alanorth/ansible-personal
1
0
Fork 0
Code Issues 4 Pull Requests Projects Releases Wiki Activity
330 Commits 2 Branches 0 Tags 4.2 MiB
861b5c5413
Commit Graph

19 Commits

Author SHA1 Message Date
Alan Orth
861b5c5413
roles/common: Remove old comment from main playbook 2016-08-22 16:35:02 +03:00
Alan Orth
6c6ff1b112
roles/common: Use ansible facts to reduce includes 2016-08-22 16:34:05 +03:00
Alan Orth
d3a6e71ab8
roles/common: Use service module to enable systemd NTP client instead of timedatectl 
The `timedatectl set-ntp on` command is actually just enabling the
systemd service anyways, so it's better we use Ansible's service
module.
 2016-08-22 12:49:00 +03:00
Alan Orth
06034a8b8b
roles/common: Use systemd's timedatectl for time stuff 
Debian 8 and Ubuntu 16.04 use systemd, so we can make use of its
NTP stuff rather than using the standalone `ntp` package.
 2016-06-27 10:30:11 +03:00
Alan Orth
9266d48c9f
roles/common: Separate firewalld tasks for Ubuntu and Debian 
Signed-off-by: Alan Orth <alan.orth@gmail.com>
 2015-08-23 12:06:25 +03:00
Alan Orth
18ca44193d
roles/common: Add sysctl template for Debian hosts 
Note: I've only tested this on a Debian container, and you can't
set these sysctls on containers (the host controls them). To make
matters worse, there is no fact to make ansible skip this on hosts
that are running in containers. For now I will just skip it on
hosts that are "virtualization" servers... even though we actually
do have KVM running on Debian on real hardware. *sigh*

Signed-off-by: Alan Orth <alan.orth@gmail.com>
 2015-08-23 00:12:17 +03:00
Alan Orth
e15d1be867 roles/common: Add playbook for Debian packages 
Signed-off-by: Alan Orth <alan.orth@gmail.com>
 2015-08-23 00:02:39 +03:00
Alan Orth
8e0a292b1d
roles/common: Move sshd tasks to their own playbook 
Signed-off-by: Alan Orth <alan.orth@gmail.com>
 2015-08-23 00:00:43 +03:00
Alan Orth
3a5b50f941
roles/common: Set I/O scheduler via udev 
All servers with non-rotating disks (SSDs) should be running noop,
and the rest should be running deadline.

Signed-off-by: Alan Orth <alan.orth@gmail.com>
 2015-03-15 17:52:05 +03:00
Alan Orth
9fda345a24
roles/common: Fix one logic mistake in rc.local task 
I think it was originally supposed to be `ansible_os_family` but
we don't have anything other than Ubuntu, so let's just use that.

Signed-off-by: Alan Orth <alan.orth@gmail.com>
 2015-03-15 17:43:21 +03:00
Alan Orth
4a1158e163
roles/common: Remove CentOS rclocal task 
No CentOS hosts here!

Signed-off-by: Alan Orth <alan.orth@gmail.com>
 2015-03-15 17:40:07 +03:00
Alan Orth
891bd35171 roles/common: Move tags from subtask to main one 
Child tasks inherit the tag of the parent.

Signed-off-by: Alan Orth <alan.orth@gmail.com>
 2015-03-15 17:34:13 +03:00
Alan Orth
4efb6edb7e
roles/common: Indent some yaml stuff in main.yml 
Signed-off-by: Alan Orth <alan.orth@gmail.com>
 2015-03-15 17:31:29 +03:00
Alan Orth
b70ae58f48
roles/common: Simplify when logic in main template 
Less syntax is more readable syntax.

Signed-off-by: Alan Orth <alan.orth@gmail.com>
 2015-03-15 17:29:41 +03:00
Alan Orth
19f5b60cb7
Remove references to provisioning.yml 
We aren't managing the provisioning user anymore, it is just assumed
to be there.

Signed-off-by: Alan Orth <alan.orth@gmail.com>
 2015-02-26 16:53:48 +03:00
Alan Orth
171798c76d roles/common: Add DSA/ECDSA cleanup to ssh tasks 
We don't want to support these signature algorithms!

Signed-off-by: Alan Orth <alan.orth@gmail.com>
 2015-01-20 16:31:37 +03:00
Alan Orth
1e2193efc9
roles/common: Add functionality to copy user keys to provisioning user 
Signed-off-by: Alan Orth <alan.orth@gmail.com>
 2014-10-11 12:13:45 +03:00
Alan Orth
c53dd18181
roles/common: Add role to manage provisioning user 
Signed-off-by: Alan Orth <alan.orth@gmail.com>
 2014-10-11 12:11:44 +03:00
Alan Orth
60b8ecdd4c
Initial commit 
Signed-off-by: Alan Orth <alan.orth@gmail.com>
 2014-08-17 00:35:57 +03:00