2016-11-07 14:00:57 +01:00
|
|
|
---
|
2017-01-03 12:11:01 +01:00
|
|
|
|
|
|
|
# email variables
|
|
|
|
|
2016-11-07 14:00:57 +01:00
|
|
|
general_alert_email: "root@localhost"
|
|
|
|
reboot_alert_email: Null
|
|
|
|
apt_alert_email: Null
|
|
|
|
log2mail_alert_email: Null
|
2017-03-30 15:32:59 +02:00
|
|
|
logcheck_alert_email: Null
|
2016-11-07 14:00:57 +01:00
|
|
|
raid_alert_email: Null
|
2016-12-21 14:53:25 +01:00
|
|
|
postfix_alias_email: Null
|
2016-11-07 14:00:57 +01:00
|
|
|
|
|
|
|
# hostname
|
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_hostname_include: True
|
|
|
|
|
|
|
|
evolinux_hostname_hosts: True
|
|
|
|
evolinux_hostname_mailname: True
|
2017-01-03 12:11:01 +01:00
|
|
|
|
2016-11-07 14:00:57 +01:00
|
|
|
evolinux_hostname: "{{ ansible_hostname }}"
|
|
|
|
evolinux_domain: "{{ ansible_domain }}"
|
|
|
|
evolinux_fqdn: "{{ ansible_fqdn }}"
|
|
|
|
evolinux_internal_hostname: "{{ evolinux_hostname }}"
|
|
|
|
|
2017-01-03 12:11:01 +01:00
|
|
|
# kernel
|
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_kernel_include: True
|
2017-01-03 12:11:01 +01:00
|
|
|
|
|
|
|
evolinux_kernel_reboot_after_panic: True
|
|
|
|
evolinux_kernel_disable_tcp_timestamps: True
|
|
|
|
evolinux_kernel_reduce_swapiness: True
|
|
|
|
evolinux_kernel_cve20165696: True
|
|
|
|
|
2016-11-07 14:00:57 +01:00
|
|
|
# apt
|
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_apt_include: True
|
2017-01-03 12:11:01 +01:00
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_apt_conf: True
|
2016-12-23 16:20:51 +01:00
|
|
|
evolinux_apt_hooks: True
|
2017-06-07 09:59:55 +02:00
|
|
|
evolinux_apt_replace_default_sources: True
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_apt_public_sources: True
|
|
|
|
evolinux_apt_upgrade: True
|
2016-12-27 14:02:13 +01:00
|
|
|
evolinux_apt_remove_aptitude: True
|
|
|
|
|
2017-01-03 12:11:01 +01:00
|
|
|
# fstab
|
2016-12-21 14:53:25 +01:00
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_fstab_include: True
|
|
|
|
|
2017-04-05 17:50:50 +02:00
|
|
|
evolinux_fstab_tmp: True
|
|
|
|
evolinux_fstab_tmp_options: defaults,noexec,nosuid,nodev
|
|
|
|
evolinux_fstab_usr: True
|
|
|
|
evolinux_fstab_usr_options: defaults,ro
|
|
|
|
evolinux_fstab_var: True
|
|
|
|
evolinux_fstab_var_options: defaults,nosuid
|
|
|
|
evolinux_fstab_home: True
|
|
|
|
evolinux_fstab_home_options: defaults,noexec,nosuid,nodev
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_fstab_var_tmp: True
|
2017-04-05 17:50:50 +02:00
|
|
|
evolinux_fstab_var_tmp_options: defaults,noexec,nosuid,nodev,size=1024m
|
2016-12-21 14:53:25 +01:00
|
|
|
|
2017-01-03 12:11:01 +01:00
|
|
|
# packages
|
2016-11-07 14:00:57 +01:00
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_packages_include: True
|
2016-11-07 14:00:57 +01:00
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_packages_system: True
|
|
|
|
evolinux_packages_diagnostic: True
|
|
|
|
evolinux_packages_hardware: True
|
|
|
|
evolinux_packages_common: True
|
2017-07-11 18:40:05 +02:00
|
|
|
evolinux_packages_stretch: True
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_packages_serveur_base: True
|
|
|
|
evolinux_packages_invalid_mta: True
|
|
|
|
evolinux_packages_delete_nfs: True
|
|
|
|
evolinux_packages_listchanges: True
|
2017-03-30 15:32:59 +02:00
|
|
|
evolinux_packages_logcheck_recipient: True
|
2017-01-03 12:11:01 +01:00
|
|
|
|
|
|
|
# system
|
