软件加固>> ansible-role-datadog_check_lynis>> 返回
项目作者: infothrill

项目描述 :
An Ansible role to install a Datadog agent check for Lynis, an open source security auditing tool.
高级语言: Python
项目地址: git://github.com/infothrill/ansible-role-datadog_check_lynis.git
创建时间: 2017-12-23T09:04:38Z
项目社区:https://github.com/infothrill/ansible-role-datadog_check_lynis
开源协议:MIT License
下载


Ansible role datadog_check_lynis

Build Status
Build Status
Updates
Ansible Role

An Ansible role to install a
Datadog agent check for
Lynis, an open source security auditing tool.

Quick howto

requirements.yml:

  1. - src: Datadog.datadog
  2.   version: 4.2.1
  3. - src: infothrill.datadog_check_lynis
  4.   version: v3.0.0

Install:

  1. ansible-galaxy install -r requirements.yml -p ./roles/

Playbook:

  1. - hosts: servers
  2.     roles:
  3.         - role: Datadog.datadog
  4.         - role: ansible-role-datadog_check_lynis

To configure the check, please use the Datadog.datadog role and add an entry
in the checks dictionary there:

  1.   lynis:
  2.     init_config:
  3.     instances:
  4.       - metrics:
  5.           - hardening_index
  6.           - installed_packages
  7.           - lynis_tests_done
  8.         report: /var/log/lynis/report.dat

Role Variables

variable default description
ddagent_user dd-agent agent user
ddagent_group dd-agent agent group

Dependencies

In principle, this role can be run standalone, however it is only tested together
with the role Datadog.datadog.
The recommended approach would be to:

  • install datadog using the upstream role
  • configure the check using the upstream role
  • run this role to deploy the check plugin only

License

MIT

Author Information

This role was created in 2017 by Paul Kremer.

Changes

v4.0.1

  • Drop python 3.6 test support
  • Add python 3.7, 3.8, 3.9 test support
  • Upgrade molecule to 3.x
  • Drop ansible 2.8 support
  • Add ansible 2.10, 3.0 support

v4.0.0

  • Renamed role to datadog_check_lynis
  • Drop support for ansible EOL versions 2.5, 2.6, 2.7

v3.0.0

  • Add support for agent > 6 (python 3+), and drop support for older versions
  • Drop Centos / EL7
  • Add test for Ubuntu focal (20.04)

v2.0.0

  • Add support for ansible 2.6, 2.7, 2.8, 2.9
  • Drop support for ansible EOL versions 2.2, 2.3, 2.4
  • Drop support for python2
  • Drop support for EL6 , ubuntu trusty 14.04
  • Add testing support for ansible 2.8
  • Upgrade ansible-lint, molecule and docker dependencies for testing

v1.1.0

  • Auto-detect agent5/6 configuration directory (backwards compatible)
  • Add support for EL 6,7
  • Optimize molecule test

v1.0.3

  • Upgrade molecule
  • Fix meta/main.yml to reflect correct values

v1.0.2

  • remove ansible 2.1 and add ansible 2.5
  • upgrade molecule

v1.0.1

  • remove unused files and outcommented code

v1.0

  • initial release