From 87a216322a8a858b35ffb1a426ebbadc1395c0df Mon Sep 17 00:00:00 2001
From: spmfox <spmfox@foxwd.com>
Date: Wed, 23 Apr 2025 22:22:39 -0400
Subject: Added handler logic in host role, added ssh hardening

---
 roles/host/tasks/unprivileged-port.yml | 7 ++-----
 1 file changed, 2 insertions(+), 5 deletions(-)

(limited to 'roles/host/tasks/unprivileged-port.yml')

diff --git a/roles/host/tasks/unprivileged-port.yml b/roles/host/tasks/unprivileged-port.yml
index c724e49..69a21f4 100644
--- a/roles/host/tasks/unprivileged-port.yml
+++ b/roles/host/tasks/unprivileged-port.yml
@@ -4,8 +4,5 @@
     regexp: "^net.ipv4.ip_unprivileged_port_start="
     line: "net.ipv4.ip_unprivileged_port_start={{ host_unprivileged_port_start }}"
     create: true
-  register: sysctl
-
-- name: Reload sysctl
-  ansible.builtin.shell: "sysctl -p /etc/sysctl.d/50-UnprivilegedPort.conf"
-  when: sysctl.changed
+  notify:
+    - Reload sysctl
-- 
cgit