Find a file
2024-03-24 22:20:24 +01:00
defaults kerberos/gssapi authentication no-force disabled 2024-03-24 22:20:24 +01:00
files init 2021-04-10 22:11:19 +02:00
handlers init 2021-04-10 22:11:19 +02:00
meta whitespaces fixed 2021-04-10 22:21:21 +02:00
tasks sshd_config: defining default for kerberos/gssapi 2024-01-14 23:23:27 +01:00
templates modern ciphers/macs/kex. authentication-methods configurable 2024-03-24 22:17:14 +01:00
tests init 2021-04-10 22:11:19 +02:00
vars init 2021-04-10 22:11:19 +02:00
.gitignore init 2021-04-10 22:11:19 +02:00
README.adoc whitespaces fixed 2021-04-10 22:21:21 +02:00

System-template
===============

Configures the base for all servers for real administrators.
Any needed tools (vim, network-tools, progress, zsh, etc-keeper, ...).
Removes pains (vim-tiny, snap, ubuntu-adverts, ...).
Defines a standard for syslog (everything to `/var/log/%Y-%m-%d`).

Requirements
------------

Debian-/Fedora-based distribution and a network-connection.
It needs the devices.facts, which cannot be installed by a role, so use the example below.

Role Variables
--------------

TODO

Example Playbook
----------------

----
---
# vim: set expandtab tabstop=2 shiftwidth=2:

- name: ansible facts
  hosts: all
  remote_user: root
  gather_facts: no 
  become: no
  tasks:
  - name: ansible-facts directory
    file:
      path: /etc/ansible/facts.d
      state: directory
  - name: devices.facts
    copy:
      content: |
        #!/usr/bin/env sh

        check() {
          v="$1"
          shift
          if "$@" >/dev/null
          then
            echo -n "\"$v\": true, "
          else
            echo -n "\"$v\": false, "
          fi
        }

        echo -n '{'
        check random  dd count=1 of=/dev/null status=none if=/dev/random
        check urandom dd count=1 of=/dev/null status=none if=/dev/urandom
        check hwrng   dd count=1 of=/dev/null status=none if=/dev/hwrng
        check hwclock hwclock --test 2>/dev/null
        echo '"checked": true}'
      dest: /etc/ansible/facts.d/devices.fact
      mode: 0755
      owner: root
      group: root

- hosts: all
  remote_user: root
  become: false

  tasks:
  - import_role:
      name: denkn.system
----

License
-------

AGPLv3

Author Information
------------------

Denis Knauf - https://git.denkn.at/deac/ansible-role-system