Add host vars for devuan9

Day-01/playbook.yml

@@ -1,12 +0,0 @@
----
-- hosts: localhost
-  tasks:
-
-  - name: 'Call "id"'
-    command: id
-
-  - name: Copy a file
-    copy: src=test.txt dest=/tmp/test.txt backup=yes
-
-  - name: 'Call "cat /tmp/test.txt"'
-    command: cat /tmp/test.txt

group_vars/apt.yml

@@ -1,7 +1,2 @@
-ntp_servers:
-  - 0.debian.pool.ntp.org
-  - 1.debian.pool.ntp.org
-  - 2.debian.pool.ntp.org
-
 ntp_package_name : ntp
 ntp_service_name : ntp

host_vars/tn8-devuan9.yml

@@ -0,0 +1,2 @@
+---
+ssh_service_name: ssh

inventory/hosts

@@ -14,8 +14,8 @@ tn8-suse151 ansible_host=192.168.1.178
 tn8-ubu1604 ansible_host=192.168.1.170
 tn8-ubu1804 ansible_host=192.168.1.135
 tn8-ubu2004 ansible_host=192.168.1.185
-[void]
+#[void]
-tn8-void ansible_host=192.168.1.149
+#tn8-void ansible_host=192.168.1.149
 [apt:children]
 debian
 devuan
@@ -23,7 +23,7 @@ ubuntu
 [nosysd:children]
 alpine
 devuan
-void
+#void
 [sysd:children]
 centos
 debian

ntp.yml

@@ -1,29 +0,0 @@
----
-- hosts: sysd
-
-  tasks:
-
-    - name: Install NTP
-      package:
-        name: "{{ ntp_package_name }}"
-        state: latest
-
-    - name: Template Config
-      template:
-        src: "{{ ntp_package_name }}.conf.j2"
-        dest: "/etc/{{ ntp_package_name  }}.conf"
-        mode: 0644
-        owner: root
-        group: root
-        backup: yes
-
-    - name: Restart Service
-      service:
-        name: "{{ ntp_service_name }}"
-        state: restarted
-
-    - name: Ensure Running
-      service:
-        name: "{{ ntp_service_name }}"
-        state: started
-        enabled: yes

playbook.yml

@@ -0,0 +1,9 @@
+---
+- hosts: all
+  roles:
+    - hosts
+    - ssh-keyonly
+
+- hosts: sysd
+  roles:
+    - ntp

roles/hosts/tasks/main.yml

@@ -0,0 +1,27 @@
+---
+- name: Detect domain name
+  set_fact:
+    domainname: "{{ ansible_dns.domain|default(False) or ansible_dns.search.0|default(False) or ansible_domain|default(False) or 'invalid'}}"
+
+- name: Add name/IP to hosts file
+  lineinfile:
+    dest: /etc/hosts
+    regexp: '^{{ ansible_default_ipv4.address }}'
+    line: '{{ ansible_default_ipv4.address }} {{ ansible_hostname }}.{{ domainname }} {{ ansible_hostname }}'
+    backup: yes
+
+- name: Clean/remove 127.0.1.1
+  lineinfile:
+    dest: /etc/hosts
+    regexp: '^127.0.1.1'
+    state: absent
+    backup: yes
+
+- name: Ensure 127.0.0.1 localhost
+  lineinfile:
+    dest: /etc/hosts
+    regexp: '127.0.0.1'
+    line: '127.0.0.1 localhost localhost.localdomain'
+    insertbefore: BOF
+    backup: yes
+

roles/ntp/defaults/main.yml

@@ -0,0 +1,4 @@
+ntp_servers:
+  - 0.debian.pool.ntp.org
+  - 1.debian.pool.ntp.org
+  - 2.debian.pool.ntp.org

roles/ntp/tasks/main.yml

@@ -0,0 +1,25 @@
+---
+- name: Install NTP
+  package:
+    name: "{{ ntp_package_name }}"
+    state: latest
+
+- name: Template Config
+  template:
+    src: "etc/{{ ntp_package_name }}.conf.j2"
+    dest: "/etc/{{ ntp_package_name  }}.conf"
+    mode: 0644
+    owner: root
+    group: root
+    backup: yes
+
+- name: Restart Service
+  service:
+    name: "{{ ntp_service_name }}"
+    state: restarted
+
+- name: Ensure Running
+  service:
+    name: "{{ ntp_service_name }}"
+    state: started
+    enabled: yes

roles/ssh-keyonly/defaults/main.yml

@@ -0,0 +1,2 @@
+---
+ssh_service_name: sshd

roles/ssh-keyonly/tasks/main.yml

@@ -0,0 +1,18 @@
+---
+- name: "Set «PermitRootLogin» to «without-password»"
+  lineinfile:
+    dest: /etc/ssh/sshd_config
+    regexp: '^#? *PermitRootLogin'
+    line: "PermitRootLogin without-password"
+    backup: yes
+  register: sshconfigchanged
+
+
+- name: Restart sshd
+  service:
+    name: "{{ ssh_service_name }}"
+    state: restarted
+    sleep: 5
+  when: sshconfigchanged is changed
+
+