Joakim
7788410bfc
- Add comprehensive Caddy role with HTTPS/TLS, DNS challenges, and systemd security - Implement optimized systemd overrides with enhanced security restrictions - Create detailed documentation with usage examples and variable references - Establish proper Ansible configuration with vault integration - Update site.yml for infrastructure orchestration with role-based deployment - Add host-specific configuration structure for scalable multi-environment setup
Rick's Infra
Arch Linux VPS
Ansible
Infrastructure as code for setting up new instance.
- Security
- SSH
- Firewall
- Fail2ban
- Kernel hardening
- Base packages
- Monitoring/Logging
- Backup
Services
Services are managed by serviced
Caddy
Reverse proxy.
Containers
Containers are managed by rootless Podman.