From 12f4c14bf3f5d65a51dea334dd491a58f642fb7a Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Miroslav=20Such=C3=BD?= Date: Tue, 29 Oct 2013 08:50:55 +0000 Subject: [PATCH] secure copr with fail2ban --- playbooks/hosts/copr-be.cloud.fedoraproject.org.yml | 4 ++++ playbooks/hosts/copr-fe.cloud.fedoraproject.org.yml | 2 ++ 2 files changed, 6 insertions(+) diff --git a/playbooks/hosts/copr-be.cloud.fedoraproject.org.yml b/playbooks/hosts/copr-be.cloud.fedoraproject.org.yml index e30c99eaa5..2d6623c099 100644 --- a/playbooks/hosts/copr-be.cloud.fedoraproject.org.yml +++ b/playbooks/hosts/copr-be.cloud.fedoraproject.org.yml @@ -43,6 +43,7 @@ - copr-backend - git - screen + - fail2ban - name: make copr dirs @@ -102,6 +103,9 @@ - name: start webserver action: service state=running enabled=yes name=lighttpd + - name: start fail2ban + action: service state=running enabled=yes name=fail2ban + # setup dirs for the ansible execution off of provisioning - name: dirs from provision action: file state=directory path=/home/copr/provision/$item owner=copr group=copr diff --git a/playbooks/hosts/copr-fe.cloud.fedoraproject.org.yml b/playbooks/hosts/copr-fe.cloud.fedoraproject.org.yml index 8d4ab84188..26aad7e718 100644 --- a/playbooks/hosts/copr-fe.cloud.fedoraproject.org.yml +++ b/playbooks/hosts/copr-fe.cloud.fedoraproject.org.yml @@ -40,6 +40,7 @@ - copr-selinux - postgresql-server - bash-completion + - fail2ban tags: - packages @@ -57,6 +58,7 @@ with_items: - httpd - postgresql + - fail2ban handlers: - include: $handlers/restart_services.yml