]> git.phdru.name Git - ansible.git/log
ansible.git
10 months agoFeat(logcheck): Update `local-ssh`
Oleg Broytman [Thu, 11 Jan 2024 12:29:43 +0000 (15:29 +0300)]
Feat(logcheck): Update `local-ssh`

11 months agoFeat(logcheck): Update `local-ssh`
Oleg Broytman [Thu, 21 Dec 2023 07:09:36 +0000 (10:09 +0300)]
Feat(logcheck): Update `local-ssh`

11 months agoFeat(logcheck): Update `local-ssh`
Oleg Broytman [Wed, 13 Dec 2023 09:53:29 +0000 (12:53 +0300)]
Feat(logcheck): Update `local-ssh`

11 months agoStyle(logcheck/local-kea): Sort entries
Oleg Broytman [Tue, 12 Dec 2023 18:16:30 +0000 (21:16 +0300)]
Style(logcheck/local-kea): Sort entries

11 months agoFeat(logcheck): Update `local-kea`
Oleg Broytman [Tue, 12 Dec 2023 18:15:56 +0000 (21:15 +0300)]
Feat(logcheck): Update `local-kea`

12 months agoFeat(roles/sudo): Disable `.sudo_as_admin_successful`
Oleg Broytman [Mon, 4 Dec 2023 01:29:26 +0000 (04:29 +0300)]
Feat(roles/sudo): Disable `.sudo_as_admin_successful`

12 months agoFeat(logcheck): Update `local-ntpd`
Oleg Broytman [Thu, 30 Nov 2023 14:09:20 +0000 (17:09 +0300)]
Feat(logcheck): Update `local-ntpd`

12 months agoFeat(logcheck): Add `local-dnsmasq`
Oleg Broytman [Fri, 10 Nov 2023 13:06:24 +0000 (16:06 +0300)]
Feat(logcheck): Add `local-dnsmasq`

12 months agoFeat(logcheck): Disable systemd journal
Oleg Broytman [Sat, 4 Nov 2023 14:43:18 +0000 (17:43 +0300)]
Feat(logcheck): Disable systemd journal

13 months agoFeat(logcheck): Add `local-kea`, update `local-named`, `local-ssh`
Oleg Broytman [Mon, 30 Oct 2023 15:03:13 +0000 (18:03 +0300)]
Feat(logcheck): Add `local-kea`, update `local-named`, `local-ssh`

13 months agoFeat(logcheck): Update timestamp format for new `rsyslog` in Debian 12
Oleg Broytman [Mon, 30 Oct 2023 10:21:55 +0000 (13:21 +0300)]
Feat(logcheck): Update timestamp format for new `rsyslog` in Debian 12

13 months agoFeat(firewall): Prevent `fail2ban` from autostarting
Oleg Broytman [Mon, 16 Oct 2023 15:21:27 +0000 (18:21 +0300)]
Feat(firewall): Prevent `fail2ban` from autostarting

13 months agoFeat(bluetooth): Prevent `bluetooth` from autostarting
Oleg Broytman [Mon, 16 Oct 2023 15:20:41 +0000 (18:20 +0300)]
Feat(bluetooth): Prevent `bluetooth` from autostarting

13 months agoRename `apt.yaml` -> `deb.yaml`
Oleg Broytman [Mon, 16 Oct 2023 15:19:54 +0000 (18:19 +0300)]
Rename `apt.yaml` -> `deb.yaml`

13 months agoFeat(bluetooth): Install bluetooth/bluez separately
Oleg Broytman [Sat, 14 Oct 2023 21:50:28 +0000 (00:50 +0300)]
Feat(bluetooth): Install bluetooth/bluez separately

13 months agoFeat(bluetooth): Do not install bluetooth/bluez automatically
Oleg Broytman [Sat, 14 Oct 2023 21:46:03 +0000 (00:46 +0300)]
Feat(bluetooth): Do not install bluetooth/bluez automatically

15 months agoFeat(update-root): Update `.mc/mc.ext`
Oleg Broytman [Wed, 30 Aug 2023 14:18:53 +0000 (17:18 +0300)]
Feat(update-root): Update `.mc/mc.ext`

15 months agoFix(setup-usrlocal): Fix `chown user:group` syntax
Oleg Broytman [Sun, 27 Aug 2023 09:50:25 +0000 (12:50 +0300)]
Fix(setup-usrlocal): Fix `chown user:group` syntax

`chown` started to issue warning for `user.group` syntax.

