dotfiles/tasks/security.yml

41 lines
821 B
YAML

- name: Install security-related packages
kewlfft.aur.aur:
name: "{{ item }}"
become: true
become_user: aur_builder
loop:
- bitwarden
- bitwarden-cli
- firejail
- mullvad-vpn-bin
- veracrypt
- wireguard-tools
- yubikey-personalization-gui
- name: Create .ssh directory
file:
state: directory
path: "{{ home }}/.ssh"
owner: "{{ user }}"
mode: 0700
- name: Install assh config
copy:
src: ./files/assh.yml
dest: "{{ home }}/.ssh/assh.yml"
mode: 0644
owner: "{{ user }}"
- name: Create private directory
file:
state: directory
recurse: true
path: "{{ home }}/Private"
owner: "{{ user }}"
mode: 0700
- name: Install faillock config
copy:
src: ./files/faillock.conf
dest: /etc/security/faillock.conf
mode: 0644