RETIRED, Security Role for OpenStack-Ansible
Go to file
Kevin Carter 30504f0d14 blacklist Ansible 1.9.6
This version of ansible is broken due to the following upstream
Ansible issue:
  * https://github.com/ansible/ansible-modules-extras/issues/2042

Change-Id: If7b0722e72040c31b111afdb94027de6912a01c7
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
(cherry picked from commit 5b5eabd2b8)
2016-04-18 08:01:32 +00:00
defaults Only update apt cache if necessary 2016-02-15 14:49:43 +01:00
doc Fix flake8 violation in conf.py 2016-04-13 16:21:12 +00:00
files V-38682: Disable bluetooth modules 2015-10-14 21:23:11 -05:00
handlers Skip AIDE initialization by default 2016-01-15 10:30:46 -06:00
meta Bump minimum required version of Ansible 2016-01-13 12:41:02 -08:00
tasks Improved search for unlocked system accounts 2016-04-04 16:04:13 +00:00
templates Move template that was missed with rename 2015-11-02 10:20:20 -06:00
tests Security: Check for grub.cfg first 2016-02-29 14:15:29 -06:00
vars Enable role testing and make structure ansible-galaxy compatible 2015-10-09 11:47:23 +00:00
.gitignore Initial import of openstack-ansible-security role 2015-10-07 07:27:39 -05:00
.gitreview Update .gitreview for stable/mitaka 2016-04-02 14:46:00 -04:00
LICENSE Initial import of openstack-ansible-security role 2015-10-07 07:27:39 -05:00
README.md Merge "Adding Vagrant setup for deploying security-ansible" 2016-02-05 16:12:33 +00:00
README.rst Add new docs URL to README 2015-10-09 08:25:56 -05:00
Vagrantfile Adding Vagrant setup for deploying security-ansible 2016-01-25 08:04:26 -08:00
other-requirements.txt Add curl to bindep requirements 2016-03-04 19:26:02 +00:00
run_tests.sh Merging check/functional jobs into one 2015-12-03 08:58:37 -06:00
setup.cfg Initial import of openstack-ansible-security role 2015-10-07 07:27:39 -05:00
setup.py Initial import of openstack-ansible-security role 2015-10-07 07:27:39 -05:00
test-requirements.txt blacklist Ansible 1.9.6 2016-04-18 08:01:32 +00:00
tox.ini Security: Disable AppArmor check 2016-03-08 12:47:18 -06:00

README.md

openstack-ansible-security

The goal of the openstack-ansible-security role is to improve security within openstack-ansible deployments. The role is based on the Security Technical Implementation Guide (STIG) for Red Hat Enterprise Linux 6.

Requirements

This role can be used with or without the openstack-ansible role. It requires Ansible 1.8.3 at a minimum.

Role Variables

All of the variables for this role are in defaults/main.yml.

Dependencies

This role has no dependencies.

Example Playbook

Using the role is fairly straightforward:

- hosts: servers
  roles:
     - openstack-ansible-security

Running with Vagrant

Security Ansible can be easily run for testing using Vagrant.

To do so run: vagrant destroy To destroy any previously created Vagrant setup vagrant up Spin up Ubuntu Trusty VM and run ansible-security against it

License

Apache 2.0

Author Information

For more information, join #openstack-ansible on Freenode.