15 months agoFeat(logcheck): Update `local-gcr`
Oleg Broytman [Wed, 9 Aug 2023 11:06:04 +0000 (14:06 +0300)]
Feat(logcheck): Update `local-gcr`

Update timestamp format for Debian 12.

16 months agoFix(sa-merge-all): Adapt to Debian 12
Oleg Broytman [Tue, 1 Aug 2023 17:06:17 +0000 (20:06 +0300)]
Fix(sa-merge-all): Adapt to Debian 12

The service is now named `spamd`.

16 months agoFeat(debian/sa-merge-all.py): Update to `python3`
Oleg Broytman [Tue, 1 Aug 2023 16:55:28 +0000 (19:55 +0300)]
Feat(debian/sa-merge-all.py): Update to `python3`

Fix a bug found by `flake8`:
there were 4 placeholders but only 3 arguments.

16 months agoFix(ansible/cleanup-tmp.sh): Fix `*`
Oleg Broytman [Tue, 1 Aug 2023 16:54:48 +0000 (19:54 +0300)]
Fix(ansible/cleanup-tmp.sh): Fix `*`

Do not overprotect.

16 months agoFeat(logcheck): Update `local-ntpd`
Oleg Broytman [Sun, 23 Jul 2023 15:23:51 +0000 (18:23 +0300)]
Feat(logcheck): Update `local-ntpd`

16 months agoFeat(logcheck): Update `local-rtkit`
Oleg Broytman [Sat, 15 Jul 2023 11:57:39 +0000 (14:57 +0300)]
Feat(logcheck): Update `local-rtkit`

16 months agoFix(debian/email): Debian 12 split `spamd` from `spamassassin`
Oleg Broytman [Fri, 14 Jul 2023 12:57:55 +0000 (15:57 +0300)]
Fix(debian/email): Debian 12 split `spamd` from `spamassassin`

16 months agoFeat(logcheck): Update `local-wpa_supplicant`
Oleg Broytman [Thu, 13 Jul 2023 14:11:28 +0000 (17:11 +0300)]
Feat(logcheck): Update `local-wpa_supplicant`

16 months agoFeat(logcheck): Update `local-rtkit`
Oleg Broytman [Thu, 13 Jul 2023 14:11:15 +0000 (17:11 +0300)]
Feat(logcheck): Update `local-rtkit`

16 months agoFeat(logcheck): Add `local-rtkit`
Oleg Broytman [Tue, 11 Jul 2023 19:14:17 +0000 (22:14 +0300)]
Feat(logcheck): Add `local-rtkit`

16 months agoRefactor(init-system/templates/sources.list)
Oleg Broytman [Tue, 11 Jul 2023 13:34:08 +0000 (16:34 +0300)]
Refactor(init-system/templates/sources.list)

Reorder entries. Add empty lines.
Remove unused VBox: I've switched back to Qemu.

16 months agoFeat(init-system): `apt-transport-https` no longer required
Oleg Broytman [Tue, 11 Jul 2023 13:32:30 +0000 (16:32 +0300)]
Feat(init-system): `apt-transport-https` no longer required

For some releases it was nothing but a transition package.

17 months agoFeat(init-system): Add Debian 12 "bookworm"
Oleg Broytman [Mon, 26 Jun 2023 10:25:29 +0000 (13:25 +0300)]
Feat(init-system): Add Debian 12 "bookworm"

17 months agoAntifeature: Ansible now requires UTF-8 locale but I don't
Oleg Broytman [Thu, 15 Jun 2023 14:28:21 +0000 (17:28 +0300)]
Antifeature: Ansible now requires UTF-8 locale but I don't

17 months agoStyle(playbooks/debian/init-local-phd): Remove dead code
Oleg Broytman [Mon, 5 Jun 2023 11:34:02 +0000 (14:34 +0300)]
Style(playbooks/debian/init-local-phd): Remove dead code

