Ansible Linux Security | Ubuntu
An Ansible project to help in securing linux target servers (specifically Ubuntu)
🧐 About
This Ansible project performs a number of linux hardening tasks on a target or group of targets. This is based off of my own preferences and I am in no way a security expert by any means. Use at your own risk
⟆ Limitations
- Officially only supports Ubuntu, but may work on other distrobutions as well. It has simply not been tested elsewhere yet.
- Requires some additional collections to function properly (
ansible.posixandcommunity.general)
👷♂️ Getting Started
First clone the repository to your Ansible controller
git https://github.com/SystemFiles/ansible-linux-security.git; cd ansible-linux-security
Then, create a copy of the configuration and inventory files from the examples(defaults) provided
cp ./example.config.yml ./config.yml
cp ./example.inventory.yml ./inventory.yml
Note: for running after the first time, you will likely need to specify a port in your
inventory.ymlfile to connect again.
Install prerequisite collections via requirements.yml
ansible-galaxy install -r requirements.ymlInstall the role (can use local via roles: - '.')
ansible-galaxy install systemfiles.ansible_linux_security
Now execute the play against your identified hosts
ansible-playbook main.yml