Scripts to mitigate CVEs with host patching#7
Open
rjaduthie wants to merge 4 commits into
Open
Conversation
Adding a CODEOWNERS file.
* Enable backup of databases to object store * Ensure daily & frequent backups are treated separately * Improve top-level documentation links from README
rjaduthie
force-pushed
the
pog-85-mitigate-cve
branch
3 times, most recently
from
51de317 to
33b8121
Compare
…otD servers (#4) * feat(DAAC-853): start the terraform for deplyment of the cam-preprod XRootD server, move ansible down to the xrootd/ansible dir * feat(DAAC-853): commit latest changes, created the common ansible roles dir and moved the update_system role * feat(DAAC-853): latest changes to follow ska-src-uksrc-cluster-gitops/docs/xrootd-config.md steps * feat(DAAC-853): latest opentofu changes * feat(DAAC-853): gets the server running on port 1094 with LetsEncrypt * feat(DAAC-853): override the default 'rocky' user with our own 'uksrc-xrootd' * feat(DAAC-853): dnf automatic updates - reboot 'when-needed' at 2am * feat(DAAC-853): move the manage_users role to common * feat(DAAC-853): add admin users and small changes to vars * feat(DAAC-853): latest minoir changes and README updates * feat(DAAC-853): add an example server tfvars file * feat(DAAC-853): add GitHub's terraform directory .gitignore * feat(DAAC-853): latest doc changes, example files, an encrypted host_vars file and fixes after XRootD access testing. * fix(DAAC-853): switch the cert copy script to a template and make the server name a variable * fis(DAAC-853): missed required config uncommented * feat(DAAC-853): add the firewall setup * feat(DAAC-853): restict access to port 1094 to the set of addresses * doc(DAAC-853): update the xrootd-example-host-vars.example file * feat(DAAC-853): add local network access from the bastion to port 1094 on the server * fix(DAAC-853): address review comment
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.