2020-11-24 18:31:09 +01:00
|
|
|
---
|
|
|
|
|
- hosts: tau
|
|
|
|
|
become: true
|
|
|
|
|
|
|
|
|
|
vars:
|
|
|
|
|
- server_admin: "admin@netz39.de"
|
2020-11-24 19:21:52 +01:00
|
|
|
- admin_users: [tux, alex]
|
2020-11-24 18:47:03 +01:00
|
|
|
- ag_timezone: Europe/Berlin
|
2020-11-24 18:31:09 +01:00
|
|
|
|
2020-11-24 18:47:03 +01:00
|
|
|
roles:
|
|
|
|
|
- role: ansible.timezone
|
2020-11-24 18:31:09 +01:00
|
|
|
|
|
|
|
|
tasks:
|
|
|
|
|
- name: Update and clean package cache
|
|
|
|
|
apt:
|
|
|
|
|
update_cache: true
|
|
|
|
|
cache_valid_time: 3600
|
|
|
|
|
autoclean: true
|
|
|
|
|
|
2020-11-24 18:47:16 +01:00
|
|
|
- name: Ensure unattended-upgrades is installed and up to date
|
|
|
|
|
apt:
|
|
|
|
|
name: unattended-upgrades
|
|
|
|
|
state: latest
|
|
|
|
|
|
|
|
|
|
- name: Setup unattended-upgrades
|
|
|
|
|
include_role:
|
|
|
|
|
name: ansible-role-unattended-upgrades
|
|
|
|
|
vars:
|
|
|
|
|
unattended_origins_patterns:
|
|
|
|
|
- 'origin=Debian,archive=buster-security'
|
|
|
|
|
- 'o=Debian,a=buster-updates'
|
|
|
|
|
unattended_package_blacklist: [cowsay]
|
|
|
|
|
unattended_mail: 'root'
|
|
|
|
|
|
2020-11-24 19:21:52 +01:00
|
|
|
- name: Setup users
|
|
|
|
|
include_tasks: tasks/users.yml
|
|
|
|
|
|
2020-11-24 18:31:09 +01:00
|
|
|
- name: Setup httpd
|
|
|
|
|
include_tasks: tasks/httpd.yml
|
