rsyslog moved to the logging role

roles/logging/handlers/main.yml

@@ -1,2 +1,5 @@
+- name: restart rsyslog
+  service: name=rsyslog state=restarted
+
 - name: restart auditd
   service: name=auditd state=restarted

roles/logging/tasks/main.yml

@@ -1,3 +1,5 @@
+# Auditd
+
 - name: Auditd installed
   apt: name=auditd state=latest
 
@@ -13,3 +15,18 @@
 
 - name: Enable services
   service: name=auditd enabled=yes
+  
+# Rsyslog
+
+- name: Rsyslog configured
+  template: src=rsyslog.conf.j2 dest=/etc/rsyslog.conf
+  notify:
+    - restart rsyslog
+
+- name: Rsyslog CIS configured
+  template: src=CIS.conf.j2 dest=/etc/rsyslog.d/CIS.conf owner=root group=root mode=0644
+  notify:
+    - restart rsyslog
+
+- name: Enable services
+  service: name=rsyslog enabled=yes  

roles/security/handlers/main.yml

@@ -1,6 +1,3 @@
-- name: restart rsyslog
-  service: name=rsyslog state=restarted
-
 - name: restart ssh
   service: name=ssh state=restarted
 

roles/security/tasks/main.yml

@@ -30,21 +30,6 @@
     executable: /bin/bash
   register: privileged_programs
 
-# Rsyslog
-
-- name: Rsyslog configured
-  template: src=rsyslog.conf.j2 dest=/etc/rsyslog.conf
-  notify:
-    - restart rsyslog
-
-- name: Rsyslog CIS configured
-  template: src=CIS.conf.j2 dest=/etc/rsyslog.d/CIS.conf owner=root group=root mode=0644
-  notify:
-    - restart rsyslog
-
-- name: Enable services
-  service: name=rsyslog enabled=yes
-
 # Core dumps
 
 - name: Restrict core dumps (with PAM)