openstack/ansible-hardening
Code Issues Proposed changes
45 Commits 11 Branches 141 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Major Hayden d8946874c8 V-3851{1,2,3}, V-38686: IPv4 security controls 
Mainly a documentation commit with one special case and three exceptions.

Implements: blueprint security-hardening

Change-Id: Ib9607f6df8aaed63b494a7f87af33cb7d3117f1d
2015-10-14 13:43:37 +00:00
defaults
V-38539: Enable TCP SYN cookies
2015-10-09 10:30:12 -05:00
doc
V-3851{1,2,3}, V-38686: IPv4 security controls
2015-10-14 13:43:37 +00:00
files
Enable role testing and make structure ansible-galaxy compatible
2015-10-09 11:47:23 +00:00
handlers
Enable role testing and make structure ansible-galaxy compatible
2015-10-09 11:47:23 +00:00
meta
Enable role testing and make structure ansible-galaxy compatible
2015-10-09 11:47:23 +00:00
tasks
Merge "V-3850{2,3,4}: Ownership/mode of /etc/shadow"
2015-10-13 21:45:08 +00:00
templates
Enable role testing and make structure ansible-galaxy compatible
2015-10-09 11:47:23 +00:00
tests
Enable role testing and make structure ansible-galaxy compatible
2015-10-09 11:47:23 +00:00
vars
Enable role testing and make structure ansible-galaxy compatible
2015-10-09 11:47:23 +00:00
.gitignore
Initial import of openstack-ansible-security role
2015-10-07 07:27:39 -05:00
.gitreview
Added .gitreview
2015-10-05 17:37:21 +00:00
dev-requirements.txt
Initial import of openstack-ansible-security role
2015-10-07 07:27:39 -05:00
LICENSE
Initial import of openstack-ansible-security role
2015-10-07 07:27:39 -05:00
README.md
Enable role testing and make structure ansible-galaxy compatible
2015-10-09 11:47:23 +00:00
README.rst
Add new docs URL to README
2015-10-09 08:25:56 -05:00
run_tests.sh
Enable role testing and make structure ansible-galaxy compatible
2015-10-09 11:47:23 +00:00
setup.cfg
Initial import of openstack-ansible-security role
2015-10-07 07:27:39 -05:00
setup.py
Initial import of openstack-ansible-security role
2015-10-07 07:27:39 -05:00
tox.ini
Add bashate tox configuration
2015-10-08 08:33:16 +01:00

README.md

openstack-ansible-security

The goal of the openstack-ansible-security role is to improve security within openstack-ansible deployments. The role is based on the Security Technical Implementation Guide (STIG) for Red Hat Enterprise Linux 6.

Requirements

This role can be used with or without the openstack-ansible role. It requires Ansible 1.8 at a minimum.

Role Variables

All of the variables for this role are in defaults/main.yml.

Dependencies

This role has no dependencies.

Example Playbook

Using the role is fairly straightforward:

- hosts: servers
  roles:
     - openstack-ansible-security

License

Apache 2.0

Author Information

For more information, join #openstack-ansible on Freenode.

Description
Ansible role for security hardening
Readme 5.4 MiB
Languages
Jinja 44.5%
Python 41.2%
Shell 14.3%