henryk/fuck-yara.yml

## fuck-yara.yml
---
- name: Nuke clamav YARA
  hosts: all
  gather_facts: false
  tasks:
    - name: Disable yararulesproject
      lineinfile:
        dest: /etc/clamav-unofficial-sigs/master.conf
        regexp: '^\s*#?\s*yararulesproject_enabled\s*='
        line: 'yararulesproject_enabled="no"'
      notify:
        - Restart clamav-daemon
    - name: Disable yararules
      lineinfile:
        dest: /etc/clamav-unofficial-sigs/master.conf
        regexp: '^\s*#?\s*enable_yararules\s*='
        line: 'enable_yararules="no"'
      notify:
        - Restart clamav-daemon
    - name: Find YARA files
      find:
        paths: /var/lib/clamav/
        patterns:
          - "*.yar"
          - "*.yara"
      register: yara_files
    - name: Delete YARA files
      file:
        path: "{{item.path}}"
        state: absent
      with_items: "{{yara_files.files}}"
      notify:
        - Restart clamav-daemon
  handlers:
    - name: Restart clamav-daemon
      service: name=clamav-daemon state=restarted
	---
	- name: Nuke clamav YARA
	hosts: all
	gather_facts: false
	tasks:
	- name: Disable yararulesproject
	lineinfile:
	dest: /etc/clamav-unofficial-sigs/master.conf
	regexp: '^\s#?\syararulesproject_enabled\s*='
	line: 'yararulesproject_enabled="no"'
	notify:
	- Restart clamav-daemon
	- name: Disable yararules
	lineinfile:
	dest: /etc/clamav-unofficial-sigs/master.conf
	regexp: '^\s#?\senable_yararules\s*='
	line: 'enable_yararules="no"'
	notify:
	- Restart clamav-daemon
	- name: Find YARA files
	find:
	paths: /var/lib/clamav/
	patterns:
	- "*.yar"
	- "*.yara"
	register: yara_files
	- name: Delete YARA files
	file:
	path: "{{item.path}}"
	state: absent
	with_items: "{{yara_files.files}}"
	notify:
	- Restart clamav-daemon
	handlers:
	- name: Restart clamav-daemon
	service: name=clamav-daemon state=restarted