summaryrefslogtreecommitdiffstats
path: root/hosts
AgeCommit message (Collapse)AuthorFilesLines
2015-11-12reproducible: upon next reboot, run pb-build5-amd64 400 days in the futureHolger Levsen1-3/+0
2015-11-11reproducible: add sixth armhf build node, thanks again to vagrantHolger Levsen16-24/+47
2015-11-10reproducible and jenkins.d.n: allow jenkins-adm to run everything as rootHolger Levsen11-0/+37
2015-11-09add configs for new armhf node, odxu4Holger Levsen23-0/+1311
2015-11-09add new armhf node, Odroid-XU4, thanks to vagrantHolger Levsen10-10/+20
2015-11-07mitigate jenkins remote execute 0-dayHelmut Grohne1-0/+2
https://jenkins-ci.org/content/mitigating-unauthenticated-remote-code-execution-0-day-jenkins-cli It seems that two channels need to be secured. The first is a custom tcp port which is firewalled anyway. The other part is urls starting with /cli. Instead of filtering this entry point in jenkins (and thus breaking bin/abort.sh), we apply the filtering in apache. Thus a local execute vulnerability remains, but we didn't care about those earlier.
2015-11-06add a munin plugin to plot OutOfMemoryError exceptionsHelmut Grohne1-0/+5
2015-11-04Allow Indexes on r-b.org/gitJérémy Bobbio1-0/+1
Even if Git can fetch the repositories, people are unhappy when they see a 403.
2015-11-01disable unused directoriesHolger Levsen1-2/+2
2015-11-01add schroot fstab to pb3Mattia Rizzolo1-0/+24
2015-10-31It's the Engine we turn on for rewritingJérémy Bobbio1-1/+1
2015-10-31Setup reproducible-builds.org websiteJérémy Bobbio1-8/+13
2015-10-31Revert "Setup reproducible-builds.org website"Holger Levsen1-4/+10
This reverts commit b32118218c89ad429ef26fa03ed16d55069728ac.
2015-10-31Setup reproducible-builds.org websiteJérémy Bobbio1-10/+4
2015-10-28pbuilder: set BUILDPLACE=/srv/workspace/pbuilder instead of using a symlinkMattia Rizzolo9-0/+9
otherwise `pbuilder clean` removes the symlink, and the following builds won't use the tmpfs, etc..
2015-10-19configure pb-build3 like the restHolger Levsen3-0/+19
2015-10-19deploy /etc/apt/listchanges.conf everywhere and configure it to send mailsHolger Levsen9-0/+54
2015-10-18rebootstrap doesn't need pbuilderHolger Levsen1-30/+0
2015-10-18remove unneeded rebuild hooksHolger Levsen3-68/+0
2015-10-18reproducible pbuilder hooks: use BUILDDIR, to comply with pbuilder 0.216Mattia Rizzolo30-100/+154
2015-10-17reproducible: silently delete…Holger Levsen9-9/+9
2015-10-17reproducible: cleanup with sudoHolger Levsen9-0/+9
2015-10-17reproducible arch: redirect /archlinux/Holger Levsen1-0/+6
2015-10-15run dsa-check-running-kernel and dsa-check-packages twice a day via cronHolger Levsen11-2/+102
2015-10-14mails to root go to helmut, mattia & holgerHolger Levsen6-0/+18
2015-10-14install /u/l/sbin/nagios-check-libs /u/l/bin/dsa-check-packages and ↵Holger Levsen33-0/+8690
/u/l/bin/dsa-check-running-kernel on all Debian hosts
2015-10-13reproducible: configure _node_wrapper.sh and sudoers.d correctlyHolger Levsen1-0/+15
2015-10-12reproducible: configure squid3 on pb-build3Holger Levsen1-0/+5787
2015-10-09add 'AddDefaultCharset utf-8' to all virtual hosts, thanks SantiagoHolger Levsen1-0/+3
2015-10-08reproducible: add profitbricks-build5-amd64 and profitbricks-build6-amd64Holger Levsen39-14/+12618
2015-10-08reproducible: rename profitbricks-build3-amd64 to profitbricks-build5-amd64Holger Levsen2-7/+8
2015-10-05reproducible: replace 'ps fax|grep -v grep|grep foo|wc -l' with 'pgrep -fc foo'Holger Levsen1-1/+1
2015-10-05reproducible: use pgrep, less pipesHolger Levsen6-12/+12
2015-10-05reproducible: fix munin graphs to count correctlyHolger Levsen6-12/+12
2015-10-04munin: exclude /sys/fs/cgroup in df* pluginsHolger Levsen9-9/+9
2015-10-04munin: stop graphing diskstats plugin and disable iostat_ios plugin everywhereHolger Levsen1-0/+40
2015-10-04reproducible: try harder to log the hostnameHolger Levsen8-8/+8
2015-10-04reproducible: graph number of reproducible builds running per nodeHolger Levsen6-0/+336
2015-10-03reproducible: run df on pbuilder failures to debug diskspace issuesHolger Levsen8-0/+32
2015-10-03reproducible: allow umounting schrootsHolger Levsen7-0/+7
2015-10-03munin/df plugin: exclude sysfs filesystems and /dev/shmHolger Levsen9-18/+18
2015-10-03reproducible: allow sudo where schroot-create.sh needs itHolger Levsen6-18/+24
2015-10-02reproducible: let's not run the 2nd build in the future until things run ↵Holger Levsen4-4/+20
more stable again
2015-10-02reproducible: better explain maintainer notificationsHolger Levsen4-15/+15
2015-09-28reproducible: allow sudo where schroot-create.sh needs itHolger Levsen1-3/+4
2015-09-28reproducible: temporarily disable disorderfsHolger Levsen8-0/+24
we have problems properly unmounting it (or rather cleanup…) and I'm unable to debug and fix this properly atm. thus, to avoid false ftbfs due to out of disk space problems, we disable it temporarily.
2015-09-25update IPsHolger Levsen1-2/+2
2015-09-23reproducible: use disorderfs on every 2nd buildHolger Levsen21-12/+276
2015-09-23reproducible: be more verbose when mounting+unmounting with disorderfsHolger Levsen3-0/+6
2015-09-22fixup 32a4d96: reproducible: enable disorderfs on hb0Holger Levsen2-0/+26