hardening

ansible-role-hardening

GitHub latest release Ansible Galaxy

:warning: Warning: this project is no longer maintained :warning:

I decided to convert the Ansible code to Bash for simplicity.


Ansible role to harden Debian systems.

This role has been tested with Debian 12 (bookworm).

Warning: this is only a partial hardening and it should only serve as inspiration to make your own real hardening based on your specific environment.

Usage

  1. Install this role using the ansible-galaxy CLI tool
  2. You can then include it into the tasks section of your Ansible Playbook. See test/playbook.yml for an example of how to do that. Remember to replace the role name with dmotte.hardening.

Note: this role must be run as root (ansible_become: true).

Role variables

See defaults/main.yml.

Development

If you want to contribute to this project, you can use the test/playbook.yml file to test the role while editing it.

Place your inventory file (e.g. hosts.yml) inside the test folder.

Edit the vars section of the test/playbook.yml file to match your scenario.

You can then execute the playbook against your host:

cd test/
ansible-playbook -i hosts.yml playbook.yml
Install
ansible-galaxy install dmotte/ansible-role-hardening
GitHub repository
License
mit
Downloads
29
Owner