| 123456789101112131415161718192021222324252627282930313233343536373839404142 |
- - name: install vsftpd
- apt:
- name: vsftpd
- state: present
- become: yes
- - name: disable anonymous access
- lineinfile:
- dest: /etc/vsftpd.conf
- line: 'anonymous_enable=NO'
- regexp: '#? *anonymous_enable=.*'
- become: yes
- notify: reload vsftpd
- - name: grant access to local users
- lineinfile:
- dest: /etc/vsftpd.conf
- line: 'local_enable=YES'
- regexp: '#? *local_enable=.*'
- become: yes
- notify: reload vsftpd
- - name: enable / disable write
- lineinfile:
- dest: /etc/vsftpd.conf
- line: "write_enable={{vsftpd_enable_write | ternary('YES', 'NO')}}"
- regexp: '#? *write_enable=.*'
- become: yes
- notify: reload vsftpd
- - include: userlist.yml
- - include: chroot.yml
- - name: grant access to users without shell
- lineinfile:
- dest: /etc/shells
- line: '/bin/false'
- state: "{{vsftpd_enable_access_without_shell | ternary('present', 'absent')}}"
- become: yes
- - name: set umask for local users
- lineinfile:
- dest: /etc/vsftpd.conf
- line: 'local_umask={{vsftpd_local_user_umask}}'
- regexp: '#? *local_umask=.*'
- become: yes
- notify: reload vsftpd
- when: vsftpd_local_user_umask != None
|
