From bc374aeddfc1c308040998558379ec0eac9e06b7 Mon Sep 17 00:00:00 2001
From: staffadmin <stephane.gratiasquiquandon@gmail.com>
Date: Mon, 1 Apr 2024 18:25:08 +0200
Subject: [PATCH] hardening

---
 hardening.yml | 33 +++++++++++++++++++--------------
 1 file changed, 19 insertions(+), 14 deletions(-)

diff --git a/hardening.yml b/hardening.yml
index 596f859..29f1cca 100644
--- a/hardening.yml
+++ b/hardening.yml
@@ -81,26 +81,31 @@
 # chmod go+r /usr/share/keyrings/netbird-archive-keyring.gpg for error:
 #||-----> GPG error: https://pkgs.netbird.io/debian stable InRelease: The following signatures couldn't be verified because the public key is not available
 
-  roles:
-    - robertdebock.update
-    - devsec.hardening.os_hardening
-    - devsec.hardening.ssh_hardening
-    - maxlareo.rkhunter
-    - maxlareo.chkrootkit
-    - robertdebock.auditd
-    - geerlingguy.firewall
-    - grog.management-user
-    - GROG.user
-    - GROG.authorized-key
-    - GROG.sudo
-    - ansible_unattended_upgrades
-    - buluma.lynis
+  # roles:
+  #   - robertdebock.update
+  #   - devsec.hardening.os_hardening
+  #   - devsec.hardening.ssh_hardening
+  #   - maxlareo.rkhunter
+  #   - maxlareo.chkrootkit
+  #   - robertdebock.auditd
+  #   - geerlingguy.firewall
+  #   - grog.management-user
+  #   - GROG.user
+  #   - GROG.authorized-key
+  #   - GROG.sudo
+  #   - ansible_unattended_upgrades
+  #   - buluma.lynis
   
   # roles:
   #   - role: netways.elasticstack.elasticsearch
   #     tags: test2
   tasks:
 
+    - name: Install bottle python package
+      ansible.builtin.pip:
+        name: netaddr
+      delegate_to: localhost
+
     - name: Tcheck ssh conf for phone connection 
       ansible.builtin.lineinfile:
         path: /etc/ssh/ssh_config