113 lines
3.1 KiB
YAML
113 lines
3.1 KiB
YAML
---
|
|
common_apt: True
|
|
common_apt_keys: []
|
|
common_apt_repositories:
|
|
- "deb http://cdn.debian.net/debian {{ ansible_distribution_release }} main contrib non-free"
|
|
- "deb http://cdn.debian.net/debian {{ ansible_distribution_release }}-backports main contrib non-free"
|
|
- "deb http://security.debian.org/ {{ ansible_distribution_release }}/updates main contrib non-free"
|
|
common_apt_upgrade_policy: ""
|
|
common_xbps: False
|
|
common_xbps_upgrade_policy: True
|
|
|
|
common_hostname: True
|
|
common_hostname_hosts_additional: []
|
|
|
|
common_locales: []
|
|
common_locales_default:
|
|
|
|
common_ntp: True
|
|
|
|
common_resolvconf: True
|
|
common_resolvconf_remove_resolvconf: True
|
|
common_resolvconf_hnfqdn: true
|
|
common_resolvconf_nameservers: []
|
|
common_resolvconf_domain: ""
|
|
common_resolvconf_search: []
|
|
|
|
common_rsyslog: True
|
|
common_rsyslog_forwards: []
|
|
common_basic_packages:
|
|
- apt-transport-https
|
|
- cron-apt
|
|
- curl
|
|
- dstat
|
|
- etckeeper
|
|
- fail2ban
|
|
- git
|
|
- htop
|
|
- iputils-ping
|
|
- mtr-tiny
|
|
- ncdu
|
|
- strace
|
|
- sudo
|
|
- tmux
|
|
- tree
|
|
- vim
|
|
- zsh
|
|
# for ansible/debian
|
|
- lsb-release
|
|
- python-apt
|
|
- python-pycurl
|
|
|
|
common_scripts:
|
|
- { dest: "/usr/local/bin/zombies", src: "scripts/zombies" }
|
|
|
|
common_openssh: True
|
|
common_openssh_ports: []
|
|
common_openssh_host_keys: []
|
|
common_openssh_listen_addresses: []
|
|
common_openssh_permit_root_login: "no"
|
|
common_openssh_password_authentication: "no"
|
|
common_openssh_keys_root: []
|
|
common_openssh_x11_forwarding: "no"
|
|
|
|
common_aliases:
|
|
- "mailer-daemon: postmaster"
|
|
- "postmaster: root"
|
|
- "nobody: root"
|
|
- "hostmaster: root"
|
|
- "usenet: root"
|
|
- "news: root"
|
|
- "webmaster: root"
|
|
- "www: root"
|
|
- "ftp: root"
|
|
- "abuse: root"
|
|
- "noc: root"
|
|
- "security: root"
|
|
|
|
common_mailer: True
|
|
common_mailer_mailer: "postfix"
|
|
common_mailname: "{{ ansible_fqdn }}"
|
|
|
|
common_postfix_debug_peer_list: ""
|
|
common_postfix_delay_warning_time: "0h"
|
|
common_postfix_hostname: "{{ ansible_fqdn }}"
|
|
common_postfix_inet_interfaces: loopback-only
|
|
common_postfix_inet_protocols: all
|
|
common_postfix_masquerade_domains: []
|
|
common_postfix_message_size_limit: 10240000
|
|
common_postfix_mydestination: "{{ common_postfix_hostname }}, {{ ansible_hostname }}, localhost.localdomain, localhost"
|
|
common_postfix_mynetworks: "127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128"
|
|
common_postfix_relay_domains: "{{ common_postfix_mydestination }}"
|
|
common_postfix_relayhost: ""
|
|
common_postfix_smtp_tls_cert_file:
|
|
common_postfix_smtp_tls_key_file:
|
|
common_postfix_smtp_tls_security_level: "may"
|
|
common_postfix_smtp_tls_session_cache_database: "btree:${data_directory}/smtp_scache"
|
|
common_postfix_smtpd_tls_cert_file: "/etc/ssl/certs/ssl-cert-snakeoil.pem"
|
|
common_postfix_smtpd_tls_key_file: "/etc/ssl/private/ssl-cert-snakeoil.key"
|
|
common_postfix_smtpd_tls_security_level: False
|
|
common_postfix_smtpd_tls_session_cache_database: "btree:${data_directory}/smtpd_scache"
|
|
|
|
common_rcfiles: True
|
|
common_tty: True
|
|
common_git: True
|
|
common_sysctl: False
|
|
common_logrotate: True
|
|
common_iptables: True
|
|
common_iptables_v4: "iptables_default_v4.j2"
|
|
common_iptables_v6: "iptables_default_v6.j2"
|
|
common_snapper: False
|
|
common_smartd: False
|
|
common_zfs: False
|