20 months agoFeat(logcheck): Update `local-named`
Oleg Broytman [Fri, 17 Mar 2023 12:51:41 +0000 (15:51 +0300)]
Feat(logcheck): Update `local-named`

20 months agoFix(dehydrated): Fix URL
Oleg Broytman [Thu, 16 Mar 2023 13:02:19 +0000 (16:02 +0300)]
Fix(dehydrated): Fix URL

20 months agoFeat(logcheck): Add `local-ntpd`
Oleg Broytman [Sat, 11 Mar 2023 12:08:14 +0000 (15:08 +0300)]
Feat(logcheck): Add `local-ntpd`

20 months agoFeat(firewall): Rename `eth` to `firewall.sh`
Oleg Broytman [Tue, 7 Mar 2023 12:21:43 +0000 (15:21 +0300)]
Feat(firewall): Rename `eth` to `firewall.sh`

The script is not only about ethernets.

21 months agoFeat(roles/logcheck): Update `local-spamassassin`
Oleg Broytman [Sun, 5 Mar 2023 16:04:31 +0000 (19:04 +0300)]
Feat(roles/logcheck): Update `local-spamassassin`

21 months agoFeat(roles/logcheck): Update `local-ssh`
Oleg Broytman [Mon, 13 Feb 2023 07:13:24 +0000 (10:13 +0300)]
Feat(roles/logcheck): Update `local-ssh`

22 months agoFeat(init-local-phd): Install `ifplugd`
Oleg Broytman [Fri, 27 Jan 2023 15:49:16 +0000 (18:49 +0300)]
Feat(init-local-phd): Install `ifplugd`

22 months agoFeat(firewall): Switch to `nftables`
Oleg Broytman [Wed, 4 Jan 2023 11:20:22 +0000 (14:20 +0300)]
Feat(firewall): Switch to `nftables`

22 months agoFeat: Switch from `adjtimex`/`hwclock` back to `ntpd`
Oleg Broytman [Sun, 8 Jan 2023 07:05:39 +0000 (10:05 +0300)]
Feat: Switch from `adjtimex`/`hwclock` back to `ntpd`

22 months agoFeat(init-local-phd): Change the list of packages
Oleg Broytman [Wed, 4 Jan 2023 11:21:01 +0000 (14:21 +0300)]
Feat(init-local-phd): Change the list of packages

Replace VBox with QEmu. Install more XScreenSaver hacks.

23 months agoFeat(playbooks/debian/init-local-phd): Mount cgroups using `cgroupfs-mount`
Oleg Broytman [Tue, 27 Dec 2022 09:16:17 +0000 (12:16 +0300)]
Feat(playbooks/debian/init-local-phd): Mount cgroups using `cgroupfs-mount`

23 months agoFeat: Rename `*.yml` to `*.yaml`
Oleg Broytman [Sat, 10 Dec 2022 23:38:22 +0000 (02:38 +0300)]
Feat: Rename `*.yml` to `*.yaml`

2 years agoFeat(logcheck): Update `local-ssh`
Oleg Broytman [Fri, 4 Nov 2022 14:11:05 +0000 (17:11 +0300)]
Feat(logcheck): Update `local-ssh`

2 years agoFeat(logcheck): Update `local-named`
Oleg Broytman [Sun, 18 Sep 2022 12:08:11 +0000 (15:08 +0300)]
Feat(logcheck): Update `local-named`

2 years agoFeat(inventory): Split `[localnet]` into `[homenet]`
Oleg Broytman [Wed, 31 Aug 2022 05:33:42 +0000 (08:33 +0300)]
Feat(inventory): Split `[localnet]` into `[homenet]`

My `localhost` is a notebook and can be relocated anywhere in the world.

