Hyperling
c59e706c17
* Create HUGO file. * Add HUGO. * Add script for running system against development branch. * Add newline to end of file. * Comment unused blocks. * Add path of site that HUGO should host. * Newlines, comments, and HUGO path. (#2) (#3) * Create HUGO file. * Add HUGO. * Add script for running system against development branch. * Add newline to end of file. * Comment unused blocks. * Add path of site that HUGO should host. * FreeBSD is complaining about certbot not having dict object stdout. This whole playbook is supposed to be skipped though, lol. * FreeBSD 13 is still mad. Ansible 2.11.2, jinja 2.11.2 (same version number??), Python 3.8.10. * Fix root group to be existing variable. FreeBSD uses wheel. * Allow choosing Github branch dynamically. * `branch` needs to be at General level. Testing if this works... * Change other `localhost` to `everything`. * Update FreeBSD status. * Goodbye, Code-OSS on Linux! * Delete a terrible file. * Remove excess tag. * "Fix" SSHFS for FreeBSD. * Variablize FreeBSD's loading of fusefs. * Variablize /etc/rc.conf. Enable FuseFS more properly. * Add beginning ticks. * Add missing playbook. * Enable FreeBSD mount job. * Rearrange items to be more consistent with comment. * It seems FreeBSD removed the `gnome3` metapackage. Use `gnome3-lite` instead. Also add Telegram. * Python is to 3.8 now. * Expand on FreeBSD work. * Expand on FreeBSD work. * Add placeholders for Gitlab. * Add parameter for Gitlab install. * Add Gitlab playbook. * Ensure FreeBSD uses the correct Python install. * Add newline. * Fix NFS for FreeBSD workstations. * Remove unnecessary line, restricted install to Linux in playbook. * Fix mount options for FreeBSD. * Fix mount number, as well as system-specific facts. * Add placeholders for remote viewing. * Add RDP for FreeBSD. * Omg! It works! Add setting enforcement. * Always remove OSS. * Remove hosts from explicit dev testing.
33 lines
843 B
YAML
33 lines
843 B
YAML
---
|
|
# Lynis hardness check.
|
|
|
|
- name: General | Tests | Lynis | Install
|
|
git:
|
|
repo: https://github.com/CISOfy/lynis
|
|
dest: "{{ lynis_install_dir }}"
|
|
clone: yes
|
|
force: yes
|
|
|
|
- name: General | Tests | Lynis | Ensure Permissions (Looking at you Parrot OS!)
|
|
file:
|
|
path: "{{ lynis_install_dir }}"
|
|
state: directory
|
|
mode: '0644'
|
|
owner: root
|
|
group: "{{ root_group }}"
|
|
recurse: yes
|
|
|
|
- name: General | Tests | Lynis | Ensure Permissions 2
|
|
file:
|
|
path: "{{ lynis_install_dir }}/lynis"
|
|
mode: '0755'
|
|
|
|
- name: General | Tests | Lynis | Run System Audit
|
|
shell: "{{ lynis_install_dir }}/lynis audit system --no-colors > {{ lynis_report }} 2>&1"
|
|
args:
|
|
executable: "{{ bash_exec.stdout }}"
|
|
|
|
- name: General | Tests | Lynis | Make Report Readable
|
|
file:
|
|
path: "{{ lynis_report }}"
|
|
mode: '0777' |