kirby/documentation
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

ansible: linting bastion

Browse Source
This commit is contained in:
kirby
2025-05-27 09:21:38 +02:00
parent 6a3804dd86
commit 2d378d51a7
7 changed files with 55 additions and 49 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
ansible/roles/bastion/tasks/ssh.yml
View File

@@ -1,28 +1,28 @@
---
- name: ensure sshd is enabled
- name: Ensure sshd is enabled
ansible.builtin.systemd:
name: sshd
enabled: true
tags: all,ssh
- name: deploy sshd_config
- name: Deploy sshd_config
ansible.builtin.template:
src: sshd_config.j2
dest: /etc/ssh/sshd_config
owner: root
group: root
mode: 0644
mode: "0644"
validate: "sshd -T -f %s"
notify: restart ssh
notify: Restart ssh
tags: all,ssh
- name: deploy rsyslog conf
- name: Deploy rsyslog conf
ansible.builtin.template:
src: auth.conf.j2
dest: /etc/rsyslog.d/auth.conf
owner: root
group: root
mode: 0644
notify: restart rsyslog
mode: "0644"
notify: Restart rsyslog
tags: all,ssh