hardening

2024-04-01 18:25:08 +02:00
parent 54462835b0
commit bc374aeddf
1 changed files with 19 additions and 14 deletions
--- a/hardening.yml
+++ b/hardening.yml
@@ -81,26 +81,31 @@
 # chmod go+r /usr/share/keyrings/netbird-archive-keyring.gpg for error:
 #||-----> GPG error: https://pkgs.netbird.io/debian stable InRelease: The following signatures couldn't be verified because the public key is not available

-  roles:
-    - robertdebock.update
-    - devsec.hardening.os_hardening
-    - devsec.hardening.ssh_hardening
-    - maxlareo.rkhunter
-    - maxlareo.chkrootkit
-    - robertdebock.auditd
-    - geerlingguy.firewall
-    - grog.management-user
-    - GROG.user
-    - GROG.authorized-key
-    - GROG.sudo
-    - ansible_unattended_upgrades
-    - buluma.lynis
+  # roles:
+  #   - robertdebock.update
+  #   - devsec.hardening.os_hardening
+  #   - devsec.hardening.ssh_hardening
+  #   - maxlareo.rkhunter
+  #   - maxlareo.chkrootkit
+  #   - robertdebock.auditd
+  #   - geerlingguy.firewall
+  #   - grog.management-user
+  #   - GROG.user
+  #   - GROG.authorized-key
+  #   - GROG.sudo
+  #   - ansible_unattended_upgrades
+  #   - buluma.lynis
  
  # roles:
  #   - role: netways.elasticstack.elasticsearch
  #     tags: test2
  tasks:

+    - name: Install bottle python package
+      ansible.builtin.pip:
+        name: netaddr
+      delegate_to: localhost
+
    - name: Tcheck ssh conf for phone connection 
      ansible.builtin.lineinfile:
        path: /etc/ssh/ssh_config