2 years agoFeat(logcheck): Update `local-named`
Oleg Broytman [Thu, 25 Aug 2022 08:09:31 +0000 (11:09 +0300)]
Feat(logcheck): Update `local-named`

2 years agoFeat(logcheck): Update `local-ssh`
Oleg Broytman [Sun, 21 Aug 2022 19:06:26 +0000 (22:06 +0300)]
Feat(logcheck): Update `local-ssh`

2 years agoFeat(logcheck): Update `local-named`
Oleg Broytman [Wed, 17 Aug 2022 11:09:19 +0000 (14:09 +0300)]
Feat(logcheck): Update `local-named`

2 years agoStyle: `ip -o` -> `ip --oneline`
Oleg Broytman [Mon, 1 Aug 2022 21:38:09 +0000 (00:38 +0300)]
Style: `ip -o` -> `ip --oneline`

2 years agoFeat: Rename `adjtimex` -> `ntpdate-hwc`
Oleg Broytman [Fri, 29 Jul 2022 15:24:57 +0000 (18:24 +0300)]
Feat: Rename `adjtimex` -> `ntpdate-hwc`

2 years agoStyle(firewall): `ip addr show` -> `ip address show`
Oleg Broytman [Wed, 27 Jul 2022 07:52:04 +0000 (10:52 +0300)]
Style(firewall): `ip addr show` -> `ip address show`

2 years agoFeat(logcheck): Update `local-dhcp`
Oleg Broytman [Mon, 27 Jun 2022 18:20:32 +0000 (21:20 +0300)]
Feat(logcheck): Update `local-dhcp`

2 years agoFix(fetch-push/push): `dest_dir` is always a directory
Oleg Broytman [Tue, 21 Jun 2022 20:59:41 +0000 (23:59 +0300)]
Fix(fetch-push/push): `dest_dir` is always a directory

Create a new one if it doesn't exist.

2 years agoFeat(logcheck): Update `local-ssh`
Oleg Broytman [Tue, 21 Jun 2022 13:08:03 +0000 (16:08 +0300)]
Feat(logcheck): Update `local-ssh`

2 years agoFeat(logcheck): Update `local-named`
Oleg Broytman [Fri, 3 Jun 2022 20:05:43 +0000 (23:05 +0300)]
Feat(logcheck): Update `local-named`

2 years agoFeat(logcheck): Update `local-ssh`
Oleg Broytman [Thu, 2 Jun 2022 21:05:56 +0000 (00:05 +0300)]
Feat(logcheck): Update `local-ssh`

2 years agoFeat(adjtimex): Rewrite `adjtimex.sh`
Oleg Broytman [Thu, 26 May 2022 11:42:26 +0000 (14:42 +0300)]
Feat(adjtimex): Rewrite `adjtimex.sh`

I'm disappointed with `adjtimex --log/--review`
so I do manual tweaking now.

The script just synchronize system and hardware clocks.

2 years agoFeat(adjtimex): Install `hwclock` from `util-linux`
Oleg Broytman [Sat, 14 May 2022 03:09:17 +0000 (06:09 +0300)]
Feat(adjtimex): Install `hwclock` from `util-linux`

2 years agoFeat(adjtimex): Use `hwclock --update-drift`
Oleg Broytman [Sat, 7 May 2022 14:19:44 +0000 (17:19 +0300)]
Feat(adjtimex): Use `hwclock --update-drift`

2 years agoRefactor(cleanup-tmp.sh): Use `ansible --list-hosts` instead of `run-hosts -L`
Oleg Broytman [Tue, 3 May 2022 22:15:12 +0000 (01:15 +0300)]
Refactor(cleanup-tmp.sh): Use `ansible --list-hosts` instead of `run-hosts -L`

2 years agoFix(ansible/cleanup-tmp.sh): `.ansible` is at `$HOME`
Oleg Broytman [Tue, 3 May 2022 11:44:14 +0000 (14:44 +0300)]
Fix(ansible/cleanup-tmp.sh): `.ansible` is at `$HOME`

2 years agoFix(ansible/cleanup-tmp.sh): Parameter was changed in `run-hosts`
Oleg Broytman [Tue, 3 May 2022 11:42:08 +0000 (14:42 +0300)]
Fix(ansible/cleanup-tmp.sh): Parameter was changed in `run-hosts`

It's no longer "echo", it's "list hosts".

