summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorGuilhem Moulin <guilhem@fripost.org>2014-01-04 21:03:08 +0100
committerGuilhem Moulin <guilhem@fripost.org>2015-06-07 02:51:32 +0200
commit677c9e95b331290fe09aa78ddd8fd6896dfce94d (patch)
treedc934c8ca0d9a196ae5063aea9911e6e48210231
parente871994959fccba3051d451f6e00c33a11370a00 (diff)
Install haveged.
To avoid low-entropy conditions, see http://www.issihosts.com/haveged/
-rw-r--r--roles/common/tasks/haveged.yml5
-rw-r--r--roles/common/tasks/main.yml1
2 files changed, 6 insertions, 0 deletions
diff --git a/roles/common/tasks/haveged.yml b/roles/common/tasks/haveged.yml
new file mode 100644
index 0000000..3f03a28
--- /dev/null
+++ b/roles/common/tasks/haveged.yml
@@ -0,0 +1,5 @@
+- name: Install haveged
+ apt: pkg=haveged
+
+- name: Start haveged
+ service: name=haveged state=started
diff --git a/roles/common/tasks/main.yml b/roles/common/tasks/main.yml
index 8fbeb0c..55feff8 100644
--- a/roles/common/tasks/main.yml
+++ b/roles/common/tasks/main.yml
@@ -8,6 +8,7 @@
- include: clamav.yml tags=clamav
- include: fail2ban.yml tags=fail2ban
- include: smart.yml tags=smartmontools,smart
+- include: haveged.yml tags=haveged,entropy
- include: ipsec.yml tags=strongswan,ipsec
- include: logging.yml tags=logging
- include: ntp.yml tags=ntp