This role installs haveged on a server.
"The haveged project is an attempt to provide an easy-to-use, unpredictable random number generator based upon an adaptation of the HAVEGE algorithm. Haveged was created to remedy low-entropy conditions in the Linux random device that can occur under some workloads, especially on headless servers. Current development of haveged is directed towards improving overall reliablity and adaptability while minimizing the barriers to using haveged for other tasks."
On CentOS flavours, you will need to ensure that you have the Extra Packages for Enterprise Linux (EPEL) repository. Various roles cover this on Galaxy and rather than choosing one I leave it to you to choose.
Default: false
Whether to use "present" or "latest" for package installation.
Default: 1024
The desired low entropy watermark to use in init files.
Default: 0600
The desired file mode for the template. Debian only.
Default: root
Owner of the init file. Used for Debian only.
Default: root
Group of the init file. Used for Debian only.
Default: /etc/default/haveged
File to be written to. Used for Debian only.
Default: debian.j2
Template to use for the init file. Used for Debian only.
####haveged_config_initd_path
Default: /etc/init.d/haveged
Path to the init.d script. Used for CentOS/RHEL 6 only.
####[haveged_systemd_path][haveged_systemd_path]
Default: /usr/lib/systemd/system/haveged.service
Path to the systemd service script
####[haveged_systemd_override][haveged_systemd_override]
Default: True
Template in a systemd override of ExecStart into /etc/systemd/system/haveged.service.d/override.conf
None.
Including an example of how to use your role (for instance, with variables passed in as parameters) is always nice for users too:
%YAML 1.2
---
- hosts: production
roles:
- { role: shrikeh.haveged, haveged_low_entropy_watermark: 2048 }
...Contact me on Twitter @barney_hanlon