Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/redhatofficial/ansible-role-rhel8-anssi_bp28_high
ANSSI-BP-028 (high) - Ansible role generated from ComplianceAsCode Project
https://github.com/redhatofficial/ansible-role-rhel8-anssi_bp28_high
Last synced: about 21 hours ago
JSON representation
ANSSI-BP-028 (high) - Ansible role generated from ComplianceAsCode Project
- Host: GitHub
- URL: https://github.com/redhatofficial/ansible-role-rhel8-anssi_bp28_high
- Owner: RedHatOfficial
- License: other
- Created: 2021-06-16T20:04:34.000Z (over 3 years ago)
- Default Branch: master
- Last Pushed: 2024-02-22T23:53:18.000Z (9 months ago)
- Last Synced: 2024-04-20T19:43:25.246Z (7 months ago)
- Homepage: https://github.com/complianceascode/content
- Size: 334 KB
- Stars: 1
- Watchers: 6
- Forks: 2
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
ANSSI-BP-028 (high)
=========Ansible Role for ANSSI-BP-028 (high)
Profile Description:
This profile contains configurations that align to ANSSI-BP-028 v2.0 at the high hardening level.
ANSSI is the French National Information Security Agency, and stands for Agence nationale de la sécurité des systèmes d'information.
ANSSI-BP-028 is a configuration recommendation for GNU/Linux systems.
A copy of the ANSSI-BP-028 can be found at the ANSSI website:
https://www.ssi.gouv.fr/administration/guide/recommandations-de-securite-relatives-a-un-systeme-gnulinux/
An English version of the ANSSI-BP-028 can also be found at the ANSSI website:
https://cyber.gouv.fr/publications/configuration-recommendations-gnulinux-systemThe tasks that are used in this role are generated using OpenSCAP.
See the OpenSCAP project for more details on Ansible playbook generation at [https://github.com/OpenSCAP/openscap](https://github.com/OpenSCAP/openscap)To submit a fix or enhancement for an Ansible task that is failing or missing in this role,
see the ComplianceAsCode project at [https://github.com/ComplianceAsCode/content](https://github.com/ComplianceAsCode/content)Requirements
------------- Ansible version 2.9 or higher
Role Variables
--------------To customize the role to your liking, check out the [list of variables](defaults/main.yml).
Dependencies
------------N/A
Example Role Usage
----------------Run `ansible-galaxy install RedHatOfficial.rhel8_anssi_bp28_high` to
download and install the role. Then, you can use the following playbook snippet to run the Ansible role:- hosts: all
roles:
- { role: RedHatOfficial.rhel8_anssi_bp28_high }Next, check the playbook using (on the localhost) the following example:
ansible-playbook -i "localhost," -c local --check playbook.yml
To deploy it, use (this may change configuration of your local machine!):
ansible-playbook -i "localhost," -c local playbook.yml
License
-------BSD-3-Clause
Author Information
------------------This Ansible remediation role has been generated from the body of security
policies developed by the ComplianceAsCode project. Please see
[https://github.com/complianceascode/content/blob/master/Contributors.md](https://github.com/complianceascode/content/blob/master/Contributors.md)
for an updated list of authors and contributors.