diff options
| author | Guilhem Moulin <guilhem@fripost.org> | 2014-01-04 21:03:08 +0100 |
|---|---|---|
| committer | Guilhem Moulin <guilhem@fripost.org> | 2015-06-07 02:51:32 +0200 |
| commit | 677c9e95b331290fe09aa78ddd8fd6896dfce94d (patch) | |
| tree | dc934c8ca0d9a196ae5063aea9911e6e48210231 /roles | |
| parent | e871994959fccba3051d451f6e00c33a11370a00 (diff) | |
Install haveged.
To avoid low-entropy conditions, see
http://www.issihosts.com/haveged/
Diffstat (limited to 'roles')
| -rw-r--r-- | roles/common/tasks/haveged.yml | 5 | ||||
| -rw-r--r-- | roles/common/tasks/main.yml | 1 |
2 files changed, 6 insertions, 0 deletions
diff --git a/roles/common/tasks/haveged.yml b/roles/common/tasks/haveged.yml new file mode 100644 index 0000000..3f03a28 --- /dev/null +++ b/roles/common/tasks/haveged.yml @@ -0,0 +1,5 @@ +- name: Install haveged + apt: pkg=haveged + +- name: Start haveged + service: name=haveged state=started diff --git a/roles/common/tasks/main.yml b/roles/common/tasks/main.yml index 8fbeb0c..55feff8 100644 --- a/roles/common/tasks/main.yml +++ b/roles/common/tasks/main.yml @@ -1,30 +1,31 @@ --- - include: sysctl.yml tags=sysctl - include: hosts.yml - include: apt.yml tags=apt - include: firewall.yml tags=firewall,iptables - include: samhain.yml tags=samhain - include: rkhunter.yml tags=rkhunter - include: clamav.yml tags=clamav - include: fail2ban.yml tags=fail2ban - include: smart.yml tags=smartmontools,smart +- include: haveged.yml tags=haveged,entropy - include: ipsec.yml tags=strongswan,ipsec - include: logging.yml tags=logging - include: ntp.yml tags=ntp - include: mail.yml tags=mail,postfix - name: Install common packages apt: pkg={{ item }} with_items: - ca-certificates - daemontools - etckeeper - ethtool - git - harden-clients - harden-servers - htop - molly-guard - rsync - screen - telnet-ssl |