+--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | *Component* | *Git Ref* | *Version* | *Tag Status* | *Changelog* | +================================+===========+===========+==============+==============================================================================================+ | simp-adapter | c214085 | 1.0.1 | released | Release of 1.0.1 | | | | | | | | | | | | * Tue May 21 2019 Liz Nemsick - 1.0.1 | | | | | | - Adjust simp_rpm_helper behavior to allows the simp-environment | | | | | | package to be upgraded to the simp-environment-skeleton package | | | | | | without simp_rpm_helper errors: | | | | | | - Accept a deprecated '--preserve' option in simp_rpm_helper. This | | | | | | option no longer does anything. | | | | | | - Disable verification that '--target_dir' is a fully-qualified path. | | | | | | - Remove OBE %post logic plus the RPM requires and distribution | | | | | | release qualifier related to it. | | | | | | - Combine simp-adapter-foss and simp-adapter-pe into 1 package | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | simp-environment-skeleton | eddce50 | 7.1.2 | unreleased | Release of 7.1.2 | | | | | | | | | | | | * Mon Mar 23 2020 Jeanne Greulich - 7.1.2-0 | | | | | | - FakeCA Updates | | | | | | - When running in batch mode do not request input from the user. | | | | | | | | | | | | * Sat Oct 26 2019 Trevor Vaughan - 7.1.2-0 | | | | | | - FakeCA Updates | | | | | | - Allow users to specify an alternate output directory via a KEYDIST | | | | | | environment variable | | | | | | - Consolidate the certificate request and revocation code | | | | | | - Certificate revocation now runs in linear time | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | simp-gpgkeys | c05eedf | 3.1.1 | unreleased | Release of 3.1.1 | | | | | | | | | | | | * Tue Dec 17 2019 Jeanne Greulich - 3.1.1-0 | | | | | | - Added the CentOS8 and EPEL 8 GPGkeys | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | simp-rsync-skeleton | acf7c9b | 7.0.2 | unreleased | Release of 7.0.2 | | | | | | | | | | | | * Tue Dec 17 2019 Michael Morrone - 7.0.2-0 | | | | | | - Added mitigation for CVE-2019-6477 to RedHat 7 named.conf | | | | | | | | | | | | * Tue Nov 19 2019 Jeanne Greulich - 7.0.2-0 | | | | | | - Removed rndc.key from RedHat 6 | | | | | | - Update rsync.facl file. | | | | | | | | | | | | * Fri Sep 13 2019 Robert Clark - 7.0.2-0 | | | | | | - Removed rndc.key from repository to prevent users from accidentally using | | | | | | a published secret key. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | simp-rsync | 2c69567 | 6.2.1 | error | Release of 6.2.1 | | | | | | | | | | | | * Thu Jun 27 2019 Liz Nemsick - 6.2.1-2 | | | | | | - Changed Require for simp-environment-selinux-policy to one | | | | | | for simp-selinux-policy, as that package has been renamed. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | rubygem-simp-cli | 4c64634 | 6.0.0 | unreleased | Release of 6.0.0 | | | | | | | | | | | | * Tue Apr 07 2020 Trevor Vaughan - 6.0.0 | | | | | | - Fixed an issue where --dry-run would prompt the user to apply instead of | | | | | | simply skipping to the (skipped) action items and then writing the | | | | | | ~/.simp/simp_conf.yaml file | | | | | | | | | | | | * Fri Jan 03 2020 Liz Nemsick - 6.0.0 | | | | | | - Added simp kv command family to allow users to manage and inspect | | | | | | entries in a simpkv key/value store | | | | | | - simp passgen changes | | | | | | - Split into sub-commands for ease of use: | | | | | | - 'simp passgen envs': List environments that may have 'simplib::passgen' | | | | | | passwords | | | | | | - 'simp passgen list': List names of 'simplib::passgen' passwords | | | | | | - 'simp passgen remove': Remove 'simplib::passgen' passwords | | | | | | - 'simp passgen set': Set 'simplib::passgen' passwords | | | | | | - 'simp passgen show': Show 'simplib::passgen' passwords and other | | | | | | stored attributes | | | | | | - Updated to work with simpkv-enabled simplib::passgen. Automatically | | | | | | detects whether simplib::passgen is operating in legacy mode or | | | | | | simpkv mode in the specified environment, and then executes password | | | | | | operations using the appropriate mechanism for that mode. | | | | | | - When setting passwords, disabled libpwquality/cracklib validation of | | | | | | user-entered passwords, by default, because not all passwords managed | | | | | | by simplib::passgen are user passwords. This validation can be | | | | | | re-enabled with the '--validate' option of the 'simp passgen set' command. | | | | | | - Added the following command line options when creating passwords | | | | | | - '--[no-]auto-gen': Whether to auto-generate new passwords. | | | | | | - '--complexity': Password complexity to use when a password is | | | | | | auto-generated. Corresponds to the complexity option of simplib::passgen. | | | | | | - '--[no-]complex-only': Whether to only use only complex characters | | | | | | when a password is auto-generated. Corresponds to the complex_only | | | | | | option of simplib::passgen. | | | | | | key/value store. | | | | | | - '--[no-]validate': Enabled validation of new passwords with | | | | | | libpwquality/cracklib. | | | | | | - '--length': Password length to use when a password is auto-generated. | | | | | | - Added '--[no-]details' option when showing password information. When | | | | | | enabled, all available password information is displayed, not just the | | | | | | current and previous password values. | | | | | | - simp config changes | | | | | | - Removed deprecated '--non-interactive' option. Use '--force-defaults' | | | | | | instead. | | | | | | | | | | | | * Fri Aug 30 2019 Trevor Vaughan - 6.0.0 | | | | | | - Fix Puppet Enterprise support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | simp-core | master | unknown | error | FIXME: changelog validation failed | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | simp-selinux-policy | 2a359c2 | 1.0.0 | released | Release of 1.0.0 | | | | | | | | | | | | * Tue Apr 30 2019 Trevor Vaughan - 1.0.0-0 | | | | | | - Creation of a new simp-selinux-policy package. Policies were | | | | | | originally packaged in the simp-environment package. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | simp-utils | 45c8297 | 6.2.2 | released | Release of 6.2.2 | | | | | | | | | | | | * Wed Jun 12 2019 Jeanne Greulich - 6.2.2-0 | | | | | | - Update updaterepo script to change permissions on the repo | | | | | | files as well as repodata. | | | | | | - Update unpack_dvd script | | | | | | - Make sure permissions on all directories containing RPMs for the | | | | | | repo are correct. | | | | | | - Only attempt to change ownership of files if run as root. | | | | | | - Put `noarch` rpms under the `noarch` directory for the SIMP repo. | | | | | | - Allow the user to specify the version directory for the OS, because | | | | | | the CentOS `.treeinfo` file only contains the major OS version number. | | | | | | - Added an option to allow user to not link the extracted files to the | | | | | | major version. | | | | | | - Added an option to change what group is used to own the files. | | | | | | - Used puppet ruby instead of system ruby and removed Ruby 1.9 logic | | | | | | and changed puppet-agent dependency to > 5.0 | | | | | | - Updated the README | | | | | | | | | | | | * Mon Jun 03 2019 Liz Nemsick - 6.2.2-0 | | | | | | - Update the path of SIMP's Puppet skeleton to | | | | | | /usr/share/simp/environment-skeleton/puppet. This is the correct | | | | | | path for simp-environment-skeleton >= 7.1.0. