add fail2ban because access_log spam is annoying

2013-12-12 22:26:10 +00:00 · 2013-12-12 22:26:10 +00:00 · b6c1c67545
commit b6c1c67545
parent 56d6699804
1 changed files with 6 additions and 0 deletions
--- a/playbooks/hosts/hrf.cloud.fedoraproject.org.yml
+++ b/playbooks/hosts/hrf.cloud.fedoraproject.org.yml
@ -47,7 +47,13 @@
        - mod_wsgi
        - htop # not a dep, but handy
        - git
+        - fail2ban
+
+    - name: enable fail2ban and start it
+      shell: chkconfig fail2ban on && service fail2ban start
+
    - name: clone the flask repo
      git: repo=git://github.com/fedora-infra/hrf.git dest=/srv/www/hrf
+
    - name: enable port 80
      command: lokkit -p '80:tcp'