openstack/ansible-hardening
Code Issues Proposed changes
149 Commits 6 Branches 146 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Major Hayden b204440ddc Updating tests for openstack-ansible-security 
This patch adds a framework for testing the role with check mode as well as a
fully functional test that secures a system.  The two new tests will be
enabled by default when the check mode improvements are merged and some common
playbook failures are removed.

Closes-bug: 1521229

Change-Id: Iaffb982c4c9776bcc4b219e257d83591d58d0cee
2015-12-02 20:50:54 +00:00
defaults
V-3864{2,5,7,9}, V-38651: Umask adjustments
2015-10-27 09:09:23 -05:00
doc
Adding benefits faq + config docs
2015-11-20 11:12:24 -06:00
files
V-38682: Disable bluetooth modules
2015-10-14 21:23:11 -05:00
handlers
Merge "V-3865{6,7}: Samba"
2015-10-27 13:11:29 +00:00
meta
Fix typo: secuity -> security
2015-10-23 19:01:40 -05:00
tasks
Check mode compatibility for security role
2015-12-02 20:50:33 +00:00
templates
Move template that was missed with rename
2015-11-02 10:20:20 -06:00
tests
Enable role testing and make structure ansible-galaxy compatible
2015-10-09 11:47:23 +00:00
vars
Enable role testing and make structure ansible-galaxy compatible
2015-10-09 11:47:23 +00:00
.gitignore
Initial import of openstack-ansible-security role
2015-10-07 07:27:39 -05:00
.gitreview
Added .gitreview
2015-10-05 17:37:21 +00:00
LICENSE
Initial import of openstack-ansible-security role
2015-10-07 07:27:39 -05:00
README.md
Enable role testing and make structure ansible-galaxy compatible
2015-10-09 11:47:23 +00:00
README.rst
Add new docs URL to README
2015-10-09 08:25:56 -05:00
run_tests.sh
Updating tests for openstack-ansible-security
2015-12-02 20:50:54 +00:00
setup.cfg
Initial import of openstack-ansible-security role
2015-10-07 07:27:39 -05:00
setup.py
Initial import of openstack-ansible-security role
2015-10-07 07:27:39 -05:00
test-requirements.txt
Rename dev-requirements.txt to test-requirements.txt
2015-11-12 19:56:44 -05:00
tox.ini
Updating tests for openstack-ansible-security
2015-12-02 20:50:54 +00:00

README.md

openstack-ansible-security

The goal of the openstack-ansible-security role is to improve security within openstack-ansible deployments. The role is based on the Security Technical Implementation Guide (STIG) for Red Hat Enterprise Linux 6.

Requirements

This role can be used with or without the openstack-ansible role. It requires Ansible 1.8 at a minimum.

Role Variables

All of the variables for this role are in defaults/main.yml.

Dependencies

This role has no dependencies.

Example Playbook

Using the role is fairly straightforward:

- hosts: servers
  roles:
     - openstack-ansible-security

License

Apache 2.0

Author Information

For more information, join #openstack-ansible on Freenode.

Description
Ansible role for security hardening
Readme 5.5 MiB
Languages
Jinja 44.2%
Python 40.9%
Shell 14.9%