From 445edf8637dea1caa132d3f530034560e1c97e9e Mon Sep 17 00:00:00 2001 From: Christoph Date: Sat, 7 Dec 2024 21:47:25 +0100 Subject: [PATCH] update.. --- group_vars/all/main.yml | 3 + host_vars/backup.oopen.de.yml | 23 ++++ host_vars/backup.warenform.de.yml | 100 ++++++++++++++++++ host_vars/o26.oopen.de.yml | 71 ++++++++++++- .../backup.oopen.de/root/.ssh/borg-client_key | 7 ++ .../root/.ssh/borg-client_key.pub | 1 + .../root/.ssh/id_ed25519-borg-backup | 7 ++ .../root/.ssh/id_ed25519-borg-backup.pub | 1 + .../root/.ssh/borg-client_key | 7 ++ .../root/.ssh/borg-client_key.pub | 1 + .../root/.ssh/id_ed25519-borg-backup | 7 ++ .../root/.ssh/id_ed25519-borg-backup.pub | 1 + .../o26.oopen.de/root/.ssh/borg-client_key | 7 ++ .../root/.ssh/borg-client_key.pub | 1 + .../root/.ssh/id_ed25519-borg-backup | 7 ++ .../root/.ssh/id_ed25519-borg-backup.pub | 1 + 16 files changed, 244 insertions(+), 1 deletion(-) create mode 100644 roles/common/files/backup.oopen.de/root/.ssh/borg-client_key create mode 100644 roles/common/files/backup.oopen.de/root/.ssh/borg-client_key.pub create mode 100644 roles/common/files/backup.oopen.de/root/.ssh/id_ed25519-borg-backup create mode 100644 roles/common/files/backup.oopen.de/root/.ssh/id_ed25519-borg-backup.pub create mode 100644 roles/common/files/backup.warenform.de/root/.ssh/borg-client_key create mode 100644 roles/common/files/backup.warenform.de/root/.ssh/borg-client_key.pub create mode 100644 roles/common/files/backup.warenform.de/root/.ssh/id_ed25519-borg-backup create mode 100644 roles/common/files/backup.warenform.de/root/.ssh/id_ed25519-borg-backup.pub create mode 100644 roles/common/files/o26.oopen.de/root/.ssh/borg-client_key create mode 100644 roles/common/files/o26.oopen.de/root/.ssh/borg-client_key.pub create mode 100644 roles/common/files/o26.oopen.de/root/.ssh/id_ed25519-borg-backup create mode 100644 roles/common/files/o26.oopen.de/root/.ssh/id_ed25519-borg-backup.pub diff --git a/group_vars/all/main.yml b/group_vars/all/main.yml index 64c369a..d41a7d9 100644 --- a/group_vars/all/main.yml +++ b/group_vars/all/main.yml @@ -2013,6 +2013,9 @@ default_user: - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO90culn3sicU2chTHn40ytcTay0nUIHap0uF/5fVM6P chris@sol' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOQHMUKlDh2ufno5pZOhUY5xFljC1R5zQ/GjOHDkS58D root@sol' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMvy+IDUeoVwLg+cJNcKzls5guOrVUretsf05v3Y2N+Y root@default-oopen-server' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIcEPd+MDJKzWqWStt3XpJU1OpJ0uxmipacIGkm6k3MS root@default-warenform-server' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ/eGKbdxPYu7L/b/DjZrWek50e0AnkHFZS+zV12o5jy root@borg-client-key-warenform' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ6Sra1D8JU2A68G4rSny7D0ukYKy89NVMXbdxrtdZwr root@borg-client-key-oopen' - name: borg user_id: 1065 diff --git a/host_vars/backup.oopen.de.yml b/host_vars/backup.oopen.de.yml index f4c9e4f..e6895fd 100644 --- a/host_vars/backup.oopen.de.yml +++ b/host_vars/backup.oopen.de.yml @@ -9,6 +9,20 @@ # vars used by roles/ansible_user # --- +insert_root_ssh_keypair: true + +root_ssh_keypair: + - name: borg-client_key + priv_key_src: backup.oopen.de/root/.ssh/borg-client_key + priv_key_dest: /root/.ssh/borg-client_key + pub_key_src: backup.oopen.de/root/.ssh/borg-client_key.pub + pub_key_dest: /root/.ssh/borg-client_key.pub + - name: id_ed25519-borg-backup + priv_key_src: backup.oopen.de/root/.ssh/id_ed25519-borg-backup + priv_key_dest: /root/.ssh/id_ed25519-borg-backup + pub_key_src: backup.oopen.de/root/.ssh/id_ed25519-borg-backup.pub + pub_key_dest: /root/.ssh/id_ed25519-borg-backup.pub + # --- # vars used by roles/common/tasks/basic.yml @@ -214,6 +228,9 @@ default_user: - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO90culn3sicU2chTHn40ytcTay0nUIHap0uF/5fVM6P chris@sol' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOQHMUKlDh2ufno5pZOhUY5xFljC1R5zQ/GjOHDkS58D root@sol' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMvy+IDUeoVwLg+cJNcKzls5guOrVUretsf05v3Y2N+Y root@default-oopen-server' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIcEPd+MDJKzWqWStt3XpJU1OpJ0uxmipacIGkm6k3MS root@default-warenform-server' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ/eGKbdxPYu7L/b/DjZrWek50e0AnkHFZS+zV12o5jy root@borg-client-key-warenform' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ6Sra1D8JU2A68G4rSny7D0ukYKy89NVMXbdxrtdZwr root@borg-client-key-oopen' - name: borg user_id: 1065 @@ -230,6 +247,7 @@ default_user: - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINU1InXFKZX9emaT5QsY4Nr0tr8CzbyV8Js8RzZC9vGk root@b.mx' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPo7hI8oIS+/xufCUNTTgNoz592udJaU+79L0uADzKJY root@b.ns' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMtIXFS9OrKBvBl+fKtYN/lOOKpPuuc02H8HV+++LeBU root@backup' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMZkez42c+5KVt/ZOhwslO321ibzV02oMImImRGNBIRD root@backup.warenform.de' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKT+QOy+R6O4ojAeB7y/CRMmfbB19rFstvEW7saHpHMX root@c.mx' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICPrJu40Up1x9VCTTac6+ANjJ2NFXfDb5v3dP4pVgm+c root@cl-01' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIK7JBJ0qQJsTlADj/zMoxGlzPCGlnh0ngDS5+tkyVqgf root@cl-02' @@ -248,6 +266,7 @@ default_user: - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDy5WM1qsLE2SRwWG1Y38WJcMYUpL8MuQiraqiXfHzaH root@e.mx' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJPbony+4g4iFS32Cv/Bkmet4FsCAsrGTffwWm2eM16x root@git.warenform' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDqqmBWh3qmnx41NiLCn1LhVG0mn4++IUvRNC0OMh6h6 root@gitoea' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFEm1P7Pg3Tlm02bxkropKf3CcyTCAB3YCMxPSjai2lc root@gw-dissens' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBYFe6i0UdPRyENvfaJSJVCHtmnlJmhbqGEsdIlTapsj root@initiativenserver' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO886BNZ/o9aBwkKqHku+MjS5/GEVRBbXXSF76ry7oZR root@mail-cadus' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKsPJQGHl1GVZ3yPl3Oi3xlH+EUsN1/EWDY2XAohag/P root@mail-fm' @@ -267,13 +286,16 @@ default_user: - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBHl2xONyeBX/gnJ4iVeSVoxu/W6ku2VorA5gxAbp95q root@o13-staging-board' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBaXEVvhblxX045H2/B/6RJmoW77WOKJM5FQfvMUPCIs root@o13-web' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICcQ9MFqTMOmjnec4ftUJAYiAe8p7pp7a5EBSIM0A5ji root@o17' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFstQOOM/U18SV27+XTtBhso+vICK5L4aOGC83QnvS8+ root@o19' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIC85aj16Ow1ZPutkp5TmZdxjMsECkhnO64ktc3OYZJHc root@o25-board' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICurG4lWMuEercht716M3x2KgsUYKIwku4VdF52sBu41 