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-acpid | a0380ef | 1.2.0 | released | Release of 1.2.0 | | | | | | | | | | | | * Fri Dec 06 2019 Trevor Vaughan - 1.2.0-0 | | | | | | - Add EL8 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-aide | 5929af1 | 6.4.0 | error | Release of 6.4.0 | | | | | | | | | | | | * Thu Jan 23 2020 Alexander Fisher 6.4.0-0 | | | | | | - Automatically add `@@include` lines to aide.conf | | | | | | Previously, when declaring `aide::rule` resources, it was also | | | | | | necessary to add the rule name to the `$aide::rules` array. | | | | | | By switching to using `concat` this is no longer necessary. Instead the | | | | | | `rules` parameter is repurposed to accept a hash of `aide::rule` | | | | | | resources. | | | | | | | | | | | | * Wed Dec 11 2019 Trevor Vaughan - 6.4.0-0 | | | | | | - Add EL8 support | | | | | | - Move the default rules to data in modules | | | | | | - Make simp-logrotate, simp-syslog, and simp-auditd optional dependencies | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-at | 2e8d764 | 0.1.0 | released | Release of 0.1.0 | | | | | | | | | | | | * Fri Dec 06 2019 Trevor Vaughan - 0.1.0 | | | | | | - Add EL8 support | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 0.1.0 | | | | | | - Support puppetlabs/concat 6.x and puppetlabs/stdlib 6.x. | | | | | | - Drop Puppet 4 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-auditd | 6900890 | 8.5.0 | released | Release of 8.5.0 | | | | | | | | | | | | * Thu Oct 31 2019 Trevor Vaughan - 8.5.0-0 | | | | | | - Allow users to knockout entries from arrays specified in Hiera | | | | | | - Multiple rules added based on best practices mostly pulled from | | | | | | /usr/share/doc/auditd: | | | | | | - Audit 32 bit operations on 64 bit systems | | | | | | - Audit calls to the auditd CLI commands | | | | | | - Audit IPv4 and IPv6 inbound connections | | | | | | - Optionally audit IPv4 and IPv6 outbound connections | | | | | | - Audit suspicious applications | | | | | | - Audit systemd | | | | | | - Audit the auditd configuration space | | | | | | - Ignore time daemon logs (clutter) | | | | | | - Ignore CRYPTO_KEY_USER logs (clutter) | | | | | | - Add ability to set the backlog_wait_time | | | | | | - Set loginuid_immutable | | | | | | | | | | | | * Thu Oct 24 2019 Jeanne Greulich - 8.5.0-0 | | | | | | - Set defaults for syslog parameters if auditd version is unknown. | | | | | | - Added support for auditd v3.0 which is used by RedHat 8. | | | | | | - A fact that determines the major version of auditd that is running on the system | | | | | | was added, auditd_major_version. This is used in hiera.yaml hierarchy to add | | | | | | module data specific to the versions. | | | | | | - Most of the changes in auditd v3.0 were related to how the plugins are handled but there | | | | | | are a few new parameters added to auditd.conf. They were set to their | | | | | | defaults according to man of auditd.conf. | | | | | | - Auditd V3.0 moved the handling of plugins into auditd from audispd. | | | | | | The following changes were made to accommodate that: | | | | | | - To make sure the parameters used to handle plugins where defined in | | | | | | one place no matter what version of auditd was used, | | | | | | they were moved to init.pp and referenced from there by the audisp manifest. | | | | | | For backwards compatibility, they remain in audisp.conf and are aliased in | | | | | | the hiera module data. | | | | | | - For backwards compatibility auditd::syslog remains defaulting to the | | | | | | value of simp_options::syslog although the two are not really the same thing. | | | | | | You might want to review this setting and set auditd::syslog to a setting that | | | | | | is appropriate for your system. | | | | | | - To enable auditd logging to syslog set the following in hiera: | | | | | | auditd::syslog: true | | | | | | auditd::config::audisp::syslog::enable: true. | | | | | | # The drop_audit_logs is still there for backwards compatibility and | | | | | | # needs to be disabled. | | | | | | auditd::config::audisp::syslog::drop_audit_logs: false | | | | | | - To stop auditd logging to syslog set the following in hiera: | | | | | | auditd::syslog: true | | | | | | auditd::config::plugins::syslog::enable: false. | | | | | | Setting auditd::syslog to false will stop Puppet from managing the syslog.conf, | | | | | | it will not disable auditd logging to syslog. | | | | | | been removed. Disable the syslog plugin as described above. | | | | | | - The settings for syslog.conf were updated and to work for new and old | | | | | | versions of auditd. | | | | | | - Added installation of audisp-syslog package when using auditd v3. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-autofs | 0365a05 | 7.0.0 | unreleased | Release of 7.0.0 | | | | | | | | | | | | * Tue Mar 10 2020 Liz Nemsick - 7.0.0-0 | | | | | | - Added support for EL8 | | | | | | - Dropped support for EL6 | | | | | | - Refactored the module. Notable feature/API changes: | | | | | | - Updated autofs service configuration to use /etc/autofs.conf in | | | | | | addition to /etc/sysconfig/autofs. | | | | | | - Updated autofs.master to load content from /etc/auto.master.simp.d/ | | | | | | and /etc/auto.master.d/ in lieu of specifying map entries directly. | | | | | | - auto.master entries are now written to files in /etc/auto.master.simp.d, | | | | | | a directory fully managed by this module. | | | | | | - /etc/auto.master.d is left unmanaged by Puppet. | | | | | | - Added a autofs::map defined type that allows the user to specify all | | | | | | the parameters for a 'file' map in once place. This resource will | | | | | | generate the appropriate resources to create both the auto.master entry | | | | | | file and the map file. | | | | | | - Added autofs::masterfile defined type to replace deprecated | | | | | | autofs::master::map | | | | | | - autofs::masterfile creates a auto.master entry file in | | | | | | $autofs::master_conf_dir | | | | | | - Unlike autofs::map::master, autofs::masterfile does not have a $content | | | | | | parameter, because a user can simply use a file resource to specify | | | | | | a custom auto.master entry file. | | | | | | - Added autofs::mapfile defined type to replace deprecated | | | | | | autofs::master::entry | | | | | | - autofs::mapfile creates a mapfile for a direct mapping or one or | | | | | | more indirect mappings | | | | | | - Unlike autofs::master::entry, it does not have duplicate resource naming | | | | | | problems (wildcard or otherwise). | | | | | | - autofs class changes | | | | | | - Added the following new autofs service configuration parameters: | | | | | | - $master_wait | | | | | | - $mount_verbose | | | | | | - $mount_nfs_default_protocol | | | | | | - $force_standard_program_map_env | | | | | | - $use_hostname_for_mounts | | | | | | - $disable_not_found_message | | | | | | - $sss_master_map_wait | | | | | | - $use_mount_request_log_id | | | | | | - $auth_conf_file | | | | | | - $custom_autofs_conf_options | | | | | | - Added $master_conf_dir and $master_include_dirs parameters to allow | | | | | | users to specify directories containing auto.master entry