rewrite the tasks using YAML syntax

297701d0 · arbabnazar · eb8a7178 · 297701d0
Unverified Commit 297701d0 authored Jul 11, 2016 by arbabnazar
Hide whitespace changes
Inline Side-by-side

Showing with 43 additions and 40 deletions

playbooks/roles/snort/tasks/main.yml
+43 -40

No files found.
--- a/playbooks/roles/snort/tasks/main.yml
+++ b/playbooks/roles/snort/tasks/main.yml
 ---
-# install and configure snort IDS
+- name: Install snort
-#
+  apt:
+    name: "{{ item }}"
- name: install snort
+    state: present
-  apt: pkg={{ item }} state="present"
  with_items:
    - snort
    - oinkmaster
- name: configure snort
+- name: Configure snort and snort (debian)
-  template: >
+  template:
-    src=etc/snort/snort.conf.j2 dest=/etc/snort/snort.conf
+    src: "etc/snort/{{ item }}"
-    owner=root group=root mode=0644
+    dest: "/etc/snort/{{ item.rstrip('.j2') }}"
+    owner: root
- name: configure snort (debian)
+    group: root
-  template: >
+    mode: "0644"
-    src=etc/snort/snort.debian.conf.j2 dest=/etc/snort/snort.debian.conf
+  with_items:
-    owner=root group=root mode=0644
+    - snort.conf.j2
+    - snort.debian.conf.j2
- name: configure oinkmaster
-  template: >
+- name: Configure oinkmaster
-    src=etc/oinkmaster.conf.j2 dest=/etc/oinkmaster.conf
+  template:
-    owner=root group=root mode=0644
+    src: "etc/oinkmaster.conf.j2"
+    dest: "/etc/oinkmaster.conf"
- name: update snort
+    owner: root
-  shell: oinkmaster -C /etc/oinkmaster.conf -o /etc/snort/rules/ 
+    group: root
+    mode: "0644"
+- name: Update snort
+  shell: "oinkmaster -C /etc/oinkmaster.conf -o /etc/snort/rules/"
  become: yes
- name: snort service 
+- name: Snort service
-  service: >
+  service:
-    name="snort" 
+    name: snort
-    state="started"
+    state: started
- name: open read permissions on snort logs
+- name: Open read permissions on snort logs
-  file: >
+  file:
-    name="/var/log/snort"
+    name: "/var/log/snort"
-    state="directory"
+    state: directory
-    mode="755"
+    mode: "0755"
- name: install oinkmaster cronjob
+- name: Install oinkmaster cronjob
-  template: >
+  template:
-    src=etc/cron.daily/oinkmaster.j2 dest=/etc/cron.daily/oinkmaster
+    src: "etc/cron.daily/oinkmaster.j2"
-    owner=root group=root mode=0755
+    dest: "/etc/cron.daily/oinkmaster"
+    owner: root
+    group: root
+    mode: "0755"