root@o21-oolm-db' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIC4zWDGHh75cKB0AZKIbiWHosK4Xvk6vS2r/aChs8u42 root@o22' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGcgS05xGLPuECQ7E5zjzfSDxdFBO1mAjkSV2bktxld+ root@o23' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIEM1SI7Lwk0G8UycysL7ZPdXm1DRGgPnr01B0ewRGEKi root@o24' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAJKfPInE9VjXVe+6DQ+4/H1nQJwXljYEK6gwfmTDgGy root@o26' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIES9ftVcNMv6pW2HDM12fIbOOEvq1fcd74kbO4LHfhGH root@o28' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIE70FVVu2bsdH2qJITFVSDEPraiI4uSCuzEkYlbl6pRW root@o30' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIF0+aRoMxzmiQCAIMajNhbTZEumtZ9yCG2Nb4ucqK8lo root@o31' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOJvhepf3kho9zJz1QO52aLbr4/Rim/FLdENg1GNKCPx root@o32' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICMuN9gOcpjKIh468XkKJDkLqfHr3dAClpJQEHKgv16y root@o33' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOa43l92OhS5mCArXvIL1Ub3Oj6wu1esooaqoTNwWt7O root@o35' @@ -288,6 +310,7 @@ default_user: - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIF4ylglAkPst7G6kES2lE96ECp0AGXGjzCVkZSqGVru6 root@oolm-shop-dev' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIUZ0WNd3rTqHH1tiXAELwssGw6xUP1ROdhgxKbMinYY root@oolm-web' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAID82UUUkYKYFbJdmTcMYu+vl3M0FVQznXFbngqPoumP+ root@prometheus-nd' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJU5HzfGYZwWeaoAGGFF7/3VQP19ce6Rgn5wcOR98Q3o root@server26' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBRfCFz6mPdn3TKVCgffHQAKt3LN/0srS/gBsMoOyZpi root@shop-agr' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHbeMf/CvAYIU/4UW8Ql59FgPo/3vcZ3vI3QzK2kOadE root@srv-cityslang' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINiVJ2QVuGz0bLlrJVa3CJ+DtwOv0pt6M53ipkGbW1JQ root@stolpersteine' diff --git a/host_vars/backup.warenform.de.yml b/host_vars/backup.warenform.de.yml index 958d42a..240a032 100644 --- a/host_vars/backup.warenform.de.yml +++ b/host_vars/backup.warenform.de.yml @@ -14,6 +14,20 @@ # vars used by roles/ansible_user # --- +insert_root_ssh_keypair: true + +root_ssh_keypair: + - name: borg-client_key + priv_key_src: backup.warenform.de/root/.ssh/borg-client_key + priv_key_dest: /root/.ssh/borg-client_key + pub_key_src: backup.warenform.de/root/.ssh/borg-client_key.pub + pub_key_dest: /root/.ssh/borg-client_key.pub + - name: id_ed25519-borg-backup + priv_key_src: backup.warenform.de/root/.ssh/id_ed25519-borg-backup + priv_key_dest: /root/.ssh/id_ed25519-borg-backup + pub_key_src: backup.warenform.de/root/.ssh/id_ed25519-borg-backup.pub + pub_key_dest: /root/.ssh/id_ed25519-borg-backup.pub + # --- # vars used by roles/common/tasks/basic.yml @@ -93,6 +107,70 @@ resolved_nameserver: - 2a01:4f8:0:1::add:9999 +# --- +# vars used by roles/common/tasks/cron.yml +# --- + +cron_env_entries: + - name: PATH + job: /root/bin/admin-stuff:/root/bin:/usr/local/apache2/bin:/usr/local/php/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin + + - name: SHELL + job: /bin/bash + insertafter: PATH + + +cron_user_special_time_entries: + + - name: "Restart DNS Cache service 'systemd-resolved'" + special_time: reboot + job: "sleep 5 ; /bin/systemctl restart systemd-resolved" + insertafter: PATH + + - name: "Check if postfix