files. | | | | | | - Added $maps_dir to specify the location of SIMP-managed maps and | | | | | | changed the directory name from /etc/autofs to /etc/autofs.maps.simp.d | | | | | | for clarity. | | | | | | - Added $maps to allow users to specifie 'file' type maps in Hieradata. | | | | | | - Each map specifies the contents of an autofs master entry file and | | | | | | its mapping file. | | | | | | - Renamed $options to $automount_options for clarity. | | | | | | - Renamed $use_misc_device to $automount_use_misc_device for clarity. | | | | | | - Removed $autofs::master_map_name | | | | | | - This parameter is not exposed in /etc/autofs.conf and does not look | | | | | | like it is intended to be changed. | | | | | | - Changed permissions of /etc/auto.master and /etc/sysconfig/autofs | | | | | | to match those of the delivered RPM. | | | | | | - autofs::ldap_auth class changes | | | | | | - autofs::ldap_auth is now a private class to ensure the name of the | | | | | | configuration file created by this class matches the 'auth_conf_file' | | | | | | setting in /etc/autofs.conf. | | | | | | - Added $encoded_secret optional parameter. This parameter takes | | | | | | precedence when both $secret and $encoded_secret parameters are | | | | | | specified | | | | | | - autofs::map::master has been deprecated by autofs::map or | | | | | | autofs::masterfile. Its behavior has changed from writing a section | | | | | | of /etc/auto.master to writing an autofs master entry file in | | | | | | $autofs::master_conf_dir. | | | | | | - autofs::map::entry has been deprecated by autofs::map or autofs::mapfile. | | | | | | Its behavior has changed from writing a file in /etc/autofs to writing | | | | | | a file in $autofs::maps_dir. | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 7.0.0-0 | | | | | | - Support puppetlabs/concat 6.x. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-chkrootkit | f1e75ba | 0.3.0 | unreleased | Release of 0.3.0 | | | | | | | | | | | | * Mon Mar 02 2020 Trevor Vaughan - 0.3.0-0 | | | | | | - Bump upper bound on simplib | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 0.3.0-0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-clamav | 77a5f7d | 6.4.0 | released | Release of 6.4.0 | | | | | | | | | | | | * Tue Oct 29 2019 Jeanne Greulich - 6.4.0-0 | | | | | | - Updated the README to clarify what simp_options::clamav actually does | | | | | | and to note that clamav was removed from the SIMP's default class list | | | | | | in SIMP 6.5. | | | | | | - Set the default for clamav::set_schedule::enable to lookup clamav::enable, | | | | | | so that class will remove the clamav schedule if clamav is disabled. | | | | | | | | | | | | * Tue Sep 24 2019 Trevor Vaughan - 6.4.0-0 | | | | | | - Disable rsync pulls by default | | | | | | - Update README.md | | | | | | - Add REFERENCE.md | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-compliance_markup | c94ce81 | 3.1.0 | unreleased | Release of 3.1.0 | | | | | | | | | | | | * Mon Jun 22 2020 Steven Pritchard - 3.1.0-0 | | | | | | - Deep merge hash values in the Hiera backend | | | | | | - Reduce the amount of data passed around in the Hiera backend | | | | | | | | | | | | * Fri May 29 2020 Steven Pritchard - 3.1.0-0 | | | | | | - Support confinement in profiles, controls, and ces (as well as checks) | | | | | | - Add rspec tests for compliance_markup::enforcement | | | | | | | | | | | | * Mon Apr 13 2020 Trevor Vaughan - 3.1.0-0 | | | | | | - Add EL8 support | | | | | | - Ensure that the Hiera backend recurses as little as possible to improve | | | | | | performance. | | | | | | - Remove all support for v1 data since it was experimental and removed in 3.0.0 | | | | | | - Removed the deprecated (experimental) Hiera v3 backend | | | | | | - Removed the deprecated Puppet 3 function | | | | | | | | | | | | * Fri Apr 10 2020 Steven Pritchard - 3.1.0-0 | | | | | | - Support arrays of potential matches in confinement blocks | | | | | | - Support structured facts in confinement | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-cron | 1eed623 | 0.2.0 | released | Release of 0.2.0 | | | | | | | | | | | | * Wed Dec 11 2019 Trevor Vaughan - 0.2.0 | | | | | | - Minor code refactor | | | | | | - Manage cron packages by default | | | | | | - Update supported version of simp-simplib | | | | | | - Add EL8 support | | | | | | - Move PAM to an optional dependency | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 0.2.0 | | | | | | - Remove Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | | | | | | - Add puppetlabs/concat 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-dconf | 4fe75c9 | 0.1.0 | unreleased | Release of 0.1.0 | | | | | | | | | | | | * Wed Dec 11 2019 Trevor Vaughan - 0.1.0 | | | | | | - Add EL8 support | | | | | | - Add REFERENCE.md | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 0.1.0 | | | | | | - Remove Puppet 4.x support | | | | | | - Add Puppet 6.x support | | | | | | - Add puppetlabs/stdlib 6.x support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-deferred_resources | 920861f | 0.3.0 | released | Release of 0.3.0 | | | | | | | | | | | | * Wed Dec 11 2019 Trevor Vaughan - 0.3.0 | | | | | | - Add EL8 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-dhcp | 71c15ea | 6.2.0 | released | Release of 6.2.0 | | | | | | | | | | | | * Tue Dec 10 2019 Trevor Vaughan - 6.2.0-0 | | | | | | - Add EL8 support | | | | | | - Updated README.md | | | | | | - Added REFERENCE.md | | | | | | - Made use of rsync optional (enabled by default for backwards compatibility) | | | | | | - Add support for passing in a full dhcpd.conf entry | | | | | | - Ensure that the SELinux user and type are set for the configuration files | | | | | | - Switch to using iptables::listen::udp for firewalld compatibility | | | | | | - Add acceptance test | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 6.2.0-0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-fips | 352af1c | 0.4.0 | released | Release of 0.4.0 | | | | | | | | | | | | * Tue Dec 10 2019 Trevor Vaughan - 0.4.0-0 | | | | | | - Add EL8 support | | | | | | - Add REFERENCE.md | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-freeradius | 0449151 | 8.1.0 | unreleased | Release of 8.1.0 | | | | | | | | | | | | * Tue Mar 31 2020 Trevor Vaughan - 8.1.0-0 | | | | | | - Fix missing `group_filter` option in LDAP | | | | | | - Add support for overriding post-auth in LDAP | | | | | | - Add support for overriding accounting in LDAP | | | | | | - Add support for specifying the entire file content | | | | | | - Fix OEL tests | | | | | | - Add support for simplib < 5 | | | | | | | | | | | | * Mon Aug 19 2019 Liz Nemsick - 8.1.0-0 | | | | | | - Remove `simp_options::puppet::server` from the default lookup logic | | | | | | for `freeradius::v3::modules::ldap::server`. In systems that use Bolt | | | | | | to compile and apply manifests, that setting will not be available. | | | | | | - Add types documentation | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-gdm | 323e84b | 7.2.1 | released | Release of 7.2.1 | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 7.2.1-0 | | | | | | - Support puppetlabs/inifile 3.x. