tasdikrahman / ansible-bootstrap-server

ansible-bootstrap-server

Targets Debian and RHEL based systems

• bootstrap-server:

  Currently, it has roles for

  • update : update the apt-cache and upgrades it
  • install-minimal-packages : Installs some bare bones apt-packages
  • create-new-user: Creates a new user called {{ username }} (specified inside the defaults/main.yml) and copies the host's .ssh/id_rsa over to the new user's .ssh dir and adds this user to the sudoers list
    • specify your hashed password inside the file roles/create_new_user/defaults/main.yml
    • generate your hashed password using

   python -c 'import crypt; print crypt.crypt("<your-password>", "<your-key>")'

  • basic-server-hardening:
    • Disallow root SSH access
    • Disallow password authentication
    • Enable a basic firewall (ufw in this case )
  • vimrc-server-flavor: places the .vimrc server taken from my dotfiles and places it into the ~/.vimrc for the user {{ usnername }}
  • pip
    • Installs pip and mkvirtualenv for managing python virtual environments

Running it

NOTE: You need to have sshpass on your machine. Ref

For Mac

• brew install https://raw.githubusercontent.com/kadwanev/bigboybrew/master/Library/Formula/sshpass.rb

For Debian based systems

• apt-get install sshpass

$ cp inventory.example inventory
$ cat inventory.example
[remotenode]
<ip-addr>

[all:vars]
ansible_connection=ssh
ansible_ssh_user=root
ansible_ssh_pass=<your-pass>

If everything is good, check the ssh connection once

$ ansible -m ping -i inventory remotenode
<ip-addr> | SUCCESS => {
    "changed": false,
    "ping": "pong"
}

Change the variable in play.yml named your-username with the new user that you want to create

$ ansible-playbook play.yml -i inventory -vvv

LICENSE

GPLv3

Donation

If you have found my little bits of software being of any use to you, do consider helping me pay my internet bills :)

PayPal
Gratipay
Patreon
£ (GBP)
€ Euros
₹ (INR)