- From: Adam Garside <
>
- To:
- Cc: S Ahmed <
>
- Subject: [chef] Re: Re: Re: Re: Re: should chef be used for initial server updating/hardening?
- Date: Fri, 20 Jan 2012 11:52:43 -0500
On Jan 20, 2012, at 11:49 AM, Tom wrote:
>
Typically server hardening is achieved through a combined effect of many
>
cookbooks, and then test the applied configuration using some security
>
auditing tool.
>
>
I am actually working on a compliance cookbook at the moment, and I am
>
evaluating the following tools;
If anyone is interested, I have a minimal compliance audit cookbook that we
use. It's ubuntu 10.04 only but may be helpful for one aspect of what you are
looking for.
https://github.com/fabulops/cookbook-compliance
Also, I highly recommend using OSSEC as another layer.
Regards,
A
Archive powered by MHonArc 2.6.16.