Ansible roles for nth.io infrastructure https://src.nth.io/luke/ansible-roles/atom?h=main 2026-04-06T02:19:55+00:00 2026-04-06T02:19:55+00:00 Luke Hoersten luke@hoersten.org 2026-04-06T02:19:55+00:00 urn:sha1:06b69bd8def0aae07d3fb565d19193be1a8dfe20 - Add no_log: true to tasks that handle passwords/secrets - Tighten config file permissions (0644 -> 0600/0640 where appropriate) - Bind pleroma to 127.0.0.1 instead of 0.0.0.0 - Tighten ergo unix socket mode 0777 -> 0770 - Remove weak defaults; roles now fail explicitly if required vars not set 2026-03-28T18:42:08+00:00 Luke Hoersten luke@hoersten.org 2026-03-28T18:42:08+00:00 urn:sha1:45da5bca82200af63b0ee16479b267eb209386f3 2026-03-24T03:22:36+00:00 Luke Hoersten luke@hoersten.org 2026-03-24T03:22:36+00:00 urn:sha1:1859f62813f0c586ea49f912944fb25efd60520f 2024-07-20T18:51:46+00:00 Luke Hoersten luke@hoersten.org 2024-07-20T18:51:46+00:00 urn:sha1:a13b976c683a4963cc129a4399e79698437e2f8d 2024-02-05T02:27:19+00:00 Luke Hoersten luke@hoersten.org 2024-02-05T02:27:19+00:00 urn:sha1:04edbf561c44e28753cbbaa3870b23b220cc644c 2024-01-18T22:04:11+00:00 Luke Hoersten luke@hoersten.org 2024-01-18T22:04:11+00:00 urn:sha1:5fcee5ab24ac6c70849ab6834ef52f18fc6d7081 2022-10-22T19:51:35+00:00 Luke Hoersten luke@hoersten.org 2022-10-22T19:51:35+00:00 urn:sha1:9da13ed7b10e79af734ad725e3649caf55b7255a 2022-10-22T02:58:58+00:00 Luke Hoersten luke@hoersten.org 2022-10-22T02:58:58+00:00 urn:sha1:0773f185aee2ae0b7af4cd44b5e52970f42aaf3f 2022-09-09T16:54:48+00:00 Luke Hoersten luke@hoersten.org 2022-09-09T16:54:48+00:00 urn:sha1:c0501ebf8e9591f728599c930a772f0aa9cc325f 2021-06-27T18:24:22+00:00 Luke Hoersten luke@hoersten.org 2021-06-27T18:24:22+00:00 urn:sha1:5d431f3af02fce3a1945e70c2d8c336801890abf