RedXen/ansible-common
RedXen/ansible-common
Archived
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
This repository has been archived on 2020-06-04. You can view files and clone it, but cannot push or open issues or pull requests.
169bd35d83
ansible-common/handlers/main.yml

31 lines
808 B
YAML
Raw Normal View History

Remove some firewall rules, fix typo, add required dep, run stuff only when required, prompt for things, use default username
2020-04-08 01:30:18 +00:00
- name: Disable the root account
user:
name: root
password: '!'
password_lock: yes
notify:
- Disable SSH login for root
- Disable SSH password authentication
- name: Disable SSH login for root
replace:
path: /etc/ssh/sshd_config
regexp: "^.*PermitRootLogin.*$"
replace: "PermitRootLogin no"
notify:
- Reload SSH service
- name: Disable SSH password authentication
replace:
path: /etc/ssh/sshd_config
regexp: "^.*PasswordAuthentication.*$"
replace: "PasswordAuthentication no"
notify:
- Reload SSH service
- name: Reload SSH service
systemd:
name: ssh
state: reloaded
Add iptables rules, git and sed for setup, disable root account and add ssh key and unpriviledge account
2020-04-07 23:50:04 +00:00
- name: Enable and restart iptables
systemd:
name: netfilter-persistent
Remove some firewall rules, fix typo, add required dep, run stuff only when required, prompt for things, use default username
2020-04-08 01:30:18 +00:00
state: restarted
Reference in New Issue Copy Permalink