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_system_include: True
|
2017-01-03 12:11:01 +01:00
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_system_chmod_tmp: True
|
|
|
|
evolinux_system_locales: True
|
|
|
|
evolinux_system_timezone: "Europe/Paris"
|
2017-07-12 10:15:47 +02:00
|
|
|
evolinux_system_vim_skip_defaults: true
|
|
|
|
evolinux_system_vim_default_editor: True
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_system_profile: True
|
|
|
|
evolinux_system_dirmode_adduser: True
|
2017-07-11 00:42:38 +02:00
|
|
|
evolinux_system_restrict_securetty: False
|
|
|
|
evolinux_system_set_timeout: True
|
|
|
|
evolinux_system_cron_verboselog: True
|
|
|
|
evolinux_system_cron_umask: True
|
|
|
|
evolinux_system_cron_random: True
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_system_alert5_init: True
|
|
|
|
evolinux_system_alert5_enable: True
|
|
|
|
evolinux_system_eni_auto: True
|
|
|
|
evolinux_system_ntp_server: False
|
2017-01-03 12:11:01 +01:00
|
|
|
|
|
|
|
# root
|
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_root_include: True
|
|
|
|
|
|
|
|
evolinux_root_chmod: True
|
|
|
|
evolinux_root_bashrc: True
|
|
|
|
evolinux_root_bash_history: True
|
|
|
|
evolinux_root_umask: True
|
|
|
|
evolinux_root_gitconfig: True
|
|
|
|
evolinux_root_bash_history_appendonly: True
|
|
|
|
evolinux_root_vim_default: True
|
|
|
|
evolinux_root_vim_conf: True
|
2017-01-03 12:11:01 +01:00
|
|
|
|
|
|
|
# ssh
|
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_ssh_include: True
|
2017-01-03 12:11:01 +01:00
|
|
|
|
|
|
|
evolinux_ssh_password_auth_addresses: []
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_ssh_match_address: True
|
2017-01-03 12:11:01 +01:00
|
|
|
evolinux_ssh_disable_root: True
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_ssh_disable_acceptenv: True
|
2017-01-03 12:11:01 +01:00
|
|
|
|
|
|
|
# postfix
|
2016-11-07 14:00:57 +01:00
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_postfix_include: True
|
2017-01-03 12:11:01 +01:00
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_postfix_packages: True
|
|
|
|
evolinux_postfix_users_alias_root: True
|
|
|
|
evolinux_postfix_mailer_alias_root: True
|
|
|
|
evolinux_postfix_root_alias: True
|
2017-01-03 12:11:01 +01:00
|
|
|
evolinux_postfix_purge_exim: True
|
|
|
|
|
|
|
|
# logs
|
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_logs_include: True
|
|
|
|
|
|
|
|
evolinux_logs_logrotate_confs: True
|
|
|
|
evolinux_logs_default_rotate: True
|
|
|
|
evolinux_logs_disable_logrotate_rsyslog: True
|
|
|
|
evolinux_logs_rsyslog_conf: True
|
2016-11-07 14:00:57 +01:00
|
|
|
|
|
|
|
# default www
|
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_default_www_include: True
|
2017-01-03 12:11:01 +01:00
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_default_www_files: True
|
|
|
|
evolinux_default_www_ssl_cert: True
|
2016-11-07 14:00:57 +01:00
|
|
|
evolinux_default_www_ssl_subject: "/CN={{ ansible_fqdn }}"
|
2017-01-03 16:37:23 +01:00
|
|
|
|
2017-01-03 12:11:01 +01:00
|
|
|
# hardware
|
2016-12-27 14:03:35 +01:00
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_hardware_include: True
|
2016-12-27 14:03:35 +01:00
|
|
|
|
2017-01-03 12:11:01 +01:00
|
|
|
# providers
|
2016-11-07 14:00:57 +01:00
|
|
|
|
2017-01-03 16:37:23 +01:00
|
|
|
evolinux_provider_online_include: False
|
|
|
|
evolinux_provider_orange_fce_include: False
|