting 8 years ago
Jack Ivanov 0945f54366 SSH user-management #77 8 years ago
Evgeniy Ivanov cd706dbf82 Update-users fixed #52 8 years ago
Evgeniy Ivanov 9eaaf63fa0 server_name fixes 8 years ago
Evgeniy Ivanov 7085a594fc p12 moved into playbooks 8 years ago
Dan Guido f538ffe4e8 linting 8 years ago
jack e729f0d303 Roles and Google cloud 8 years ago
jack 917b7d6138 Modify user-management function 8 years ago
Defunct e0527d7d27 EC2 Support 8 years ago
Dan Guido d58a7b484d miscelllaneous cleanups 8 years ago
Evgeniy Ivanov 172845408c server name fixed 8 years ago
Evgeniy Ivanov 13f11514b7 User management 8 years ago