systems/infrastructure
1
Fork 0
Code Issues 1 Pull requests 17 Activity Actions

Remove haproxy chroot

Browse source 
This is technically _slightly_ less secure, but means it logs to journald properly, so can be picked up by fail2ban in future
This commit is contained in:
Jake Howard 2020-10-05 11:10:29 +01:00
parent 4c40faf21d
commit 29c9e14f62
Signed by: jake
GPG key ID: 57AFB45680EDD477
1 changed files with 0 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
ansible/roles/gateway/files/haproxy.cfg
View file

@ -1,7 +1,6 @@
global global
log /dev/log local0 log /dev/log local0
log /dev/log local1 notice log /dev/log local1 notice
chroot /usr/share/haproxy
pidfile /run/haproxy.pid pidfile /run/haproxy.pid
stats timeout 30s stats timeout 30s
user haproxy user haproxy