From a7423d02be7339711bbaf1971a910b3036e99f34 Mon Sep 17 00:00:00 2001 From: Markus Hauschild Date: Thu, 10 Oct 2019 09:40:41 +0200 Subject: [PATCH] Remove proxmox --- roles/common/tasks/Debian.yml | 55 ---------------------------- roles/common/tasks/Proxmox.yml | 26 -------------- roles/common/tasks/main.yml | 65 +++++++++++++++++++++++++--------- 3 files changed, 49 insertions(+), 97 deletions(-) delete mode 100644 roles/common/tasks/Debian.yml delete mode 100644 roles/common/tasks/Proxmox.yml diff --git a/roles/common/tasks/Debian.yml b/roles/common/tasks/Debian.yml deleted file mode 100644 index 349efc6..0000000 --- a/roles/common/tasks/Debian.yml +++ /dev/null @@ -1,55 +0,0 @@ ---- - -- name: Install misc software - apt: name={{ item }} - with_items: - - dnsutils - - git - - htop - - less - - net-tools - - openssl - - psmisc - - pydf - - rsync - - sudo - - vim-nox - - zsh - - fail2ban - -- name: Install software on KVM VMs - apt: name={{ item }} - with_items: - - acpid - - qemu-guest-agent - when: ansible_virtualization_role == "guest" and ansible_virtualization_type == "kvm" - -- name: Configure misc software - copy: src={{ item.src }} dest={{ item.dest }} - with_items: - - { src: '.zshrc', dest: '/root/.zshrc' } - - { src: '.zshrc.local', dest: '/root/.zshrc.local' } - - { src: 'motd', dest: '/etc/motd' } - - { src: 'vimrc.local', dest: '/etc/vim/vimrc.local' } - -- name: Set shell for root user - user: name=root shell=/bin/zsh - -- name: Disable hibernation/resume - copy: src=resume dest=/etc/initramfs-tools/conf.d/resume - notify: update-initramfs - -# TODO template /etc/network/interfaces - -- name: Fix network interface names - copy: src={{ item }} dest=/etc/systemd/network/{{ item }} - with_items: - - 50-virtio-kernel-names.link - - 99-default.link - notify: update-initramfs - -- name: Prevent normal users from running su - lineinfile: - path: /etc/pam.d/su - regexp: '^.*auth\s+required\s+pam_wheel.so$' - line: 'auth required pam_wheel.so' diff --git a/roles/common/tasks/Proxmox.yml b/roles/common/tasks/Proxmox.yml deleted file mode 100644 index e1a312c..0000000 --- a/roles/common/tasks/Proxmox.yml +++ /dev/null @@ -1,26 +0,0 @@ ---- - -- name: Install misc software - apt: name={{ item }} - with_items: - - dnsutils - - htop - - ipmitool - - less - - rsync - - vim-nox - - zsh - -- name: Configure misc software - copy: src={{ item.src }} dest={{ item.dest }} - with_items: - - { src: '.zshrc', dest: '/root/.zshrc' } - - { src: '.zshrc.local', dest: '/root/.zshrc.local' } - - { src: 'motd', dest: '/etc/motd' } - - { src: 'vimrc.local', dest: '/etc/vim/vimrc.local' } - -- name: Set shell for root user - user: name=root shell=/bin/zsh - -- name: Set vm.swappiness - sysctl: name=vm.swappiness value=10 diff --git a/roles/common/tasks/main.yml b/roles/common/tasks/main.yml index c59523a..349efc6 100644 --- a/roles/common/tasks/main.yml +++ b/roles/common/tasks/main.yml @@ -1,22 +1,55 @@ --- -- name: Cleanup - apt: autoclean=yes - when: ansible_os_family == 'Debian' +- name: Install misc software + apt: name={{ item }} + with_items: + - dnsutils + - git + - htop + - less + - net-tools + - openssl + - psmisc + - pydf + - rsync + - sudo + - vim-nox + - zsh + - fail2ban -- name: Gather package facts - package_facts: - manager: apt - when: ansible_os_family == 'Debian' +- name: Install software on KVM VMs + apt: name={{ item }} + with_items: + - acpid + - qemu-guest-agent + when: ansible_virtualization_role == "guest" and ansible_virtualization_type == "kvm" -- name: Proxmox - include: Proxmox.yml - when: ansible_os_family == 'Debian' and 'pve-manager' in ansible_facts.packages +- name: Configure misc software + copy: src={{ item.src }} dest={{ item.dest }} + with_items: + - { src: '.zshrc', dest: '/root/.zshrc' } + - { src: '.zshrc.local', dest: '/root/.zshrc.local' } + - { src: 'motd', dest: '/etc/motd' } + - { src: 'vimrc.local', dest: '/etc/vim/vimrc.local' } -- name: Debian - include: Debian.yml - when: ansible_os_family == 'Debian' and 'pve-manager' not in ansible_facts.packages +- name: Set shell for root user + user: name=root shell=/bin/zsh -- name: FreeBSD - include: FreeBSD.yml - when: ansible_distribution == 'FreeBSD' +- name: Disable hibernation/resume + copy: src=resume dest=/etc/initramfs-tools/conf.d/resume + notify: update-initramfs + +# TODO template /etc/network/interfaces + +- name: Fix network interface names + copy: src={{ item }} dest=/etc/systemd/network/{{ item }} + with_items: + - 50-virtio-kernel-names.link + - 99-default.link + notify: update-initramfs + +- name: Prevent normal users from running su + lineinfile: + path: /etc/pam.d/su + regexp: '^.*auth\s+required\s+pam_wheel.so$' + line: 'auth required pam_wheel.so'