# > representing password for Linux root user account of VPS password: !vault | $ANSIBLE_VAULT;1.1;AES256 66353462633933306537323461663665643234306166366663653163306436333037313032306338 3762653037396437633835356630656438623163656536310a306163663234383265386133396634 34363163343766623739646334643031373239373630663731376239333764346531396363636131 6163343335356337660a366337336632333236326532373032353332333636366638616265356562 66616534303035386134623535373935373065326539363065623230633034313433 # > representing API token for VPS cloud service token: !vault | $ANSIBLE_VAULT;1.1;AES256 33333839333337323062326231626534616166646666343261343966636464346630363033653130 3035653864396363376633346362353239643939663462370a323935353061313563336435366331 30393463653661326539326234646438663133616634663439303932656137633839656533376433 3666643635613039390a323138393033623131326438616331386539666333613630316263613636 66663263373665343662393638623064356234646165343835623966643761333562323132396466 63363436333463653130323531343139316466316131313031343232343039396261616231376232 66383938333661363532303166306563396634663132396166646132663131373738396131626633 34393265343061356531 # representing name and hostname of VPS to be made in VPS cloud service instance: sukaato # > representing region options from or for given VPS cloud service origin: us-east # > representing Linux distro or OS image available in VPS service to be used for VPS operating_system: linode/debian13 # ]> list of control node or local SSH key basenames for root user ssh_keys: - ed25519@sukaato.hikiki - ecdsa@sukaato.hikiki # > list of administrative users (in Linux, users that can use "sudo") admins: - username: senpai # arbitrary valid user name services: ~ # ]> if linux system user, assocated servce # ]> list of control node or local SSH key basenames for this user ssh_keys: - ecdsa-37851076-sk@sukaato.hikiki - ecdsa-37851072-sk@sukaato.hikiki # > hashed (and maybe salted) password password: !vault | $ANSIBLE_VAULT;1.1;AES256 31663265653031323833373663653132653532646638316465393364613961643130653330393062 6165386239303965386261363565353137636164356130370a336465353931373564393339363561 37353162333331663833656631663165356134633961323337663439663733316231666334336539 6537373334326634610a623037613462663733343230306538386561363838316638623365636533 32313931666439363435663161663665346266653763343265376366383837376436643163376430 39393861613037333766386138376335653334363737626664383236303234653461313230383564 33393834636165386562383435666233313664656233326364616237636230303264363732376639 64396564366335366430303031323865333635306536346463386334303235386438663061343934 37376466373566396130366330383834323332626166316661336339346462343466 # :]> package groups pkgs: # :]> representing package groups installed by package manager via repositories mngr: # ]> representing system-level or essential packages core: - name: sudo uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: xz-utils uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: wireguard uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: wireguard-tools uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: vagrant uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: qemu-system uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: cron uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: cron-daemon-common uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: qemu-kvm uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: bridge-utils uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: libvirt-clients uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: libvirt-daemon-system uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: gcc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: git-doc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: git-delta uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: fastfetch uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: vim uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ handler: vim - name: git uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ handler: git - name: fail2ban uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: crowdsec uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: glow uri: ~ sigkey: "https://repo.charm.sh/apt/gpg.key" sources: "https://repo.charm.sh/apt/" types: deb suites: "*" comps: "*" handler: ~ - name: vim-vimwiki uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: vim-doc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: tor uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: i2pd uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: whois uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ # @TODO make sure to create handler inclusion of tasks in file under/at `tasks/contingent/pkg` for below - name: iptables uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: libpam-google-authenticator uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: burp uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: rsync uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: gnupg uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: gnupg-agent uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: gocryptfs uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: cryfs uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: tmux uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: cpu-checker uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: libpam-doc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: headscale uri: "https://github.com/juanfont/headscale/releases/download/v0.28.0/headscale_0.28.0_linux_amd64.deb" sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: headscale userspace: - name: neovim uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: neovim - name: distrobox uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: proftpd-core uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: proftpd-doc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: proftpd-mod-crypto uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: proftpd-mod-ldap uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: proftpd-mod-sqlite uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: aria2 uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: erlang uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: erlang-hex uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: elixir uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: python3.13 uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: python3-venv uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: python3-pip uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: golang uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: yt-dlp uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: syncthing-discosrv uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: syncthing-relaysrv uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ - name: rclone uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ handler: ~ # :]> representing package groups installed by shell scripts script: # ]> representing user-level or supplemental shell script installations userspace: - name: radicle src: "https://radicle.dev/install" pre: ~ post: ~ handler: radicle - name: rustup src: "https://sh.rustup.rs" pre: ~ post: ~ handler: rustup - name: julia src: "https://install.julialang.org" pre: ~ post: ~ handler: julia - name: uv src: "https://astral.sh/uv/install.sh" pre: ~ post: ~ handler: uv # :]> representing package groups installed from source archives archive: # ]> representing user-level or supplemental source archives userspace: - name: surge src: "https://github.com/SurgeDM/Surge/releases/download/v0.8.6/Surge_0.8.6_linux_amd64.tar.gz" deploy: ~ pre: ~ post: ~ handler: surge - name: nvm src: "https://nodejs.org/dist/v24.16.0/node-v24.16.0-linux-x64.tar.xz" deploy: ~ pre: ~ post: ~ handler: nvm - name: difftastic src: "https://github.com/Wilfred/difftastic/releases/download/0.69.0/difft-x86_64-unknown-linux-gnu.tar.gz" deploy: ~ pre: ~ post: ~ handler: difftastic # :]> representing package groups installed from source git repositories git_repos: # userspace: # - name: quartz # src: "https://github.com/jackyzha0/quartz.git" # branch: v5.0.0 # deploy: ~ # pre: ~ # post: ~ # handler: ~