97 lines
1.9 KiB
YAML
97 lines
1.9 KiB
YAML
- name: definit le mdp de root
|
|
user:
|
|
name: root
|
|
state: present
|
|
password: "{{ _pwd | password_hash('sha512', common_user_password_salt) }}"
|
|
vars:
|
|
_pwd: "{{ common_rootpassword }}"
|
|
|
|
- name: Run the equivalent of "apt-get update" as a separate step
|
|
ansible.builtin.apt:
|
|
update_cache: yes
|
|
|
|
- name: installe paquets
|
|
package:
|
|
state: present
|
|
name:
|
|
- nftables
|
|
- rsyslog
|
|
- vim
|
|
- net-tools
|
|
- sysstat
|
|
- nano
|
|
- iotop
|
|
- htop
|
|
- tcpdump
|
|
- traceroute
|
|
- mlocate
|
|
- telnet
|
|
- wget
|
|
- python3
|
|
- figlet
|
|
- sshfs
|
|
- curl
|
|
|
|
- name: Activation nftables
|
|
service:
|
|
name: nftables
|
|
state: started
|
|
enabled: yes
|
|
|
|
- name: Configuration ssh
|
|
import_role:
|
|
name: willshersystems.sshd
|
|
vars:
|
|
sshd_skip_defaults: false
|
|
sshd:
|
|
ListenAddress:
|
|
- "0.0.0.0"
|
|
- "::"
|
|
PermitRootLogin: without-password
|
|
X11Forwarding: "{{ common_X11Forwarding }}"
|
|
|
|
- name: horodatage history
|
|
template: src=historytime.sh dest=/etc/profile.d/historytime.sh
|
|
|
|
- name: root bashrc
|
|
copy: src=root.bashrc dest=/root/.bashrc
|
|
|
|
- name: "sudoers"
|
|
replace:
|
|
path: /etc/sudoers
|
|
regexp: "%sudo\tALL.*"
|
|
replace: "%sudo\tALL=(ALL:ALL) NOPASSWD:ALL"
|
|
|
|
- import_tasks: configure_postfix_relay.yml
|
|
tags: configure_postfix_relay
|
|
|
|
|
|
- name: motd colors
|
|
template:
|
|
src: update-motd.d/colors
|
|
dest: /etc/update-motd.d/
|
|
|
|
- name: configure motd
|
|
template:
|
|
src: update-motd.d/{{ item }}
|
|
dest: /etc/update-motd.d/
|
|
mode: 0755
|
|
with_items:
|
|
- 01-linebreak
|
|
- 05-header
|
|
- 10-uname
|
|
- 15-linebreak
|
|
- 20-sysinfo
|
|
- 30-upgrades
|
|
- 50-linebreak
|
|
|
|
- name: configuration swappiness
|
|
sysctl:
|
|
name: vm.swappiness
|
|
value: "{{ common_swappiness }}"
|
|
sysctl_set: yes
|
|
state: present
|
|
reload: yes
|
|
tags: configure_swappiness
|
|
when: ansible_virtualization_type == "kvm"
|