ansible-opnsense
ansible-opnsense copied to clipboard
`srm` does not exist on macOS.
rm -P
overwrites the file three times before deleting.
On Alpine Linux the secure-delete package is also not available however the -P option does not exist here. Had to work around it by creating a /bin/srm script that would do rm $@ ...
How reliable is secure delete, e.g. on journaling file systems? Does it even make sense to use it? Should we maybe use a flag to switch to normal delete ?
maybe it would be the most ansiblish and os independent way to just use
- name: clean, delete
delegate_to: localhost
file:
path: "{{ local_config_path }}"
state: absent
tags: clean
In our clone of the repo we disabled conditionally the step by default https://github.com/Rosa-Luxemburgstiftung-Berlin/ansible-opnsense/blob/main/tasks/main.yml#L256:L260 as we keep the config and store it in our git repo https://github.com/Rosa-Luxemburgstiftung-Berlin/ansible-opnsense-playbook