mailservice is running. Restart service if needed." + special_time: reboot + job: "sleep 10 ; /root/bin/monitoring/check_postfix.sh > /dev/null 2>&1" + insertafter: PATH + + +cron_user_entries: + + - name: "Check if SSH service is running. Restart service if needed." + minute: '*/5' + hour: '*' + job: /root/bin/monitoring/check_ssh.sh + + - name: "Check if Postfix Mailservice is up and running?" + minute: '*/15' + hour: '*' + job: /root/bin/monitoring/check_postfix.sh + + - name: "/root/bin/postfix/check-postfix-fatal-errors.sh" + minute: '*/17' + hour: '*' + job: /root/bin/postfix/check-postfix-fatal-errors.sh + + - name: "Generate/Renew Let's Encrypt Certificates if needed (using dehydrated script)" + minute: '23' + hour: '05' + job: /var/lib/dehydrated/cron/dehydrated_cron.sh + + - name: "Check whether all certificates are included in the VHOST configurations" + minute: '33' + hour: '05' + job: /var/lib/dehydrated/tools/update_ssl_directives.sh + + - name: "Check if remote website is online" + minute: '*/15' + hour: '7-23' + job: /root/bin/monitoring/check_remote_websites.sh + + - name: "Remote Borg2 Backup" + minute: '02' + hour: '00' + job: /root/crontab/backup-rborg2/rborg2.sh + + # --- # vars used by roles/common/tasks/users.yml # --- @@ -160,6 +238,28 @@ default_user: ssh_keys: - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO90culn3sicU2chTHn40ytcTay0nUIHap0uF/5fVM6P chris@sol' - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOQHMUKlDh2ufno5pZOhUY5xFljC1R5zQ/GjOHDkS58D root@sol' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMvy+IDUeoVwLg+cJNcKzls5guOrVUretsf05v3Y2N+Y root@default-oopen-server' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIcEPd+MDJKzWqWStt3XpJU1OpJ0uxmipacIGkm6k3MS root@default-warenform-server' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ/eGKbdxPYu7L/b/DjZrWek50e0AnkHFZS+zV12o5jy root@borg-client-key-warenform' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ6Sra1D8JU2A68G4rSny7D0ukYKy89NVMXbdxrtdZwr root@borg-client-key-oopen' + + - name: borg + user_id: 1065 + group_id: 1065 + group: borg + password: $y$j9T$JPKlR6kIk7GJStSdmAQWq/$e1vJER6KL/dk1diFNtC.COw9lu2uT6ZdrUgGcNVb912 + shell: /bin/bash + ssh_keys: + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO90culn3sicU2chTHn40ytcTay0nUIHap0uF/5fVM6P chris@sol' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOQHMUKlDh2ufno5pZOhUY5xFljC1R5zQ/GjOHDkS58D root@sol' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFstQOOM/U18SV27+XTtBhso+vICK5L4aOGC83QnvS8+ root@o19' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDqqmBWh3qmnx41NiLCn1LhVG0mn4++IUvRNC0OMh6h6 root@gitea.oopen.de' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMtIXFS9OrKBvBl+fKtYN/lOOKpPuuc02H8HV+++LeBU root@backup.oopen.de' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIE1RkJYM8qcEagoKt9gNVaeBbXZEJscqIBNnhL/KZfSA root@munin.oopen.de' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIj2SdZgxG4NCjUiCXY7msCG+Vn6MQ5jsGxrs2qn1QZh root@mx' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHQAvCK/h7+8h8hPm3WyeEdBbhY4SdOSWJYxuFW24XbM root@nd' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBOOYhdtNPAQP8BlgSYBaMfWl8Yv4Y9ww7SWeLOn0HXH root@web0' + sudo_users: - chris diff --git a/host_vars/o26.oopen.de.yml b/host_vars/o26.oopen.de.yml index eb1a155..c886a00 100644 --- a/host_vars/o26.oopen.de.yml +++ b/host_vars/o26.oopen.de.yml @@ -240,6 +240,20 @@ network_interfaces: # vars used by roles/ansible_user # --- +insert_root_ssh_keypair: true + +root_ssh_keypair: + - name: borg-client_key + priv_key_src: o26.oopen.de/root/.ssh/borg-client_key + priv_key_dest: /root/.ssh/borg-client_key + pub_key_src: o26.oopen.de/root/.ssh/borg-client_key.pub + pub_key_dest: /root/.ssh/borg-client_key.pub + - name: id_ed25519-borg-backup + priv_key_src: o26.oopen.de/root/.ssh/id_ed25519-borg-backup + priv_key_dest: /root/.ssh/id_ed25519-borg-backup + pub_key_src: o26.oopen.de/root/.ssh/id_ed25519-borg-backup.pub + pub_key_dest: /root/.ssh/id_ed25519-borg-backup.pub + # --- # vars used by roles/common/tasks/basic.yml @@ -416,7 +430,62 @@ cron_user_entries: # vars used by roles/common/tasks/users.yml # --- -create_sftp_group: true + +default_user: + + - name: chris + password: $y$j9T$t0OK33lTuB/3TME5h/GHn.$4EjhvjhelkpUB2vqWPBdDCV3xCwBcJHpDobTkkuHxy. + shell: /bin/bash + ssh_keys: + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO90culn3sicU2chTHn40ytcTay0nUIHap0uF/5fVM6P chris@sol' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOQHMUKlDh2ufno5pZOhUY5xFljC1R5zQ/GjOHDkS58D root@sol' + + - name: sysadm + + user_id: 1050 + group_id: 1050 + group: sysadm + password: $y$j9T$LIF1RrShGDGdCXkUubRPR/$N8M5c/dhBdJkJrLP3/Lchyosjg0FxaQ2M4epvuzTI78 + shell: /bin/bash + ssh_keys: + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO90culn3sicU2chTHn40ytcTay0nUIHap0uF/5fVM6P chris@sol' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOQHMUKlDh2ufno5pZOhUY5xFljC1R5zQ/GjOHDkS58D root@sol' + + - name: localadmin + user_id: 1051 + group_id: 1051 + password: $y$j9T$bqr.c39mSZOjjhVo/qmM2.$riPJ81SHLqfJMQ6/ZdeWNP7ma8R5nehI9mo5K8oUkw1 + shell: /bin/bash + ssh_keys: + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO90culn3sicU2chTHn40ytcTay0nUIHap0uF/5fVM6P chris@sol' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOQHMUKlDh2ufno5pZOhUY5xFljC1R5zQ/GjOHDkS58D root@sol' + + - name: back + user_id: 1060 + group_id: 1060 + group: back + password: $y$j9T$uYqbl2A6vQ6WsLinzhUfG0$/w02iPud/LURbhY19DGtKWgKNFTpNEP7J.jOu5CZPh. + shell: /bin/bash + ssh_keys: + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO90culn3sicU2chTHn40ytcTay0nUIHap0uF/5fVM6P chris@sol' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOQHMUKlDh2ufno5pZOhUY5xFljC1R5zQ/GjOHDkS58D root@sol' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMvy+IDUeoVwLg+cJNcKzls5guOrVUretsf05v3Y2N+Y root@default-oopen-server' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIcEPd+MDJKzWqWStt3XpJU1OpJ0uxmipacIGkm6k3MS root@default-warenform-server' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ/eGKbdxPYu7L/b/DjZrWek50e0AnkHFZS+zV12o5jy root@borg-client-key-warenform' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ6Sra1D8JU2A68G4rSny7D0ukYKy89NVMXbdxrtdZwr root@borg-client-key-oopen' + + - name: borg + user_id: 1065 + group_id: 1065 + group: borg + password: $y$j9T$JPKlR6kIk7GJStSdmAQWq/$e1vJER6KL/dk1diFNtC.COw9lu2uT6ZdrUgGcNVb912 + shell: /bin/bash + ssh_keys: + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO90culn3sicU2chTHn40ytcTay0nUIHap0uF/5fVM6P chris@sol' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOQHMUKlDh2ufno5pZOhUY5xFljC1R5zQ/GjOHDkS58D root@sol' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGRaUsGqBvZBDzyh1kuldC/jdbtuoXFgBZ7PbgSqytSn root@cl-fm' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKsPJQGHl1GVZ3yPl3Oi3xlH+EUsN1/EWDY2XAohag/P