diff options
| author | Kyle Kaminski <kyle.kaminski@trustwave.com> | 2021-07-15 01:31:49 -0500 |
|---|---|---|
| committer | Kyle Kaminski <kyle.kaminski@trustwave.com> | 2021-07-15 01:31:49 -0500 |
| commit | cd84970b830630256289010f222d727ff09d68db (patch) | |
| tree | 7f6124264635dfc87c1ff101577c783aed1859c4 | |
| parent | c269e41eec5213df07973eb2cb09bfad93c04ab6 (diff) | |
| download | configs-cd84970b830630256289010f222d727ff09d68db.tar.gz configs-cd84970b830630256289010f222d727ff09d68db.tar.bz2 configs-cd84970b830630256289010f222d727ff09d68db.zip | |
2 ansible playbooks are success now!
| -rwxr-xr-x | ansible/clean-vms/clean-logs.sh | 3 | ||||
| -rw-r--r-- | ansible/clean-vms/vm-clean.yml | 2 | ||||
| -rw-r--r-- | ansible/clean-vms/vm-setup.yml | 26 |
3 files changed, 16 insertions, 15 deletions
diff --git a/ansible/clean-vms/clean-logs.sh b/ansible/clean-vms/clean-logs.sh index 5d79011..2d31c87 100755 --- a/ansible/clean-vms/clean-logs.sh +++ b/ansible/clean-vms/clean-logs.sh @@ -11,6 +11,9 @@ find /var/log/ -type f -name "*.gz" -exec rm -f {} \; find /var/log/ -type f -name "*.1" -exec rm -f {} \; find /var/log/ -type f -name "*.old" -exec rm -f {} \; +# rhel like logs with 8 digit date at the end +find /var/log -type f -regextype egrep -regex ".*-[0-9]{8}$" -exec rm -f {} \; + # clean systemd's journal if [[ -d /var/log/journal || -d /run/log/journal/ ]]; then systemctl stop systemd-journald diff --git a/ansible/clean-vms/vm-clean.yml b/ansible/clean-vms/vm-clean.yml index 062e538..b8bce33 100644 --- a/ansible/clean-vms/vm-clean.yml +++ b/ansible/clean-vms/vm-clean.yml @@ -4,4 +4,4 @@ script: clean-logs.sh - name: All done! debug: - msg: Packages have been successfully installed + msg: Logs have been cleaned diff --git a/ansible/clean-vms/vm-setup.yml b/ansible/clean-vms/vm-setup.yml index 7fb9551..00bd686 100644 --- a/ansible/clean-vms/vm-setup.yml +++ b/ansible/clean-vms/vm-setup.yml @@ -4,29 +4,27 @@ user: - name: "root" password: "foobar" - ssh_key: "ssh-rsa …" + ssh_pubkey: "{{ lookup('file', '~/.ssh/id_rsa.pub') }}" packages: - vim - wget - curl - atop tasks: -# - name: Change password for default user -# user: -# name: '"{{ item.name }}"' -# password: '"{{ item.password | password_hash('sha512') }}"' -# state: present -# loop: -# - '"{{ user }}"' + - name: Change password for default user + user: + name: "{{ item.name }}" + password: "{{ item.password | password_hash('sha512') }}" + state: present + loop: "{{ user }}" - name: Add SSH public key authorized_key: - user: '"{{ item.name }}"' - key: '"{{ item.ssh_key }}"' - loop: - - '"{{ user }}"' + user: "{{ item.name }}" + key: "{{ item.ssh_pubkey }}" + loop: "{{ user }}" - name: Ensure a list of packages installed - apt: - name: '"{{ packages }}"' + yum: + name: "{{ packages }}" state: present - name: All done! debug: |