ansible-role-security
ansible-role-security copied to clipboard
geerlingguy
Ansible Role - Security
Adding [Protocol 2](https://linux.die.net/man/5/sshd_config) to sshd_config is a general security good practice. Some references: - https://www.tecmint.com/secure-openssh-server/ - http://www.snailbook.com/faq/ssh-1-vs-2.auto.html - https://docstore.mik.ua/orelly/networking_2ndEd/ssh/ch03_05.htm
Hi Sorry, im wondering if its okay to update the template unattended-upgrades for Debian & Ubuntu based - which from what i tested this should no affect error for both...
Add Archlinux variable file, and install fail2ban on Archlinux.
Running against a Rocky Linux 9 (and presumably RHEL9) host gives the error: `The task includes an option with an undefined variable. The error was: 'update_utility' is undefined`. Add appropriate...
Not much to write here :) This fixes #95 Cheers 🍻
When the https://github.com/geerlingguy/ansible-role-security/blob/d7272e427c085543ec6d39541b6cc28e243425e1/defaults/main.yml#L28 is changed / updated the fail2ban.service is not getting reloaded. This can cause unexpected bans. If, for example, you configure ignoreip in the override and then after...
Only tested on Buster.
I want to add 2 users by using security_sudoers_passwordless or security_sudoers_passworded: 1. MXPicture 2. MXPictureAnsible The /etc/sudoers file should look like this: MXPicture ALL=(ALL) NOPASSWD: ALL MXPictureAnsible ALL=(ALL) NOPASSWD: ALL...
ERROR! vars file vars/main.yml was not found Could not find file on the Ansible Controller. If you are using a module and expect the file to exist on the remote,...
