We are happy to announce our new DevSec baselines

Happy New Year DevSec users, from day one of the DevSec Hardening Framework project, we used the same test suites for our Ansible, Chef and Puppet implementations. Those test suites have been implemented in Serverspec and helped us to enforce the same rules for all hardening implementations. The combination with...


Ansible nginx-hardening role released

The next part of server hardening with Ansible is released today: The ansible-nginx-hardening role. This role hardens your existing nginx installations (version 1.0.15 or later). This time we tried to make sure that the hardening role works with popular nginx installation roles, so if you use any of the following...


Ansible mysql-hardening role released

Even though the Github repository already got 17 stars at the time of writing, we never officially released the ansible-mysql-hardening role. Today we change that and release 1.0.0! The mysql-hardening role joins the other two already existing Ansible roles, ssh-hardening and os-hardening. This role hardens a MySQL server according to...


Hardening Framework got new home

Due to unfortunate circumstances we can’t use hardening.io domain anymore. Therefore Hardening Framework moved to a new home: http://dev-sec.io , https://github.com/dev-sec. Forwarding can’t be configured from hardening.io to the new domain. We know this leads to confusion and we are sorry for that.


Hardening Framework releases updated Ansbile os-hardening and ssh-hardening

The Hardening Framework once again updates its framework’s Ansible modules, making them compatible with the new Ansible 2.0 release! But that’s not all. Next to bug-fixes and support for additional operating systems, this release focused on making the os-hardening and ssh-hardening roles more configurable. This allows you to alter them...