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-gnome | 419b5aa | 8.1.1 | released | Release of 8.1.1 | | | | | | | | | | | | * Thu Aug 15 2019 Trevor Vaughan - 8.1.1-0 | | | | | | - Fix compliance engine tests | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-haveged | d6d71b9 | 0.6.0 | released | Release of 0.6.0 | | | | | | | | | | | | * Mon Dec 16 2019 Trevor Vaughan - 0.6.0-0 | | | | | | - Add EL 8 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-hirs_provisioner | d025218 | 0.1.3 | unreleased | Release of 0.1.3 | | | | | | | | | | | | * Mon Mar 02 2020 Jeanne Greulich - 0.1.3 | | | | | | - Updated tests to use tpm2 simulator package from download.simp-project. | | | | | | - HIRS tpm provisioner software does not run on EL8 yet. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-ima | dda2a3d | 0.3.0 | released | Release of 0.3.0 | | | | | | | | | | | | * Mon Dec 16 2019 Trevor Vaughan - 0.3.0-0 | | | | | | - Add EL8 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-incron | 564c1fe | 0.5.0 | released | Release of 0.5.0 | | | | | | | | | | | | * Tue Dec 10 2019 Trevor Vaughan - 0.5.0-0 | | | | | | - Add EL8 support | | | | | | - Remove pinned versions of incron since the upstream packages have been fixed | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 0.5.0-0 | | | | | | - Remove Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | | | | | | - Add puppetlabs/concat 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-iptables | 517da0a | 6.5.0 | unreleased | Release of 6.5.0 | | | | | | | | | | | | * Wed Jun 10 2020 Trevor Vaughan - 6.5.0 | | | | | | - Removed the experimental firewalld support | | | | | | - Hooked the module into the new simp/simp_firewalld module | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-issue | 4bde5b6 | 0.2.0 | released | Release of 0.2.0 | | | | | | | | | | | | * Mon Dec 16 2019 Trevor Vaughan - 0.2.0-0 | | | | | | - Add EL8 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-krb5 | dae0328 | 7.1.0 | released | Release of 7.1.0 | | | | | | | | | | | | * Wed Dec 18 2019 Trevor Vaughan - 7.1.0-0 | | | | | | - Add EL8 support | | | | | | - Update SELinux hotfix | | | | | | - Migrate SELinux hotfix to vox_selinux::module | | | | | | - Update documentation | | | | | | - Add REFERENCE.md | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 7.1.0-0 | | | | | | - Remove Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | | | | | | - Support puppetlabs/stdlib 6.x and puppet 6.x. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-libreswan | 905537a | 3.2.0 | unreleased | Release of 3.2.0 | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 3.2.0-0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-libvirt | 9939a14 | 5.3.0 | released | Release of 5.3.0 | | | | | | | | | | | | * Wed Dec 18 2019 Trevor Vaughan - 5.3.0-0 | | | | | | - Add support for EL8 | | | | | | - Update README.md | | | | | | - Add REFERENCE.md | | | | | | - Fix issues with module data | | | | | | - Split out install and service into separate classes | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 5.3.0-0 | | | | | | - Support puppetlabs/stdlib 6.x and puppet 6.x. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-logrotate | edc0e9f | 6.5.0 | unreleased | Release of 6.5.0 | | | | | | | | | | | | * Fri Jan 03 2020 Jeanne Greulich - 6.5.0-0 | | | | | | - Allow all log size configuration parameters to be specified in bytes, | | | | | | kilobytes, megabytes, or gigabytes. | | | | | | - Fixed a bug in which the size parameter in the global logrotate configuration | | | | | | file was specified more than once. | | | | | | - Added ability to specify maxsize configuration for specific log rotate rules. | | | | | | | | | | | | * Thu Dec 19 2019 Trevor Vaughan - 6.5.0-0 | | | | | | - Add EL8 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-mate | a733807 | 1.1.0 | unreleased | Release of 1.1.0 | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 1.1.0 | | | | | | - Remove Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-mozilla | 967674c | 5.2.0 | released | Release of 5.2.0 | | | | | | | | | | | | * Thu Dec 19 2019 Trevor Vaughan - 5.2.0-0 | | | | | | - Add EL8 support | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 5.2.0-0 | | | | | | - Remove Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-named | 06b5c2b | 6.3.0 | released | Release of 6.3.0 | | | | | | | | | | | | * Tue Dec 10 2019 Trevor Vaughan - 6.3.0-0 | | | | | | - Add EL8 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-network | 0d19a1a | 6.2.0 | released | Release of 6.2.0 | | | | | | | | | | | | * Fri Dec 20 2019 Trevor Vaughan - 6.2.0-0 | | | | | | - Add EL8 support | | | | | | - Fix a bug where both the legacy network and NetworkManager were activated in | | | | | | all cases | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 6.2.0-0 | | | | | | - Support puppetlabs/concat 6.x and puppetlabs/stdlib 6.x. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-nfs | f94291e | 7.0.0 | unreleased | Release of 7.0.0 | | | | | | | | | | | | * Fri Jan 10 2020 Liz Nemsick - 7.0.0-0 | | | | | | - Added EL8 support | | | | | | - Dropped EL6 support | | | | | | - Refactored the module. Notable feature/API changes: | | | | | | - Overall changes | | | | | | - Dropped stunnel support for NFSv3. This tunneling did not work because: | | | | | | - The NFS client sends the NFS server Network Status Manager (NSM) | | | | | | notifications via UDP, exclusively. | | | | | | - At multi-NFS-server sites, a unique `rpcbind` port per server is | | | | | | required in order for a NFS client to be able tunnel its | | | | | | server-specific RPC requests to the appropriate server. | | | | | | - nfs class | | | | | | - Reworked parameters to reflect configuration of /etc/nfs.conf and, | | | | | | for limited EL7-only configuration, /etc/sysconfig/nfs. See the class | | | | | | documentation for full details. | | | | | | - Remove $stunnel_systemd_deps and $sunnel_tcp_nodelay parameters throughout | | | | | | the module. | | | | | | - These parameters were not consistently used in the manifest | | | | | | code (i.e., declared but not used) and were confusing. | | | | | | - The corresponding $stunnel_socket_options and $stunnel_wantedby | | | | | | parameters in classes/defines now use defaults that were intended to be | | | | | | set by those parameters. | | | | | | - Now masks NFS services that are not needed, so they are not unnecessarily | | | | | | started when the nfs-server.service or nfs-client.target are restarted. | | | | | | - Moved simp-autofs, simp-krb5, simp-iptables, simp-stunnel, and | | | | | | simp-tcpwrappers to simp/optional_dependencies in the metadata.json. | | | | | | - nfs::client | | | | | | - Added support for pNFS: Set $blkmap to true to enable the pNFS service, | | | | | | nfs-blkmap.service. | | | | | | - Added $nfs::stunnel_socket_options and $stunnel_wantedby parameters which | | | | | | provide the defaults for all nfs::client::mount instances. | | | | | | - nfs::client::mount define | | | | | | - $nfs_server must now be specified as an IP address. This change was | | | | | | necessary for firewalld. | | | | | | - In $options, changed the default mount type to 'soft' instead of 'hard' | | | | | | Also removed deprecated 'intr' option, as it has no effect. | | | | | | - Reworked the remote autodetect logic to detect a local mount based | | | | | | on IP address instead of simply whether the node is also configured | | | | | | to be an NFS server. | | | | | | - Added support for direct autofs mounts and simplified specification of | | | | | | indirect mounts. When $autofs_indirect_map_key is not specified, a | | | | | | direct mount is specified by $name. When $autofs_indirect_map_key is | | | | | | specified, an indirect mount is specified with $name as the mount point | | | | | | and $autofs_indirect_map_key as the mount key. | | | | | | - Renamed $autofs_map_to_user to $autofs_add_key_subst to better reflect | | | | | | automount terminology. This parameter simply adds key substitution | | | | | | to the remote location, which although can be used for user home | | | | | | directories, is not restricted to that use case. | | | | | | - Renamed $port to $nfsd_port to be consistent with the name of that | | | | | | parameter throughout the entire module. | | | | | | - Renamed $v4_remote_port to $stunnel_nfsd_port for clarity and to be | | | | | | consistent with the name of that parameter throught the entire module. | | | | | | - Exposed client stunnel configuration that was scattered throughout the | | | | | | module to this API. User can now specify $stunnel_socket_options and | | | | | | $stunnel_verify for each mount. When unspecified, the defaults from | | | | | | the nfs class are used. | | | | | | - nfs::server | | | | | | - Exposed server stunnel configuration that was scattered throughout the | | | | | | module to this API. User can now specify $stunnel_accept_address, | | | | | | $stunnel_nfsd_acccept_port, $stunnel_socket_options, $stunnel_verify, | | | | | | and $stunnel_wantedby in this class. When unspecified, the defaults | | | | | | for all but $stunnel_accept_address and $stunnel_wantedby are pulled | | | | | | from the nfs class. | | | | | | - Added the following parameters: $nfsd_vers4, $nfsd_vers4_0, | | | | | | $nfsd_vers4_1, $nfsd_vers4_2, and $custom_rpcrquotad_opts. | | | | | | - Renamed $nfsv3 to $nfsd_vers3 to reflect its use in /etc/nfs.conf. | | | | | | - Moved nfs::rpcquotad_port to this class and renamed $rpcrquotadopts | | | | | | to $custom_rpcrquotad_opts for clarity. | | | | | | - Moved nfs::mountd_port to this class and removed $rpcmountdopts. | | | | | | Custom configuration for that daemon should now be made via | | | | | | $nfs::custom_nfs_conf_opts or $nfs::custom_daemon_args as appropriate. | | | | | | - Removed the obsolete $nfsd_module parameter. | | | | | | - nfs::server::export define | | | | | | - Added $replicas, $pnfs, and $security_label parameters to support | | | | | | additional export configuration parameters. | | | | | | - nf::idmapd | | | | | | - Refactored into 3 classes to support distinct NFS server and client | | | | | | configuration | | | | | | - Added $no_strip and $reformat_group to nfs::idmapd::config to support | | | | | | support additional /etc/idmapd.conf configuration parameters. | | | | | | - Fixed bugs: | | | | | | - rpc.rquotad service configuration was erroneously written to | | | | | | /etc/sysconfig/nfs for EL7. It is now written to the correct file, | | | | | | /etc/sysconfig/rpc-rquotad. | | | | | | - idmapd | | | | | | - idmapd was erroneously only enabled when NFSv3 was allowed. idmapd is | | | | | | a NFSv4 service. | | | | | | - The idmapd client was not configured to use nfsidmap. An nfsidmap entry | | | | | | has now been added to /etc/request-key.conf. | | | | | | - Fixed bugs in which bidirectional communication for NFSv3 was not properly | | | | | | configured. | | | | | | - NFSv3 lockd ports on the NFS client were not explicitly configured and | | | | | | thus not allowed through the firewall. This would have affected file | | | | | | locking using NLM. | | | | | | - rpcbind, statd, and lockd service names were not allowed by TCP wrappers | | | | | | for the NFS client. This would have affected server to client NFSv3 NSM | | | | | | and NLM protocol messages over TCP. | | | | | | - Fixed bugs in mount options | | | | | | - Previously used the deprecated 'nfs4' fstype. This has been replaced with | | | | | | the 'nfs' fstype and use of the 'nfsvers' option to specify the version of | | | | | | NFS to use. | | | | | | - The 'proto' previously was not set to 'tcp' when stunnel is being used. | | | | | | - Fixed bug with a duplicate exec resource in nfs::client::mount when stunnel | | | | | | was enabled. | | | | | | - Fixed erronously server-only/client-only configuration that appeared to be | | | | | | able to be set independently for the NFS client and NFS server on the same | | | | | | node, but because of shared services, actually applied to the node as a | | | | | | whole. | | | | | | - Removed $nfs::client::firewall and $nfs::server::firewall. Use | | | | | | $nfs::firewall instead. | | | | | | - Removed $nfs::server::tcpwrappers. Use $nfs::tcpwrappers instead. | | | | | | - Removed $nfs::server::nfsv3, $nfs::server::lockd_arg, | | | | | | $nfs::server::statdarg, $nfs::server::statd_ha_callout, | | | | | | $nfs::server::rpcgssdargs, and $nfs::server::rpcsvcgssdargs. Use | | | | | | appropriate parameters in the nfs class instead. | | | | | | - Updated the upper bound of simp-simplib to < 5.0.0 | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 7.0.0-0 | | | | | | - Remove Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | | | | | | - Add puppetlabs-concat 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-ntpd | f4c4744 | 6.5.1 | unreleased | Release of 6.5.1 | | | | | | | | | | | | * Thu Dec 19 2019 Trevor Vaughan - 6.5.1-0 | | | | | | - Move simp-auditd and simp-iptables to optional dependencies | | | | | | - Updated REFERENCE.md | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 6.5.1-0 | | | | | | - Add support for puppetlabs-concat 6.x | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-oath | e7c57a2 | 0.2.0 | released | Release of 0.2.0 | | | | | | | | | | | | * Mon Feb 24 2020 Trevor Vaughan - 0.2.0-0 | | | | | | - Add EL8 support | | | | | | - Code cleanup | | | | | | - Allow users to be any String value | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 0.2.0-0 | | | | | | - Support concat 6.x. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-oddjob | ae4c5af | 2.2.0 | released | Release of 2.2.0 | | | | | | | | | | | | * Fri Dec 20 2019 Trevor Vaughan - 2.2.0-0 | | | | | | - Add EL8 support | | | | | | - Updated README.md | | | | | | - Added REFERENCE.md | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 2.2.0-0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-openscap | e8738a9 | 6.3.0 | released | Release of 6.3.0 | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 6.3.0-0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-pam | 741672d | 6.7.1 | released | Release of 6.7.1 | | | | | | | | | | | | * Wed Mar 25 2020 Jeanne Greulich - 6.7.1-0 | | | | | | - Moved the pam_unix.so check before the pam_sss.so check in the password | | | | | | section of the auth files otherwise it returns an "authentication token | | | | | | manipulation" error and local passwords can not be changed. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-pki | 56d6dd0 | 6.2.0 | released | Release of 6.2.0 | | | | | | | | | | | | * Tue Dec 24 2019 Trevor Vaughan - 6.2.0-0 | | | | | | - Add EL8 support | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 6.2.0-0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-polkit | 9f5f6cb | 6.2.0 | released | Release of 6.2.0 | | | | | | | | | | | | * Tue Dec 24 2019 Trevor Vaughan - 6.2.0-0 | | | | | | - Add EL8 support | | | | | | - Drop EL6 support (it was non-functional) | | | | | | - Fix issue with basic_policy template that resulted in malformed rules | | | | | | - Add acceptance tests | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 6.2.0-0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-postfix | b8905db | 5.5.0 | released | Release of 5.5.0 | | | | | | | | | | | | * Tue Dec 24 2019 Trevor Vaughan - 5.5.0-0 | | | | | | - Add EL8 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-pupmod | 97dc962 | 8.0.0 | unreleased | Release of 8.0.0 | | | | | | | | | | | | * Tue Jun 23 2020 Adam Yohrling - 8.0.0-0 | | | | | | - Resolved bug with systemd when simp_generate_types disabled | | | | | | | | | | | | * Tue May 26 2020 Trevor Vaughan - 8.0.0-0 | | | | | | - Add EL8 Support | | | | | | - Removed incron support in favor of using systemd path units to run | | | | | | simp_generate_types | | | | | | - Attempts to activate the incron code will result in a warning message | | | | | | - Add mitigation for https://puppet.com/security/cve/CVE-2020-7942/ | | | | | | | | | | | | * Wed Jan 08 2020 Liz Nemsick - 8.0.0-0 | | | | | | - Added optional management of the Facter configuration file. | | | | | | | | | | | | * Mon Jan 06 2020 Michael Morrone - 8.0.0-0 | | | | | | - Removed the deprecated CA CRL pull cron job and the corresponding | | | | | | pupmod::ca_crl_pull_interval parameter | | | | | | - Removed deprecated auth.conf support for the legacy pki module and | | | | | | the corresponding parameters: | | | | | | - pupmod::master::simp_auth::legacy_cacerts_all | | | | | | - pupmod::master::simp_auth::legacy_mcollective_all | | | | | | - pupmod::master::simp_auth::legacy_pki_keytabs_from_host | | | | | | - Removed the deprecated pupmod::master::simp_auth::server_distribution parameter | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-resolv | 4ede4f3 | 0.3.0 | error | Release of 0.3.0 | | | | | | | | | | | | * Fri Jan 10 2020 Jeanne greulich - 0.3.0-0 | | | | | | - Add EL8 support | | | | | | - Update the upper bound of simp-simplib to < 5.0.0 | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-rkhunter | c783bff | 0.0.3 | unreleased | Release of 0.0.3 | | | | | | | | | | | | * Wed Apr 01 2020 Jeanne Greulich - 0.0.3 | | | | | | - Add support for EL8 | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-rsync | 67d5cfa | 6.4.0 | released | Release of 6.4.0 | | | | | | | | | | | | * Fri Jan 10 2020 Liz Nemsick - 6.4.0-0 | | | | | | - Add EL8 support | | | | | | - Update the upper bound of simp-simplib to < 5.0.0 | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 6.4.0-0 | | | | | | - Support puppetlabs/concat 6.x. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-rsyslog | 59fec63 | 7.6.2 | error | Release of 7.6.2 | | | | | | | | | | | | * Mon Jun 22 2020 Kendall Moore - 7.6.2-0 | | | | | | - Add support for KeepAlive variables for imtcp and omfwd actions | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-selinux | c362310 | 2.5.1 | released | Release of 2.5.1 | | | | | | | | | | | | * Mon Jan 13 2020 Jeanne Greulich - 2.5.1-0 | | | | | | - Add EL8 defaults for Oracle Linux | | | | | | | | | | | | * Wed Nov 06 2019 Jeanne Greulich - 2.5.1-0 | | | | | | - Defined values for EL8 in data in modules. | | | | | | - Updated Gemfile versions to ones that support EL8. | | | | | | - Updated metadata.json to include support for CentOS 8 and RedHat 8 | | | | | | - Added acceptance test nodes for Centos8 and Redhat 8 | | | | | | - Removed $:: from top level variables. | | | | | | - Removed tests for Puppet 4 from travis.yml. | | | | | | - Bumped upper bound for simp-simplib to < 5.0.0 | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-simp | 6262596 | 4.11.0 | unreleased | Release of 4.11.0 | | | | | | | | | | | | * Mon Mar 30 2020 Trevor Vaughan - 4.11.0-0 | | | | | | - The following applications have been removed from the base os applications | | | | | | installed automatically by simp: | | | | | | 'man', | | | | | | 'man-pages', | | | | | | 'vim-enhanced', | | | | | | 'dos2unix', | | | | | | 'elinks', | | | | | | 'hunspell', | | | | | | 'lsof', | | | | | | 'mlocate', | | | | | | 'pax', | | | | | | 'pinfo', | | | | | | 'sos', | | | | | | 'star', | | | | | | 'symlinks', | | | | | | 'words', | | | | | | 'x86info' | | | | | | - simp::base_apps::manage_elinks_config no longer has any effect | | | | | | - Replace the use of augeasproviders-shellvar with a direct augeas resource | | | | | | - Updated the simp::nsswitch class to have sane defaults | | | | | | - Added support for mymachines and myhostname by default | | | | | | - Removed all NIS references since NIS should not be in general usage any | | | | | | longer and was never natively supported by SIMP | | | | | | - Configuration files are now common cross all supported OSs since nsswitch | | | | | | "does the right thing" when it hits a module that it does not recognize | | | | | | | | | | | | * Mon Dec 16 2019 Jeanne Greulich - 4.11.0-0 | | | | | | - NTP is not used by default in EL8 so moved ntp to list of OS relevant apps | | | | | | for EL6 and EL7 and added chronyd for EL8. | | | | | | - Added support for EL8. | | | | | | - Updated the bootstrap_simp_client to use chrony if kernel version is 4 or later. | | | | | | - Removed the old runpuppet kickstart scripts. The simp_bootstrap_client scripts | | | | | | should be used instead. | | | | | | - Deprecated parameter simp::server::kickstart::runpuppet because the runpuppet scripts | | | | | | are no longer used. | | | | | | | | | | | | * Tue Nov 19 2019 Steven Pritchard - 4.11.0-0 | | | | | | - Allow nsswitch overrides | | | | | | | | | | | | * Mon Oct 28 2019 Jeanne Greulich - 4.11.0-0 | | | | | | - Removed `clamav` from the list of classes included by default in the | | | | | | SIMP scenarios. | | | | | | * This will not remove ClamAV from a system it is installed on, it | | | | | | will stop managing it. | | | | | | * To continue managing ClamAV on a system add `clamav` to `simp::classes` | | | | | | in the appropriate hiera file for that SIMP client. | | | | | | * See the `simp-clamav` module for information on configuring or removing | | | | | | ClamAV on a system. | | | | | | - Deprecated `simp::server::clamav`. | | | | | | * This parameter will be removed in a future SIMP release. | | | | | | * Once removed, if you want to manage ClamAV on the SIMP server, you will | | | | | | have to manually add the `clamav` class to `simp::classes` in the | | | | | | SIMP server's hiera file. | | | | | | | | | | | | * Thu Aug 15 2019 Trevor Vaughan - 4.11.0-0 | | | | | | - Add Windows acceptance tests | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-simp_apache | 2c09035 | 7.0.0 | unreleased | Release of 7.0.0 | | | | | | | | | | | | * Thu Jan 16 2020 Jeanne Greulich - 7.0.0-0 | | | | | | - Update Puppet module to support EL8 | | | | | | - Remove deprecated Puppet 3 API functions: | | | | | | - apache_auth: replaced by simp_apache::auth | | | | | | - apache_limits: replaced by simp_apache::limits | | | | | | - munge_httpd_networks: replaced by simp_apache::munge_httpd_networks | | | | | | - Update the upper bound of simp-simplib to < 5.0.0 | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-simp_banners | fd04613 | 0.2.0 | released | Release of 0.2.0 | | | | | | | | | | | | * Tue Jan 28 2020 Trevor Vaughan - 0.2.0 | | | | | | - Remove all OS support statements from metadata.json since this is simply a | | | | | | data-only module | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 0.2.0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-simp_bolt | e51296c | 0.3.0 | unreleased | Release of 0.3.0 | | | | | | | | | | | | * Thu Apr 09 2020 Jeanne Greulich - 0.3.0 | | | | | | - Added EL8 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-simp_firewalld | e105d9b | 0.1.0 | released | Release of 0.1.0 | | | | | | | | | | | | * Thu May 21 2020 Trevor Vaughan - 0.1.0 | | | | | | - Initial module release | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-simp_gitlab | d0e1070 | 0.5.0 | unreleased | Release of 0.5.0 | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 0.5.0-0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-simp_grub | 1571f32 | 0.2.0 | unreleased | Release of 0.2.0 | | | | | | | | | | | | * Mon Mar 30 2020 Trevor Vaughan - 0.2.0-0 | | | | | | - Add EL8 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-simp_ipa | d3105b1 | 0.1.0 | released | Release of 0.1.0 | | | | | | | | | | | | * Tue Dec 10 2019 Trevor Vaughan - 0.1.0 | | | | | | - Add support for EL8 | | | | | | | | | | | | * Tue Dec 10 2019 Alexander Fisher - 0.1.0 | | | | | | - Make IPA server optional in join task | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 0.1.0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-simp_nfs | ca90ea0 | 1.0.0 | unreleased | Release of 1.0.0 | | | | | | | | | | | | * Tue Mar 31 2020 - 1.0.0 | | | | | | - Added support for EL8 | | | | | | - Removed support for EL6 | | | | | | - Updated to use pupmod-simp-nfs release 7.0.0 | | | | | | - Only accepts IP Adrresses for nfs server because firewalld | | | | | | needs IP Address. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-simp_openldap | 54658f4 | 6.4.1 | unreleased | Release of 6.4.1 | | | | | | | | | | | | * Tue Sep 24 2019 Trevor Vaughan - 6.4.1-0 | | | | | | - Updated README.md | | | | | | - Added REFERENCE.md | | | | | | - Cleaned up some test fixtures | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 6.4.1-0 | | | | | | - Support puppetlabs/concat 6.x. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-simp_options | 27ddb7c | 1.4.0 | unreleased | Release of 1.4.0 | | | | | | | | | | | | * Tue Oct 29 2019 Jeanne Greulich - 1.4.0-0 | | | | | | - This change marks the clamav catalyst as deprecated. | | | | | | * As of SIMP 6.5, SIMP's ``clamav`` class is no longer included in the class | | | | | | list of the SIMP scenarios. So, this catalyst is not needed to disable it. | | | | | | * To have SIMP manage ``ClamAV`` on your system, add the ``clamav`` class to | | | | | | your system's class list. | | | | | | * See the SIMP ``clamav`` module README for information on managing ``ClamAV``. | | | | | | | | | | | | * Tue Sep 03 2019 Trevor Vaughan - 1.4.0-0 | | | | | | - Reformatted some documentation | | | | | | - The following are now optional: | | | | | | - simp_options::puppet::server | | | | | | - simp_options::puppet::ca | | | | | | - These are no longer required at all times due to support for Bolt. Code that | | | | | | used these parameters will correctly fail and require users to add them to | | | | | | their configuration. | | | | | | - Updated simp_options::ldap to require the 'master' and 'uri' parameters if | | | | | | simp_options::puppet::server is not defined. | | | | | | - Fixed PE detection in simp_options::puppet::server_distribution | | | | | | - Add support for simplib < 5 | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-simp_pki_service | e2855da | 0.3.0 | unreleased | Release of 0.3.0 | | | | | | | | | | | | * Fri Aug 09 2019 Liz Nemsick - 0.3.0-0 | | | | | | - Remove Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-simp_rsyslog | ba5173e | 0.5.0 | released | Release of 0.5.0 | | | | | | | | | | | | * Mon Feb 03 2020 Trevor Vaughan - 0.5.0-0 | | | | | | - Add EL8 Support | | | | | | - Add support for firewalld log message collection | | | | | | - Move logrotate to optional dependencies | | | | | | | | | | | | * Tue Sep 17 2019 Steven Pritchard - 0.5.0-0 | | | | | | - Deep merge simp_rsyslog::log_collection | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-simp_snmpd | 11d796f | 0.2.0 | unreleased | Release of 0.2.0 | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 0.2.0-0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-simplib | 60a29b4 | 4.2.0 | error | Release of 4.2.0 | | | | | | | | | | | | * Fri Mar 06 2020 Trevor Vaughan - 4.2.0-0 | | | | | | - Namespace the `simplib__firewalls` fact so that it does not trigger on Windows | | | | | | systems | | | | | | - Change simp-libkv to simp-simpkv | | | | | | - SIMPkv support is still **EXPERIMENTAL** | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-ssh | f2d5b36 | 6.10.0 | released | Release of 6.10.0 | | | | | | | | | | | | * Wed Feb 19 2020 Trevor Vaughan - 6.10.0-0 | | | | | | - Added EL8 support | | | | | | - Ensure that UsePrivilegeSeparation is removed from sshd_config on platforms | | | | | | that do not support it | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-sssd | 60dd96c | 6.3.0 | released | Release of 6.3.0 | | | | | | | | | | | | * Tue Jan 21 2020 Jeanne Greulich - 6.3.0-0 | | | | | | - Added EL8 support | | | | | | - Removed requirement for sssd domain entry for el8 and SSSD V2 since | | | | | | using the implicit files provider is valid and even recommended | | | | | | for performance by some. An sssd domain is still required for | | | | | | el6 and el7. | | | | | | - Automatically include the service section if the service is included in | | | | | | sssd::services. | | | | | | - Removed deprecated variables from ldap provider for EL8. | | | | | | - Added new variables for providers in EL8. | | | | | | - Added ifp to list of services in service type | | | | | | - Added files to types of providers | | | | | | - Added support for simplib version 4.0 | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-stunnel | 48a2949 | 6.6.0 | unreleased | Release of 6.6.0 | | | | | | | | | | | | * Tue Dec 10 2019 Trevor Vaughan - 6.6.0 | | | | | | - Add support for EL8 | | | | | | - Added REFERENCE.md | | | | | | - Updated README.md | | | | | | - Set default for stunnel::connection::ssl_version to TLSv1.2 for EL8 | | | | | | compatibility | | | | | | - Set default for stunnel::instance::ssl_version to TLSv1.2 for EL8 | | | | | | compatibility | | | | | | - Add an stunnel::instance_purge class to remedy the 'floating services' issue | | | | | | - Set the stunnel::connection::app_pki_crl parameter to ``undef`` by default due | | | | | | to issues with pointing the setting to an absent directory in EL8 | | | | | | - Set the stunnel::instance::app_pki_crl parameter to ``undef`` by default due | | | | | | to issues with pointing the setting to an absent directory in EL8 | | | | | | - Update valid ssl_version entries | | | | | | - Update acceptance tests to pass data between all combinations of nodes | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 6.6.0 | | | | | | - Support puppetlabs/concat 6.x. