mirror of
https://gitlab.archlinux.org/archlinux/infrastructure.git
synced 2024-09-28 18:31:59 +02:00
playbooks/security.archlinux.org: Add a playbook for security.archlinux.org
Based on the apollo playbook, add the roles needed for the security tracker to run.
This commit is contained in:
parent
425052c00f
commit
1ae188aec1
22
playbooks/security.archlinux.org.yml
Normal file
22
playbooks/security.archlinux.org.yml
Normal file
@ -0,0 +1,22 @@
|
||||
---
|
||||
|
||||
- name: setup security.archlinux.org
|
||||
hosts: security.archlinux.org
|
||||
remote_user: root
|
||||
roles:
|
||||
- { role: common }
|
||||
- { role: tools }
|
||||
- { role: sshd }
|
||||
- { role: root_ssh }
|
||||
- { role: borg_client, tags: ["borg"] }
|
||||
- { role: certbot }
|
||||
- { role: nginx }
|
||||
- { role: postfix, postfix_relayhost: "mail.archlinux.org" }
|
||||
- { role: sudo }
|
||||
- { role: uwsgi }
|
||||
- role: security_tracker
|
||||
security_tracker_domain: "security.archlinux.org"
|
||||
security_tracker_nginx_conf: '/etc/nginx/nginx.d/security-tracker.conf'
|
||||
security_tracker_dir: "/srv/http/security-tracker"
|
||||
- { role: fail2ban }
|
||||
- { role: prometheus_exporters }
|
Loading…
Reference in New Issue
Block a user