cookbook 'chef-client-hardening', '= 1.0.0'
chef-client-hardening (2) Versions 1.0.0 Follow3
Set correct owner/permissions for chef-client sensitive files
cookbook 'chef-client-hardening', '= 1.0.0', :supermarket
knife supermarket install chef-client-hardening
knife supermarket download chef-client-hardening
chef-client-hardening Cookbook |
Set correct owner/permissions for chef-client sensitive files
Requirements
Platforms
The following platforms and versions are tested and supported using Opscode's test-kitchen:
- Ubuntu 12.04
- Ubuntu 14.04
- Debian 7
- Debian 8
- Centos 6
- Centos 7
- Fedora 21
- Fedora 22
Attributes
chef-client-hardening::default
Key | Type | Description |
---|---|---|
[chef-client-hardening][extra_dirs] |
Array | Extra directories to restrict permissions (default: []) |
[chef-client-hardening][extra_files] |
Array | Extra files to restrict permissions (default: []) |
Usage
chef-client-hardening::default
This recipe will set owner & group to root
for /etc/chef/
directory and /etc/chef/client.rb
, /etc/chef/client.pem
files.
Additionally, it will look for [chef-client-hardening][extra_dirs]
and [chef-client-hardening][extra_files]
attributes to apply
same permissions.
Directories permissions are set to 0700
and files to 0600
.
{ "name":"my_node", "run_list": [ "recipe[chef-client-hardening]" ] }
Testing
You can use rake
to invoke testing tasks (See Rakefile
for details):
Checkstyle
$ rake test:checkstyle
Will run foodcritic
and rubocop
.
Chefspec
$ rake test:chefspec
Will run unit tests with ChefSpec
.
Kitchen
$ rake test:kitchen
Will test all kitchen instances declared in .kitchen.yml
.
Docker driver is used for integration testing with test-kitchen
. You will need to have docker
installed to run integration testing, or adapt the existing .kitchen.yml
for your driver.
$ kitchen list
$ kitchen test [instance]
Contributing
- Fork the repository on Github
- Create a named feature branch (like
add_component_x
) - Write your change
- Write tests for your change (if applicable)
- Run the tests, ensuring they all pass
- Submit a Pull Request using Github
License and Authors
Authors: Sliim sliim@mailoo.org
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
Dependent cookbooks
This cookbook has no specified dependencies.
Contingent cookbooks
There are no cookbooks that are contingent upon this one.
chef-client-hardening CHANGELOG
This file is used to list changes made in each version of the chef-client-hardening cookbook.
1.0.0
- Initial release of chef-client-hardening
Collaborator Number Metric
1.0.0 failed this metric
Failure: Cookbook has 0 collaborators. A cookbook must have at least 2 collaborators to pass this metric.
Contributing File Metric
1.0.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a CONTRIBUTING.md file
Foodcritic Metric
1.0.0 passed this metric
License Metric
1.0.0 passed this metric
No Binaries Metric
1.0.0 passed this metric
Testing File Metric
1.0.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a TESTING.md file
Version Tag Metric
1.0.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must include a tag that matches this cookbook version number
1.0.0 failed this metric
1.0.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a CONTRIBUTING.md file
Foodcritic Metric
1.0.0 passed this metric
License Metric
1.0.0 passed this metric
No Binaries Metric
1.0.0 passed this metric
Testing File Metric
1.0.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a TESTING.md file
Version Tag Metric
1.0.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must include a tag that matches this cookbook version number
1.0.0 passed this metric
1.0.0 passed this metric
No Binaries Metric
1.0.0 passed this metric
Testing File Metric
1.0.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a TESTING.md file
Version Tag Metric
1.0.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must include a tag that matches this cookbook version number
1.0.0 passed this metric
1.0.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a TESTING.md file
Version Tag Metric
1.0.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must include a tag that matches this cookbook version number
1.0.0 failed this metric