2 years agoFeat(packages): Install `socat`
Oleg Broytman [Mon, 25 Apr 2022 13:14:28 +0000 (16:14 +0300)]
Feat(packages): Install `socat`

2 years agoFix(debian/email): Split handlers
Oleg Broytman [Mon, 25 Apr 2022 12:10:46 +0000 (15:10 +0300)]
Fix(debian/email): Split handlers

Roles don't allow inline handlers.

2 years agoFeat(init-system): Remove `ntp`
Oleg Broytman [Mon, 25 Apr 2022 02:14:59 +0000 (05:14 +0300)]
Feat(init-system): Remove `ntp`

2 years agoFeat(debian/init-system): Start a shared connection with a password
Oleg Broytman [Mon, 25 Apr 2022 01:15:05 +0000 (04:15 +0300)]
Feat(debian/init-system): Start a shared connection with a password

2 years agoFeat(roles/qemu): Install QEMU
Oleg Broytman [Wed, 20 Apr 2022 11:41:46 +0000 (14:41 +0300)]
Feat(roles/qemu): Install QEMU

2 years agoFeat(roles/docker): Install Docker (currently Debian-only)
Oleg Broytman [Mon, 11 Apr 2022 14:33:27 +0000 (17:33 +0300)]
Feat(roles/docker): Install Docker (currently Debian-only)

2 years agoFeat(debian/security): Configure `/etc/chkrootkit.conf`
Oleg Broytman [Sat, 9 Apr 2022 09:50:22 +0000 (12:50 +0300)]
Feat(debian/security): Configure `/etc/chkrootkit.conf`

Enable daily run.

2 years agoFeat(logcheck): Update `local-named`
Oleg Broytman [Sun, 27 Mar 2022 22:21:12 +0000 (01:21 +0300)]
Feat(logcheck): Update `local-named`

2 years agoFeat(wireguard): Install WireGuard
Oleg Broytman [Sat, 26 Mar 2022 16:22:22 +0000 (19:22 +0300)]
Feat(wireguard): Install WireGuard

2 years agoFix(firewall): `iptables.sh` does its own restart
Oleg Broytman [Sat, 26 Mar 2022 16:21:26 +0000 (19:21 +0300)]
Fix(firewall): `iptables.sh` does its own restart

2 years agoFeat(logcheck): Update `local-named`
Oleg Broytman [Fri, 25 Mar 2022 03:33:23 +0000 (06:33 +0300)]
Feat(logcheck): Update `local-named`

2 years agoFeat(update-root): Sync `ssh/known_hosts`
Oleg Broytman [Thu, 24 Mar 2022 00:26:32 +0000 (03:26 +0300)]
Feat(update-root): Sync `ssh/known_hosts`

2 years agoFeat(playbooks/fetch-push): Fetch/push a list of files
Oleg Broytman [Wed, 23 Mar 2022 02:04:46 +0000 (05:04 +0300)]
Feat(playbooks/fetch-push): Fetch/push a list of files

File names are separated by a comma, no space.

2 years agoFeat(playbooks/fetch-push): Fetch/push a file
Oleg Broytman [Wed, 23 Mar 2022 02:02:54 +0000 (05:02 +0300)]
Feat(playbooks/fetch-push): Fetch/push a file

Backup a remote file. Update it back.

2 years agoFeat(logcheck): Update `local-named`
Oleg Broytman [Fri, 18 Mar 2022 20:08:39 +0000 (23:08 +0300)]
Feat(logcheck): Update `local-named`

2 years agoFix(debian/named): Use IP instead of name
Oleg Broytman [Sun, 13 Mar 2022 09:28:32 +0000 (12:28 +0300)]
Fix(debian/named): Use IP instead of name

In `named` config it's better not to resolve names, even `localhost`.

2 years agoFeat(debian/gitweb): Install and configure `gitweb`
Oleg Broytman [Fri, 11 Mar 2022 21:55:19 +0000 (00:55 +0300)]
Feat(debian/gitweb): Install and configure `gitweb`

2 years agoFeat(playbooks/debian): Pass the host to the scripts
Oleg Broytman [Fri, 11 Mar 2022 21:53:46 +0000 (00:53 +0300)]
Feat(playbooks/debian): Pass the host to the scripts

2 years agoFeat(debian/named): Insert IP address
Oleg Broytman [Fri, 11 Mar 2022 01:43:36 +0000 (04:43 +0300)]
Feat(debian/named): Insert IP address

Insert the default IP address into `named.conf.options`.

