ansible-collection-hardening
ansible-collection-hardening copied to clipboard
dev-sec
This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
### Description Our current testcase does not support `arch`, `fedora`and `amazon` linux. ### Solution We want to adapt the test in a way, that supports these linux flavors. ### Alternatives...
### Description When applying `mysql_hardening` role on a ubuntu 22.04 host with mariadb 10.6.11 I got ``` TASK [devsec.hardening.mysql_hardening : Check include-dir directive is present in my.cnf] ********************************************************************************************************************** An exception...
### Description The pam tests currently fail. ### Reproduction steps ```Shell run tests ``` ### Current Behavior ``` TASK [include PAM tests] ******************************************************* Friday 04 August 2023 15:00:03 +0000 (0:00:00.083)...
to compensate for immutable filesystems, in particular ostree systems. Updated oshardening/README.md to reflect this Signed-off-by: James Miller
### Description We are setting a maximum password age in `/etc/login.defs`. This automatically applies to all created users and also affects users without a password, eg. when creating a user...
### Description When running the os.hardening playbook with default configuration, the step: ``` TASK [devsec.hardening.os_hardening : Configure tally2] ``` Throw the followring error: ``` fatal: [chemocompile.mvz-eichsfeld]: FAILED! => {"msg": "The...
### Description Our current testcase does not support `opensuse` linux. ### Solution We want to adapt the test in a way, that supports these linux flavors. ### Alternatives _No response_...
### Description Our current testcase does not support `arch` and `opensuse` linux. ### Solution We want to adapt the test in a way, that supports these linux flavors. ### Alternatives...