From 4406b15c36e3ea5f09380fd1de24090a7611d692 Mon Sep 17 00:00:00 2001
From: Matthieu Saulnier <fantom@fedoraproject.org>
Date: Sat, 1 Sep 2018 11:43:49 +0200
Subject: Remove automatic reboot cron task and add rkhunter propupd after
 system update

---
 roles/dnsserver/files/reboot-auto.crontab | 2 --
 roles/dnsserver/tasks/common.yml          | 8 ++++++--
 update.yml                                | 8 ++++++++
 3 files changed, 14 insertions(+), 4 deletions(-)
 delete mode 100644 roles/dnsserver/files/reboot-auto.crontab

diff --git a/roles/dnsserver/files/reboot-auto.crontab b/roles/dnsserver/files/reboot-auto.crontab
deleted file mode 100644
index c7b6983..0000000
--- a/roles/dnsserver/files/reboot-auto.crontab
+++ /dev/null
@@ -1,2 +0,0 @@
-# Reboot du Dimanche
-40 4 * * 7 root systemctl reboot
diff --git a/roles/dnsserver/tasks/common.yml b/roles/dnsserver/tasks/common.yml
index e39db6b..667eea4 100644
--- a/roles/dnsserver/tasks/common.yml
+++ b/roles/dnsserver/tasks/common.yml
@@ -1,5 +1,9 @@
-- name: Reboot automatique
-  copy: src=reboot-auto.crontab dest=/etc/cron.d/reboot-auto mode=644
+- name: Reboot automatique désactivé
+  file:
+    path: /etc/cron.d/reboot-auto
+    state: absent
+
+
 
 - name: Configuration de sudo
   copy: src=sudo
diff --git a/update.yml b/update.yml
index 742b882..31510d2 100644
--- a/update.yml
+++ b/update.yml
@@ -26,3 +26,11 @@
         units: hours
         unique: yes
       tags: reboot
+
+    - name: rkhunter internal database update
+      at:
+        command: /usr/bin/rkhunter --propupd
+        count: 50
+        units: minutes
+        unique: yes
+      when: ansible_virtualization_role == "NA" or ansible_virtualization_role == "host"
-- 
cgit