From 0efcaa83f7bdb3bbf4455985f9f7dbe163a1ab59 Mon Sep 17 00:00:00 2001
From: Midou36O <midou@midou.dev>
Date: Sat, 6 Jan 2024 19:33:33 +0100
Subject: [PATCH] Make the denier, allower

---
 all/playbook.yaml | 8 +-------
 1 file changed, 1 insertion(+), 7 deletions(-)

diff --git a/all/playbook.yaml b/all/playbook.yaml
index 41c80b0..7811167 100644
--- a/all/playbook.yaml
+++ b/all/playbook.yaml
@@ -74,7 +74,6 @@
         name: ufw
         enabled: true
         state: started
-
     - name: Disable dmesg logging to console
       ansible.posix.sysctl:
         name: kernel.printk
@@ -105,7 +104,6 @@
         value: "60"
         state: present
         sysctl_set: true
-
     - name: Bashrc skel
       ansible.builtin.template:
         src: templates/bashrc.j2
@@ -146,7 +144,6 @@
         src: templates/prompt.j2
         dest: /root/.prompt
         mode: preserve
-
     - name: Add user
       ansible.builtin.user:
         name: "{{ item.name }}"
@@ -163,14 +160,12 @@
         key: "{{ lookup('file', 'files/' + item.name + '.pub') }}"
       with_items:
         - "{{ users }}"
-
     - name: "Allow admin users to sudo without a password"
       ansible.builtin.lineinfile:
         dest: "/etc/sudoers" # path: in version 2.3
         state: "present"
         regexp: "^%sudo"
         line: "%sudo ALL=(ALL) NOPASSWD: ALL"
-
     - name: Sshd configuration file update
       ansible.builtin.template:
         src: templates/sshd_config.j2
@@ -187,7 +182,6 @@
         dest: "/etc/borgmatic/config.yaml"
         state: "absent"
         regexp: "^.*encryption_passphrase"
-
   handlers:
     - name: Restart sshd
       ansible.builtin.service:
@@ -244,4 +238,4 @@
         port: "{{ item.port }}"
         proto: "{{ item.proto }}"
       with_items:
-        - "{{ ufw_deny_rules }}"
+        - "{{ ufw_allow_rules }}"