init

2021-10-05 21:34:34 +02:00
commit 2136ddd16b
11 changed files with 289 additions and 0 deletions
--- a/tasks/main.yml
+++ b/tasks/main.yml
@ -0,0 +1,15 @@
+---
+# tasks file for verify
+
+- name: Gather facts on listening ports
+  become: yes
+  community.general.listen_ports_facts:
+
+- name: TCP denylist violation
+  ansible.builtin.debug:
+    msg: TCP port {{ item.port }} by pid {{ item.pid }} violates the denylist
+  vars:
+    tcp_listen_violations: "{{ ansible_facts.tcp_listen | selectattr('port', 'in', tcp_denylist) | list }}"
+    tcp_denylist:
+      - 111
+  loop: "{{ tcp_listen_violations }}"