--- - name: "Set a password for the root user." shell: "PATH=/usr/bin:/usr/sbin:/bin:/sbin chroot /mnt /bin/sh -c 'echo root:{{ root }} | chpasswd -'" - name: "Enable default services." shell: "PATH=/usr/bin:/usr/sbin:/bin:/sbin chroot /mnt rc-update add {{ item.service }} {{ item.runlevel }}" args: creates: "/mnt/etc/runlevels/{{ item.runlevel }}/{{ item.service }}" loop: - runlevel: "sysinit" service: "devfs" - runlevel: "sysinit" service: "dmesg" - runlevel: "sysinit" service: "mdev" - runlevel: "sysinit" service: "hwdrivers" - runlevel: "sysinit" service: "modloop" - runlevel: "boot" service: "modules" - runlevel: "boot" service: "sysctl" - runlevel: "boot" service: "hostname" - runlevel: "boot" service: "bootmisc" - runlevel: "boot" service: "syslog-ng" - runlevel: "shutdown" service: "mount-ro" - runlevel: "shutdown" service: "killprocs" - runlevel: "shutdown" service: "savecache" - runlevel: "default" service: "networking" - runlevel: "default" service: "ipset" - runlevel: "default" service: "iptables" - runlevel: "default" service: "ip6tables" - runlevel: "default" service: "node-exporter" - runlevel: "default" service: "sshd" - runlevel: "boot" service: "hwclock" - runlevel: "boot" service: "swclock" - runlevel: "default" service: "ntpd" - name: "Install configuration files." template: src: "templates/{{ item }}" dest: "{{ item }}" mode: "640" loop: - /etc/conf.d/iptables - /etc/conf.d/ip6tables - /etc/conf.d/tinc.networks - /etc/conf.d/node-exporter - /etc/iptables/rules6-save - /etc/iptables/rules-save - /etc/ipset.d/blocklist4 - /etc/ipset.d/blocklist6 - /etc/syslog-ng/syslog-ng.conf - name: "Create NTP directories." file: state: "directory" path: "{{ item }}" loop: - "/var/NTP" - "/var/lib/ntp" - name: "And services." template: src: "templates/{{ item }}.j2" dest: "{{ item }}" mode: "750" loop: - /etc/init.d/ntpd - name: "Reboot!" reboot: