replace unbound w/ kresd, add user (needs ansible users bugfix for pw)

roles/pubnix/files/sshd_config

@@ -1,3 +1,4 @@
+# pubnix sshd config
 LogLevel INFO
 LoginGraceTime 1m
 PermitRootLogin no

roles/pubnix/tasks/main.yaml

@@ -41,3 +41,11 @@
 # FIXME: fails, /etc/resolv.conf in jail is wrong, no working nameserver in there or outgoing dns forbidden
 - name: template jail
   shell: "bastille template {{ role_name }} services/{{ role_name }}"
+
+- name: Create users
+  loop: "{{ users }}"
+  ansible.builtin.user:
+    name: "{{ item.name }}"
+    shell: "{{ item.shell }}"
+    groups: "{{ item.groups }}"
+    rootdir: "{{ item.rootdir }}"

roles/pubnix/templates/Bastillefile.j2

@@ -6,9 +6,11 @@ SYSRC tmpsize=500m
 SYSRC tmpmfs=AUTO
 SYSRC clear_tmp_enable=YES
 
-CMD rm /home
+CMD if test -l /home; then rm /home; fi
 CMD mkdir -p /home
 
 FSTAB /home home nullfs rw 0 0
 
+CP etc /
+
 SERVICE sshd start