2022-12-27 14:47:55 +01:00
|
|
|
---
|
2022-07-08 11:26:00 +02:00
|
|
|
- name: Sqlite needed
|
|
|
|
ansible.builtin.apt:
|
|
|
|
name:
|
|
|
|
- sqlite3
|
|
|
|
state: present
|
|
|
|
|
|
|
|
- name: Register bantime from default config from package
|
2023-03-20 23:33:19 +01:00
|
|
|
ansible.builtin.shell:
|
|
|
|
cmd: "grep -R -E 'dbpurgeage[[:blank:]]*=[[:blank:]]*[0-9]+' /etc/fail2ban/fail2ban.conf |awk '{print $3}'|head -n1"
|
2022-12-14 17:53:10 +01:00
|
|
|
register: dbpurgeage
|
2023-03-16 14:35:12 +01:00
|
|
|
changed_when: False
|
2022-07-08 11:26:00 +02:00
|
|
|
check_mode: false
|
|
|
|
|
2022-12-27 14:47:55 +01:00
|
|
|
- name:
|
2023-03-20 23:33:19 +01:00
|
|
|
ansible.builtin.set_fact:
|
2023-07-04 15:36:02 +02:00
|
|
|
fail2ban_dbpurgeage_default : "{{ dbpurgeage.stdout }}"
|
2022-12-27 14:47:55 +01:00
|
|
|
when: dbpurgeage.stdout | regex_search("^\\d+\w+$")
|
2022-12-14 17:53:10 +01:00
|
|
|
|
2022-12-27 14:47:55 +01:00
|
|
|
- name:
|
2023-03-20 23:33:19 +01:00
|
|
|
ansible.builtin.set_fact:
|
2023-07-04 15:36:02 +02:00
|
|
|
fail2ban_dbpurgeage_default : "{{ dbpurgeage.stdout }} second"
|
2022-12-27 14:47:55 +01:00
|
|
|
when: dbpurgeage.stdout | regex_search("^\\d+$")
|
2022-12-14 17:53:10 +01:00
|
|
|
|
2022-07-08 11:26:00 +02:00
|
|
|
- name: Add crontab
|
2023-03-20 23:33:19 +01:00
|
|
|
ansible.builtin.template:
|
2022-07-08 11:26:00 +02:00
|
|
|
src: fail2ban_dbpurge.j2
|
|
|
|
dest: /etc/cron.daily/fail2ban_dbpurge
|
|
|
|
mode: 0700
|
|
|
|
owner: root
|
|
|
|
group: root
|