infothrill.datadog_check_lynis

Panoramica Versioni Approfondimenti

Ansible Role for Datadog Check Lynis

Build Status Build Status Updates Ansible Role

This is an Ansible role to set up a Datadog agent check for Lynis, a free tool for security auditing.

Quick Guide

To use this role, you need a requirements.yml file that looks like this:

- src: Datadog.datadog
  version: 4.2.1
- src: infothrill.datadog_check_lynis
  version: v3.0.0

To install:

ansible-galaxy install -r requirements.yml -p ./roles/

In your playbook, you should include:

- hosts: servers
  roles:
    - role: Datadog.datadog
    - role: ansible-role-datadog_check_lynis

To set up the Lynis check, modify the checks dictionary in the Datadog role:

  lynis:
    init_config: {}
    instances:
      - metrics:
          - hardening_index
          - installed_packages
          - lynis_tests_done
        report: /var/log/lynis/report.dat

Role Variables

Variable Default Description
ddagent_user dd-agent User for the agent
ddagent_group dd-agent Group for the agent

Dependencies

This role can run by itself, but it is best tested with the Datadog.datadog role. The recommended steps are:

  1. Install Datadog via the main role.
  2. Configure the check using the main role.
  3. Run this role to set up the Lynis check only.

License

MIT License

Author Information

Created in 2017 by Paul Kremer.

Changelog

v4.0.1

  • Removed support for Python 3.6.
  • Added support for Python 3.7, 3.8, and 3.9.
  • Updated testing tools.
  • Removed support for Ansible 2.8.
  • Added support for Ansible 2.10 and 3.0.

v4.0.0

  • Renamed role to datadog_check_lynis.
  • Removed support for outdated Ansible versions 2.5, 2.6, and 2.7.

v3.0.0

  • Added support for agents greater than 6 (Python 3+) and dropped support for older versions.
  • Removed support for CentOS/EL7.
  • Added testing for Ubuntu 20.04.

v2.0.0

  • Added support for Ansible versions 2.6, 2.7, 2.8, and 2.9.
  • Dropped support for outdated Ansible versions 2.2, 2.3, and 2.4.
  • Dropped support for Python 2.
  • Dropped support for EL6 and Ubuntu 14.04.
  • Added testing support for Ansible 2.8.
  • Upgraded testing tool versions.

v1.1.0

  • Automatically detects configuration directory for agent 5/6 (compatible with earlier versions).
  • Added support for EL 6 and 7.
  • Improved molecule testing.

v1.0.3

  • Upgraded testing tools.
  • Fixed configuration values in meta/main.yml.

v1.0.2

  • Removed Ansible 2.1 support; added Ansible 2.5 support.
  • Upgraded testing tools.

v1.0.1

  • Removed unnecessary files and commented code.

v1.0

  • Initial release.
Informazioni sul progetto

Role to install a datadog check for Lynis

role audit datadog hardening lynis metrics monitoring security
Installa
ansible-galaxy install infothrill.datadog_check_lynis
GitHub repository
1 stelle
1 fork
4 problemi aperti
Licenza
mit
Download
2.7k
Proprietario
Paul
I was born in the 20th century and I will die in the 21st century