summaryrefslogtreecommitdiffstats
path: root/roles/common/tasks
diff options
context:
space:
mode:
Diffstat (limited to 'roles/common/tasks')
-rw-r--r--roles/common/tasks/firewall.yml2
-rw-r--r--roles/common/tasks/logging.yml2
-rw-r--r--roles/common/tasks/main.yml4
3 files changed, 4 insertions, 4 deletions
diff --git a/roles/common/tasks/firewall.yml b/roles/common/tasks/firewall.yml
index fd1ad92..30f4fa9 100644
--- a/roles/common/tasks/firewall.yml
+++ b/roles/common/tasks/firewall.yml
@@ -18,7 +18,7 @@
register: rv
# A non-zero return value will make ansible stop and show stderr. This
# is what we want.
- changed_when: rv.rc
+ changed_when: rv.rc != 0
- name: Enable nftables.service
service: name=nftables enabled=yes
diff --git a/roles/common/tasks/logging.yml b/roles/common/tasks/logging.yml
index aaea63f..699c6e3 100644
--- a/roles/common/tasks/logging.yml
+++ b/roles/common/tasks/logging.yml
@@ -60,7 +60,7 @@
state=present
create=yes
owner=root group=root
- mode=0640
+ mode=0644
with_items:
- /var/log/syslog
- /var/log/auth.log
diff --git a/roles/common/tasks/main.yml b/roles/common/tasks/main.yml
index 1dc286e..293d22b 100644
--- a/roles/common/tasks/main.yml
+++ b/roles/common/tasks/main.yml
@@ -17,8 +17,8 @@
- import_tasks: stunnel.yml
tags: stunnel
when: "'webmail' in group_names and 'LDAP_provider' not in group_names"
-- import_tasks: auditd.yml
- tags: auditd
+#- import_tasks: auditd.yml
+# tags: auditd
- import_tasks: resolved.yml
tags:
- resolv
generated by cgit v1.2.3 (git 2.25.1) at 2025-12-16 08:22:45 +0000