ansible-alpine-host/tasks/post_install.yml

---
- name: "Set a password for the root user."
  shell: "PATH=/usr/bin:/usr/sbin:/bin:/sbin chroot /mnt /bin/sh -c 'echo root:{{ root }} | chpasswd -'"
- name: "Enable default services."
  shell: "PATH=/usr/bin:/usr/sbin:/bin:/sbin chroot /mnt rc-update add {{ item.service }} {{ item.runlevel }}"
  args:
    creates: "/mnt/etc/runlevels/{{ item.runlevel }}/{{ item.service }}"
  loop:
  - runlevel: "sysinit"
    service: "devfs"
  - runlevel: "sysinit"
    service: "dmesg"
  - runlevel: "sysinit"
    service: "mdev"
  - runlevel: "sysinit"
    service: "hwdrivers"
  - runlevel: "sysinit"
    service: "modloop"
  - runlevel: "boot"
    service: "modules"
  - runlevel: "boot"
    service: "sysctl"
  - runlevel: "boot"
    service: "hostname"
  - runlevel: "boot"
    service: "bootmisc"
  - runlevel: "boot"
    service: "syslog"
  - runlevel: "shutdown"
    service: "mount-ro"
  - runlevel: "shutdown"
    service: "killprocs"
  - runlevel: "shutdown"
    service: "savecache"
  - runlevel: "default"
    service: "networking"
  - runlevel: "default"
    service: "ipset"
  - runlevel: "default"
    service: "iptables"
  - runlevel: "default"
    service: "ip6tables"
  - runlevel: "default"
    service: "node-exporter"
  - runlevel: "default"
    service: "sshd"
  - runlevel: "boot"
    service: "hwclock"
  - runlevel: "boot"
    service: "swclock"
  - runlevel: "default"
    service: "ntpd"
- name: "Install firewall rules."
  template:
    src: "templates/etc/iptables/{{ item }}.j2"
    dest: "/mnt/etc/iptables/{{ item }}"
  loop:
  - rules-save
  - rules6-save
- name: "And blocklists."
  template:
    src: "templates/etc/ipset.d/{{ item }}.j2"
    dest: "/mnt/etc/ipset.d/{{ item }}"
  loop:
  - blocklist4
  - blocklist6
- name: "Create NTP directories."
  file:
    state: "directory"
    path: "{{ item }}"
  loop:
  - "/var/NTP"
  - "/var/lib/ntp"
- name: "And services."
  template:
    src: "templates/{{ item }}.j2"
    dest: "{{ item }}"
    mode: "750"
  loop:
  - /etc/init.d/ntpd
- name: "Reboot!"
  reboot:
Initial 2022-04-10 00:29:22 +00:00			`---`
			`- name: "Set a password for the root user."`
			`shell: "PATH=/usr/bin:/usr/sbin:/bin:/sbin chroot /mnt /bin/sh -c 'echo root:{{ root }} \| chpasswd -'"`
			`- name: "Enable default services."`
			`shell: "PATH=/usr/bin:/usr/sbin:/bin:/sbin chroot /mnt rc-update add {{ item.service }} {{ item.runlevel }}"`
			`args:`
			`creates: "/mnt/etc/runlevels/{{ item.runlevel }}/{{ item.service }}"`
			`loop:`
			`- runlevel: "sysinit"`
			`service: "devfs"`
			`- runlevel: "sysinit"`
			`service: "dmesg"`
			`- runlevel: "sysinit"`
			`service: "mdev"`
			`- runlevel: "sysinit"`
			`service: "hwdrivers"`
			`- runlevel: "sysinit"`
			`service: "modloop"`
			`- runlevel: "boot"`
			`service: "modules"`
			`- runlevel: "boot"`
			`service: "sysctl"`
			`- runlevel: "boot"`
			`service: "hostname"`
			`- runlevel: "boot"`
			`service: "bootmisc"`
			`- runlevel: "boot"`
			`service: "syslog"`
			`- runlevel: "shutdown"`
			`service: "mount-ro"`
			`- runlevel: "shutdown"`
			`service: "killprocs"`
			`- runlevel: "shutdown"`
			`service: "savecache"`
			`- runlevel: "default"`
			`service: "networking"`
enable ipset 2022-06-19 01:43:03 +00:00			`- runlevel: "default"`
			`service: "ipset"`
Initial 2022-04-10 00:29:22 +00:00			`- runlevel: "default"`
			`service: "iptables"`
			`- runlevel: "default"`
			`service: "ip6tables"`
			`- runlevel: "default"`
			`service: "node-exporter"`
			`- runlevel: "default"`
			`service: "sshd"`
			`- runlevel: "boot"`
			`service: "hwclock"`
			`- runlevel: "boot"`
			`service: "swclock"`
keep clock updated 2022-06-19 05:48:44 +00:00			`- runlevel: "default"`
			`service: "ntpd"`
Initial 2022-04-10 00:29:22 +00:00			`- name: "Install firewall rules."`
			`template:`
templates follow dir tree 2022-06-19 02:48:22 +00:00			`src: "templates/etc/iptables/{{ item }}.j2"`
Initial 2022-04-10 00:29:22 +00:00			`dest: "/mnt/etc/iptables/{{ item }}"`
			`loop:`
			`- rules-save`
			`- rules6-save`
			`- name: "And blocklists."`
			`template:`
templates follow dir tree 2022-06-19 02:48:22 +00:00			`src: "templates/etc/ipset.d/{{ item }}.j2"`
Initial 2022-04-10 00:29:22 +00:00			`dest: "/mnt/etc/ipset.d/{{ item }}"`
			`loop:`
			`- blocklist4`
			`- blocklist6`
keep clock updated 2022-06-19 05:48:44 +00:00			`- name: "Create NTP directories."`
			`file:`
			`state: "directory"`
			`path: "{{ item }}"`
			`loop:`
			`- "/var/NTP"`
			`- "/var/lib/ntp"`
			`- name: "And services."`
			`template:`
			`src: "templates/{{ item }}.j2"`
			`dest: "{{ item }}"`
			`mode: "750"`
			`loop:`
			`- /etc/init.d/ntpd`
Initial 2022-04-10 00:29:22 +00:00			`- name: "Reboot!"`
			`reboot:`