[openstack-dev] [openstack-ansible][security] Security hardening backport to Liberty desirable?
jesse.pretorius at gmail.com
Sat Mar 5 12:40:53 UTC 2016
On 4 March 2016 at 16:50, Major Hayden <major at mhtx.net> wrote:
> Hey folks,
> I have proposed a review which adds the openstack-ansible-security
> role to OpenStack-Ansible's Liberty release. I would really appreciate
> some feedback from deployers on whether this change is desirable in Liberty.
> The role applies cleanly to Liberty on Ubuntu 14.04 and the role already
> has some fairly basic gating.
> The two main questions are:
> 1) Does it make sense to backport the openstack-ansible-security
> role/playbook to Liberty?
> 2) Should it be applied by default on AIO/gate builds as it is
> in Mitaka (master)?
>  https://review.openstack.org/#/c/273257/
>  http://docs.openstack.org/developer/openstack-ansible-security/
Liberty is a stable branch and the Mitaka release is just around the
corner. I think it's a bit late in the game to add it. Consider, also, that
deployers can easily consume the role with their own playbook to execute it
if they would like to.
*If* a backport is supported by the consuming community and core team, I
would only support an opt-in model to allow deployers to make use of the
role, but only if they choose to.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OpenStack-dev