github.com/jonathaningram/gophish@v0.3.1-0.20170829042651-ac3fe6aeae6c/ansible-playbook/roles/gophish/tasks/main.yml

github.com/jonathaningram/gophish@v0.3.1-0.20170829042651-ac3fe6aeae6c/ansible-playbook/roles/gophish/tasks/main.yml (about)

     1  - name: Change /etc/hostname
     2    hostname:
     3      name: "{{ hostname }}"
     4  
     5  - name: Allow TCP 80 for Gophish
     6    ufw: rule=allow port=80 proto=tcp
     7  
     8  - name: Allow TCP 443 for Gophish
     9    ufw: rule=allow port=443 proto=tcp
    10  
    11  - name: Enable ufw
    12    ufw: state=enabled policy=deny
    13    when: enable_ufw_firewall
    14  
    15  - name: Update APT package cache
    16    apt: update_cache=yes
    17  
    18  - name: Upgrade APT to the latest packages
    19    apt: upgrade=safe
    20  
    21  - name: Ensure postfix is installed (Debian).
    22    apt: name=postfix state=installed
    23  
    24  - name: Update postfix main.cf configuration file
    25    template:
    26      src: main.cf.j2
    27      dest: /etc/postfix/main.cf
    28      backup: yes
    29      owner: root
    30      group: root
    31      mode: 0644
    32  
    33  - name: Restart postfix
    34    service: name=postfix state=restarted
    35  
    36  - name: Ensure postfix is started and enabled at boot.
    37    service: name=postfix state=started enabled=yes
    38  
    39  - name: Download latest Gophish .zip file
    40    get_url:
    41      validate_certs: False
    42      url: https://getgophish.com/releases/latest/linux/64
    43      dest: /home/{{ gophish_user }}/gophish.zip
    44      mode: 0755
    45      owner: "{{ gophish_user }}"
    46      group: "{{ gophish_user }}"
    47  
    48  - name: Unzip gophish file
    49    unarchive:
    50      src: /home/{{ gophish_user }}/gophish.zip
    51      dest: /home/{{ gophish_user }}
    52      remote_src: True  # File is on target server and not locally.
    53      owner: "{{ gophish_user }}"
    54      group: "{{ gophish_user }}"
    55  
    56  - shell: ls -d /home/{{ gophish_user }}/gophish-*
    57    register: gophish_dir
    58  
    59  - name: Rename gophish folder
    60    command: mv {{ item }} /home/{{ gophish_user }}/gophish
    61    with_items: "{{ gophish_dir.stdout }}"
    62  
    63  - name: Change ownership of Gophish folder
    64    file:
    65      path: /home/{{ gophish_user }}/gophish
    66      owner: "{{ gophish_user }}"
    67      group: "{{ gophish_user }}"
    68      recurse: True
    69  
    70  - name: Add execution privileges to the gophish binary
    71    file:
    72      path: /home/{{ gophish_user }}/gophish/gophish
    73      mode: 0755
    74  
    75  - name: Allow gophish binary to bind to privileged ports using setcap
    76    shell: setcap CAP_NET_BIND_SERVICE=+eip /home/{{ gophish_user }}/gophish/gophish
    77  
    78  - name: Copy config.json file
    79    copy:
    80      src: files/config.json
    81      dest: /home/{{ gophish_user }}/gophish/config.json
    82      owner: "{{ gophish_user }}"
    83      group: "{{ gophish_user }}"
    84      mode: 0644
    85  
    86  - name: Reboot the box in 1 minute
    87    command: shutdown -r 1
    88    when: reboot_box