b1be74d21f
- ACME TLS challenge on 443 (no port 80 or nginx decoy) - Auto-generate and persist obfs password per server - Update client export, HTML catalog, and vault examples - Document Salamander vs main and ACME auto-renewal in README Co-authored-by: Cursor <cursoragent@cursor.com>
22 lines
879 B
Plaintext
22 lines
879 B
Plaintext
---
|
|
# Пароли VPS (SSH) и VPN-пользователей.
|
|
# 1. Скопируйте: cp group_vars/hysteria2_servers/vault.yml.example group_vars/hysteria2_servers/vault.yml
|
|
# 2. Заполните значения
|
|
# 3. Зашифруйте: make vault-encrypt
|
|
#
|
|
# Ключи должны совпадать с именами хостов в inventory/hosts.yml
|
|
|
|
vault_ssh_passwords:
|
|
vps-de: "CHANGE_ME_root_password_vps_de"
|
|
vps-nl: "CHANGE_ME_root_password_vps_nl"
|
|
|
|
# Опционально: фиксированные пароли VPN по серверам
|
|
# vault_hysteria2_user_passwords:
|
|
# vps-de:
|
|
# friend: "Aingae0Okit1eek4eeZahFohVei4akee"
|
|
|
|
# Опционально: пароль Salamander obfs (один на сервер)
|
|
# vault_hysteria2_obfs_passwords:
|
|
# vps-de: "cry_me_a_r1ver_salamander_obfs_pass"
|
|
# vps-nl: "another_obfs_password_32chars!!"
|