Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fail2ban support #35

Merged
36 commits merged into from
Feb 13, 2024
Merged

Fail2ban support #35

36 commits merged into from
Feb 13, 2024

Conversation

ghost
Copy link

@ghost ghost commented Feb 1, 2024

SUMMARY

This PR adds the audit module, patches it to include IPs and includes a fail2ban rule.

ISSUE TYPE
  • Feature Pull Request

@ghost ghost self-assigned this Feb 1, 2024
@ghost
Copy link
Author

ghost commented Feb 1, 2024

The patching was removed as we now use our own fork.

s3lph
s3lph requested changes Feb 2, 2024
View reviewed changes
Copy link
Contributor

@s3lph s3lph left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The CI is currently failing because the ansible-lint action changed its name; it must now be included as:

uses: ansible/ansible-lint@main

Please update accordingly in .github/workflows/ansible-ci.yml

files/0001-icingaweb2-module-audit-remote-ip-logging.patch Outdated Show resolved Hide resolved
defaults/main.yml Outdated Show resolved Hide resolved
meta/main.yml Outdated Show resolved Hide resolved
tasks/installation.yml Outdated Show resolved Hide resolved
@s3lph
Copy link
Contributor

s3lph commented Feb 2, 2024
edited
Loading

Depends on adfinis-forks/icingaweb2-module-audit#1 merged

s3lph
s3lph requested changes Feb 8, 2024
View reviewed changes
README.md Outdated Show resolved Hide resolved
README.md Outdated Show resolved Hide resolved
README.md Outdated Show resolved Hide resolved
README.md Outdated Show resolved Hide resolved
README.md Outdated Show resolved Hide resolved
@s3lph
Copy link
Contributor

s3lph commented Feb 8, 2024

The CI currently fails as ansible-lint has some fairly limited expectations about where the repository is checked out: ansible/ansible-lint#3938

For this repo, I think it's easiest if we check out icinga2_web without using a subdirectory (the lint rules can still be checked out in a subdirectory).

Stev and others added 5 commits February 13, 2024 12:58
@s3lph
Company was renamed
f09da77 
Co-authored-by: Sebastian P. <5564491+s3lph@users.noreply.github.com>
@s3lph
Role was moved to a new namespace
4a599c4 
Co-authored-by: Sebastian P. <5564491+s3lph@users.noreply.github.com>
(docs): move dependencies up into requirements section
5893949
@s3lph
Fix image urls
beed16e 
Co-authored-by: Sebastian P. <5564491+s3lph@users.noreply.github.com>
@s3lph
Company was renamed
bd54f0b 
Co-authored-by: Sebastian P. <5564491+s3lph@users.noreply.github.com>
s3lph
s3lph requested changes Feb 13, 2024
View reviewed changes
Copy link
Contributor

@s3lph s3lph left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

L172 also needs to be updated, but of course Github doesn't allow me to provide a suggestion there:

- hosts: servers
  roles:
    - { role: adfinis.icinga2_web }

README.md Outdated Show resolved Hide resolved
Stev and others added 13 commits February 13, 2024 13:55
@ghost ghost requested a review from s3lph February 13, 2024 13:47
@ghost
Copy link
Author

ghost commented Feb 13, 2024

L172 also needs to be updated, but of course Github doesn't allow me to provide a suggestion there:

- hosts: servers
  roles:
    - { role: adfinis.icinga2_web }

Done.

s3lph
s3lph approved these changes Feb 13, 2024
View reviewed changes
Copy link
Contributor

@s3lph s3lph left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@ghost ghost merged commit 3476552 into master Feb 13, 2024
2 checks passed
@delete-merged-branch delete-merged-branch bot deleted the fail2ban branch February 13, 2024 13:51
This pull request was closed.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@s3lph