66 lines
1.4 KiB
YAML
66 lines
1.4 KiB
YAML
---
|
|
# openbsd_pkg is broken since OpenBSD 7.4 with the version of Ansible we currently use
|
|
#- name: "Install logsentry"
|
|
# community.general.openbsd_pkg:
|
|
# name:
|
|
# - logsentry--
|
|
# state: present
|
|
# tags:
|
|
# - logsentry
|
|
|
|
- name: "Check if logsentry-- is already installed"
|
|
ansible.builtin.command:
|
|
cmd: pkg_info -Iq inst:logsentry--
|
|
register: is_installed
|
|
ignore_errors: true
|
|
changed_when: false
|
|
tags:
|
|
- logsentry
|
|
|
|
- name: "Install logsentry--"
|
|
ansible.builtin.command:
|
|
cmd: pkg_add logsentry--
|
|
when: "'Can\\'t find inst:' in is_installed.stderr"
|
|
tags:
|
|
- logsentry
|
|
|
|
- name: "Copy logsentry script to /usr/share/scripts"
|
|
ansible.builtin.copy:
|
|
src: logsentry.sh
|
|
dest: /usr/share/scripts/logsentry.sh
|
|
owner: root
|
|
group: wheel
|
|
mode: "0644"
|
|
tags:
|
|
- logsentry
|
|
|
|
- name: "Copy custom logsentry configuration files"
|
|
ansible.builtin.copy:
|
|
src: "{{ item }}"
|
|
dest: "/etc/logsentry/{{ item }}"
|
|
owner: root
|
|
group: wheel
|
|
mode: "0600"
|
|
with_items:
|
|
- logsentry.ignore
|
|
- logsentry.violations.ignore
|
|
tags:
|
|
- logsentry
|
|
- logsentry-config
|
|
|
|
- name: "Delete unused default script"
|
|
ansible.builtin.file:
|
|
state: absent
|
|
path: /etc/logsentry/logsentry.sh
|
|
tags:
|
|
- logsentry
|
|
|
|
- name: "Hourly cron job for logsentry.sh is installed"
|
|
ansible.builtin.cron:
|
|
name: logsentry
|
|
minute: "11"
|
|
job: >
|
|
/bin/sh /usr/share/scripts/logsentry.sh
|
|
tags:
|
|
- logsentry
|