Ansible roles for nth.io infrastructure https://src.nth.io/luke/ansible-roles/atom?h=main 2026-04-06T02:19:55+00:00 2026-04-06T02:19:55+00:00 Luke Hoersten luke@hoersten.org 2026-04-06T02:19:55+00:00 urn:sha1:06b69bd8def0aae07d3fb565d19193be1a8dfe20 - Add no_log: true to tasks that handle passwords/secrets - Tighten config file permissions (0644 -> 0600/0640 where appropriate) - Bind pleroma to 127.0.0.1 instead of 0.0.0.0 - Tighten ergo unix socket mode 0777 -> 0770 - Remove weak defaults; roles now fail explicitly if required vars not set 2026-03-26T02:42:49+00:00 Luke Hoersten luke@hoersten.org 2026-03-26T02:42:49+00:00 urn:sha1:58d4444b06de49587417791bb06a4fe1aeda571d 2025-05-29T00:24:44+00:00 Luke Hoersten luke@hoersten.org 2025-05-29T00:24:44+00:00 urn:sha1:cb74bdc5ae5194ceeda48aa92ca26ca685c737f9 2025-01-04T01:36:28+00:00 Luke Hoersten luke@hoersten.org 2025-01-04T01:36:28+00:00 urn:sha1:b180fe427c44da015874dbf86c326f6e6bcd0aa8 2024-10-07T20:25:37+00:00 Luke Hoersten luke@hoersten.org 2024-10-07T20:25:37+00:00 urn:sha1:27739609362360b2bf533f5a59106ce52c8d4b9f 2024-07-20T15:22:38+00:00 Luke Hoersten luke@hoersten.org 2024-07-20T15:22:38+00:00 urn:sha1:77c421bdee5279551abbfeea8a97fdf5ba8edc61 2024-01-16T06:04:53+00:00 Luke Hoersten luke@hoersten.org 2024-01-16T06:04:53+00:00 urn:sha1:312bf5e6094a496eafbfaed53d972c7d21d0b6d2 2023-09-16T03:46:19+00:00 Luke Hoersten luke@hoersten.org 2023-09-16T03:46:19+00:00 urn:sha1:12c9a85cbc9f4c218dd09f226c235e9376b45c85 2023-07-19T18:54:22+00:00 Luke Hoersten luke@hoersten.org 2023-07-19T18:54:22+00:00 urn:sha1:d5c5467d4d2a6090d75436f07ef2eac6945dfa1b 2023-04-03T18:20:18+00:00 Luke Hoersten luke@hoersten.org 2023-04-03T18:20:18+00:00 urn:sha1:fecba00f69bf8577d7abe67dcb81a612b3c547e5