94 lines
2.1 KiB
YAML
94 lines
2.1 KiB
YAML
---
|
|
#@TODO write handlers for configuring clamav
|
|
#@NOTE https://wiki.archlinux.org/title/ClamAV
|
|
- name: Create freshclam file
|
|
become: yes
|
|
become_method: sudo
|
|
copy:
|
|
src: clamav/freshclam.conf
|
|
dest: /etc/clamav/freshclam.conf
|
|
force: yes
|
|
backup: yes
|
|
- name: Create clamd file
|
|
become: yes
|
|
become_method: sudo
|
|
copy:
|
|
src: clamav/clamd.conf
|
|
dest: /etc/clamav/clamd.conf
|
|
force: yes
|
|
backup: yes
|
|
- name: Create clamd file
|
|
become: yes
|
|
become_method: sudo
|
|
copy:
|
|
src: clamav/clamav-milter.conf
|
|
dest: /etc/clamav/clamav-milter.conf
|
|
force: yes
|
|
backup: yes
|
|
- name: Update clamav virus definitions
|
|
become: yes
|
|
become_method: sudo
|
|
command: freshclam
|
|
- name: Start and enable clamav service
|
|
service:
|
|
name: clamav-daemon
|
|
state: started
|
|
enabled: yes
|
|
- name: Start and enable clamav onaccess service
|
|
become: yes
|
|
become_method: sudo
|
|
service:
|
|
name: clamav-clamonacc
|
|
state: started
|
|
enabled: yes
|
|
- name: Restart clamav service
|
|
become: yes
|
|
become_method: sudo
|
|
service:
|
|
name: clamav-daemon
|
|
state: restarted
|
|
- name: Restart clamav onaccess service
|
|
become: yes
|
|
become_method: sudo
|
|
service:
|
|
name: clamav-clamonacc
|
|
state: restarted
|
|
- name: Create freshclam log file
|
|
become: yes
|
|
become_method: sudo
|
|
file:
|
|
path: /var/log/clamav/freshclam.log
|
|
state: touch
|
|
mode: 600
|
|
owner: clamav
|
|
- name: Start and enable freshclam virus definition update service
|
|
become: yes
|
|
become_method: sudo
|
|
service:
|
|
name: clamav-freshclam
|
|
state: started
|
|
enabled: yes
|
|
- name: Restart freshclam virus definition update service
|
|
become: yes
|
|
become_method: sudo
|
|
service:
|
|
name: clamav-freshclam
|
|
state: restarted
|
|
- name: Install Fangfrisch
|
|
become: yes
|
|
become_method: sudo
|
|
package:
|
|
name: fangfrisch
|
|
state: present
|
|
- name: Create database structure for fangfrisch
|
|
become_user: clamav
|
|
become_method: sudo
|
|
command:
|
|
argv: [/usr/bin/fangfrisch, --conf, /etc/fangfrisch/fangfrisch.conf, initdb]
|
|
- name: Start and enable fangfrisch virus definition updates
|
|
become: yes
|
|
become_method: sudo
|
|
service:
|
|
name: fangfrisch.timer
|
|
state: started
|
|
enabled: yes |