From d364f82c9f22cd3ea026ebd79aa12cb4e4238b4d Mon Sep 17 00:00:00 2001
From: Alex Tavarez <admin@sukaato.moe>
Date: Sat, 30 May 2026 06:33:25 -0400
Subject: [PATCH] added conjunctive test case for root to task conditional and
 fixed copy module's valdation string argument

---
 roles/init-server/tasks/harden.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/roles/init-server/tasks/harden.yml b/roles/init-server/tasks/harden.yml
index 963b2ea..2cb44e8 100644
--- a/roles/init-server/tasks/harden.yml
+++ b/roles/init-server/tasks/harden.yml
@@ -2,7 +2,7 @@
 ---
 # tasks file for roles/init-vps
 - name: Checking whether administrative login used
-  when: ansible_user not in (admins | map(attribute="username") | list)
+  when: ansible_user not in (admins | map(attribute="username") | list) and ansible_user != "root"
   ansible.builtin.fail:
     msg: Must use administrative user for subsequent tasks
 - name: Hardening SSH service for the Linode VPS
@@ -14,5 +14,5 @@
     mode: "644"
     force: true
     backup: true
-    validate: "sshd -t %s"
+    validate: 'sshd -t -f %s'
   register: ssh_hardened
\ No newline at end of file