root@mail-fm' + - 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIC85aj16Ow1ZPutkp5TmZdxjMsECkhnO64ktc3OYZJHc root@o25-board' extra_system_user: diff --git a/roles/common/files/backup.oopen.de/root/.ssh/borg-client_key b/roles/common/files/backup.oopen.de/root/.ssh/borg-client_key new file mode 100644 index 0000000..c909748 --- /dev/null +++ b/roles/common/files/backup.oopen.de/root/.ssh/borg-client_key @@ -0,0 +1,7 @@ +-----BEGIN OPENSSH PRIVATE KEY----- +b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW +QyNTUxOQAAACCekq2tQ/CVNgOvBuK0p8uw9LpGCsvPTVTF23ca7XWcKwAAAJB+N5OOfjeT +jgAAAAtzc2gtZWQyNTUxOQAAACCekq2tQ/CVNgOvBuK0p8uw9LpGCsvPTVTF23ca7XWcKw +AAAEDzRrhvwSGOGAPpt5iTDVDO6RA8Y4id7ssuM2UHyx/Qw56Sra1D8JU2A68G4rSny7D0 +ukYKy89NVMXbdxrtdZwrAAAACHJvb3RAbzI2AQIDBAU= +-----END OPENSSH PRIVATE KEY----- diff --git a/roles/common/files/backup.oopen.de/root/.ssh/borg-client_key.pub b/roles/common/files/backup.oopen.de/root/.ssh/borg-client_key.pub new file mode 100644 index 0000000..206ba75 --- /dev/null +++ b/roles/common/files/backup.oopen.de/root/.ssh/borg-client_key.pub @@ -0,0 +1 @@ +ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ6Sra1D8JU2A68G4rSny7D0ukYKy89NVMXbdxrtdZwr root@borg-client-key-oopen diff --git a/roles/common/files/backup.oopen.de/root/.ssh/id_ed25519-borg-backup b/roles/common/files/backup.oopen.de/root/.ssh/id_ed25519-borg-backup new file mode 100644 index 0000000..16e9518 --- /dev/null +++ b/roles/common/files/backup.oopen.de/root/.ssh/id_ed25519-borg-backup @@ -0,0 +1,7 @@ +-----BEGIN OPENSSH PRIVATE KEY----- +b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW +QyNTUxOQAAACDLSFxUvTqygbwZfnyrWDf5TjiqT7rnNNh/B1fvvi3gVAAAAJDobr4n6G6+ +JwAAAAtzc2gtZWQyNTUxOQAAACDLSFxUvTqygbwZfnyrWDf5TjiqT7rnNNh/B1fvvi3gVA +AAAEB5SKwKfgprCc8hzOEjONbFUh7OOJ1kkWzkaAj66p1l2MtIXFS9OrKBvBl+fKtYN/lO +OKpPuuc02H8HV+++LeBUAAAAC3Jvb3RAYmFja3VwAQI= +-----END OPENSSH PRIVATE KEY----- diff --git a/roles/common/files/backup.oopen.de/root/.ssh/id_ed25519-borg-backup.pub b/roles/common/files/backup.oopen.de/root/.ssh/id_ed25519-borg-backup.pub new file mode 100644 index 0000000..9229940 --- /dev/null +++ b/roles/common/files/backup.oopen.de/root/.ssh/id_ed25519-borg-backup.pub @@ -0,0 +1 @@ +ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMtIXFS9OrKBvBl+fKtYN/lOOKpPuuc02H8HV+++LeBU root@backup.oopen.de diff --git a/roles/common/files/backup.warenform.de/root/.ssh/borg-client_key b/roles/common/files/backup.warenform.de/root/.ssh/borg-client_key new file mode 100644 index 0000000..c671fad --- /dev/null +++ b/roles/common/files/backup.warenform.de/root/.ssh/borg-client_key @@ -0,0 +1,7 @@ +-----BEGIN OPENSSH PRIVATE KEY----- +b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW +QyNTUxOQAAACCf3him3cT2Luy/2/w42a1npOdHtAJ5BxWUvs1ddqOY8gAAAJBRkt41UZLe +NQAAAAtzc2gtZWQyNTUxOQAAACCf3him3cT2Luy/2/w42a1npOdHtAJ5BxWUvs1ddqOY8g +AAAEA0CO/mugzPBBLRMZH8NU9nmf5mlhu5MgyCiiAxCny9tZ/eGKbdxPYu7L/b/DjZrWek +50e0AnkHFZS+zV12o5jyAAAAC3Jvb3RAYmFja3VwAQI= +-----END OPENSSH PRIVATE KEY----- diff --git a/roles/common/files/backup.warenform.de/root/.ssh/borg-client_key.pub b/roles/common/files/backup.warenform.de/root/.ssh/borg-client_key.pub new file mode 100644 index 0000000..e17b534 --- /dev/null +++ b/roles/common/files/backup.warenform.de/root/.ssh/borg-client_key.pub @@ -0,0 +1 @@ +ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ/eGKbdxPYu7L/b/DjZrWek50e0AnkHFZS+zV12o5jy root@borg-client-key-warenform diff --git a/roles/common/files/backup.warenform.de/root/.ssh/id_ed25519-borg-backup b/roles/common/files/backup.warenform.de/root/.ssh/id_ed25519-borg-backup new file mode 100644 index 0000000..007645d --- /dev/null +++ b/roles/common/files/backup.warenform.de/root/.ssh/id_ed25519-borg-backup @@ -0,0 +1,7 @@ +-----BEGIN OPENSSH PRIVATE KEY----- +b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW +QyNTUxOQAAACDGZHs+NnPuSlbf2TocLJTt9tYm81dNqDCJiJkRjQSEQwAAAJAQwRQ+EMEU +PgAAAAtzc2gtZWQyNTUxOQAAACDGZHs+NnPuSlbf2TocLJTt9tYm81dNqDCJiJkRjQSEQw +AAAEDkQkdfzkyeiTB65nwL0TozsKQdQBIAX2ezJu8Y09AFIsZkez42c+5KVt/ZOhwslO32 +1ibzV02oMImImRGNBIRDAAAAC3Jvb3RAYmFja3VwAQI= +-----END OPENSSH PRIVATE KEY----- diff --git a/roles/common/files/backup.warenform.de/root/.ssh/id_ed25519-borg-backup.pub b/roles/common/files/backup.warenform.de/root/.ssh/id_ed25519-borg-backup.pub new file mode 100644 index 0000000..fddf180 --- /dev/null +++ b/roles/common/files/backup.warenform.de/root/.ssh/id_ed25519-borg-backup.pub @@ -0,0 +1 @@ +ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMZkez42c+5KVt/ZOhwslO321ibzV02oMImImRGNBIRD root@backup.warenform.de diff --git a/roles/common/files/o26.oopen.de/root/.ssh/borg-client_key b/roles/common/files/o26.oopen.de/root/.ssh/borg-client_key new file mode 100644 index 0000000..c909748 --- /dev/null +++ b/roles/common/files/o26.oopen.de/root/.ssh/borg-client_key @@ -0,0 +1,7 @@ +-----BEGIN OPENSSH PRIVATE KEY----- +b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW +QyNTUxOQAAACCekq2tQ/CVNgOvBuK0p8uw9LpGCsvPTVTF23ca7XWcKwAAAJB+N5OOfjeT +jgAAAAtzc2gtZWQyNTUxOQAAACCekq2tQ/CVNgOvBuK0p8uw9LpGCsvPTVTF23ca7XWcKw +AAAEDzRrhvwSGOGAPpt5iTDVDO6RA8Y4id7ssuM2UHyx/Qw56Sra1D8JU2A68G4rSny7D0 +ukYKy89NVMXbdxrtdZwrAAAACHJvb3RAbzI2AQIDBAU= +-----END OPENSSH PRIVATE KEY----- diff --git a/roles/common/files/o26.oopen.de/root/.ssh/borg-client_key.pub b/roles/common/files/o26.oopen.de/root/.ssh/borg-client_key.pub new file mode 100644 index 0000000..08d2594 --- /dev/null +++ b/roles/common/files/o26.oopen.de/root/.ssh/borg-client_key.pub @@ -0,0 +1 @@ +ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ6Sra1D8JU2A68G4rSny7D0ukYKy89NVMXbdxrtdZwr root@borg-client-key-o26 diff --git a/roles/common/files/o26.oopen.de/root/.ssh/id_ed25519-borg-backup b/roles/common/files/o26.oopen.de/root/.ssh/id_ed25519-borg-backup new file mode 100644 index 0000000..af7aec0 --- /dev/null +++ b/roles/common/files/o26.oopen.de/root/.ssh/id_ed25519-borg-backup @@ -0,0 +1,7 @@ +-----BEGIN OPENSSH PRIVATE KEY----- +b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW +QyNTUxOQAAACACSnzyJxPVY11Xvug0PuPx9Z0CcF5Y2BCuoMH5kw4BsgAAAJA5RsfJOUbH +yQAAAAtzc2gtZWQyNTUxOQAAACACSnzyJxPVY11Xvug0PuPx9Z0CcF5Y2BCuoMH5kw4Bsg +AAAEDYDaMH15oopyIpgKtlDdbF3OXeI6Yvt+awFMyonCrxSQJKfPInE9VjXVe+6DQ+4/H1 +nQJwXljYEK6gwfmTDgGyAAAACHJvb3RAbzI2AQIDBAU= +-----END OPENSSH PRIVATE KEY----- diff --git a/roles/common/files/o26.oopen.de/root/.ssh/id_ed25519-borg-backup.pub b/roles/common/files/o26.oopen.de/root/.ssh/id_ed25519-borg-backup.pub new file mode 100644 index 0000000..4c40b20 --- /dev/null +++ b/roles/common/files/o26.oopen.de/root/.ssh/id_ed25519-borg-backup.pub @@ -0,0 +1 @@ +ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAJKfPInE9VjXVe+6DQ+4/H1nQJwXljYEK6gwfmTDgGy root@o26