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-sudo | 9f31fe6 | 5.2.1 | error | Release of 5.2.1 | | | | | | | | | | | | * Tue Feb 04 2020 Jeanne Greulich - 5.2.1-0 | | | | | | - Update for EL8. | | | | | | - CVE-2019-14287 mitigation. See | | | | | | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14287 | | | | | | for more information | | | | | | - Do not allow the use of userid or group id of -1 when ALL or %ALL are | | | | | | used in the runas section of a sudo user specification and the version of | | | | | | sudo is earlier than 1.8.28. | | | | | | | | | | | | * Wed Sep 25 2019 Steven Pritchard - 5.2.1-0 | | | | | | - Deep merge user_specifications by default | | | | | | - Add support for simp/simplib < 7 | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 5.2.1-0 | | | | | | - Support puppetlabs/concat 6.x. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-sudosh | fe4fb48 | 6.2.0 | unreleased | Release of 6.2.0 | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 6.2.0-0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-svckill | 46d53e1 | 3.6.0 | released | Release of 3.6.0 | | | | | | | | | | | | * Thu Jan 09 2020 Jeanne Greulich - 3.6.0-0 | | | | | | - Add EL8 support | | | | | | - Update the upper bound of simp-simplib to < 5.0.0 | | | | | | - Updated service lists: | | | | | | - Moved services that were deprecated in el7 from common list | | | | | | to RedHat-6 list. | | | | | | - Moved family_versions under osfamily just to make it neater. | | | | | | - Put more comments in the ignore lists for services. | | | | | | - Added new el8 services to RedHat-8.yaml | | | | | | - Added RedHat subscription manager services to RedHat OS list. | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 3.6.0-0 | | | | | | - Support puppetlabs/concat 6.x. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-swap | b74a672 | 0.2.0 | released | Release of 0.2.0 | | | | | | | | | | | | * Fri Jan 03 2020 Trevor Vaughan - 0.2.0-0 | | | | | | - Disable dynamic_swappiness by default | | | | | | - Set static system swappiness to 60 by default | | | | | | - Add EL8 support | | | | | | - Add REFERENCE.md | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 0.2.0-0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-tcpwrappers | 2da95e8 | 6.2.0 | released | Release of 6.2.0 | | | | | | | | | | | | * Tue Oct 08 2019 Robert Vincent - 6.2.0-0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | | | | | | - Add puppetlabs-concat 6 support | | | | | | | | | | | | * Tue Sep 24 2019 Jeanne Greulich - 6.2.0-0 | | | | | | - Change metadata OS version check to use new simplib check that returns | | | | | | false or true if the OS is supported according to metadata.json. | | | | | | If it is not supported, do nothing (instead of failing). | | | | | | | | | | | | * Mon Sep 02 2019 Jeanne Greulich - 6.2.0-0 | | | | | | - RedHat 8 does not support TCP Wrappers | | | | | | - Add call to simplib:assert_metadata to check the OS | | | | | | is supported. | | | | | | - Update upperbound of simplib. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-tftpboot | d64eae6 | 6.3.0 | released | Release of 6.3.0 | | | | | | | | | | | | * Tue Dec 03 2019 Trevor Vaughan - 6.3.0-0 | | | | | | - Update README.md | | | | | | - Add REFERENCE.md | | | | | | - Add EL8 support | | | | | | - Update GitLab configuration | | | | | | - Add a basic acceptance test | | | | | | - Update dependency versions in metadata.json | | | | | | - Fix manifest ordering | | | | | | | | | | | | * Tue Dec 03 2019 Mike Renfro - 6.3.0-0 | | | | | | - Fix rsync target to match README | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 6.3.0-0 | | | | | | - Remove Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-tlog | ef59cea | 0.2.0 | released | Release of 0.2.0 | | | | | | | | | | | | * Tue Feb 25 2020 Trevor Vaughan - 0.2.0 | | | | | | - Added EL8 support | | | | | | - Updated acceptance tests to use net/ssh to prevent issues with large SSH | | | | | | keyrings | | | | | | - Added REFERENCE.md and linked into the README.md | | | | | | - Added optional dependencies for simp/logrotate and simp/rsyslog | | | | | | - Added workaround to scripts in /etc/profile to work around a bug in tlog that | | | | | | would prevent logins if the system hostname could not be found | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 0.2.0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-tpm | 45218f2 | 3.2.0 | unreleased | Release of 3.2.0 | | | | | | | | | | | | * Thu Dec 12 2019 Trevor Vaughan - 3.2.0-0 | | | | | | - Documentation update | | | | | | - Added REFERENCE.md | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 3.2.0-0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | | | | | | - Add puppet-yum 4 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-tpm2 | a1c7c04 | 0.3.0 | released | Release of 0.3.0 | | | | | | | | | | | | * Mon Feb 24 2020 Jeanne Greulich - 0.3.0 | | | | | | - Added EL8 support | | | | | | - Added ability to set options for abrmd service | | | | | | - Removed option for managing tools. Tools can be managed | | | | | | or not by removing them from the package list. Note that the | | | | | | tools package is needed to determine the status of the TPM. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-tuned | 22eb98f | 0.2.0 | unreleased | Release of 0.2.0 | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 0.2.0-0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-upstart | 7b5638a | 6.1.0 | released | Release of 6.1.0 | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 6.1.0-0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-useradd | 319c6fc | 0.4.0 | released | Release of 0.4.0 | | | | | | | | | | | | * Thu Jan 09 2020 Liz Nemsick - 0.4.0 | | | | | | - Add EL8 support | | | | | | - Update the upper bound of simp-simplib to < 5.0.0 | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 0.4.0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-vnc | fb3803d | 7.1.0 | unreleased | Release of 7.1.0 | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 7.1.0-0 | | | | | | - Drop Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-voxpupuli-selinux | 1e2b5f8 | unknown | unknown | FIXME: changelog validation failed | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-vsftpd | 7cee98e | 7.4.0 | unreleased | Release of 7.4.0 | | | | | | | | | | | | * Fri Apr 10 2020 Trevor Vaughan - 7.4.0-0 | | | | | | - Add EL8 support | | | | | | - The following dependencies are now optional | | | | | | - simp/haveged | | | | | | - simp/iptables | | | | | | - simp/pki | | | | | | - simp/tcpwrappers | | | | | | - Updated acceptance tests to use lftp in TLS mode and fixed SELinux issues | | | | | | - Updated the README | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-x2go | 9c090ad | 0.3.0 | unreleased | Release of 0.3.0 | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 0.3.0 | | | | | | - Remove Puppet 4 support | | | | | | - Add Puppet 6 support | | | | | | - Add puppetlabs-stdlib 6 support | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+ | pupmod-simp-xinetd | bfebae9 | 4.2.1 | released | Release of 4.2.1 | | | | | | | | | | | | * Mon Feb 24 2020 Trevor Vaughan - 4.2.1-0 | | | | | | - Add support for EL8 | | | | | | - Update README.md | | | | | | - Add REFERENCE.md | | | | | | - Added acceptance tests | | | | | | - Removed `TRAFFIC` from the default `log_on_success` list since it may cause | | | | | | information leakage and is not supported by all service types. | | | | | | | | | | | | * Fri Aug 02 2019 Robert Vincent - 4.2.1-0 | | | | | | - Support puppetlabs/stdlib 6.x. | +--------------------------------+-----------+-----------+--------------+----------------------------------------------------------------------------------------------+