[openstack-dev] [openstack-ansible] Security spec status update

Major Hayden major at mhtx.net
Fri Oct 2 19:19:09 UTC 2015

Hello there,

A couple of people were asking me about the status of the security spec[1] for openstack-ansible.  Here are a few quick updates as of today:

  * We've moved away from considering CIS temporarily due to licensing and terms of use issues
  * We're currently adapting the RHEL 6 STIG[2] for Ubuntu 14.04
  * There's are lots of tasks coming together in a temporary repository[3]
  * Documentation is up on ReadTheDocs[4] (temporarily)

At this point, we have 181 controls left to evaluate (out of 264[5]).  Feel free to hop into #openstack-ansible and ask any questions you have about the work.

[1] http://specs.openstack.org/openstack/openstack-ansible-specs/specs/mitaka/security-hardening.html
[2] http://iase.disa.mil/stigs/Pages/index.aspx
[3] https://github.com/rackerlabs/openstack-ansible-security
[4] http://openstack-ansible-security.readthedocs.org/en/latest/
[5] https://www.stigviewer.com/stig/red_hat_enterprise_linux_6/

Major Hayden

More information about the OpenStack-dev mailing list