From 2ee354cea3c2117cd16a6c2465b4e4c15983717e Mon Sep 17 00:00:00 2001
From: Jeremy Lecour <jlecour@evolix.fr>
Date: Mon, 26 Dec 2016 12:10:13 +0100
Subject: [PATCH] etc-git: secure /etc/.git

---
 etc-git/tasks/main.yml | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/etc-git/tasks/main.yml b/etc-git/tasks/main.yml
index ffe21075..db12832b 100644
--- a/etc-git/tasks/main.yml
+++ b/etc-git/tasks/main.yml
@@ -12,6 +12,14 @@
     creates: /etc/.git/
   register: git_init
 
+- name: /etc/.git is secure
+  file:
+    path: /etc/.git
+    owner: root
+    group: root
+    mode: 0700
+    state: directory
+
 - name: /etc/.gitignore is present
   copy:
     src: gitignore