Ansible roles for nth.io infrastructure https://src.nth.io/luke/ansible-roles/atom?h=main 2026-04-06T02:19:55+00:00 2026-04-06T02:19:55+00:00 Luke Hoersten luke@hoersten.org 2026-04-06T02:19:55+00:00 urn:sha1:06b69bd8def0aae07d3fb565d19193be1a8dfe20 - Add no_log: true to tasks that handle passwords/secrets - Tighten config file permissions (0644 -> 0600/0640 where appropriate) - Bind pleroma to 127.0.0.1 instead of 0.0.0.0 - Tighten ergo unix socket mode 0777 -> 0770 - Remove weak defaults; roles now fail explicitly if required vars not set 2026-03-28T18:42:08+00:00 Luke Hoersten luke@hoersten.org 2026-03-28T18:42:08+00:00 urn:sha1:45da5bca82200af63b0ee16479b267eb209386f3 2024-07-29T17:41:57+00:00 Luke Hoersten luke@hoersten.org 2024-07-29T17:41:57+00:00 urn:sha1:874be10f6646a66cd0e994963b2746ad48f5b73e 2024-02-10T21:40:36+00:00 Luke Hoersten luke@hoersten.org 2024-02-10T21:40:36+00:00 urn:sha1:de23e66fdded8d2884de32267e09b128d2680bfa 2024-02-05T02:27:19+00:00 Luke Hoersten luke@hoersten.org 2024-02-05T02:27:19+00:00 urn:sha1:04edbf561c44e28753cbbaa3870b23b220cc644c 2023-07-22T20:50:07+00:00 Luke Hoersten luke@hoersten.org 2023-07-22T20:50:07+00:00 urn:sha1:d6454704216bfa4b4f6e8a250f057f2b0d543fa1 2023-07-21T20:14:24+00:00 Luke Hoersten luke@hoersten.org 2023-07-21T20:14:24+00:00 urn:sha1:8b9372c76e66c892741335566d1a63c29cc18ba3 2023-07-19T18:54:22+00:00 Luke Hoersten luke@hoersten.org 2023-07-19T18:54:22+00:00 urn:sha1:d5c5467d4d2a6090d75436f07ef2eac6945dfa1b 2023-04-03T18:20:18+00:00 Luke Hoersten luke@hoersten.org 2023-04-03T18:20:18+00:00 urn:sha1:fecba00f69bf8577d7abe67dcb81a612b3c547e5 2022-09-05T16:14:48+00:00 Luke Hoersten luke@hoersten.org 2022-09-05T16:14:48+00:00 urn:sha1:7d2ffb19545a7888c23851b73dbd577cd98ef655