Commit graph

563 commits

Author SHA1 Message Date
3ddfd77bdf
Stop running synapse as root 2020-11-22 15:08:08 +00:00
310feaf332
Use correct args to build synapse DB 2020-11-22 15:07:34 +00:00
367de37fab
Actually disable unnecessary logging rather than change level
Also disable even more of them
2020-11-12 23:01:32 +00:00
2a4b3ec3e6
Increase timeout for SSH sessions
Stll check relatively often the client is still there, but check many times so the connection stays open a decent amount of time. Especially useful for long-running commands.
2020-11-08 22:04:30 +00:00
f5c7c094d3
Fix gotify container name
Gotify != duplicati
2020-11-08 11:07:57 +00:00
5c1f17e2aa
Update synapse 2020-10-28 18:22:30 +00:00
0fc57049e4
Update nextcloud to 20.0.1 2020-10-28 15:22:49 +00:00
f450d4a8f2
Pin jellyfin version 2020-10-27 17:38:10 +00:00
f414781182
Use new whoami container 2020-10-27 16:13:14 +00:00
c63506d2bc
Pin traefik to patch version 2020-10-27 16:13:14 +00:00
6ae8d0febe
Pin plausible versions 2020-10-27 16:13:14 +00:00
f665b87965
Allow NTP role to manage config
Hopefully this closes the port
2020-10-24 17:36:39 +01:00
ff72f5a25e
Move nextcloud data dir to ZFS 2020-10-24 14:26:30 +01:00
5eb3870fbe
Set mode on fail2ban filter and jail 2020-10-24 12:10:54 +01:00
8932ac828f
Add geoip database for plausible 2020-10-24 12:10:37 +01:00
47ad40bb52
Remove watchtower, and do updates manually from now on
Keeps @IronicBadger happy!
2020-10-22 18:07:48 +01:00
efd22010b7
Use new LSIO mod which does more 2020-10-19 17:29:28 +01:00
a46525aa80
Move configuration for custom port to Traefik config rather than custom container expose
Still a work-around for https://github.com/plausible/analytics/pull/237
2020-10-18 22:31:23 +01:00
0ca3f36f7a
Move some more nextcloud components to ZFS 2020-10-18 18:02:48 +01:00
58605c1c24
Don't snapshot tank root
This makes syncoid unhappy, and is generally unnecessary
2020-10-18 17:45:49 +01:00
bedbb0f5f4
Fix service to restart 2020-10-16 19:16:42 +01:00
1930cc83e8
Use generic package module 2020-10-16 19:16:42 +01:00
b2e91d7d6d
Update haproxy fail2ban jail to use systemd for logs 2020-10-16 19:16:42 +01:00
4890c3d3e5
Revert "Remove fail2ban"
This reverts commit 1f0e33acc8.
2020-10-16 19:16:42 +01:00
30baed441e
Mount external files into nextcloud
Means some bits can live outside the nextcloud dir
2020-10-10 18:01:27 +01:00
b8ea056455
Remove netdata
Don't use it anyway
2020-10-09 23:39:55 +01:00
6852b84406
Change watchtower to run daily
A holdover until less of the containers are using `:latest`
2020-10-09 23:20:07 +01:00
5496744428
Remove web-rng 2020-10-09 23:11:53 +01:00
f7afaacbdc
Move website to be hosted on GitLab pages 2020-10-09 21:35:57 +01:00
7f09db5d20
Add heimdall 2020-10-07 14:09:23 +01:00
e9f61070f8
Update nextcloud to version 20
Using the new LSIO tags for version specific pins! 🎉
2020-10-07 09:18:32 +01:00
0a9deb3d9e
Update plausible environment so it's compatible with v1
Read the changelog, folks!
2020-10-06 21:48:34 +01:00
93ccb686e7
Drive watchtower config from environment 2020-10-06 09:10:26 +01:00
413ff4dad9
Add script to update containers
This is an attended update, which is better. Eventually replace watchtower
2020-10-06 08:44:01 +01:00
2c4e1e0414
Pin Plausible to major version 2020-10-05 18:43:12 +01:00
29c9e14f62
Remove haproxy chroot
This is technically _slightly_ less secure, but means it logs to journald properly, so can be picked up by fail2ban in future
2020-10-05 11:10:29 +01:00
4c40faf21d
Move clickhouse off ZFS
For some reason, they really don't play well together!
2020-10-03 17:18:11 +01:00
68bda30cb2
Add nginx container for getting access to files via rclone 2020-10-03 11:41:38 +01:00
64788eb602
Move transcodes to tempfs
Means I can remove the scratch disk
2020-10-02 18:12:15 +01:00
1f398b25c3
Store fewer snapshots for downloads directory 2020-10-02 18:11:53 +01:00
191374b812
Move deluge onto walker
Stop torrent traffic being limitted by home broadband
2020-10-02 18:11:34 +01:00
6cfaa3a03a
Update traefik 2020-10-02 09:20:33 +01:00
aee9507ec0
Update synapse 2020-10-02 09:13:41 +01:00
addd4f351c
Update nextcloud base 2020-10-02 09:13:34 +01:00
285f7b8a31
Update Gotify 2020-10-02 09:13:13 +01:00
a799ad9657
Scale gitlab up a tiny bit 2020-10-01 19:46:04 +01:00
4742552839
Add notes site 2020-09-30 18:49:36 +01:00
4e7c5ffd67
Add docker mod to scale worker processes to a sane value 2020-09-28 20:14:41 +01:00
07b0650618
Remove statping
It's buggy as all hell, super slow, and doesn't really get used for monitoring
2020-09-27 14:17:46 +01:00
5079599b9d
Require TLS 1.2 2020-09-27 12:36:49 +01:00
d93920c2b6
Move home-assistant stuff to ZFS 2020-09-27 11:31:05 +01:00
a303bed27f
Define app data dir in variable 2020-09-26 21:15:44 +01:00
361a78e8e0
Update yamllint 2020-09-26 17:54:14 +01:00
24d11deeae
Update ansible-lint
Required a lot of renaming :(
2020-09-26 17:53:47 +01:00
cc43910be6
Fix scrutiny so it picks up which task to run correctly 2020-09-26 17:10:07 +01:00
3c21c5670c
Replace postgres with mariadb
Its' recommended, and might hopefully fix my annoying auth issues!
2020-09-26 14:49:38 +01:00
40488f62b7
Also set user id for collector container
Else it chowns the DB, and doesn't run correctly
2020-09-24 22:18:34 +01:00
fd83820faa
Install scrutiny 2020-09-21 21:16:00 +01:00
a67361b9b5
Explicitly define bed lights 2020-09-19 16:16:24 +01:00
2bbc7c715f
Add GZIP compression to projects which don't natively support it 2020-09-18 12:42:36 +01:00
092f12459e
Fix XML formatting
This caused clickhouse to crash hard!
2020-09-18 12:21:15 +01:00
782b008cd3
Fix name of config so they're not constantly changed with each run of ansible
derp!
2020-09-18 12:11:44 +01:00
62e629187b
Clean up indent 2020-09-18 12:10:53 +01:00
4ad2bdc77a
Change clickhouse connection to unified variable 2020-09-17 15:18:01 +01:00
a8438c4c2a
Add grafana image renderer 2020-09-13 10:47:59 +01:00
809a977c63
Also update nextcloud config file 2020-09-12 23:15:08 +01:00
9cea8743e9
Update gotify 2020-09-12 22:54:49 +01:00
4c92fba2b9
Change gitlab trusted proxies to be docker IP space
Else it becomes `127.0.0.1`, which is obviously not right
2020-09-12 20:03:22 +01:00
6ad9fa070f
Update nextcloud 2020-09-11 21:30:20 +01:00
9ca2546766
Decommission grimes
Most of the function has moved to `walker`
2020-09-10 20:39:54 +01:00
1ecfc5b7fa
Update traefik 2020-09-10 20:16:23 +01:00
59a447023b
Update nextcloud base 2020-09-09 20:43:52 +01:00
c220f19545
Move scratch disk under /mnt
Mounting disks is hard!
2020-09-08 21:17:51 +01:00
2db72623ad
Remove DB backups for containers on ZFS
Snapshots are a better backup
2020-09-08 20:41:47 +01:00
b47de7e70b
Disable healthchecks for GitLab pages
Because of everything we have disabled, Docker considers the container unhealthy
2020-09-05 23:08:58 +01:00
8c4397d39a
Set rails trusted proxies 2020-09-05 22:29:16 +01:00
2af3241bd2
GZIP compress gitlab pages 2020-09-05 20:52:18 +01:00
19b2330832
Disable logrotate for pages
Logs are in a tempfs anyway, and it's just another process to be running
2020-09-05 20:36:45 +01:00
ea54d1be69
Expose pages sites 2020-09-05 20:33:57 +01:00
0a1b541974
Remove compression middleware for gitlab
This is already handled by the application
2020-09-05 18:27:56 +01:00
e9aeed26ee
Use cloudflare DNS challenge for Traefik 2020-09-05 18:27:04 +01:00
0289342e2c
Remove goaccess container 2020-09-05 17:29:40 +01:00
4c1ccfc4e4
Only clear containers weekly
This will be more helpful now, as repeat CI jobs won't need to re-download containers as often
2020-09-05 17:01:54 +01:00
af9c66785e
Decrease watchtower polling rate to 10 minutes
Doesn't need to be that intensive
2020-09-05 17:01:30 +01:00
77113246b0
Remove remaining gitea configuration
Goodbye old friend
2020-09-05 16:56:27 +01:00
c1dc26ce35
Install gitlab pages daemon
I'll deal with traefik domains later
2020-09-05 16:50:56 +01:00
e579edc758
Use lsyncd to push files to gitlab pages server
Server itself in future commit
2020-09-05 16:24:47 +01:00
1487915bbc
Also disable thread log 2020-09-02 20:12:31 +01:00
c47ff494e0
Revert "Disable docker healthchecks"
Turns out it really just takes that long to start up!

This reverts commit 61ed3db887.
2020-09-01 21:50:03 +01:00
61ed3db887
Disable docker healthchecks
Makes traefik take *ages* to detect the container is actually running. Let it 502 if it has to
2020-09-01 20:12:52 +01:00
3bc1d75d9e
Ensure the correct IP is detected 2020-09-01 20:12:16 +01:00
acef6246d0
Replace gitea with gitlab
Leave gitea in place for a bit in case I need to change back suddenly
2020-09-01 19:47:39 +01:00
84d529be2f
Update synapse 2020-08-31 18:47:37 +01:00
3b7493ae8f
Set default theme to dark and assign default proxy 2020-08-30 21:11:29 +01:00
1ed078ef23
Fix SSH port for gitlab 2020-08-30 21:08:04 +01:00
4610d5ced2
Update nextcloud to 19.0.2 2020-08-30 20:28:49 +01:00
3d76c48bbf
Use postgres on homeassistant 2020-08-30 16:58:27 +01:00
ec751ffa1a
Add influxdb to monitor traefik 2020-08-30 15:58:03 +01:00
17f0e22962
Migrate grafana to postgres 2020-08-30 14:53:08 +01:00
8efb3e0d69
Expose gitlab SSH 2020-08-30 11:22:15 +01:00