hardening

hardening.yml

@@ -81,26 +81,31 @@
 # chmod go+r /usr/share/keyrings/netbird-archive-keyring.gpg for error:
 #||-----> GPG error: https://pkgs.netbird.io/debian stable InRelease: The following signatures couldn't be verified because the public key is not available
 
-  roles:
+  # roles:
-    - robertdebock.update
+  #   - robertdebock.update
-    - devsec.hardening.os_hardening
+  #   - devsec.hardening.os_hardening
-    - devsec.hardening.ssh_hardening
+  #   - devsec.hardening.ssh_hardening
-    - maxlareo.rkhunter
+  #   - maxlareo.rkhunter
-    - maxlareo.chkrootkit
+  #   - maxlareo.chkrootkit
-    - robertdebock.auditd
+  #   - robertdebock.auditd
-    - geerlingguy.firewall
+  #   - geerlingguy.firewall
-    - grog.management-user
+  #   - grog.management-user
-    - GROG.user
+  #   - GROG.user
-    - GROG.authorized-key
+  #   - GROG.authorized-key
-    - GROG.sudo
+  #   - GROG.sudo
-    - ansible_unattended_upgrades
+  #   - ansible_unattended_upgrades
-    - buluma.lynis
+  #   - buluma.lynis
   
   # roles:
   #   - role: netways.elasticstack.elasticsearch
   #     tags: test2
   tasks:
 
+    - name: Install bottle python package
+      ansible.builtin.pip:
+        name: netaddr
+      delegate_to: localhost
+
     - name: Tcheck ssh conf for phone connection 
       ansible.builtin.lineinfile:
         path: /etc/ssh/ssh_config