Ansible os-hardening role released

Monday, Jul 13, 2015

Ansible os-hardening role released

Sebastian Gumprich

After two months of development the Hardening Framework team is glad to announce that we created our second Ansible role: ansible-os-hardening. This role hardens a Linux operating system according to best practices and implements the same guidelines as our successful Chef and Puppet implementations.

In these two months Sebastian Gumprich implemented with the help of Christoph Hartmann and Dominik Richter the following changes:

  • Implement os-hardening to meet our tests
  • Enable GPG-checking on all yum-repository files #5
  • Disable system accounts #6
  • Module-loading configuration #22
  • Travis support #17

As always, this role supports Debian- and Enterprise Linux-based operating systems.

You can find the role on Github and on Ansible Galaxy.

Found a problem? Want to help? Open up a issue or pull request or join our Gitter Chatroom to chat directly with us!

Next on? MySQL hardening! Be sure to follow us on Twitter for the latest updates.