citty/roswaal
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Privileges are important

Browse Source
This commit is contained in:
citty 2021-10-15 21:28:33 -04:00
parent 7b9d345ed8
commit 5894376128
1 changed files with 42 additions and 39 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
roles/immortal/tasks/main.yml
View File

@ -8,6 +8,7 @@
fetch: fetch:
src: /etc/ssh/sshd_config src: /etc/ssh/sshd_config
dest: "{{ inventory_hostname }}" dest: "{{ inventory_hostname }}"
become: yes
- name: Backup os-release - name: Backup os-release
fetch: fetch:
@ -33,6 +34,7 @@
exclusive: yes exclusive: yes
become: yes become: yes
- name: Give all users exclusively the current controller user's SSH key - name: Give all users exclusively the current controller user's SSH key
ansible.posix.authorized_key: ansible.posix.authorized_key:
user: "{{item}}" user: "{{item}}"
@ -42,6 +44,7 @@
become: yes become: yes
loop: "{{ users_list.users }}" loop: "{{ users_list.users }}"
- block:
- name: Ensure UFW is installed - name: Ensure UFW is installed
package: package:
name: ufw name: ufw
@ -81,4 +84,4 @@
name: "{{ ansible_user }}" name: "{{ ansible_user }}"
shell: /bin/bash shell: /bin/bash
password: "{{ genPass.stdout | password_hash('sha512') }}" password: "{{ genPass.stdout | password_hash('sha512') }}"
become: yes