1 class base_configuration (
10 service { "systemd-networkd.socket":
14 service { "systemd-networkd":
19 unless empty($hostname) {
20 class { 'systemd::hostname':
25 user { "${username}:${userid}":
31 notify => Exec["remove_password"]
34 exec { "remove_password":
35 command => "/usr/bin/chage -d 0 $username && /usr/bin/passwd -d $username",
39 ssh_authorized_key { $username:
40 name => "immae@immae.eu",
43 key => "AAAAB3NzaC1yc2EAAAADAQABAAABAQDi5PgLBwMRyRwzJPnSgUyRAuB9AAxMijsw1pR/t/wmxQne1O5fIPOleHx+D8dyZbwm+XkzlcJpgT0Qy3qC9J8BPhshJvO/tA/8CI/oS/FE0uWsyACH1DMO2dk4gRRZGSE9IuzDMRPlnfZ3n0tdsPzzv3GH4It/oPIgsvkTowKztGLQ7Xmjr5BxzAhXcIQymqA0U3XWHSdWvnSRDaOFG0PDoVMS85IdwlviVKLnV5Sstb4NC/P28LFfgvW8DO/XrOqujgDomqTmR41dK/AyrGGOb2cQUMO4l8Oa+74aOyKaB61rr/rJkr+wCbEttkTvgFa6zZygSk3edfiWE2rgn4+v"
47 config_file_replace => false
52 content => "%wheel ALL=(ALL) ALL"
55 class { 'ssh::server':
56 storeconfigs_enabled => false,
59 'X11Forwarding' => 'yes',
61 'ChallengeResponseAuthentication' => 'no',
62 'Subsystem' => 'sftp /usr/lib/openssh/sftp-server',
71 pacman::repo { 'multilib':
73 include => '/etc/pacman.d/mirrorlist'
76 class { '::logrotate':
77 manage_cron_daily => false,
79 rotate_every => 'week',
83 olddir => '/var/log/old',
84 tabooext => "+ .pacorig .pacnew .pacsave",
88 logrotate::rule { 'wtmp':
89 path => '/var/log/wtmp',
90 rotate_every => 'month',
92 create_mode => '0664',
93 create_owner => 'root',
94 create_group => 'utmp',
98 logrotate::rule { 'btmp':
99 path => '/var/log/btmp',
101 rotate_every => 'month',
103 create_mode => '0600',
104 create_owner => 'root',
105 create_group => 'utmp',
109 ensure_packages(["whois"], { 'install_options' => '--asdeps' })
111 logtarget => 'SYSLOG',
114 fail2ban::jail { 'sshd':
115 backend => 'systemd',