| 2024-09-04 19:33 | decrypt vault with split gpg | Jul | 1 | +11 | -1 |
| 2024-06-10 12:16 | move all files to main directory | Jul | 37 | +4 | -4 |
| 2024-06-10 12:10 | fix order of wireguard client rc scripts | Jul | 1 | +2 | -3 |
| 2024-06-01 09:30 | group local tasks into ansible blocks | Jul | 2 | +167 | -185 |
| 2024-06-01 09:25 | escalate privelege manually for local tasks | Jul | 2 | +9 | -0 |
| 2024-06-01 09:24 | target python3 binary | Jul | 2 | +2 | -2 |
| 2024-05-31 21:32 | adjust tasks for alpine | Jul | 34 | +331 | -338 |
| 2024-05-31 09:44 | build alpine as host os | Jul | 16 | +300 | -17 |
| 2024-05-21 09:31 | set up server01 local testing environment | Jul | 17 | +101 | -67 |
| 2024-05-17 15:49 | debug playbook - use 'ansible servers -m setup' | Jul | 1 | +0 | -8 |
| 2024-05-17 15:45 | refresh ansible facts after setup is over | Jul | 3 | +22 | -12 |
| 2024-05-17 15:42 | remove k0s nftables | Jul | 1 | +0 | -40 |
| 2024-05-17 15:23 | remove k0s | Jul | 11 | +1 | -202 |
| 2024-05-17 15:21 | move nftables to firewall role | Jul | 5 | +9 | -3 |
| 2024-05-17 15:16 | modify firewall to allow k0s/calico to work | Jul | 3 | +49 | -21 |
| 2024-05-17 15:07 | use calico with k0s | Jul | 1 | +2 | -11 |
| 2024-05-17 15:05 | fix client's kubeconfig server address | Jul | 1 | +1 | -1 |
| 2024-05-17 15:01 | change nameservers variable to a list | Jul | 2 | +4 | -2 |
| 2024-05-17 14:59 | reorganize site playbook for proper initialization | Jul | 2 | +10 | -8 |
| 2024-05-16 05:19 | specify k0s storage as kine sqlite | Jul | 1 | +3 | -4 |
| 2024-05-16 05:18 | downgrade k0s version to v1.29.4+k0s.0 | Jul | 1 | +1 | -1 |
| 2024-05-15 19:07 | Revert "install latest k0s stable version" | Jul | 2 | +5 | -8 |
| 2024-05-15 19:07 | change nftables table name to custom-filter | Jul | 1 | +2 | -2 |
| 2024-05-15 13:30 | connect local wireguard with ip to avoid /etc/hosts | Jul | 1 | +1 | -1 |
| 2024-05-15 07:35 | remove k0s externalAddress cluster config | Jul | 1 | +0 | -1 |
| 2024-05-15 07:11 | persist /etc/hosts changes in qubes | Jul | 1 | +24 | -0 |
| 2024-05-15 06:43 | install latest k0s stable version | Jul | 2 | +8 | -5 |
| 2024-05-14 20:10 | fix and refactor k0s installation | Jul | 8 | +129 | -144 |
| 2024-05-14 16:21 | move host variables to host_vars directory | Jul | 4 | +21 | -23 |
| 2024-05-14 16:04 | move ssh user related tasks to user.yml | Jul | 2 | +17 | -16 |
| 2024-05-14 16:03 | set openssh port to default 22 | Jul | 5 | +1 | -35 |
| 2024-05-14 15:53 | configure nftables to only allow wireguard | Jul | 5 | +88 | -0 |
| 2024-05-14 08:55 | remove iptables firewall | Jul | 4 | +0 | -104 |
| 2024-05-14 08:53 | move user creation to openssh role | Jul | 3 | +3 | -1 |
| 2024-05-14 08:41 | avoid ansible changes in wireguard client tasks | Jul | 1 | +7 | -12 |
| 2024-05-14 08:14 | use wireguard systemd and set wg ip varirables | Jul | 5 | +20 | -11 |
| 2024-05-13 21:15 | install wireguard on server | Jul | 9 | +179 | -8 |
| 2024-05-13 14:07 | fix errors | Jul | 3 | +3 | -5 |
| 2024-05-13 13:26 | set servers group in inventory | Jul | 1 | +1 | -1 |
| 2024-05-13 13:20 | clean up readme instructions | Jul | 2 | +2 | -10 |
| 2024-05-13 13:16 | rename iptables role to firewall | Jul | 4 | +1 | -1 |
| 2024-05-13 13:11 | remove fwknop | Jul | 7 | +3 | -119 |
| 2024-05-13 12:23 | set apt upgrade and periodic, unattended upgrades | Jul | 4 | +32 | -0 |
| 2024-05-13 12:15 | refactor local ssh config to a file | Jul | 2 | +30 | -27 |
| 2024-05-13 12:12 | move user creation to setup role | Jul | 3 | +22 | -21 |
| 2024-05-13 12:10 | set network interfaces | Jul | 5 | +51 | -3 |
| 2024-05-13 11:45 | always escalate privilege | Jul | 2 | +3 | -2 |
| 2024-05-13 11:44 | temporarily set mtu in raw-setup role | Jul | 4 | +12 | -16 |
| 2024-05-13 11:12 | change to inventory yaml | Jul | 3 | +11 | -3 |
| 2024-05-13 10:42 | configure fwknop locally | Jul | 1 | +37 | -0 |
| 2024-05-13 08:52 | set local ssh config | Jul | 1 | +29 | -0 |
| 2024-05-13 08:52 | set mtu idempotently | Jul | 1 | +6 | -1 |
| 2024-05-13 08:51 | readjust site playbook | Jul | 1 | +11 | -6 |
| 2024-05-13 07:28 | remove local compose testing | Jul | 3 | +0 | -18 |
| 2024-05-13 07:28 | set up server environment for ansible | Jul | 2 | +23 | -11 |
| 2024-05-13 05:22 | add docker compose for local testing | Jul | 3 | +18 | -0 |
| 2024-05-11 10:20 | install k0s | Jul | 10 | +233 | -11 |
| 2024-05-11 07:41 | add debug playbook | Jul | 1 | +8 | -0 |
| 2024-05-10 19:48 | change the port for fwknop | Jul | 1 | +1 | -0 |
| 2024-05-10 19:48 | only allow openssh port from fwknop | Jul | 1 | +1 | -0 |
| 2024-05-10 17:58 | organize playbooks with iptables and fwknop | Jul | 3 | +18 | -5 |
| 2024-05-10 17:58 | set commonly used flags to config | Jul | 1 | +6 | -1 |
| 2024-05-10 17:20 | install openssh for completeness | Jul | 1 | +12 | -5 |
| 2024-05-10 17:04 | set vault password script in config file | Jul | 3 | +5 | -14 |
| 2024-05-10 09:51 | set owner for ~/.ssh directory | Jul | 1 | +2 | -0 |
| 2024-05-10 09:50 | configure fwknop with symmetric key | Jul | 7 | +86 | -2 |
| 2024-05-10 05:40 | set host iptables | Jul | 4 | +101 | -0 |
| 2024-05-08 08:41 | change openssh port to 57123 | Jul | 4 | +41 | -35 |
| 2024-05-08 06:58 | hide openssh debian banner | Jul | 1 | +3 | -0 |
| 2024-05-08 05:39 | set hardened openssh server | Jul | 7 | +135 | -0 |