Changeset - 8cf2c6766e78
Parent rev.
Child rev.
[Not reviewed]
0 1 0
x - 17 months ago 2023-12-14 18:48:44
xbr@c3l.lu
feat: reload sshd before adding new users (avoid vuln.)
1 file changed with 6 insertions and 7 deletions:
initial_server_setup/initial_setup.yml
6
7
0 comments (0 inline, 0 general)
initial_server_setup/initial_setup.yml
Show inline comments
 
@@ -100,6 +100,12 @@
 
        line: "# PermitRootLogin No"
 
      tags: network,ssh
 
      register: root_login_sshd
 
    - name: Reload SSHD
 
      ansible.builtin.service:
 
        name: "sshd"
 
        state: "reloaded"
 
      tags: network,ssh
 
      when: pass_auth.changed or pass_auth_sshd.changed or empty_pass.changed or empty_pass_sshd.changed or root_login.changed or root_login_sshd.changed
 

			




	
	
	
		
 
    # Create Freifunk Users

			




	
	
	
		
 
    - name: Create member users

			




	
	
		
 
@@ -155,10 +161,3 @@

			




	
	
	
		
 
        group: root

			




	
	
	
		
 
        mode: '0440'

			




	
	
	
		
 
      tags: users

			




	
	
	
		
 

			




	
	
	
		
 
    - name: Reload SSHD

			




	
	
	
		
 
      ansible.builtin.service:

			




	
	
	
		
 
        name: "sshd"

			




	
	
	
		
 
        state: "reloaded"

			




	
	
	
		
 
      tags: network,ssh

			




	
	
	
		
 
      when: pass_auth.changed or pass_auth_sshd.changed or empty_pass.changed or empty_pass_sshd.changed or root_login.changed or root_login_sshd.changed

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        Server instance: saturn-2945763
    
    
        This site is powered by
            Kallithea,
        which is
        © 2010–2021 by various authors & licensed under GPLv3.
            – Support