Fix issues 3,5,6,7,8,9,11,15,16: security hardening and reliability improvements

- ansible.cfg: enable host_key_checking (closes #1)
- update_upgrade.yml: fix reboot crash on non-Debian hosts, exclude AnsibleHost from targets (closes #2, #7)
- deploy.yml: replace silent ignore_errors with real container health assertion (closes #3)
- redeploy.yml: same assertion fix + restic --overwrite always + RESTIC_RESTORE_PATH variable (closes #3, #4, #5)
- disaster.yml: same fixes as redeploy.yml (closes #3, #4, #5)
- docker_update_containers.yml: create missing playbook (closes #6)
- fresh_install.yml: add safety guard to abort if containers already running (closes #8)
- docker_status.yml: add become: true (closes #9)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

This commit is contained in:

jeet

2026-03-22 14:14:14 -04:00

parent fa67a195ab

commit d2e8cc6e70

8 changed files with 106 additions and 28 deletions

									
										ansible.cfg
									
		+1
		-1
	
												View File
												
				@@ -1,4 +1,4 @@

				[defaults]

				inventory = ./inventory.yml

				host_key_checking = False

				host_key_checking = True

				#vault_password_file = ./.password_file