2 years agoFeat(debian/email): Configure `/etc/default/spamassassin`
Oleg Broytman [Fri, 11 Mar 2022 00:56:24 +0000 (03:56 +0300)]
Feat(debian/email): Configure `/etc/default/spamassassin`

Add `--socketpath`.

2 years agoFeat(debian/email): Configure email: `exim` + `spamassassin`
Oleg Broytman [Fri, 11 Mar 2022 00:34:47 +0000 (03:34 +0300)]
Feat(debian/email): Configure email: `exim` + `spamassassin`

2 years agoFix(debian/security): Remove `debsecan`
Oleg Broytman [Fri, 11 Mar 2022 00:22:13 +0000 (03:22 +0300)]
Fix(debian/security): Remove `debsecan`

Too noisy and not very helpful.

2 years agoFeat(packages): Install `make`
Oleg Broytman [Thu, 10 Mar 2022 11:46:52 +0000 (14:46 +0300)]
Feat(packages): Install `make`

Quite often it's used outside of development.

2 years agoFix(logcheck): Fix `local-ssh` pattern
Oleg Broytman [Wed, 9 Mar 2022 15:32:18 +0000 (18:32 +0300)]
Fix(logcheck): Fix `local-ssh` pattern

2 years agoFeat(debian/security): Configure Debian security checks
Oleg Broytman [Wed, 9 Mar 2022 04:37:25 +0000 (07:37 +0300)]
Feat(debian/security): Configure Debian security checks

Install `chkrootkit` and `debsecan`.

2 years agoFix(adjtimex): Remove `ntpd` installed as a dependency
Oleg Broytman [Tue, 8 Mar 2022 19:58:00 +0000 (22:58 +0300)]
Fix(adjtimex): Remove `ntpd` installed as a dependency

2 years agoFix(python-packages): There is no `python-openssl` in Debian 11
Oleg Broytman [Tue, 8 Mar 2022 19:51:57 +0000 (22:51 +0300)]
Fix(python-packages): There is no `python-openssl` in Debian 11

2 years agoFix(python-packages): Install `python-pip`
Oleg Broytman [Tue, 8 Mar 2022 19:27:32 +0000 (22:27 +0300)]
Fix(python-packages): Install `python-pip`

In Debian 11 the package is named `python-pip-whl`.

2 years agoFix(root): Remove '.bash_history'
Oleg Broytman [Tue, 8 Mar 2022 18:48:10 +0000 (21:48 +0300)]
Fix(root): Remove '.bash_history'

Ansible doesn't allow to change type from file to symlink.

2 years agoFeat(packages): Install `mlocate`
Oleg Broytman [Mon, 7 Mar 2022 07:59:18 +0000 (10:59 +0300)]
Feat(packages): Install `mlocate`

2 years agoFix(add-dns-domain): Fix service name
Oleg Broytman [Mon, 7 Mar 2022 07:24:26 +0000 (10:24 +0300)]
Fix(add-dns-domain): Fix service name

Service name for BIND9 is `named`.

2 years agoFeat(packages): Install `calendar` and `net-tools`
Oleg Broytman [Sun, 6 Mar 2022 18:23:03 +0000 (21:23 +0300)]
Feat(packages): Install `calendar` and `net-tools`

2 years agoFix(debian/firewall): Install `iptables`
Oleg Broytman [Sun, 6 Mar 2022 18:16:00 +0000 (21:16 +0300)]
Fix(debian/firewall): Install `iptables`

2 years agoFeat(roles/python-packages): Install `python-is-python2`
Oleg Broytman [Sun, 6 Mar 2022 17:49:46 +0000 (20:49 +0300)]
Feat(roles/python-packages): Install `python-is-python2`

2 years agoFix(roles/init-system/templates/sources.list): Recognize Debian 11
Oleg Broytman [Sun, 6 Mar 2022 17:13:20 +0000 (20:13 +0300)]
Fix(roles/init-system/templates/sources.list): Recognize Debian 11