Move known_hosts stuff to system-wide / remove dotfiles from user role

fix up for testing

don't assume backports

(0) -30 -10 -3 +3 +10 +30 tip

mercurial