blob: ec65caa1c17e117d24a1a8fdb824645b4bae3b44 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
|
- name: Installation du HIDS rkhunter
dnf: name=rkhunter state=present
notify: initialize rkhunter
- name: Activation de tests rkhunter
lineinfile: dest=/etc/rkhunter.conf state=present backrefs=yes
regexp="^DISABLE_TESTS=suspscan hidden_ports deleted_files packet_cap_apps apps"
line="DISABLE_TESTS=suspscan deleted_files"
- name: Autorise login root par SSH
lineinfile: dest=/etc/rkhunter.conf state=present backrefs=yes
regexp="^ALLOW_SSH_ROOT_USER=yes"
line="ALLOW_SSH_ROOT_USER=unset"
|