check new version

2025-08-27 07:59:19 +02:00
parent 7a2ccb537b
commit 9ea9ac7254
125 changed files with 2696 additions and 1511 deletions
--- a/roles/01-server_hardening/tasks/main.yml
+++ b/roles/01-server_hardening/tasks/main.yml
@@ -1,18 +1,23 @@
 ---
- name: Include system update tasks
-  ansible.builtin.include_tasks: 01-system-update.yml
+- name: restart ssh
+  ansible.builtin.systemd:
+    name: sshd
+    state: restarted
+    daemon_reload: true
+  listen: restart ssh service

- name: Include SSH hardening tasks
-  ansible.builtin.include_tasks: 02-ssh-hardening.yml
+- name: restart fail2ban
+  ansible.builtin.systemd:
+    name: fail2ban
+    state: restarted
+    daemon_reload: true
+  listen: restart fail2ban service

- name: Include firewall setup tasks
-  ansible.builtin.include_tasks: 03-firewall-setup.yml
+- name: reload ufw
+  community.general.ufw:
+    state: reloaded
+  listen: reload firewall

- name: Include fail2ban setup tasks
-  ansible.builtin.include_tasks: 04-fail2ban-setup.yml
-
- name: Include additional security tasks
-  ansible.builtin.include_tasks: 05-additional-security.yml
-
- name: Include SSH keys management tasks
-  ansible.builtin.include_tasks: 06-ssh-keys-management.yml
+- name: reload sysctl
+  ansible.builtin.command: sysctl -p
+  listen: reload sysctl settings